JP2007086967A - Function controller, terminal equipment and control program for function controller - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a function controller and the like for preventing the illegal use of an automatic teller machine even when a password is leaked to a third person. <P>SOLUTION: A function controller 50 for an automatic teller machine 80A and the like is provided with a use condition information storage means for storing use condition information showing use conditions for enabling each user of the automatic teller machine 80A and the like to use the automatic teller machine 80A and the like; a use condition settable location information storing means for storing use condition settable location information showing a location where the setting of use conditions is permitted; a terminal location evaluating means for judging whether or not the current location of terminal equipment 20 which requests the setting of use conditions is a location shown by the use condition settable location information; and a use condition setting information transmitting means for transmitting setting information for making the terminal equipment 20 set the use conditions based on the decision result of the terminal location evaluating means. <P>COPYRIGHT: (C)2007,JPO&INPIT

Description

  The present invention relates to a function control device, a terminal device, and a control program for a function control device of an automatic teller machine.

In principle, an automatic teller machine (ATM) installed in a bank or the like is used by a legitimate owner of the cash card. The ATM is allowed to use it with a predetermined password.
However, in the case of theft or loss of a cash card, if a PIN is leaked to the outside, a third party other than a person who can use the bank card, such as the holder of the cash card, with respect to the bank account corresponding to the cash card. In some cases, ATM is used (hereinafter, use by a third party is referred to as unauthorized use).
On the other hand, a technique has been proposed in which the display position of the numeric keypad on the PIN code input screen of ATM is changed at random to prevent the secret code from leaking to a third party (for example, Patent Document 1). .
JP-A-9-54862 (FIG. 2 etc.)

  However, in the above-described conventional technology, there is a problem that unauthorized use cannot be prevented when a third party reads the cash card information itself including the password.

  Therefore, the present invention provides a function control device, a terminal device, and a function control device control program capable of preventing unauthorized use of an automatic teller machine even when the password is leaked to a third party. For the purpose.

  According to the first invention, the object is a function control device for an automatic teller machine, wherein each user of the automatic teller machine indicates a use condition for using the automatic teller machine. Request for use condition information storage means for storing information, use condition settable position information storage means for storing use condition settable position information indicating a position where setting of the use conditions is allowed, and setting of the use conditions Terminal position evaluation means for determining whether or not the current position of the terminal apparatus to be is a position indicated in the use condition settable position information, and based on the determination result of the terminal position evaluation means, the terminal apparatus This is achieved by a function control device comprising: usage condition setting information transmitting means for transmitting setting information for setting usage conditions.

According to the configuration of the first invention, since the function control device includes the use condition setting information transmission unit, the current position of the terminal device that requests the use condition setting by the terminal position evaluation unit is When it is determined that the position is indicated by the use condition settable position information, the setting information can be transmitted.
For this reason, the said user presets the said usage conditions including the place and time slot which use the said automatic teller machine by the said terminal device in the position shown by the said usage condition setting possible position information, for example. Can do.
This means that the setting information is not transmitted except for the current position of the terminal device indicated by the use condition setting position information.
That is, the use condition cannot be set unless the current position of the terminal device is the position indicated in the use condition settable position information.
For this reason, even if a third party steals a cash card and knows its personal identification number, as long as the usage conditions set by the legitimate user are not satisfied, the automatic teller machine is related to the user's account. Cannot be used.
Since the function control device stores the use condition information, the use condition cannot be known even if a third party steals a cash card.
Thereby, even if the password is leaked to a third party, unauthorized use of the automatic teller machine can be prevented.

  According to a second aspect of the present invention, in the configuration of the first aspect of the present invention, the position indicated in the use condition setting position information is within a predetermined range based on the home, work place or guardian address of each user. It is a function control apparatus characterized by being.

According to the configuration of the second invention, the position indicated in the use condition setting possible position information is a predetermined range based on the address of each user's home, work place, or guardian. The use condition setting information transmitting means of the function control device can transmit the setting information only when the terminal device is located in a place that is very closely related to each user.
This makes it extremely difficult for a third party other than the user to set the use conditions.

According to a third invention, in the configuration of the first invention or the second invention, the current position of the terminal device is a position indicated by positioning position information generated by the terminal device by positioning. It is a function control device.
According to the third aspect of the invention, since the current position of the terminal device is the position indicated by the positioning position information generated by the terminal device by positioning, the function control device reliably ensures the current position of the terminal device. Can know.

  According to a fourth aspect of the invention, in the configuration of the first aspect of the invention or the second aspect of the invention, the pseudorange for acquiring pseudorange information indicating a pseudorange that is a distance between the terminal device and the positioning satellite from the terminal device. A function control apparatus comprising: information acquisition means; and current position information generation means for generating current position information indicating a current position of the terminal device based on the pseudo distance information.

According to the structure of 4th invention, the said function control apparatus can acquire the said pseudo distance information from the said terminal device. Here, without actually measuring the distance to the positioning satellite, it is impossible to calculate the pseudo distance as a basis for calculating the position indicated by the use condition settable position information. is there.
This makes it extremely difficult for a third party other than each user to set the use conditions.

  5th invention WHEREIN: Generation | occurrence | production time information acquisition means which acquires the production | generation time information which shows the time when the said positioning position information or the said pseudo distance information was produced | generated in the structure in any one of 3rd invention or 4th invention. And the usage condition setting information transmitting means of the function control device further sets the usage condition when the difference between the time indicated by the generation time information and the current time is within a predetermined time range. This is a function control device characterized in that it is configured to transmit business information.

  According to the configuration of the fifth invention, the use condition setting information transmitting means of the function control device further has a difference between a time indicated by the generation time information and a current time within a predetermined time range. In this case, since the configuration for transmitting the use condition setting information is transmitted, it is confirmed that the positioning position information or the pseudo distance information is generated within a time close to the current time, and then the setting is performed. Information can be sent.

  6th invention is the structure in any one of 1st invention thru | or 5th invention. WHEREIN: The time zone which uses the said automatic teller machine, the position of the said automatic teller machine which can be used The function control device includes all or part of the usage contents including withdrawal, deposit, transfer, balance inquiry and PIN change, and the authentication method.

  According to the structure of 6th invention, since the said usage conditions include the time slot | zone etc. which use the said automatic teller machine, the unauthorized use by a third party can be prevented effectively.

  According to the seventh aspect of the present invention, when the current position of the terminal device that requests the setting of the usage condition of the automatic teller machine is a predetermined position specified in advance, the terminal apparatus sets the usage condition. A terminal device for setting the use condition by communicating with a function control device of the automatic teller machine that transmits setting information for setting, and is generated by positioning for the function control device This is achieved by a terminal device comprising terminal information transmitting means for transmitting positioning position information or pseudo distance information indicating a pseudo distance which is a distance between the terminal device and a positioning satellite.

According to the structure of 7th invention, the said terminal device is the pseudo position which shows the pseudo-range which is the positioning position information produced | generated by positioning with respect to the said function control apparatus, or the distance of the said terminal device and a positioning satellite. It is configured to transmit information.
For this reason, it is possible to prevent the function control device from transmitting the setting information when the terminal device is located at a position other than the specified position.
Thereby, even if the password is leaked to a third party, unauthorized use of the automatic teller machine can be prevented.

  According to an eighth aspect of the present invention, there is provided usage condition information storage means for storing usage condition information indicating usage conditions for each user of an automatic teller machine to use the automatic teller machine in a computer. A function control device for an automatic teller machine having usage condition settable position information storage means for storing use condition settable position information indicating a position where the use condition is allowed to be set. The terminal position evaluation step for determining whether or not the current position of the terminal device requesting the position is a position indicated by the use condition settable position information, and the function control device includes a determination result in the terminal position evaluation step And a usage condition setting information transmitting step in which the terminal device transmits setting information for setting the usage conditions, based on the function control. It is achieved by location of the control program.

  According to the configuration of the eighth invention, similarly to the configuration of the first invention, even if the password is leaked to a third party, unauthorized use of the automatic teller machine can be prevented.

Preferred embodiments of the present invention will be described below in detail with reference to the accompanying drawings.
The embodiments described below are preferred specific examples of the present invention, and thus various technically preferable limitations are given. However, the scope of the present invention is particularly limited in the following description. Unless otherwise stated, the present invention is not limited to these embodiments.

FIG. 1 is a schematic diagram illustrating an unauthorized use prevention system 10 according to an embodiment of the present invention.
As illustrated in FIG. 1, the unauthorized use prevention system 10 includes a terminal 20. This terminal 20 is the property of the former (not shown).
The terminal 20 includes a terminal communication device 32 and can communicate with the management server 50 via the communication base station 40 and the Internet network 45.
The terminal 20 includes a terminal GPS (Global Positioning System) device 34, and can receive signals S1, S2, S3, and S4 that are signals from the GPS satellites 12a, 12b, 12c, and 12d, for example.
The terminal 20 is, for example, a mobile phone, but may be another portable device such as a PHS (Personal Handy-phone System) or a PDA (Personal Digital Assistance ₎ . Moreover, the personal computer etc. which are arrange | positioned at a fixed place may be sufficient.

As shown in FIG. 1, the management server 50 can communicate with ATMs 80A, 80B and 80C, which are a plurality of automatic teller machines (hereinafter referred to as ATMs), via a dedicated line 75.
When the ATM 80A receives a cash card (not shown) by the user A, the ATM 80A performs processing such as a refund from the user's account on condition that the user A inputs a correct password.

The management server 50 has a function of registering and holding usage conditions for the user A to use ATM 80A and the like. Here, the usage conditions are the time zone when the ATM uses the ATM 80A, the location of the ATM 80A, etc. that can be used, the usage details including withdrawal, deposit, transfer, balance inquiry, sickness PIN change, and the authentication method Includes all or part of it. The authentication method includes, for example, input of a personal identification number, authentication using a fingertip fingerprint, authentication using a palm vein, and the like.
The usage conditions are set by the terminal 20 communicating with the management server 50. As will be described later, the terminal 20 can set the use condition only when the terminal 20 is located within the predetermined area X1.
The above-described terminal 20 is an example of a terminal device, ATM 80A is an example of an automatic teller machine, and the management server 50 is an example of a function control device.
There are a large number of ATMs 80A and the like in Japan and all over the world. However, for convenience of explanation, only three ATMs 80A are provided in this specification.

(Main hardware configuration of terminal 20)
FIG. 2 is a schematic diagram showing the main hardware configuration of the terminal 20.
As shown in FIG. 2, the terminal 20 has a bus 22.
A CPU (Central Processing Unit) 24, a storage device 26, and the like are connected to the bus 22. The storage device 26 is, for example, a RAM (Random Access Memory) or a ROM (Read Only Memory).

  The bus 22 has a power supply device 28, an input device 30 for inputting various information, a terminal communication device 32, a terminal GPS device 34, a display device 36 for displaying various information, and a date and time measurement. Clock 38 is connected.

(Main hardware configuration of the management server 50)
FIG. 3 is a schematic diagram showing a main hardware configuration of the management server 50.
As shown in FIG. 3, the management server 50 has a bus 52.
The bus 52 is connected to a CPU 54, a storage device 56, an external storage device 58, and the like. The external storage device 58 is, for example, an HDD (Hard Disk Drive) or the like.
Also connected to the bus 52 are an input device 60, a power supply device 62, a server communication device 64 for communicating with the terminal 20, an automatic teller machine 80A, and the like, and a display device 66.

(About main software configuration of terminal 20)
FIG. 4 is a schematic diagram showing a main software configuration of the terminal 20.
As shown in FIG. 4, the terminal 20 includes a terminal control unit 100 that controls each unit, a terminal communication unit 102 that corresponds to the terminal communication device 32 in FIG. 2, a terminal GPS unit 104 that corresponds to the terminal GPS device 34, and a clock 38. It has a corresponding clock unit 106 and the like.
As illustrated in FIG. 4, the terminal 20 includes a terminal first storage unit 110 that stores various programs and a terminal second storage unit 150 that stores various types of information.

  As illustrated in FIG. 4, the terminal 20 stores user identification information 152 indicating a user ID in the terminal second storage unit 150. The user ID is identification information for identifying the user A of the terminal 20 from another person.

  As illustrated in FIG. 4, the terminal 20 stores satellite orbit information 154 in the terminal second storage unit 150. The satellite orbit information 154 includes an almanac 154a indicating the approximate satellite orbit of all the GPS satellites 12a and the like (see FIG. 1) and an ephemeris 154b indicating the precise satellite orbit of each GPS satellite 12a and the like. The terminal 20 uses the satellite orbit information 154 for receiving the signal S1 and the like and for positioning.

As illustrated in FIG. 4, the terminal 20 stores a current position information generation program 112 in the terminal first storage unit 110. The current position information generation program 112 is a program for the terminal control unit 100 to generate current position information 156 indicating the current position P1 of the terminal 20 by positioning. The current position information 156 is an example of positioning position information.
Specifically, the terminal control unit 100 calculates the distance (pseudo distance) between each GPS satellite 12a and the terminal 20 based on the signal S1 received from the GPS satellite 12a and the like, and the pseudo distance and the ephemeris 154b. Is used to calculate the current position P1 of the terminal 20.
The terminal control unit 100 stores the generated current position information 156 in the terminal second storage unit 150.

  As illustrated in FIG. 4, the terminal 20 stores a terminal information transmission program 114 in the terminal first storage unit 110. The terminal information transmission program 114 is a program for the terminal control unit 100 to transmit the user identification information 152, the current position information 156, and the use condition setting password input by the input device of FIG. . The terminal information transmission program 114 and the terminal control unit 100 are an example of terminal information transmission means.

(Main software configuration of management server 50)
FIG. 5 is a schematic diagram showing a main software configuration of the management server 50.
As illustrated in FIG. 5, the management server 50 includes a server control unit 200 that controls each unit, a server communication unit 202 corresponding to the server communication device 64 in FIG. 3, and the like.
As shown in FIG. 5, the management server 50 includes a server first storage unit 210 that stores various programs and a server second storage unit 250 that stores various types of information.

As illustrated in FIG. 5, the management server 50 stores a use condition information database 252 in the server second storage unit 250.
FIG. 6 is a diagram illustrating an example of the use condition information database 252 and the like.
The usage condition information database 252 stores information indicating usage conditions for each user of the ATM 80A or the like (see FIG. 1) to use the ATM 80A or the like. Unless this usage condition is satisfied, the ATM 80A or the like cannot be used regardless of whether or not the user is a valid user.
As shown in FIG. 6A, the use condition information database 252 stores the account name 252b and user ID 252c of the account corresponding to each account number 252a, and further includes an available ATM 80A and the like. An available branch code 252d indicating the code of a branch office and an available time 252e indicating a time during which the ATM 80A can be used are stored.

Information indicating the branch name corresponding to the available branch code is stored in the branch table database 254 of the server second storage unit 250.
As shown in FIG. 6B, the branch table database 254 stores a name such as “Tokyo branch” as a branch name corresponding to each branch code “001”, for example.

Referring to the use condition information database 252 and the branch table database 254 described above, for example, “Taro Yamada” who is the account holder of the account number “A11111” is arranged in the Shinagawa branch corresponding to the usable branch code “010”. The ATM 80A and the like that can be used can only be used between 10:00 and 11:00 on April 1, 2005.
As described above, the available branch code 252d and the available time 252e (hereinafter referred to as usage conditions as appropriate) in the usage condition information database 252 indicate conditions for each user such as the ATM 80A to use the ATM 80A. This is an example of usage condition information. The use condition information database 252 is an example of use condition information storage means.

As illustrated in FIG. 5, the management server 50 stores a use condition setting related information database 256 in the server second storage unit 250.
FIG. 7 is a diagram illustrating an example of the use condition setting related information database 256.
As shown in FIG. 7, the use condition setting related information database 256 stores the account name 256b and user ID 256c of the account corresponding to each account number 256a, and further, the use condition setting password 256d and the use condition. The settable area information 256e indicating the position X1 and the like that are allowed to be set is stored. This settable area information 256e is an example of use condition settable position information. The use condition setting related information database 256 is an example of a use condition settable position information storage unit.
As shown in FIG. 7, for the account number “A11111”, the terminal 20 that communicates with the management server 50 is within a radius of 50 meters centered on a point at 36 degrees 40 minutes north latitude and 138 degrees 40 minutes east longitude (see FIG. 7). Only when it is located in the area X1), the setting of the usable branch code 252d and the usable time 252e of the above-mentioned usage condition information database 252 is allowed.
The position indicated in the settable area 256e is a pre-defined range based on the address of a home, work place, or guardian such as ATM 80A. The predetermined range is, for example, a range having a radius of 50 meters as described above. The position indicated in the settable area information 256e is an example of a specified position.

As shown in FIG. 5, the management server 50 stores an account information database 258 in the server second storage unit 250.
FIG. 8 is a diagram illustrating an example of the account information database 258.
As shown in FIG. 8, the account information database 258 stores the account name 258b and user ID 258c of the account corresponding to each account number 258a, and further stores a refund upper limit 258d and a password 258e. .

As illustrated in FIG. 5, the management server 50 stores a terminal information reception program 212 in the server first storage unit 210. The terminal information reception program 212 is a program for receiving the user identification information 152, the password, and the current position information 156 (see FIG. 4) from the terminal 20 that requests setting of usage conditions.
Specifically, the server control unit 200 transmits a format for inputting a user ID, a password, current position information, and the like to the terminal 20. The management server 50 acquires the user identification information 152 and the like by receiving the format in which the user identification information 152 and the like are input from the terminal 20.
The server control unit 200 stores the acquired user identification information 152 in the server second storage unit 250 as the user ID 260a, the password as the password 260b, and the current position information 156 as the current position information 260c. The user ID 260 a and the like that the management server 50 has are collectively referred to as terminal information 260.

  As shown in FIG. 5, the management server 50 stores an authentication confirmation program 214 in the server first storage unit 210. In the authentication confirmation program 214, the server control unit 200 extracts, for example, “B1212” from the usage condition setting related information database 256 as a user ID (see FIG. 7) that matches the user ID 260a, and assigns the user ID “B1212” to the user ID “B1212”. This is a program for authenticating that the user is a legitimate user by confirming whether the corresponding use condition setting password “abcabc” matches the password 260b received from the terminal 20.

As shown in FIG. 5, the management server 50 stores a current position approval program 216 in the server first storage unit 210. The current position approval program 216 is a program for the server control unit 200 to determine whether or not the current position of the terminal 20 is the position indicated in the settable area information 256e (see FIG. 7). That is, the current position approval program 216 and the server control unit 200 are examples of terminal position evaluation means.
For example, the server control unit 200 determines whether or not the position indicated by the current position information 260c is within the area X1 that is a settable area corresponding to the user ID “B1212”.

As shown in FIG. 5, the management server 50 stores an ATM usage condition setting format transmission program 218 in the server first storage unit 210. The ATM usage condition setting format transmission program 218 transmits an ATM usage condition setting format 262 for the server control unit 200 to set usage conditions to the terminal 20 based on the determination result by the current location approval program 216 described above. It is a program to do.
This setting format 262 is an example of setting information. The ATM usage condition setting format transmission program 218 and the server control unit 200 are examples of usage condition setting information transmission means.
In the ATM usage condition setting format 262, for example, the user A can use the terminal 20 to input an available branch code 252d (see FIG. 6A) and an available time 252e (see FIG. 6A). It is configured as follows.
Unlike the present embodiment, the management server 50 may transmit voice input guidance as an example of the setting information so that the user A can input the usage conditions by voice. Good.

  As shown in FIG. 5, the management server 50 stores an ATM usage condition information reception program 220 in the server first storage unit 210. The ATM use condition information receiving program 220 is a program for the server control unit 200 to receive the ATM use condition information 264 from the terminal 20. The ATM usage condition information 264 indicates usage conditions including an available area such as ATM 80A and available time corresponding to the user ID.

As shown in FIG. 5, the management server 50 stores an ATM usage condition information registration program 222 in the server first storage unit 210. The ATM usage condition information registration program 222 is a program for the server control unit 200 to register the usage conditions indicated in the ATM usage condition information 264 in the usage condition information database 252.
Specifically, the server control unit 200 uses the available branch code 252d (see FIG. 6A) and the available time 252e registered in the use condition information database 252 as information indicated in the ATM use condition information 264. Change to
The server control unit 200 also records the time when the usage conditions are registered as the set time 252f.

(About operation example of unauthorized use prevention system 10)
The above is the configuration of the unauthorized use prevention system 10 according to the present embodiment. Hereinafter, an example of the operation will be described mainly with reference to FIGS. 9 and 10.

9 and 10 are schematic flowcharts showing an operation example of the unauthorized use prevention system 10 according to the present embodiment.
FIG. 9 shows an operation example of the unauthorized use prevention system 10 when the terminal 20 and the management server 50 communicate to set usage conditions.
The following description will be made on the precondition that the user A of the terminal 20 is Taro Yamada (see FIG. 7) and the terminal 20 is located in the region X1.
First, the terminal 20 generates current position information 156 (see FIG. 4) by positioning (step ST1 in FIG. 9).
Subsequently, the management server 50 acquires a user ID 152 (see FIG. 4), a password, and current position information 156 (see FIG. 4) from the terminal 20 (step ST2).

Subsequently, the management server 50 performs an authentication check based on the user ID 260a and the password 260b (see FIG. 5) (step ST3), and determines whether authentication is possible (step ST4).
If the management server 50 determines in step ST4 that authentication is impossible, the process is terminated.
On the other hand, when the management server 50 determines in step ST4 that authentication is possible, the settable area 256e (see FIG. 7) is referred to based on the user ID 260b (step ST5), and the terminal 20 It is determined whether or not the current position matches the settable area (step ST6). Steps ST5 and ST6 are an example of a terminal position evaluation step.

  In step ST6, the management server 50 determines that the current position of the terminal 20 matches the settable area under the above-described preconditions, and sends an ATM usage condition setting format 262 to the terminal 20 (see FIG. 5). Is transmitted (step ST7). This step ST7 is an example of a use condition setting format transmission step.

Subsequently, the management server 50 receives ATM usage condition information 264 (see FIG. 5) from the terminal 20 (step ST8).
Subsequently, the management server 50 registers usage conditions (step ST9).
In step ST6 described above, when the management server 50 determines that the current position of the terminal 20 does not coincide with the position in the area X that is a settable area, the process ends.

The above is an operation example of the unauthorized use prevention system 10 when setting usage conditions. Next, an operation example of the unauthorized use prevention system 10 when the user A uses the ATM 80A or the like will be described with reference to FIG.
It is assumed that the ATM 80A is located in the bank branch indicated by the available branch code 252d (see FIG. 6A), the current time is within the available time, and the usage conditions are satisfied. I will explain.
First, ATM 80A receives a cash card inserted by user A (Taro Yamada) (step ST101 in FIG. 10).
Subsequently, the ATM 80A reads information on the cash card (step ST102).

Subsequently, the ATM 80A transmits an account number to the management server 50 (step ST103).
Subsequently, the management server 50 checks whether or not the use conditions are satisfied (step ST104). Specifically, for example, the branch of the bank where the ATM 80A is located matches the branch indicated by the available branch code 252d of the use condition information database 252, and the current time is indicated in the available time 252e. Check if it is within

Subsequently, the management server 50 notifies the ATM 80A whether or not the usage conditions are satisfied (step ST105). As described above, since the usage conditions are satisfied, the management server 50 notifies the ATM 80A that the usage conditions are satisfied.
Subsequently, the ATM 80A displays a password input screen on a display device (not shown) (step ST106).
Subsequently, the ATM 80A receives an input of a personal identification number by the user A (step ST107).
Subsequently, the ATM 80A transmits a personal identification number to the management server 50 (step ST108).

Subsequently, the management server 50 checks whether or not the personal identification number received from the ATM 80A matches the personal identification number 258e in the account information database 258, and notifies the ATM 80A whether or not they match (step ST109).
Subsequently, when the passwords match, the ATM 80A displays a transaction screen (step ST110).
Subsequently, the ATM 80A receives a refund amount input from the user A (step ST111).
Subsequently, the ATM 80A transmits a refund amount to the management server 50 (step ST112).

Subsequently, the management server 50 checks whether or not the refund amount is within the refund upper limit 258d (see FIG. 8) for Taro Yamada (step ST113), and whether the refund amount is within the refund upper limit 258d for the ATM 80A. Whether or not is notified (step ST114).
Subsequently, when the refund amount is within the refund upper limit 258d, the ATM 80A performs a refund process (step ST115).
Subsequently, the ATM 80A notifies the management server 50 that the refund process has been completed (step ST116).
Subsequently, the management server 50 activates the ATM use restriction function after the available time has elapsed (step ST117). That is, for example, after 11:00 on April 1, 2005, after the lapse of the usable time 252e of “A11111” of the account number 252a, the use of the account number 252a using the ATM 80A or the like is restricted (step ST117). .

The unauthorized use prevention system 10 is configured as described above.
As described above, the management server 50 determines that the current position of the terminal 20 that requests setting of use conditions is the position indicated in the user A's settable area information 256e (see FIG. 7) of the terminal 20. In this case, the ATM usage condition setting format 262 (see FIG. 5) can be transmitted.
For this reason, the user A can set in advance the use conditions including the place and time zone in which the ATM 80A is used, for example, by the terminal 20 at the position indicated by the settable area information 256e.
This means that the ATM usage condition setting format 262 is not transmitted when the current position of the terminal 20 is other than the position indicated in the settable area information 256e.
In other words, unless the current position of the terminal 20 is the position indicated in the settable area information 256e, the usage conditions cannot be set.
For this reason, even if a third party steals a cash card and knows its password, it will use ATM80A etc. for the user's account as long as it does not satisfy the conditions set by the legitimate user. I can't.
Since the use condition information is stored in the management server 50, even if a third party steals the cash card, the use condition cannot be known.
Thereby, even if the password is leaked to a third party, unauthorized use of the automatic teller machine can be prevented.

In addition, the position indicated in the settable area information 256e is a range defined in advance based on the address of each user's home, work place, or guardian.
For this reason, the management server 50 can transmit the ATM usage condition setting format 262 only when the terminal 20 is located in a place that is extremely deeply related to the user A.
This makes it extremely difficult for a third party other than the user A to set the use conditions.

  Furthermore, since the current position of the terminal 20 is the position indicated by the current position information 156 generated by the terminal 20 by positioning, the management server 50 can surely know the current position of the terminal 20.

  Next, an unauthorized use prevention system 10A (see FIG. 1) according to the second embodiment will be described. Since the configuration of the unauthorized use prevention system 10A of the second embodiment has many configurations in common with the unauthorized use prevention system 10 of the first embodiment, common parts are denoted by the same reference numerals and the description thereof is omitted. Hereinafter, the differences will be mainly described.

  The terminal 20A of the unauthorized use prevention system 10A transmits information indicating a pseudo distance serving as a basis for calculating the current position to the management server 50A, and the management server 50A calculates the current position of the terminal 20A.

(Main software configuration of terminal 20A)
FIG. 11 is a schematic diagram illustrating a main software configuration of the terminal 20A.
As illustrated in FIG. 11, the terminal 20 </ b> A stores a pseudo distance information generation program 116 in the terminal first storage unit 110. The pseudo distance information generation program 116 is a program for the terminal control unit 100 to generate pseudo distance information 158 indicating the pseudo distance d1 that is the distance between the terminal 20A and each GPS satellite 12a.
The terminal control unit 100 stores the generated pseudo distance information 158 in the terminal second storage unit 150.

As illustrated in FIG. 11, the terminal 20 </ b> A stores a time measurement program 118 in the terminal first storage unit 110. The time measuring program 118 is a program for the terminal control unit 100 to measure the time t when the pseudo distance information 158 is generated by the time measuring unit 106 and generate the generation time information 160 indicating the time t.
The terminal control unit 100 stores the generated generation time information 160 in the second storage unit 150.

  The terminal control unit 100 transmits generation time information 160 in addition to the user identification information 152 and the password to the management server 50A by the terminal information transmission program 114A when setting the usage conditions.

(Main software configuration of management server 50A)
FIG. 12 is a schematic diagram illustrating a main software configuration of the management server 50A.
As illustrated in FIG. 12, the management server 50 </ b> A stores a terminal information reception program 212 </ b> A in the server first storage unit 210. The terminal information reception program 212A is a program for the server control unit 200 to acquire the pseudo distance information 158 and the generation time information 160 in addition to the user identification information 152 and the password from the terminal 20A. The terminal information reception program 212A and the server control unit 200 are an example of a pseudo distance information acquisition unit and an example of a generation time information acquisition unit.
The server control unit 200 stores the acquired pseudo distance information 158 in the server second storage unit 250 as the pseudo distance information 260d and the generation time information 160 as the generation time information 260e.

  As illustrated in FIG. 12, the management server 50 </ b> A stores satellite orbit information 266 in the server second storage unit 250. The satellite orbit information 266 includes an almanac 266a and an ephemeris 266b.

As illustrated in FIG. 12, the management server 50 </ b> A stores a terminal current position information generation program 224 in the server first storage unit 210. The terminal current position information generation program 224 is a program for the server control unit 200 to generate terminal current position information 268 indicating the terminal current position P2 that is the current position of the terminal 20A based on the pseudo distance information 260e. That is, the terminal current position information generation program 224 and the server control unit 200 are examples of current position information generation means.
The server control unit 200 stores the generated terminal current position information 268 in the server second storage unit 250.

Based on the terminal current position information 268, the current position approval program 216A of the management server 50A determines whether or not the current position of the terminal 20A matches the position indicated in the settable area information 256e (see FIG. 7). It has become.
Further, the ATM usage condition setting format transmission program 218A of the management server 50A determines in advance the difference between the time t indicated by the generation time information 260f and the current time t0 in addition to the determination result by the current position approval program 216A. The ATM usage condition setting format 262 is transmitted to the terminal 20A when the time range is within one minute, for example.

The unauthorized use prevention system 10A is configured as described above.
As described above, the management server 50A acquires the pseudo distance information 158 (see FIG. 11) from the terminal 20. Here, without actually measuring the distance to the GPS satellite 12a or the like, calculating a pseudo distance that serves as a basis for calculating the position indicated in the settable area information 256e (see FIG. 7) Impossible.
This makes it extremely difficult for a third party other than a legitimate user to set usage conditions.
In addition to the determination result by the above-described current position approval program 216A, the management server 50A, when the difference between the time t indicated by the generation time information 260f and the current time t0 is within a predetermined time range, Since the ATM usage condition setting format 262 is transmitted to the terminal 20A, it is confirmed that the pseudo distance information 158 is generated within the time range close to the current time t0, and then the ATM usage is performed. The condition setting format 262 can be transmitted.

(About programs and computer-readable recording media)
It can be set as the control program of the function control apparatus for making a computer perform the terminal position evaluation step of the above-mentioned operation example, a use condition setting format transmission step, etc.
Further, a computer-readable recording medium or the like in which a control program or the like of such a function control device is recorded can be used.

  A program storage medium used for installing the control program of the function control device in the computer and making it executable by the computer is, for example, a flexible disk such as a floppy (registered trademark), a CD-ROM (Compact Disc Read). Semiconductors in which programs are stored temporarily or permanently, as well as package media such as Only Memory (CD), Compact Disc-Recordable (CD-R), Compact Disc-Rewriteable (CD-RW), and DVD (Digital Versatile Disc). It can be realized by a memory, a magnetic disk, a magneto-optical disk, or the like.

  The present invention is not limited to the embodiments described above. Furthermore, the above-described embodiments may be combined with each other.

It is the schematic which shows the unauthorized use prevention system of embodiment of this invention. It is the schematic which shows the main hardware constitutions of a terminal. It is the schematic which shows the main hardware constitutions of a management server. It is the schematic which shows the main software structures of a terminal. It is the schematic which shows the main software structures of a management server. It is a figure which shows an example of a use condition information database. It is a figure which shows an example of a use condition setting related information database. It is a figure which shows an example of an account information database. It is a schematic flowchart which shows the operation example of an unauthorized use prevention system. It is a schematic flowchart which shows the operation example of an unauthorized use prevention system. It is the schematic which shows the main software structures of a terminal. It is the schematic which shows the main software structures of a management server.

Explanation of symbols

  10, 10A ... Unauthorized use prevention system, 12a, 12b, 12c, 12d ... GPS satellite, 20, 20A ... terminal, 50, 50A ... management server, 80A, 80B, 80C ... cash Automatic transaction machine (ATM), 212, 212A ... Terminal information reception program, 214 ... Authentication confirmation program, 216, 216A ... Current position approval program, 218, 218A ... ATM usage condition setting format transmission program 220 ... ATM usage condition information reception program, 222 ... ATM usage condition registration program, 224 ... Terminal current position information generation program

Claims (8)

A function control device for an automatic teller machine,
Usage condition information storage means for storing usage condition information indicating usage conditions for each user of the automatic teller machine to use the automatic teller machine,
Use condition settable position information storage means for storing use condition settable position information indicating a position where the use condition is allowed to be set;
Terminal position evaluation means for determining whether or not the current position of the terminal device that requests setting of the use condition is a position indicated by the use condition settable position information;
Based on the determination result of the terminal position evaluation means, the terminal device transmits use condition setting information transmitting means for transmitting setting information for setting the use conditions;
A function control apparatus comprising: The position indicated in the use condition settable position information is
2. The function control device according to claim 1, wherein the function control device is in a predetermined range based on an address of each user's home, work place or guardian.   The function control apparatus according to claim 1, wherein the current position of the terminal device is a position indicated by positioning position information generated by the terminal device by positioning. Pseudo distance information acquisition means for acquiring pseudo distance information indicating a pseudo distance that is a distance between the terminal apparatus and a positioning satellite from the terminal device;
Current position information generating means for generating current position information indicating the current position of the terminal device based on the pseudorange information;
The function control apparatus according to claim 1, wherein the function control apparatus includes: Generation time information acquisition means for acquiring generation time information indicating the time when the positioning position information or the pseudo distance information was generated;
The usage condition setting information transmitting means of the function control device further sets the usage condition setting information when the difference between the time indicated by the generation time information and the current time is within a predetermined time range. The function control apparatus according to claim 3, wherein the function control apparatus is configured to transmit.   The usage conditions include a time zone in which the automatic teller machine is used, a location of the automatic teller machine that can be used, usage details including withdrawal, deposit, transfer, balance inquiry and PIN change, and an authentication method. The function control apparatus according to claim 1, wherein all or a part of the function control apparatus is included. The cash for transmitting setting information for the terminal device to set the use condition when the current position of the terminal device that requests setting of the use condition of the automatic teller machine is a pre-defined specified position. A terminal device for setting the use conditions by communicating with a function control device of an automatic transaction machine,
Terminal information transmitting means for transmitting positioning position information generated by positioning to the function control apparatus or pseudo distance information indicating a pseudo distance that is a distance between the terminal apparatus and a positioning satellite; Terminal device. Use condition information storage means for storing use condition information indicating use conditions for each user of the automatic teller machine to use the automatic teller machine, and a position that allows the use conditions to be set. And a use condition settable position information storage means for storing use condition settable position information indicating that the current position of the terminal device requesting the setting of the use condition is the use position of the automatic teller machine function control device. A terminal position evaluation step for determining whether or not the position is indicated in the condition setting position information;
A usage condition setting information transmission step in which the function control device transmits setting information for the terminal device to set the usage conditions based on a determination result in the terminal location evaluation step;
A control program for a function control apparatus, characterized in that

Images