JP2006195646A - Personal identification method - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To identify a service-user while ensuring the security of the service-user even if an IC card is not used. <P>SOLUTION: A personal identification apparatus 100 determines whether the service-user is authorized or not in the following manner. A password identification processing part 170 generates question information on the basis of a password correct answer data table 130e, fixed word data table 130f, password question data table 130g, password question sequential order table 130h, and question correct answer data table 130i. The generated question information is transmitted to a terminal device of a business store, and also reply information is acquired from a personal digital assistant and registered as an input reply data table 130j. The input reply data table 130j is compared with the question correct answer data table 130i. <P>COPYRIGHT: (C)2006,JPO&NCIPI

Description

  The present invention relates to a personal authentication method for authenticating that a service user is a legitimate user, and particularly to authenticate a service user while ensuring the security of the service user even when an IC card is not used. The present invention relates to a personal authentication method that can be performed.

  Conventionally, in order for a service user to enjoy services such as deposit withdrawal and cashing, it is necessary to indicate to the service providing organization that the user is a valid service user. Therefore, the service user transmits the identification information of the service user stored in an IC (Integrated Circuit) card, the password for the IC card, etc. to the service provider, and the received identification information and the IC card are received by the service provider. The service user is authenticated based on the password for the service.

  However, if a service user loses an IC card, the service user can indicate to the service provider that the IC card is a valid service user until the IC card is reissued. Therefore, there is a problem that the service cannot be enjoyed, and the service provider side cannot authenticate the service user without the IC card of the service user, and the service cannot be provided. It was.

  Therefore, in Patent Document 1, an authentication question is generated based on information known only by the service user so that the service user can be authenticated without using an IC card. A question is transmitted to a dedicated terminal installed in a sales office or the like, and it is determined whether or not the user is a valid service user based on the response contents returned from the dedicated terminal.

JP 2002-342281 A

  However, in the related art, there is a problem that it is not possible to ensure security for a service user when authenticating the service user without using an IC card.

  This is because when a service user answers an authentication question using a dedicated terminal, the authentication question and information regarding the contents of the answer remain in the dedicated terminal. This is because the information on the contents of the question and the answer is stolen by the three parties and there is a danger of being used illegally.

  The present invention has been made to solve the above-described problems caused by the prior art, and performs authentication for a service user while ensuring the security of the service user even when an IC card is not used. An object is to provide a personal authentication method that can be used.

  In order to solve the above-mentioned problems and achieve the object, the personal authentication method according to the invention of claim 1 is a personal authentication method for authenticating that a service user is a valid user, and identifies the user. Storing the identification information, the question for the user, the answer to the question, and the contact information of the answer terminal for answering the question in a storage device, and the identification information received And transmitting the question information corresponding to the identification information to the question terminal that displays the question information, and sending answer screen information for answering the question to the answer terminal, And a determination step of determining whether or not the user is a legitimate user based on answer information that is an answer to the question received from the answer terminal.

  According to the first aspect of the present invention, the personal authentication method associates identification information for identifying a user, a question for the user, an answer to the question, and contact information of an answering terminal for answering the question. And when the identification information is received, the question information that is the question corresponding to the identification information is transmitted to the question terminal that displays the question information, and the answer screen information for answering the question is displayed. Whether or not the user is a valid user is determined based on the answer information that is the answer to the question that is transmitted to the answer terminal and received from the answer terminal.

  The personal authentication method according to claim 2 is the personal authentication method according to claim 1, wherein the sending step changes the order of a plurality of questions stored in the storage device, and the order of the questions is changed. The question information is transmitted to the question terminal, and answer screen information having an answer order different from the question order of the question information is sent to the answer terminal.

  According to the invention of claim 2, the personal authentication method changes the order of a plurality of questions stored in the storage device, transmits the question information whose order of change is changed to the question terminal, Answer screen information having an answer order different from that of the questions is sent to the answer terminal.

  According to a third aspect of the present invention, there is provided a personal authentication method according to the first or second aspect of the invention, wherein the authentication method information, which is information as to whether or not to perform user authentication based on the question information and the answer information, is stored in the memory. An authentication method information storage step stored in the apparatus, and authentication for determining whether or not to perform user authentication based on the question information and answer information based on the authentication method information when the identification information is received A determination step, wherein the transmission step transmits the question information to the question terminal when it is determined in the authentication determination step that user authentication is performed based on the question information and the answer information. The answer screen information is transmitted to the answer terminal.

  According to the invention of claim 3, the personal authentication method stores authentication method information, which is information as to whether or not to perform user authentication based on question information and answer information, in the storage device, and receives identification information. If it is determined whether to perform user authentication based on the question information and answer information based on the authentication method information, and to perform user authentication based on the question information and answer information The question information is transmitted to the question terminal, and the answer screen information is transmitted to the answer terminal.

  According to the first aspect of the present invention, the personal authentication method associates identification information for identifying a user, a question for the user, an answer to the question, and contact information of an answering terminal for answering the question. When the identification information is stored in the storage device, the question information that is the question corresponding to the identification information is transmitted to the question terminal that displays the question information, and the answer screen information for answering the question is answered Since it is determined whether or not the user is a legitimate user based on the answer information that is the answer to the question that is sent to the terminal and received from the answering terminal, even if the IC card is not used, authentication for the service user Can be performed appropriately.

  According to the invention of claim 2, the personal authentication method changes the order of a plurality of questions stored in the storage device, transmits the question information whose order of change is changed to the question terminal, Since answer screen information having an answer order different from the order of information questions is transmitted to the answer terminal, security for the service user can be ensured.

  According to the invention of claim 3, the personal authentication method stores authentication method information, which is information as to whether or not to perform user authentication based on question information and answer information, in the storage device, and stores identification information. When it is received, it is determined whether to perform user authentication based on the question information and answer information based on the authentication method information, and when it is determined to perform user authentication based on the question information and answer information In addition, since the question information is transmitted to the question terminal and the answer screen information is transmitted to the answer terminal, even when the IC card is lost, the service user can be efficiently authenticated.

  Exemplary embodiments of a personal authentication method according to the present invention will be described below in detail with reference to the accompanying drawings.

  First, the concept of personal authentication according to the present embodiment will be described. The personal authentication apparatus according to the present embodiment is connected to a question terminal for displaying an authentication question and an answer terminal for inputting an answer to the question.

  The personal authentication device creates a question based on the personal information of the service (service such as deposit withdrawal and cashing) user, transmits the question information that is the information of the created question to the question terminal, and the answer terminal The response corresponding to the question is acquired from the service information, and the service user is authenticated based on the acquired response content.

  Next, the system configuration of the personal authentication system according to the present embodiment will be described. FIG. 1 is a block diagram illustrating a system configuration of a personal authentication system according to the present embodiment. As shown in the figure, in this personal authentication system, the personal authentication device 100 and the business terminal device 200 are connected via a dedicated network 50, and the personal authentication device 100 and the mobile terminal device 300 are connected via the Internet 60. The personal authentication device 100 and the customer telephone 400 are connected via the public network 70.

  The personal authentication device 100 generates question information that can be answered only by a legitimate service user based on the personal information of the service user, transmits the generated question information to the branch terminal device 200, and the question information. Is a device that obtains answer information, which is answer information corresponding to each question included in the mobile terminal device 300, from the mobile terminal device 300 and determines whether the service user is a valid user based on the obtained answer information. .

  In addition, the personal authentication device 100 transmits information on an answer screen for answering a question (hereinafter referred to as answer screen information) to the mobile terminal device 300. The order of answers on this answer screen is set in advance to be different from the order of questions included in the question information.

  Furthermore, when authenticating the service user, the personal authentication device 100 randomly selects a predetermined number of questions from a plurality of existing questions, and transmits the selected questions to the branch terminal device 200 as question information. By doing so, a different question is asked to the service user every time user authentication is performed.

  The sales terminal device 200 is a device that displays each question included in the question information transmitted from the personal authentication terminal device 100 on a display (not shown) or the like. Further, the business terminal device 200 requests the personal authentication terminal device 100 for an authentication process that does not use an IC (Integrated Circuit) card.

  The mobile terminal device 300 displays an answer screen on a display (not shown) (not shown) based on the answer screen information transmitted from the personal authentication terminal device 100, and also answers the question displayed on the sales terminal device 200. This is a device that acquires according to the response order displayed on the response screen (the service user inputs a response to the mobile terminal device 300 according to the response order) and transmits the acquired response information to the personal authentication terminal device 100.

  The customer telephone 400 is a device that makes a request to the personal authentication device 100 to switch between authentication processing using an IC card and authentication processing not using an IC card.

  Next, the configuration of the personal authentication device 100 shown in FIG. 1 will be described. FIG. 2 is a functional block diagram showing the configuration of the personal authentication device 100 shown in FIG. As shown in the figure, the personal authentication device 100 includes an input receiving unit 110, a temporary registration information registration processing unit 120, a storage unit 130, a communication unit 140, a new host registration processing unit 150, and an authentication switching process. Unit 160 and password authentication processing unit 170.

  The input receiving unit 110 is a processing unit that receives temporary registration information from an input device (not shown) such as a keyboard and passes the received temporary registration information to the temporary registration information registration unit 120. Here, the provisional registration information is information that the administrator inputs the contents of the application form mailed from the service user to the personal authentication device 100 using the input device.

  3 and 4 are diagrams showing an example of an application form mailed from a service user. As shown in Fig. 3, the application form 1 includes name (kana and kanji), date of birth, gender, postal code, address (kana and kanji), home phone number, work phone number, emergency contact phone number Information corresponding to the service user is entered in each column of number and deposit account information.

  In addition, as shown in FIG. 4, the application form 2 includes the IC card password and the mobile terminal device mail address in the columns of the IC card password used by the service user and the mobile terminal device 300 mail. Each address is filled in by the service user.

  In the remaining column of the application form 2, information on the relatives of the service user is entered. Specifically, in the example shown in FIG. 4, information on the principal, father, and mother is registered by the service user. For the principal, the surname is “Fuji”, the first name is “Taro”, and the birthday is “1960”. , “11” month, “8th”, hometown is “Kanagawa XX city”, school is “Kawasaki XX elementary school”, blood type is “AB” type, dominant arm is “right”, qualification name is “ “Driver's license”, nickname name “Akun”, best friend name “XXX”, height “173” cm, shoe size “27” cm, and hobby “hang” are entered.

  As for the father, the last name is “Fuji”, the first name is “one boy”, the birthday is “1928”, “10th month”, “5th”, the birthplace is “Hokkaido XX City”, “Tokyo XX University”, blood type “A” type, dominant arm “left”, qualification name “teacher license”, nickname “shinbo”, best friend name “□□□□□”, height is “ 168 "cm, the shoe size is" 25 "cm, and the hobby is" Karaoke ".

  As for my mother, my surname is “Fuji”, my name is “Haruko”, my birthday is “1930”, “March”, “3”, my hometown is “Okinawa xx city”, my home school Is “Naha XX High School”, blood type is “B” type, dominant arm is “right”, qualification name is “teacher license”, nickname is “Chi-chan”, best friend name is “△△△△”, height Is “160” cm, the shoe size is “23” cm, and the hobby is “tennis”.

  The temporary registration information registration unit 120 is a processing unit that registers the temporary registration information acquired from the input receiving unit 110 in the temporary registration information table 130 a stored in the storage unit 130. The storage unit 130 includes a temporary registration information table 130a, a main registration information table 130b, a face photo information 130c, a deposit account number information 130d, a password correct answer data table 130e, a fixed message data table 130f, a password question data table 130g, a password question. The storage unit stores an order table 130h, a question correct answer data table 130i, and an input answer data table 130j.

  FIG. 5 is a diagram illustrating an example of the temporary registration information table 130a. As shown in the figure, this temporary registration information table 130a includes "temporary registration number", "IC card password", "personal authentication password 1 to 48", "name (kana and kanji)", "birth date" "Day", "gender", "zip code", "address (kana and kanji)", "home phone number", "work phone number", "emergency contact phone number (mobile phone number)", "deposit account "Information" and "Mobile device mail address".

  Here, the temporary registration number is information for identifying each temporary registration information, and is determined by the temporary registration information registration unit 120. The temporary registration number is output to a display device (not shown) by the temporary registration information registration unit 120, and the administrator mails the temporary registration number to a service user corresponding to the temporary registration information.

  In the personal authentication passwords 1 to 48, information corresponding to the application form 2 shown in FIG. 4 (excluding information corresponding to the IC card password and the mobile terminal mail address) is stored.

  Specifically, in the example of FIG. 4, the personal authentication passwords 1 to 16 store the information “person” to “suspension” in the first row of the table, and the personal authentication passwords 17 to 32 store the information “4” in the fourth row. “Father” to “Karaoke” are stored, and information “Mother” to “Tennis” in the fifth row is stored in the personal authentication passwords 33 to 48, respectively. The personal authentication passwords 1 to 48 are used when creating questions and answers for the service user. 5 is the same as the explanation given in FIG. 3 and FIG.

  The communication unit 140 is a processing unit that performs data communication with the branch office terminal device 200, the mobile terminal device 300, and the customer mobile phone 400 using a predetermined communication protocol.

  When receiving a main registration request from the branch terminal device 200, the new host registration processing unit 150 takes out the corresponding temporary registration information in the temporary registration information table 130a and stores it as the main registration information in the main registration information table 130b. Is a processing unit.

  Specifically, when the new host registration processing unit 150 obtains a temporary registration number and information on the face photograph of the service user (referred to as face photograph information) from the branch terminal device 200, the temporary registration information table 130a. The temporary registration information corresponding to the temporary registration number is acquired, the acquired temporary registration information is registered in the main registration information table 130b, and the face photo information is stored in the storage unit 130 (stored as the face photo information 130c).

  FIG. 6 is a diagram illustrating an example of the main registration information table 130b. As shown in the figure, this registration information table 130b includes "customer number", "birth date", "gender", "authentication method switching flag information", "name (kana and kanji)", "zip code". , “Address (Kana and Kanji)”, “Home phone number”, “Work phone number”, “Emergency contact phone number (mobile phone number)”, “IC card password”, “Mobile phone mail address”, It consists of “actual storage address of face photo information”, “personal authentication password 1 to 48”, “deposit account information 1 to n”, and “other information”.

  Here, the customer number is information for identifying each piece of information registered in the main registration information table 130b. For example, the information (main registration information) identified by the customer number “1000” has the date of birth “November 8, 1960”, the gender “male”, the authentication method switching flag “0”, the name (kana) “ Fujitaro, full name (Kanji) “Fujitaro”, postal code “×× − ×××”, address (Kana) “Kanagatan XX”, address (Kanji) “Kanagawa XX city”, home Phone number “XXX-XXX”-Work phone number “XXX-XXXX-XXX”, Emergency contact phone number “XXX-XXX-XXX” × ”, IC card password“ 12345 ”, mobile terminal mail address“ xxx @ xxx com ”, actual storage address of face photo information“ xxx ”, personal authentication password 1“ person ”—individual Authentication password 48 “tennis”, deposit account information 1 “xxx”,... Deposit account information n “xxx”, and other information “xxx” .

  The authentication method switching flag information is information for determining whether to authenticate the service user using the IC card or not using the IC card. Specifically, when the authentication method switching flag information is “0”, it indicates that authentication using an IC card is performed, and when “1”, authentication that does not use an IC card is performed. . In the initial setting, the authentication method switching flag information is set to “0”.

  Information for specifying the position (address) of the face photograph information of the service user corresponding to the customer number is registered in the actual storage address of the face photograph information, and the deposit used by the service user is stored in the deposit account information. Account number information is registered (the number of deposit account numbers used by the service user is registered), and other information is registered as other information. The other description regarding the main registration information table 130b is the same as that described with reference to FIGS.

  The authentication method switching processing unit 160 is a processing unit that switches the authentication method switching flag information of the registration information table 130b from “0” to “1” when an authentication method switching request is received from the customer telephone 400.

  The password authentication processing unit 170 is a processing unit that performs authentication for a service user. Specifically, when receiving an authentication request from the branch terminal device 200, the password authentication processing unit 170 first generates the password correct answer data table 130e based on the main registration information table 130b.

  FIG. 7 is a diagram illustrating an example of the password correct answer data table 130e. As shown in the figure, the password authentication data table 130e includes (1 <column number>, 1 <row number>) to (16, 1) in the personal authentication password of the main registration information table 130b shown in FIG. 1 to 16 information is stored, information of personal authentication passwords 17 to 32 is stored in parts (1, 2) to (16, 2), and parts (1, 3) to (16, 3). Stores information on personal authentication passwords 33-48.

  Then, after generating the password correct answer data table 130e, the password authentication processing unit 170 generates the password question data table 130g based on the password correct answer data table 130e and the fixed message data table 130f.

  Here, the fixed word data table 130f is stored in the storage unit 130 in advance. FIG. 8 is a diagram illustrating an example of the fixed message data table 130i. As shown in the figure, the word “relationship” is set in (1, 1) of this fixed word data table 130i, the word “last name” is set in (2, 1), and (3, 1 ) Is set to the word “name”, (4,1) is set to the word “birthday year (4 digits)”, (5,1) is set to “birthday month (2 digits)” Is set to (6, 1), and the word “birthday date (2 digits)” is set.

  In the fixed word data table 130i, (7, 1) is set to the word “Birthplace Prefecture / Municipality Name”, and (8, 1) is set to the word “Home School Name”. , 1) is set to the word “blood type”, (10, 1) is set to the word “dominant arm”, (11, 1) is set to the word “qualification name” and (12 , 1) is set to the word “nickname”.

  In addition, the word “best friend name” is set in (13, 1) of the fixed word data table 130i, the word “height (what cm)” is set in (14, 1), and (15, 1). The word “shoe size (how many centimeters)” is set for “16,1”, and the word “hobby” is set for (16, 1).

  FIG. 9 is a diagram illustrating an example of the password question data table 130g. As shown in the figure, in the password question data table 130g, a question for authenticating the service user is stored in each part specified by the cell numbers (1, 1) to (16, 3).

  Subsequently, the password authentication processing unit 170 generates a question correct answer data table 130i based on the password correct answer data table 130e and the password question order table 130h.

  Here, the password question order table 130h is stored in the storage unit 130 in advance. FIG. 10 is a diagram illustrating an example of the password question order data table 130h. As shown in the figure, this password question order table shows the correspondence between “item number” and “cell number”.

  FIG. 11 is a diagram illustrating an example of the question correct answer data table 130i. As shown in the figure, the question correct answer data table 130i includes a “question part” and a “correct answer part”. The question part is composed of “question order” and “item number”, and the correct answer part is composed of “question number display order on answer screen” and “correct answer data”.

  Here, “question order” indicates the order in which the service user is asked, and “item number” is information for specifying the question corresponding to the question number. For example, the question corresponding to the question order “01” and the item number “48” is the cell number (16, 3) from the password question order table of FIG. 10, that is, the cell number (16 of the password question data table shown in FIG. , 3) indicates that the question is “What is your mother ’s hobby?”. The numerical value set for the item number is randomly determined by the password authentication processing unit 170.

  The “question number display order on the answer screen” is information for specifying the answer order for each question. In other words, the example of FIG. 11 indicates that the answers are requested in the order of the question order 5, 1, 3, 2, and 4. The numerical value set in the “question number display order on the answer screen” is randomly determined by the password authentication processing unit 170 (and the number is not duplicated). The password authentication processing unit 170 generates an answer screen corresponding to the “question number display order of the answer screen”, and transmits information of the generated answer screen to the mobile terminal device 300.

  In “correct answer data”, correct answer information for each question is set. For example, “correct answer data” indicating the correct answer corresponding to the question number display order “05” (item number 44) on the answer screen is the cell number (12, 3) from the password question order table of FIG. 7 indicates correct data “Chi-chan” corresponding to the cell number (12, 3) of the password correct answer data table shown in FIG.

  When the password authentication processing unit 170 receives the information related to the response content from the mobile terminal device 300, the password authentication processing unit 170 stores the received response content information as the input response data table 130j. FIG. 12 is a diagram illustrating an example of the input answer data table 130j.

  As shown in FIG. 12, this input answer data table 130j shows the relationship between the question number on the answer screen and the answer to the question corresponding to the question number. Specifically, the input answer content for question number “05” on the answer screen is “Chi-chan”, the input answer content for question number “01” on the answer screen is “tennis”, and the question number on the answer screen The input answer content for “03” is “10”, the input answer content for question number “02” on the answer screen is “Kawasaki XX Elementary School”, and the input answer content for question number “04” on the answer screen is “ Fishing

  The password authentication processing unit 170 compares the input answer data table 130j and the correct answer part of the question correct answer data table, and if all the items match, the service user to be authenticated is an authorized service user. Judge that there is. Then, the password authentication processing unit 170 transmits the determination result to the branch terminal device 200.

  Next, processing of the authentication method switching processing unit 170 shown in FIG. 2 will be described. FIG. 13 is a flowchart illustrating a processing procedure of the authentication method switching processing unit 170. As shown in the figure, when the customer telephone 400 calls the personal authentication device 100, the authentication method switching processing unit 170 acquires the telephone number of the customer telephone 400 (step S101), and uses the telephone number as a key. It is determined whether the telephone number actually exists in the registration information table 130b (step S102).

  If the telephone number does not exist (No at Step S103), a negative voice message indicating that the telephone number does not exist is transmitted to the customer telephone 400 (Step S104), and the process is terminated. On the other hand, when the telephone number actually exists (step S103, Yes), the authentication method switching flag information corresponding to the telephone number is acquired, and it is determined whether it is 0 (step S105).

  If the authentication method switching flag information is not 0 (No at Step S106), an application invalid voice message is transmitted to the customer telephone 400 (Step S107), and the process is terminated. On the other hand, if the authentication method switching flag information is 0 (Yes in step S106), an IC card password input request message is transmitted to the customer telephone 400 (step S108).

  Then, the IC card password is acquired from the customer telephone 400 (step S109), and the IC card password acquired from the customer telephone 400 is compared with the IC card password corresponding to the telephone number in the registration information table 130b ( Step S110).

  If the IC card passwords do not match (step S111, No), an application negative voice message is transmitted to the customer telephone 400 (step S112), and the process ends. On the other hand, if the IC card passwords match (step S111, Yes), the corresponding authentication method switching flag information is changed from 0 to 1 (step S113), and an authentication method switching completion message is transmitted to the customer telephone 400. (Step S114).

  As described above, the authentication method switching processing unit 160 changes the authentication method switching flag information based on the telephone number of the customer telephone 400, the IC card password, and the main registration information table 130, so that the IC card is lost. However, the authentication method for the service user can be easily changed.

  Next, processing of the password authentication processing unit 170 illustrated in FIG. 2 will be described. 14 and 15 are flowcharts showing a processing procedure of the password authentication processing unit 170. As shown in the figure, a personal identification request message is received from the branch terminal device 200 (step S201), and a deposit account number is extracted from the personal identification request message (step S202).

  Then, the corresponding deposit account number is searched from the deposit account number information 130c (the deposit account number information 130c is information on the deposit account number used by the service user) (step S203), and the corresponding deposit account number exists. If not (No at Step S204), an error message is transmitted to the branch terminal device 200 (Step S205), and the process is terminated.

  On the other hand, if the deposit account number exists (step S204, Yes), the customer number is searched from the registration information table 130b using the deposit account number as a key (step S206), and the authentication method corresponding to the customer number is switched. Flag information is acquired and it is determined whether or not 1 (step S207).

  If the authentication method switching flag information is not 1 (No at Step S208), the personal authentication process using the IC card and the IC card password is performed (Step S209), and the process ends.

  On the other hand, if the authentication method switching flag information is 1 (Yes in Step S208), the personal identification request generation mail data is transmitted to the mobile terminal device 300 (Step S210). FIG. 16 is a diagram illustrating an example of a screen displayed on the display by the mobile terminal device 300 when the mobile terminal device 300 receives the personal identification request mail data.

  Then, the download request for the start screen is received from the mobile terminal device 300 (the mobile terminal device 300 displays the start screen on the personal authentication device 100 when the URL <Uniform Resource Locator> shown in FIG. 16 is clicked by the service user. A download request is transmitted (step S211), and the start screen is downloaded to the mobile terminal device 300 (step S212). FIG. 17 is a diagram illustrating an example of a start screen displayed on the display by the mobile terminal device 300.

  Subsequently, a personal identification start message is received from the portable terminal device 300 (the portable terminal device 300 starts the personal identification device 100 when the personal identification start button 300a shown in FIG. 17 is clicked by the service user. (Step S213), the question correct data table creation process is executed (step S214), the password input number variable A is set to 1 (step S215), and the password maximum number variable B is set to 5 (one example). Setting is made (step S216).

  Then, the answer screen is downloaded to the mobile terminal device 300 (step S217). FIG. 18 is a diagram illustrating an example of an answer screen displayed on the display by the mobile terminal device 300. The answer order of the answer screens is generated based on the “question number display order of answer screens” in the question correct answer data table 130i. That is, in the example of the question correct answer data table 130i shown in FIG. 11, the answer order is “05, 01, 03, 02, 04”.

  Returning to the description of FIG. 14, it is determined whether or not the variable A is smaller than the value obtained by adding 1 to the variable B (step S <b> 218), and when the variable A is smaller than the value obtained by adding 1 to the variable B. (Step S218, Yes), the question data corresponding to the variable A is searched (Step S219).

  Specifically, when 1 is set in the variable A, first, the item number corresponding to the question number “01” in the question correct answer data table 130i shown in FIG. Becomes 48).

  Then, the corresponding cell number is searched based on the password question order table 130h and the item number shown in FIG. For example, the cell number corresponding to the item number “48” is (16, 3). Then, based on the password question data table 130g shown in FIG. 9 and the cell number, a question corresponding to the cell number is searched. For example, the question corresponding to the cell number (16, 3) is "What is your mother's hobby?"

  Returning to the description of FIG. 14, the password authentication processing unit 170 downloads the question screen to the branch terminal device 200 (step S220). FIG. 19 is a diagram illustrating an example of a question screen displayed on the display by the branch terminal device 200. The question data searched in step S219 is set in this question screen.

  Then, information indicating that the answer button has been pressed is received from the mobile terminal device 300 (the mobile terminal device 300 has been pressed when the answer button 300c shown in FIG. 18 is clicked by the service user. Is transmitted to the personal authentication device 100) (step S221), 1 is added to the variable A (step S222), and the process proceeds to step S217. FIG. 20 is a diagram illustrating an example of a question screen in a state where all questions are displayed, and FIG. 21 is a case where answers to each question displayed on the question screen are all input by the service user. It is a figure which shows an example.

  On the other hand, when the variable A is equal to or greater than the value obtained by adding 1 to the variable B (No at Step S218), the question end screen is downloaded to the branch terminal device 200 (Step S223). FIG. 22 is a diagram illustrating an example of a question end screen displayed on the display by the branch terminal device 200.

  Subsequently, an end message is received from the mobile terminal device 300 (the mobile terminal device 300 includes a question number and answer data corresponding to the question number when the answer button 300c shown in FIG. 21 is clicked by the service user. The end message is transmitted to the personal authentication device 100) (step S224), the question number and the answer data are acquired from the end message, and registered in the input answer data table 130j (step S225).

  Then, the question correct answer data table 130i and the input answer data table 130j are compared (step S226), and if all match (step S227, Yes), a word indicating that all are correct is generated (step S228). The written word and the corresponding face photo information are incorporated into the result screen and transmitted to the sales terminal device 200 (step S229). FIG. 23 is a diagram illustrating an example of a result screen displayed on the display by the sales terminal device 200. The operator of the sales terminal device 200 confirms the identity of the service user from the result display screen, and performs transactions such as deposit withdrawal after confirming the identity.

  On the other hand, if all do not match (step S227, No), a word with an incorrect answer is generated (step S230), and the process proceeds to step S229.

  Next, the question correct answer data table creation process shown in step S213 of FIG. 14 will be described. FIG. 24 is a flowchart showing a processing procedure of the question correct answer data table creation processing shown in step S213 of FIG. As shown in the figure, the password authentication processing unit 170 reads a personal authentication password corresponding to the customer number from the main registration information table 130b (step S301), and generates a password correct answer data table 130e based on the personal authentication password ( Step S302).

  Then, the password question data table 130g is generated (at this stage, no data is stored in the password question table 130g) (step S303), the relationship question generation process is executed (step S304), and the question generation process is executed. (Step S305), the password question order table 130h is generated (Step S306), and 1 is stored in the variable E (Step S307).

  Subsequently, values 1 to 48 are acquired from random numbers, and the acquired value is stored in “item number” corresponding to the same question number as variable E (step S308). For example, when the random number “48” is acquired in a state where 1 is stored in the variable E, “48” is set in the item number corresponding to the question order “01” in the question correct answer data table 130i illustrated in FIG. To do.

  And the value of 1-5 is acquired from a random number, and the acquired value is stored in the “question number display order of answer screen” corresponding to the same question number as the variable E (step S309). For example, when the random number “5” is acquired in a state where 1 is stored in the variable E, the “question number display order on the answer screen” corresponding to the question order “01” in the question correct answer data table 130i shown in FIG. "05" is set to "."

  In step S309, when a random number is acquired, if the same number as the acquired number is already set in the “question number display order on the answer screen”, a value different from the already set value is output. Until then, the process of step S309 is repeated.

  Subsequently, the correct answer data is searched from the password correct answer data table 130e using the item number as a key (step S310). Here, when the item number “48” is used as a key, the cell number corresponding to the item number is first searched based on the password question order table 130h and the item number (as shown in FIG. The cell number corresponding to the item number “48” is (16, 3)), and the correct data corresponding to the cell number is searched based on the searched cell number and the password correct data table 130e (as shown in FIG. 7). The correct data corresponding to the cell number (16, 3) is “tennis”).

  Then, the retrieved correct answer data is stored in the “correct answer data” corresponding to the question number display order on the same answer screen as the variable E (step S311). For example, when the correct data “tennis” is searched with 1 stored in the variable E, “tennis” is stored in the correct data corresponding to the question number display order “01” on the answer screen.

  Subsequently, it is determined whether or not the value stored in the variable E is smaller than 5 (step S312). If the value stored in the variable E is smaller than 5 (step S312, Yes), the variable E is set to 1. Are added (step S313), and the process proceeds to step S308.

  On the other hand, when the value stored in the variable E is 5 or more (step S312, No), the answer screen is edited based on the “question display order of the answer screen” in the question correct answer data table 130i (step S314). ).

  Next, the interrogation question generation process shown in step S304 of FIG. 24 will be described. FIG. 25 is a flowchart showing the procedure of the interrogative question generation process shown in step S304 of FIG.

  As shown in the figure, 1 is stored in the variable i (step S401), and (2, i) data and (3, i) data are acquired from the password correct answer data table (step S402). Specifically, when 1 is stored in the variable i, (2,1) data and (3,1) data from the password correct answer data table 130e shown in FIG. 7, that is, “Fuji” and “Taro”. Is acquired.

  Then, the wording data "'(2, i) data'" (3, i) data "is generated?" (Step S403). Specifically, when 1 is stored in the variable i, the word data “'(2,1) data” (3,1) data'? ”, That is,“ Fujitaro's relationship is "?" Is generated.

  Subsequently, the generated wording data is stored in the (1, i) data of the password question data table 130g (step S404). Specifically, when 1 is stored in the variable i, the word data “What is the relationship between Fuji Taro?” Is stored in the cell number (1, 1) of the password question data table 130g shown in FIG.

  Then, 1 is added to the variable i (step S405), and if the variable i is smaller than the value obtained by adding 1 to 3 (step S406, Yes), the process proceeds to step S402, and the variable i is set to 1. If it is equal to or greater than the added value (No at step S406), the process is terminated.

  Next, the question generation process shown in step S305 of FIG. 24 will be described. FIG. 26 is a flowchart showing a processing procedure of the question generation process shown in step S305 of FIG.

  As shown in the figure, 1 is stored in variables j and i (step S501), and (1, i) data is obtained from the password correct answer data table 130e (step S502). Specifically, when 1 is stored in the variable i, (1,1) data in the password correct answer data table 130e shown in FIG. 7, that is, the word data “person” is acquired.

  Then, (j + 1, 1) data is acquired from the fixed word data table 130f (step S503). Specifically, when 1 is stored in the variable j, (2, 1) data, that is, word data “last name” is acquired from the fixed word data table 130f shown in FIG.

  Subsequently, '(j + 1) data of <' (1, i) data <text data acquired from password correct answer data table 130e >> '<word data acquired from fixed text data table 130f>' is generated? (Step S504). Specifically, when 1 is stored in the variable j and 1 is stored in the variable i, the wording data “'(1,1) data' is '(2,1) data'?” Word data is generated.

  Then, the generated word data is stored in (j + 1, i) data of the password question data table. Specifically, when 1 is stored in the variable i and 1 is stored in the variable j, the wording data “What is your real name?” Is stored in the cell number (2, 1) of the password question data table 130g shown in FIG. Is stored.

  Subsequently, 1 is added to the variable i (step S506), it is determined whether or not the variable i is smaller than the value obtained by adding 1 to 3 (step S507), and the variable i is obtained from the value obtained by adding 1 to 3. Is smaller (step S507, Yes), the process proceeds to step S502.

  On the other hand, when the variable i is equal to or greater than the value obtained by adding 1 to 3 (step S507, No), it is determined whether the variable j is smaller than 15 (step S508). When the variable j is smaller than 15 (step S508, Yes), 1 is added to the variable j, 1 is stored in the variable i (step S509), and the process proceeds to step S502. On the other hand, when the variable j is 15 or more (step S508, No), the process is terminated.

  As described above, the password authentication processing unit 170 generates question information that can be answered only by the service user, transmits the generated question information to the branch terminal device 200, and answer information corresponding to the question from the mobile terminal device 300. Is acquired and authentication for the service user is performed, so that no history of information related to the authentication of the service user remains in the sales outlet device 200, and security for the service user can be ensured.

  By the way, in the question correct answer data table creation process shown in FIG. 24, when the password question data table 130g is created, as an example, it is divided into a relationship question process (step S304) and a question generation process (step S305). It was. This is because the last name and the first name are stored in separate cells in the password correct answer data table 130e shown in FIG.

  Accordingly, in the password correct answer data table 130e, the first name and the last name are stored in the same cell (for example, the first name and the last name are stored together as the first name and the last name without being divided into the first name “Fuji” and the first name “Taro”). Thus, the password question data table 130g can be created without being divided into the interrogation question process and the question generation process.

  As described above, the personal authentication device 100 according to the present embodiment uses an IC card to authenticate a service user when the authentication method switching processing unit 160 receives an authentication method change request from the customer telephone 400. The authentication is changed to the authentication that does not use the IC card.

  When performing authentication without using an IC card, the password authentication processing unit 170 performs a password correct answer data table 130e, a fixed message data table 130f, a password question data table 130g, a password question order table 130h, and a question correct answer data table i. The question information is generated based on the information, the generated question information is transmitted to the sales office terminal device 200, and the answer information is acquired from the mobile terminal device 300, registered as the input answer data table 130j, and the input answer data By comparing the table 130j and the question correct answer data table 130i, it is determined whether or not the user is a legitimate user. Therefore, even when the IC card is not used, the service user is secured while ensuring the security of the service user. Can be authenticated.

  In addition, the password authentication processing unit 170 transmits different types of question information to the branch terminal device 200 every time authentication is performed, and the answer order of answer screens for answering the questions is displayed on the branch terminal device 200. The information is generated differently from the question order and transmitted to the mobile terminal device 300, so that even if a third party is peeped from behind, information related to authentication can be prevented from being easily stolen. it can.

(Appendix 1) A personal authentication method for authenticating that a service user is a valid user,
A storage step of associating identification information for identifying a user, a question for the user, an answer to the question, and contact information of an answer terminal for answering the question in a storage device;
When the identification information is received, the question information that is a question corresponding to the identification information is transmitted to the question terminal that displays the question information, and answer screen information for answering the question is sent to the answer terminal. A transmission process to transmit;
A determination step of determining whether or not the user is a legitimate user based on answer information that is an answer to the question received from the answer terminal;
The personal authentication method characterized by including.

(Additional remark 2) While acquiring the said user's personal information, it further includes the question production | generation process which produces | generates the question with respect to the said user based on this acquired personal information, The said memory | storage process is produced | generated in the said question production | generation process The personal authentication method according to appendix 1, wherein a question about the user who has been asked is stored in the storage device.

(Additional remark 3) The said transmission process changes the order of the some question memorize | stored in the said memory | storage device, and while sending the question information in which the order of this question was changed to the said question terminal, the question information of this question information The personal authentication method according to appendix 1 or 2, wherein reply screen information having an answer order different from the order is transmitted to the answer terminal.

(Supplementary Note 4) The transmitting step randomly selects a predetermined number of questions from a plurality of questions stored in the storage device, and transmits the selected questions to the question terminal as question information. The personal authentication method according to Appendix 1, 2, or 3.

(Supplementary Note 5) An authentication method information storage step for storing authentication method information, which is information on whether or not to perform user authentication based on the question information and answer information, in the storage device, and when the identification information is received And an authentication determination step for determining whether or not to perform user authentication based on the question information and the answer information based on the authentication method information, wherein the transmission step includes the question determination in the authentication determination step. Appendices 1-4, wherein when it is determined to perform user authentication based on information and answer information, the question information is transmitted to the question terminal, and the answer screen information is transmitted to the answer terminal. The personal authentication method as described in any one of.

(Supplementary Note 6) A change authentication information storing step for storing change authentication information for allowing a change in the authentication method information in the storage device, a change request for the authentication method information, and the change authentication information are received and received. The personal authentication method according to appendix 5, further comprising a changing step of changing the authentication method information when the change authentication information is the same as the change authentication information stored in the storage device.

  As described above, the personal authentication method according to the present invention is useful for a service user authentication system that needs to authenticate a service user without using an IC card.

It is a block diagram which shows the system configuration | structure of the personal authentication system which concerns on a present Example. It is a functional block diagram which shows the structure of the personal authentication apparatus shown in FIG. It is a figure (1) which shows an example of the application form mailed from a service provider. It is FIG. (2) which shows an example of the application form mailed from a service provider. It is a figure which shows an example of a temporary registration information table. It is a figure which shows an example of this registration information table. It is a figure which shows an example of a password correct answer data table. It is a figure which shows an example of a fixed word data table. It is a figure which shows an example of a password question data table. It is a figure which shows an example of a password question order data table. It is a figure which shows an example of a question correct answer data table. It is a figure which shows an example of an input reply data table. It is a flowchart which shows the process sequence of an authentication system switching process part. It is a flowchart (1) which shows the process sequence of a password authentication process part. It is a flowchart (2) which shows the process sequence of a password authentication process part. It is a figure which shows an example of the screen which a portable terminal device displays on a display, when a portable terminal device receives identity verification request | requirement mail data. It is a figure which shows an example of the start screen which a portable terminal device displays on a display. It is a figure which shows an example of the reply screen which a portable terminal device displays on a display. It is a figure which shows an example of the question screen which a shop terminal device displays on a display. It is a figure which shows an example of the question screen of the state in which all the questions were displayed. It is a figure which shows an example when the answer with respect to each question displayed on the question screen is all input by the service user. It is a figure which shows an example of the question end screen which a shop terminal device displays on a display. It is a figure which shows an example of the result screen which a sales terminal device displays on a display. It is a flowchart which shows the process sequence of the question correct answer data table preparation process shown to step S214 of FIG. It is a flowchart which shows the process sequence of the interrogative question generation process shown by step S304 of FIG. It is a flowchart which shows the process sequence of the question production | generation process shown by step S305 of FIG.

Explanation of symbols

50 Dedicated Network 60 Internet 70 Public Network 100 Personal Authentication Device 110 Input Accepting Unit 120 Temporary Registration Information Registration Unit 130 Storage Unit 130a Temporary Registration Information Table 130b Main Registration Information Table 130c Face Photo Information 130d Deposit Account Number Information 130e Password Correct Data Table 130f Fixed word data table 130g Password question data table 130h Password question order table 130i Question correct data table 130j Input answer data table 140 Communication unit 150 Host new registration processing unit 160 Authentication method switching processing unit 170 Password authentication processing unit 200 Branch terminal device 300 Mobile terminal device 400 Customer telephone

Claims (3)

A personal authentication method for authenticating that a service user is a valid user,
A storage step of associating identification information for identifying a user, a question for the user, an answer to the question, and contact information of an answer terminal for answering the question in a storage device;
When the identification information is received, the question information that is a question corresponding to the identification information is transmitted to the question terminal that displays the question information, and answer screen information for answering the question is sent to the answer terminal. A transmission process to transmit;
A determination step of determining whether or not the user is a legitimate user based on answer information that is an answer to the question received from the answer terminal;
The personal authentication method characterized by including.   The transmission step changes the order of a plurality of questions stored in the storage device, transmits the question information in which the order of the questions is changed to the question terminal, and is different from the order of the questions in the question information. The personal authentication method according to claim 1, wherein reply screen information that is a reply order is transmitted to the reply terminal.   An authentication method information storage step for storing authentication method information, which is information on whether or not to perform user authentication based on the question information and answer information, in the storage device; and when the identification information is received, the authentication method An authentication determination step for determining whether or not to perform user authentication based on the question information and the response information based on information, and the transmission step includes the question information and the response information in the authentication determination step. 3. The method according to claim 1, wherein, when it is determined to perform user authentication based on, the question information is transmitted to the question terminal, and the answer screen information is transmitted to the answer terminal. Personal authentication method.

Images