JP2006268069A - Personal identification method - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To enable a registrant to remotely determine whether to permit the use of any person other than the registrant in personal identification using biometrics. <P>SOLUTION: This personal identification method comprises: a step for inputting and authenticating biometrics information for personal identification; a step for inputting a face image when biometrics identification fails; a step for transmitting a face image through a network to a preliminarily registered user terminal, a step for inputting whether to permit the transaction of the person of the transmitted face image; a step for inputting and authenticating information for confirming whether or not the permitted person is the preliminarily registered person; and a step for providing a predetermined service when the transaction is permitted, and it is confirmed that the permitted person is the registered person. <P>COPYRIGHT: (C)2007,JPO&INPIT

Description

  The present invention relates to personal authentication using biometrics. In particular, the present invention relates to a technology that enables a person who receives a request from a registrant to use a service on behalf of a registrant for a service that requires personal authentication.

  Conventionally, at a financial terminal such as an ATM or a kiosk terminal used for issuing a certificate in a local government, personal authentication is performed by using both a magnetic card or an IC card and a personal identification number. However, crimes due to card theft and counterfeiting are frequent, and strengthening of personal authentication is required. In such a social situation, biometric authentication for identifying an individual based on a characteristic (biological information) unique to the individual is attracting attention. Authentication targets include hand and finger vein patterns, fingerprints, irises and faces. As an example of biometric authentication, Patent Document 1 using a finger vein pattern is shown.

  In biometrics authentication, authentication may fail due to an individual's physical condition, aging, and information collection conditions. As a known example for avoiding this problem, there is Patent Document 2. In Patent Document 2, biometric information recorded on a medium such as a card is compared with biometric information collected from a user terminal, and if it cannot be determined that the person is the same person, the examiner terminal is communicated via a communication line. Send user and media biometric information. In the examiner terminal, the examiner visually collates both pieces of information, and transmits the collation result to the user terminal through the communication line.

In personal authentication (face image authentication) using a face image, an image suitable for authentication may not be obtained depending on the positional relationship between the camera for inputting the face image and the user. As a known example for solving this problem, there is Patent Document 3. In Patent Document 3, a face area is detected from an input image, and it is determined whether it is suitable for authentication from its size and position.
Face image authentication can also be expected to be effective in suppressing crime. There is Patent Document 4 as a known example from this viewpoint. In Patent Document 4, when a theft card is used, a face image is acquired and transmitted to a remote monitoring center.

JP 2002-83298 A

JP 2002-251380 A JP 2003-242490 A JP 2002-207999 A JP-A-8-272773

  In personal authentication by biometrics, there is a problem that a person other than the registrant cannot use the service. For example, it cannot be used when a registrant's family wants to withdraw money at an ATM, or when they ask an acquaintance to withdraw money in an emergency. Since the personal identification number can be changed at any time, it is partly done by telling a reliable person to withdraw money. Although it is possible to register biometric information of all the people who can use one card, it is inconvenient for the user, such as everyone must go to the window when opening an account. Also, when registering at a later date, there is an inconvenience such as having to go to the window with the original registrant.

  In the personal authentication by biometrics, it is difficult to determine whether the user is the same person as the registrant or a different person when the authentication fails. On the other hand, in the method of Patent Document 2, whether or not the user is a registered person is solved by the examiner on the side providing the service. However, in this method, a person other than the registrant cannot use the service.

  Further, in Patent Document 2, personal authentication is performed by transmitting a user's face image or the like to a examiner terminal through a communication line. It is not clear to the user how this facial image information is used after the examination. From the viewpoint of privacy protection, this face image needs to be used only for personal authentication, and should be stored without permission or reused for other purposes.

  In addition, when a face image is transmitted to the examiner terminal, there is a problem that the image satisfies an image quality enough to be examined. For this problem, Patent Document 3 proposes a solution for the problem caused by the positional relationship. However, there is no mention of a problem caused by an illumination condition in which the face area becomes dark due to the face direction or backlight.

A first information processing method for solving such a problem is an information processing method for executing processing based on a processing request input from a user, and includes a camera, a biometric authentication unit, and a control unit. If the biometrics authentication unit can authenticate, the service is provided from the terminal.If the authentication cannot be performed, the face image of the user who is processing the transaction is collected from the camera.
In the control unit, a process for determining the presence or absence of a face image in the collected image, a process for transmitting the collected face image to a pre-registered terminal via a network, and a transmitted face image Based on the above, it is possible to receive a determination as to whether or not to permit the provision of a service, and to provide a service if permitted.

  Furthermore, a second information processing method for solving such a problem is an information processing method for executing processing based on a processing request input from a user, and is for card input and authentication for personal authentication. A step of inputting and authenticating a personal identification number, a step of inputting and authenticating biometric information, and a step of inputting and authenticating service contents, and when biometric authentication fails , A step of inputting a face image, a step of transmitting the face image and service contents to a user terminal registered in advance via a network, and inputting whether or not a transaction of a person of the transmitted face image is permitted A step, a step of entering and authenticating information for confirming whether the permitted person is a registered person, a registered person If it is confirmed as being characterized by a step of providing a predetermined service.

  Furthermore, a third information processing method for solving such a problem is that, in the first or second information processing method, when biometric information authentication fails, the user's biometric information and face image are obtained. Is stored in a database.

  Further, a fourth information processing method for solving such a problem is that biometrics of a user who is not permitted to use the service as a result of transmitting a face image in the first or second information processing method. Information and facial images are stored in a database.

  Further, a fifth information processing method for solving such a problem is that, in the first or second information processing method, when biometric information authentication fails, the biometric information is additionally registered. It is possible to provide services after the next time.

According to the present invention, it is possible to use a person other than the registrant approved by the registrant.
More specifically, the first effect of the present invention is that, when a person other than the registrant uses, the user's face image is collected and transmitted to the registrant to operate the registrant. It is possible to use a person other than the registrant by determining whether or not the use of the person is permitted.

The second effect of the present invention is that, when a person other than the registrant uses it or when biometrics authentication fails, the user's face image is collected, thereby becoming a crime deterrent. is there.
Furthermore, collecting and recording a user's face image has a problem from the viewpoint of privacy protection, but the third effect of the present invention is to set a retention period for the collected face image according to the authentication level, and By making subsequent reuse impossible, it has the effect of privacy protection.

  The following provide some specific details for an overall description of the invention. However, it will be apparent to those skilled in the art that the present invention may be practiced without these specific details. The descriptions and drawings in this specification are typical means used by those skilled in the art to disclose the subject matter to others skilled in the art. In addition, when there is a description of “one embodiment” in the present specification, it does not necessarily apply only to the same embodiment, and individual embodiments are not limited to each other. Furthermore, the processing order of the processing according to the embodiment of the present invention is illustrative and not limited.

Before describing a specific embodiment, FIG. 2 shows the system configuration of the present invention, and FIGS. 3 and 4 show the configuration of the service terminal.
FIG. 2 is a diagram of an embodiment for explaining the basic system configuration of the present invention. There are a service terminal 200 that provides a service, a host computer 201 that performs personal authentication and deposit / withdrawal processing, and a database 202, which are connected by a dedicated communication line. Reference numerals 200 to 202 denote facilities on the service providing side. Further, the terminal 203 owned by the service user and the host computer 201 are connected by a public communication line. The user terminal 203 is a terminal possessed by a service user and has a communication function. Examples include mobile phones and personal computers. In the following, the case where the service terminal 200 is an automatic transaction apparatus (ATM) will be described. However, the present invention is not limited to this, and an apparatus that can be connected to a communication circuit and performs personal authentication based on biometric information. And general services using such a device. This is because it is an object of the present invention to provide a mechanism capable of permitting another person approved by the registrant who has registered biometric information to perform a process that requires biometric authentication.

  The flow of information in FIG. 2 will be described by taking the case where the service terminal 200 is an ATM as an example. The service terminal transmits information such as personal information read from the cash card and a withdrawal amount to the host computer 201. The database 203 stores personal information such as card ID information and biometric information, and deposit / withdrawal information. The host computer 202 implements processing such as personal authentication and deposit / withdrawal by inquiring information received from the service terminal 200 and information stored in the database 202. A processing result in the host computer 201 is transmitted to the service terminal 200. Based on the transmitted result, the service terminal 200 provides a service to the user. In addition to this, when special personal authentication or the like is required, bidirectional communication of information is performed between the host computer 201 and the user terminal 203.

  FIG. 3 is a diagram of an embodiment for explaining the basic system configuration of the present invention. In FIG. 3, there is a server 300 between the host computer 201 and the user terminal 203 for external communication. This is because the host computer 201 is not directly used for communication with the outside in order to ensure security.

  FIG. 4 is a diagram for explaining the configuration of the service terminal 200. The control unit 400 controls the display unit 401, the operation unit 402, the card reader unit 403, the personal authentication information input unit 404, the imaging unit 405, the storage unit 406, and the communication unit 407.

  The display unit 401 displays service content guidance, processing procedures, and the like, and examples thereof include a CRT and a liquid crystal display. The operation unit 402 inputs information from the user, and examples thereof include a keyboard and a touch panel. The card reader unit 403 is for reading personal information stored in a magnetic card or an IC card. The personal authentication information input unit 404 is for inputting information used for personal authentication. Personal authentication information includes personal identification number information and biometric information. Biometric information includes fingerprints, finger vein patterns, palm vein patterns, facial features, irises, etc., and the form of the input device varies depending on the information used. The photographing unit 405 indicates a camera whose main purpose is to capture a face image. The storage unit 406 stores information for processing at the service terminal, and examples thereof include a hard disk and a memory. A program executed by the control unit 400 for controlling each unit is also stored in the storage unit 406. The communication unit 407 performs communication of information between the service terminal 200 and the host computer 201 through a line.

  FIG. 5 is a diagram illustrating a configuration when the service terminal 200 is an ATM. The control unit 500 includes a display unit 401, an operation unit 402, a card reader unit 403, a personal authentication information input unit 404, a photographing unit 405, a storage unit 406, a communication unit 407, a currency processing unit 501, a printer unit 502, and a speaker unit 503. Control. Assume that the ATM of the configuration of FIG.

  The currency processing unit 501 performs processing such as deposit and withdrawal of banknotes and coins, and includes a mechanism such as a deposit and withdrawal tray. The printer unit 502 prints a passbook and processing contents, and a passbook printer is an example. The speaker unit 503 is used to convey operation guidance and the like to the user by voice. The ATM of this configuration is 510. Although ATM has other components than the above, description thereof is omitted because it is not directly related to the present invention.

  FIG. 6 is a diagram for explaining a normal withdrawal process sequence using biometric authentication in the ATM 510 of FIG. First, the user 600 who has registered biometric information inserts a cash card (601). In the ATM 510, card information is input, and personal information is transmitted to the host computer 201 to request authentication of the card information (602). If the card is authenticated (603), the user 600 inputs a personal identification number (604). When a password authentication request (605) and authentication (606) are made, biometric information is input (607). When the biometric information authentication request (608) and authentication (609) are made, the user 600 inputs a withdrawal amount. An inquiry is made as to whether or not the input amount can be withdrawn (611). If withdrawal is possible (612), the ATM 510 performs a withdrawal process, and the series of processes ends.

  At this time, if authentication results such as card authentication 603, personal identification number 606, biometrics information 609, and withdrawal amount 612 fail, the same flow is repeated or the transaction is stopped halfway. Also, the PIN code input / authentication process from 604 to 606 and the biometric information input / authentication process from 607 to 609 may be reversed in order. Further, the processing from 607 to 609 may be omitted.

As a first embodiment of the present invention, an example of a flow using identification information using biometric information and a face image when receiving a service at a service terminal will be described with reference to FIG.
First, in step 100, identity verification using biometric information such as finger vein authentication is performed. The biometric information is input from the personal authentication information input unit 404, and the control unit 400 performs a verification procedure with biometric information registered in advance as that of the registrant. The biometric information may be stored in a database 202 that can be connected via the communication unit 407 or a card accessed from the card reader unit. In step 101, the service terminal 200 or the host computer 201 determines the biometric authentication result, and if the identity is recognized, the service is provided by using the functions of the display unit, operation unit, currency processing unit, etc. of the service terminal 200. (108).

  When a person other than the registrant uses ATM, for example, if the person cannot be authenticated in step 102, an instruction is given to face the camera by display on the display unit 401 or voice output from the speaker unit 503. Then, the user's face image is collected by the camera 405 (103). In step 104, it is determined whether or not the face image collected by the control unit 400 is photographed correctly (104). If the image is correct, the face image is transmitted from the communication unit 407 to the user terminal 203 of the original registrant (106), and it is determined whether or not the unregistered user can receive the service. When the control unit 400 receives an instruction from the user terminal 203 that can be used by the registrant (107), the control unit 400 provides the service (108). If an unavailable instruction is received (107), the transaction is terminated and terminated.

  In the flow of FIG. 1, the face image determination 104 and the determination 105 may be omitted. The face image determination 104 will be described later in a sixth embodiment. In face image transmission 106, the image to be transmitted does not have to be a single still image, and may be a plurality of still images or moving images.

  Further, in the flow of FIG. 1, when the user face image is collected (103), the display unit 401 displays the collected image or moving image in order to present to the user whether or not the face image is correctly taken. You may display. When a plurality of images are collected, the user can select an image to be transmitted.

  As a second embodiment of the present invention, an example in which a person other than the registrant obtains the authentication of the registrant and makes a withdrawal in the flow of FIG. 1 will be described with reference to FIGS.

FIG. 7 is a detailed sequence diagram of the flow of FIG. 1 which is an embodiment of the present invention. In FIG. 7, the process from card insertion 601 to biometrics information authentication 608 is the same as in FIG.
In FIG. 7, since the person 701 other than the registrant intends to use it, the biometric information authentication fails (702). Next, after inputting and authenticating the withdrawal amount from 610 to 612, the user 701 is requested to input a face image (703). A face image is input using the photographing unit 405 of FIG. 5 (704), and the input face image is transmitted to the host computer 201 (705). The face image input process 704 may include steps 102 to 105 as well as step 103 in FIG.

  Next, a request for approval of the user 701 and a request for approval of the withdrawal amount are transmitted from the host computer 201 to the user terminal 203 possessed by the registrant (706). The user who has received the approval request first transmits the face image of the user 701 to the user terminal 203 (707). When it is input that the registrant 600 approves the face image of the user 701 (708), the fact that the face image has been authenticated is transmitted (709). As an example of the face image transmission, the user terminal is a mobile phone, and a mail with a face image is transmitted to the mobile phone, or an e-mail describing a URL where the face image can be viewed is transmitted.

  Next, in order to determine whether or not the user of the user terminal 203 is the registrant himself, a registrant identity confirmation request is made (710). The registrant inputs identification information on the user terminal 203 (711), and transmits the identification information to the host computer 201 (712). Examples of registrant identity verification include a personal identification number and a transaction number that changes for each transaction used in online banking.

When it is confirmed that the registrant 600 is the principal, the host computer 201 transmits that the withdrawal amount is authenticated to the ATM 510 (612), and the withdrawal is made to the user 701 (613).
In the processing from 704 to 712, if the face image transmitted in 708 is not approved or if the identity of the registrant cannot be confirmed in 712, the fact is presented to the user 701. As a result, the user can restart the process from the beginning or the middle of the process from 601 again. In addition, the host computer 201 can stop the transaction. The case where the face image of the user 701 is not approved will be described later with reference to FIG.

  Furthermore, another sequence may be added in the sequence from face image transmission 707 to face image transmission OK 709 for identity verification. As an example, it is possible to actually connect an ATM and a user terminal via a telephone line and confirm the identity by a videophone. As another embodiment, it is possible to authenticate the user 701 by confirming that the user 701 inputs a password, a personal identification number, or the like previously determined between the user 701 and the registrant 600.

  In the sequence of FIG. 7, the processing between the host computer 201 and the user terminal 203 may be performed via the external communication server 300 as shown in FIG. Further, after the password authentication 606, it may be possible to select to skip the flow from the biometric information input 607 to the notification 702 of the biometric information approval result. For a user who originally knows that the biometric information cannot be authenticated, it is not necessary to input the biometric information unnecessarily, and the processing can be simplified. However, for highly secure accounts and transaction details that require authentication based on biometric information, for users who skip the processing from 607 to 702, the processing after the face image input request 703 is always performed. .

  FIG. 8 is an example of an interface in the user terminal 203 of FIG. A screen 800 is a display example of a transmission message 706 in FIG. The registrant 600 can select the face image display and proceed to the next process, and can reject the approval at this point. A screen 801 is a display example of the transmitted face image. This face image may be a single image, multiple images, or a video. If this image is approved, the process proceeds to the next process. If you do not approve, the process ends. If the image cannot be confirmed because it is unclear, there is an option such as requesting another image to be transmitted. A screen 802 is a screen for determining whether or not the user of the user terminal 203 is the original registrant 600. In this example, identity verification is performed by entering a password. A screen 803 is a screen that displays the completion of withdrawal. Such information may be transmitted directly by e-mail or a URL for accessing these information may be transmitted by e-mail.

  As a third embodiment of the present invention, in the flow of FIG. 1, when a person other than the registrant uses, or when the registrant does not approve the transmitted face image, the registrant's face image and biometric information An example of storing the user information such as will be described with reference to FIG. The purpose of this embodiment is to keep a record of unauthorized users.

  9, step 100 to step 108 are the same as the processing of FIG. As in FIG. 1, the face image determination 104 and the determination 105 may be omitted. Further, although there are two steps 900 and 901 for storing user information, either one or both may be used.

  Step 900 stores user information of a person who is determined not to be a registrant by biometric authentication. The user information recorded in step 900 is as follows. There are ID information such as a registrant's card number, user biometrics information, user face image, service contents such as deposit and withdrawal. In addition, transaction information such as transaction date and time and location may be recorded.

  Step 901 stores user information of a person whose service has not been approved by the registrant. In addition to the information recorded in 900, the information recorded in step 901 includes information indicating that it has not been approved by the registrant.

From the point of view of crime prevention, it is possible to contact a staff member or security guard at the point of time when the user information is stored. The above user information can be stored for a limited period of time for privacy protection.
According to the present embodiment, information other than the registrant can be stored, which is effective in investigating criminals and deterring crimes.

  As a fourth embodiment of the present invention, in the flow of FIG. 1, when a person other than the registrant uses, user information such as a user's face image and biometric information is additionally registered, and so on next time. An example flow for enabling the user to use will be described with reference to FIG. The purpose of this embodiment is for additional registration of family members.

  In FIG. 10, step 1000 is for additionally registering a person who has been approved by the registrant although biometric authentication has failed. The authorized person is registered as a secondary registrant who is permitted to use the account or card. By this additional registration, a person registered as a secondary registrant can subsequently make a transaction using biometric information. In the step of biometric authentication 100-1, authentication is performed using biometric information of the registrant and secondary registrant.

  Information to be additionally registered includes ID information and biometric information. In addition to this, an expiration date during which the person can use the service, restriction of the contents of the service, and the like may be performed. For example, when a third party is temporarily requested to withdraw money, it may be possible to set a deadline for withdrawal. In addition, in consideration of security, it is possible to limit the service contents that can be used, such as setting an upper limit on the amount of money for each additional registrant. In addition, it is conceivable that the transaction content is transmitted to the registrant each time without transmitting the face image.

  FIG. 11 shows an example of an interface in the user terminal 203 at the time of additional registration. A screen 1100 is a display example of a registration request message. The registrant 600 can select the face image display and proceed to the next processing, and can also refuse registration at this point. A screen 1101 is a display example of the transmitted face image. This face image may be a single image, multiple images, or a video. If registration is approved from this image, the process proceeds to the next process. If you do not approve, the process ends. If the image cannot be confirmed because it is unclear, there is an option such as requesting another image to be transmitted. A screen 1102 is a screen for determining whether or not the user of the user terminal 203 is the original registrant 600. In this example, identity verification is performed by entering a password. A screen 1103 is a screen for displaying completion of additional registration.

  According to the present embodiment, it is possible to continuously use a person other than the original registrant. At this time, it is not necessary to go to the window together with the original registrant, and the convenience for the user is improved. Furthermore, a safe transaction becomes possible by adding restrictions on the time limit and service content for each additional registrant.

  As a fifth embodiment of the present invention, another embodiment in which a person other than the registrant obtains the registrant's authentication and withdraws money in the flow of FIG. 1 will be described with reference to FIG. The purpose of the present embodiment is to efficiently use ATMs and to shorten the restraint time before the user's ATM. Specifically, the processing is temporarily interrupted so as not to occupy the ATM at the time when the registrant is requested for authentication, and after the approval is completed, the withdrawal processing is performed again at the ATM.

  In FIG. 12, processes other than 1200 to 1205 are the same as those in FIG. After the face image transmission 705, a numbered ticket is issued from the ATM (1200), and the transaction is temporarily suspended. This ATM can be used by other users. After the personal identification information is transmitted to the host (712), a user confirmation is transmitted to the ATM (1201), and the ATM makes a notification for calling a user waiting for approval based on the numbered ticket information (1202). The user inputs identification information (1203), and issues an identification confirmation request to the host (1204). When the user is confirmed (1205), a withdrawal process is performed (613).

  Here, the identification information input can be realized by one or a combination of a numbered ticket input, a card input, and a password input. Furthermore, if there is no information input from the registrant 600 after a certain time, the user 701 can be informed that the transaction cannot be made.

  As a sixth embodiment of the present invention, an embodiment of face image determination will be described in the flow of FIG. The face image determination processing performs disguise determination such as presence / absence of a face in the input image, front face determination, determination of lighting conditions, etc., presence / absence of a mask.

  First, face detection processing can be used to determine the presence or absence of a face in an image. If a face area is detected from the image by the face detection process, it is determined that a face exists. At this time, if a threshold is provided for the size of the detected face and only a face larger than the threshold is allowed, a person standing in front of the ATM can be detected. As an example of face detection processing, there is a technique disclosed in Japanese Patent Laid-Open No. 8-272773 (Patent Document 5). This is to detect a face area by determining a skin color area from an image, and to detect a face area from image information of H (hue), S (saturation), and V (lightness) of the image. is there. In order to use input from a normal camera, the RGB signal may be converted into an HSV signal.

  In general, the face detection process targets only a front face, and does not support an oblique face or a side face. Therefore, almost all detected faces can be regarded as front faces, and thus front face determination can also be realized by face detection processing.

  Furthermore, it is possible to determine whether or not the person is facing the front by examining the positions of facial organs such as eyes, nose and mouth in the face area in detail. In addition, when the face area is not detected even though the face area is detected, it is assumed that the face organ cannot be detected due to disguise such as a mask or sunglasses or illumination conditions. Therefore, it is possible to perform frontal determination and disguise determination by face organ detection processing.

  The face organ detection process 1200 is to detect the positions of facial organs such as eyes, nose and mouth from the image of the face area. The organs to be detected are not limited to the above, but may be arbitrarily determined such as the eyes, corners of the eyes, eyebrows, nose, mouth, and contour. These facial organs serve as reference positions for obtaining facial feature quantities for face identification. As an example of facial organ detection, a process for obtaining an area having a dark center and a bright periphery from a grayscale image can be used. This is because the brightness of pixels such as eyes, nostrils, and mouth is lower than the brightness of surrounding pixels. As a specific example of this processing, it can be obtained by a filter operation that compares the average or variance of pixels in the area within the radius R1 from the pixel of interest with the average or variance of pixels in the area from the radius R1 to R2. . As an example of the radii R1 and R2, the radius R1 can be set to an average pupil radius, and R2 can be set to about twice that radius. By determining in this way, it is possible to detect a black circle region of the size of the pupil. Similarly, by this filtering process, a plurality of regions having dark central portions and bright peripheral portions are detected as face organ candidates. At this time, some facial organ candidates are not actual facial organs, and it is not possible to determine which facial organ each facial organ candidate corresponds to. For this reason, priority is given to the facial organ candidates using a filter value or the like, and the facial organs are specified using the arrangement information between the facial organ candidates.

In addition, sunglasses and masks can be positively detected, such as sunglasses when a black region having an area equal to or larger than the threshold exists near the eyes in the face region, and a mask when there is a white region. When these disguises are detected, a message such as “Please remove sunglasses” or “Please remove mask” can be displayed on the ATM display.
Image quality determination based on illumination conditions such as backlight and oblique light can be determined from analysis of a histogram of pixels in an entire image or a face area.

As a seventh embodiment of the present invention, an example in which a person other than the registrant obtains the registrant's authentication and withdraws will be described with reference to FIG.
FIG. 13 is a sequence diagram showing an embodiment of the present invention. The difference between FIG. 7 and FIG. 13 is as follows. In FIG. 7, the user 701 asks the registrant to authenticate when using the ATM, whereas in the embodiment of FIG. 13, the registrant 600 registers in advance assuming the use of the user 701. That is. As a result, the user 701 can receive the service in a short time without waiting for authentication by the registrant 600.

  In FIG. 13, the processing with the same number as in FIG. 7 has the same contents as in FIG. First, assuming that the user 701 uses the registrant 600, the registrant 600 makes a non-registrant use application at the user terminal 203 (1300). When the information is transmitted from the user terminal 203 to the host computer 201, the identity of the registrant is confirmed in a sequence from 710 to 712. Next, the user 701 requests input of confirmation information when using the service using the card of the registrant 600 (1302). The registrant 601 inputs user confirmation information (1303) and transmits the information to the host computer (1304). Here, examples of the user confirmation information include a password and a personal identification number temporarily determined between the user 701 and the registrant 600. In addition, there is information on transaction contents such as the time limit and number of times of temporary use and the amount of withdrawal.

  Next, the user 701 performs a sequence from card insertion 601 to face image input 704 by ATM. After the face image and transaction contents are stored in the host computer (1305), the user 701 inputs user confirmation information (1306). User confirmation information is transmitted from the ATM 510 to the host computer 201 (1307), and if the user is confirmed (1308), the face image and transaction contents are transmitted to the user terminal 203 (1309), and the withdrawal is authenticated. (612), withdrawn (613). The registrant 600 checks the user terminal 203 at any time for information on the face image and transaction content transmitted to the user terminal 203.

  Note that the sequence from user information input (1306) to confirmation (1308) may be performed in a previous stage. A part of the sequence from the card insertion 601 to the face image input 704 may be omitted. Further, the transmission of the face image / transaction content (1309) may be transmitted even when the user 701 is not authenticated. Similarly to the second embodiment, when it is known that the biometric information does not succeed in the authentication, the procedure from 607 to 702 is skipped to the authentication of the user confirmation information from the face image input 704 to the result notification. It may be possible to select a processing flow for performing the procedure.

It is a flowchart of the biometrics authentication showing a 1st Example. It is a system configuration diagram of the present invention. It is a system configuration diagram of the present invention. It is a block diagram of the service terminal of this invention. It is a block diagram of ATM of this invention. It is a flowchart by the conventional biometrics authentication. It is a sequence diagram of the biometrics authentication using the face image showing a 2nd Example. It is a figure showing GUI of the user terminal in a 2nd Example. It is a flowchart of the information recording in biometrics authentication showing a 3rd Example. It is a flowchart which registers persons other than the registrant in biometrics authentication showing a 4th Example. It is a figure showing GUI of the user terminal in a 4th Example. It is a sequence diagram of the biometrics authentication using the face image showing a 5th Example. It is a sequence diagram of the biometrics authentication using the face image showing a 6th Example.

Explanation of symbols

  200: Service terminal 201: Host computer 202: Database 203: User terminal 400: Control unit 401: Display unit 402: Operation unit 403: Card reader unit 404: Personal authentication information input unit 405 : Photographing unit, 406: storage unit, 407: communication unit.

Claims (10)

In an information processing method for executing processing based on a processing request input from a user, the service providing apparatus having a biometric information input unit, a camera, a communication unit, and a control unit,
The control unit performs biometric authentication based on biometric information input from the biometric information input unit and biometric authentication of a registrant registered in advance, and
If the authentication is successful, a second step of providing a service from the service providing device;
If authentication fails,
A third step of transmitting a user's face image collected from the camera from the communication unit to a previously registered terminal via a network;
A fourth step of receiving, from the terminal, an input indicating whether or not to permit service provision in the communication unit;
In the case of an input indicating permission, the information processing method includes a fifth step of providing a service from the service providing apparatus. An information processing method for executing processing based on a processing request input from a user,
A first step of receiving and authenticating an input of a card for personal authentication from a card receiving unit of the service providing device;
A second step of receiving and authenticating an input of a personal identification number from the input unit;
A third step of accepting input of biometric information from a biometric information input unit and performing authentication based on pre-registered biometric information of a registrant identified by the card;
A fourth step of receiving an input of service content from the input unit,
If the biometric authentication fails,
A fifth step of transmitting the user's face image input from the camera and the input service content from the communication unit to a pre-registered terminal via the network;
In the terminal,
A sixth step of accepting an input as to whether or not to permit the transaction of the person of the transmitted face image;
A fifth step of inputting and authenticating information for confirming whether the permitted person is a registered person;
And a sixth step of providing a predetermined service in the service providing apparatus when the terminal confirms that the transaction is permitted and is a registered person. In the information processing method of Claim 1 or Claim 2,
An information processing method characterized by storing biometric information and a face image of a user in a database when biometric information authentication fails. In the information processing method of Claim 1 or Claim 2,
An information processing method comprising: storing in a database biometric information and a face image of a user who is not permitted to use a service as a result of transmitting a face image. In the information processing method of Claim 1 or Claim 2,
In the case where authentication of biometric information fails, it has a step of enabling provision of a service after the next time by additionally registering the input biometric information when the authentication fails. Information processing method.   6. The information processing method according to claim 5, wherein the additional registration is performed when there is an input permitting additional registration from the terminal. An information processing apparatus that determines whether or not a process can be executed based on biometric authentication,
An input unit for receiving an input of a processing request from a user;
A biometric information input unit for inputting biometric information;
A control unit that performs authentication using the input biometric information and pre-registered biometric information;
A processing unit that performs the requested processing when the authentication is successful;
Whether the user's face image input from the photographing unit is transmitted to a predetermined external device when the authentication fails, and the external device is permitted to perform the processing requested by the user A communication unit that receives information indicating whether or not,
The information processing apparatus, wherein the processing unit performs the requested processing when the information received by the communication unit indicates permission. The information processing apparatus according to claim 7,
The information processing apparatus, wherein the communication unit transmits information about the requested process to the external apparatus together with the face image. The information processing apparatus according to claim 7,
When the authentication of the biometric information fails, the control unit performs processing for storing the input biometric information in a database. The information processing apparatus according to claim 7,
The processing unit is a case where the authentication fails, and when the communication unit receives registration permission information permitting additional registration of biometric information from the terminal, the input biometric information is An information processing apparatus that performs processing for registration as biometric information used for authentication.

Images