JP2007217903A - Key, unlocking device, key device, program for key, and program for unlocking device - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To improve the safety of a key and to prevent unauthentic use of certified information data by an outsider. <P>SOLUTION: The key is composed of: a certified information data generating means 12 for executing predetermined computing operation, based on certified information acquired from a certified information acquiring means 11, to generate the certified information data; a certified information registering means 14 for storing the certified information data in a memory 23 of the key; a certified information comparing means 16 for comparing input certified information data 13 with the registered certified information data 15, and activating an unlocking data generating means only when both the data match with each other; the unlocking data generating means 19 for generating unlocking data, based on a key discrimination code 18 intrinsic to the key, and the registered certified information data 15; an unlocking data registration requesting means 21 for transferring and registering the unlocking data to the unlocking device; and an unlocking requesting means 22 for transferring the unlocking data to the unlocking device for unlocking the key at arbitrary timing, and requesting unlocking. The unlocking requesting means 22 transmits the unlocking data to the unlocking device at predetermined time intervals after unlocking of the key. <P>COPYRIGHT: (C)2007,JPO&INPIT

Description

The present invention relates to a key, an unlocking device, a key device, a key program, and an unlocking device program for opening and closing various keys of hotels, automobiles, and the like using authentication technology.

With the development of authentication technology, opening / closing management of various keys is performed using various authentication information. For example, a technique for registering a fingerprint in a mobile phone and performing key operation (see Patent Document 1), a system that acquires fingerprint data through a key, registers the fingerprint data in a host computer, and uses it for intruder management, etc. Has also been developed (see Patent Document 2).
JP 2002-34075 A JP 2000-55577 A

By the way, the above technique has the following problems to be solved.
For example, it is not preferable from the viewpoint of personal information protection to register fingerprint data and other biometric information in a hotel computer for a person staying at a hotel. But,
If a mechanical key or magnetic card key that is unique to each room is used as before, the processing when the key is lost becomes troublesome and a spare key may be illegally created. There were similar problems with keys such as rental cars. The same applies to the use of authentication information such as passwords.
The present invention has been made paying attention to the above points, and the key, the unlocking device, the key device, the program for the key, and the program for the unlocking device are not likely to be used illegally by a third party. The purpose is to provide.

In each embodiment of the present invention, the above-described problems are solved by the following configurations.
<Configuration 1> An authentication information acquisition unit that acquires authentication information, an authentication information data generation unit that receives the authentication information acquired by the authentication information acquisition unit, executes predetermined calculation processing, and generates authentication information data; Authentication information registration means for storing and storing the authentication information data generated by the authentication information data generation means in the key-side memory as registered authentication information data, and the authentication information from the authentication information data newly acquired by the authentication information acquisition means An authentication information comparison unit that activates the unlocking data generation unit only when the input authentication information data generated by the data generation unit is compared with the registration authentication information data stored in the key side memory and the two match. The key identification code unique to the key, which is activated by the authentication information comparing means and stored in advance in the key side memory, and stored in the key side memory. Based on the registered authentication information data, the unlocking data generating means for generating the unlocking data, and the unlocking data generated by the unlocking data generating means are transferred to the unlocking device side for new unlocking. The unlocking data registration requesting means for registering the lock data and the unlocking data generated by the unlocking data generating means at an arbitrary timing in order to unlock the locked key after the unlocking data is registered. Unlocking requesting means for transferring to the locking device side and requesting unlocking, and the unlocking requesting device transfers the unlocking data to the unlocking device side every predetermined time after unlocking the key. A key characterized by

The input authentication information is arithmetically processed to generate authentication information data, and the authentication information data is registered only in the key. Only unlocked data calculated using the authentication information data is output to the outside, and authentication information data is not output. Therefore, personal information such as a password can be protected. In addition, since the same unlock data cannot be output by an operation other than the person whose authentication information data matches, high-security key management similar to the existing authentication method can be performed. Furthermore, since the unlock data is not generated unless a unique key identification code is used, if the unlock data is newly registered with another key even if the key is lost, the lost key is not misused. In addition, since the unlock data is transferred to the unlocking device at predetermined intervals after the key is unlocked, the unlocking device can manage forgetting to lock the key.

<Structure 2> The key according to Structure 1, wherein the authentication information data generation means generates registered authentication information data from either one or both of a personal identification code and biometric information.

Either one or both of the password and biometric information may be registered in the key. Even if the password is registered inside the key, it is not output to the outside, so that the password is not known to others. For example, when biometric information such as fingerprints and veins is used, since these are not output from the key, personal information can be sufficiently protected. Biometric information is more secure than a security code. However, the personal identification code can be used when the fingerprint cannot be successfully authenticated, for example.

<Configuration 3> Upon receiving the unlocking data registration request from the key, the unlocking data registration is received, and the unlocking data transfer is accepted, and the newly registered unlocking data is stored in the unlocking device side memory and stored. Receiving means, and after unlocking data is registered, the unlocking request receiving means for receiving the unlocking request from the key and unlocking the unlocked data in order to unlock the locked key; Comparing the registered unlock data stored in the lock device side memory with the unlock data received by the unlock request receiving means, and only when the two match, the unlock data comparing means that activates the unlock control device And an unlock control device that is activated by the unlock data comparison means to control the operation of unlocking the locked key, and reset means that resets the registered unlock data stored in the memory on the unlock device side. The unlocking device The data registration accepting means executes a process of storing and saving new unlocking data in the unlocking device side memory only when the registered unlocking data is reset, and the unlocking request accepting means The unlocking data is acquired from the key at predetermined intervals by automatic communication, and the unlocking data comparing means is automatically registered by the unlocking request receiving means and the registered unlocking data stored in the unlocking device side memory. An unlocking device characterized by comparing the acquired unlocking data and requesting the unlocking control device to lock the key being unlocked when they do not match.

Unlock data is received and registered from the above keys, and unlock control is performed. Unlocked data cannot be read from the outside, and new unlocked data cannot be registered unless processing for resetting the registered unlocked data by an administrator or the like is performed, so that unauthorized use and rewriting of unlocked data can be prevented. Also, unlocking data is received from the key every predetermined time by automatic communication, and when the two do not match, the unlocking key is locked, so that forgetting to lock the key can be prevented.

<Configuration 4> In the unlocking device according to Configuration 3, when the request accepting unit cannot acquire the unlock data from the key, the request accepting unit deletes the unlock data stored in the memory on the unlock device side. Unlocking device characterized.

The unlocking device requests the key to transmit unlocking data. If the corresponding unlocking data is not transmitted, the unlocking data is deleted. If the unlocking data is deleted by a method such as overwriting, the comparison result with the registered unlocking data becomes inconsistent. Therefore, the key is automatically locked.

<Configuration 5> The unlocking device according to Configuration 3, wherein the unlocking device is provided with display means for displaying a lock end when the unlocking control device locks the unlocked key.

The fact that it is automatically locked can be displayed so that it can be recognized with the naked eye, for example, by an LED or the like.

<Structure 6> The unlocking apparatus according to Structure 5, wherein the display means notifies the key whether the key is being unlocked or locked through a network.

If the key status can be confirmed, for example, via the Internet or a mobile phone, the user can feel secure.
When the key is notified by the display means, for example, an LED may be displayed.

<Configuration 7> In the key described in Configuration 1, if communication with the unlocking device is not established after the unlocking data is transferred to the unlocking device, is the key being unlocked or locked? A key characterized by comprising display means for displaying.

When the user leaves the unlocking apparatus without performing the locking process, the communication between the key and the unlocking apparatus is not established. At this time, the key can display a warning to alert the key holder.

<Configuration 8> Authentication information data generation for generating authentication information data by accepting authentication information acquired by the computer and authentication information acquired by the authentication information acquisition unit and executing a predetermined calculation process. And authentication information registration means for storing and storing the authentication information data generated by the authentication information data generating means in the key side memory as registered authentication information data,
When the input authentication information data generated by the authentication information data generation means from the authentication information data newly acquired by the authentication information acquisition means is compared with the registered authentication information data stored in the key side memory, and they match. Only, the authentication information comparing means for activating the unlocking data generating means, the key identification code unique to the key, which is activated by the authentication information comparing means and stored in advance in the key side memory, and is stored in the key side memory. The unlocking data generating means for generating unlocking data based on the registered authentication information data, and the unlocking data generated by the unlocking data generating means are transferred to the unlocking device side for new unlocking. The unlocking data registration requesting means for registering the lock data, and the unlocking data generating means generating the unlocking data at an arbitrary timing in order to unlock the locked key after the unlocking data is registered. Unlocking means for transferring the unlocking data to the unlocking device and requesting the unlocking, and the unlocking requesting means unlocks the unlocking data every predetermined time after unlocking the key. A key program to function as something to be transferred to the lock device.

<Configuration 9> When the computer receives the unlocking data registration request from the key, the computer receives the unlocking data transfer, and executes a process of storing and storing the new registered unlocking data in the unlocking device side memory. A lock data registration receiving means; and after unlocking data registration, an unlock request receiving means for receiving the unlock request from the key and receiving the unlock data transfer in order to unlock the locked key; The unlocking device that activates the unlocking control device only when the unlocking data stored in the unlocking device side memory is compared with the unlocking data received by the unlocking request receiving means and the two match. Data unlocking means, unlocking control device that is activated by the unlocking data comparing means to control the operation of unlocking the locked key, and resets the registered unlocking data stored in the unlocking device side memory Reset means to The unlocking data registration receiving means executes a process of storing and storing new unlocking data in the unlocking device side memory only when the registered unlocking data is in a reset state, and The request receiving means acquires the unlocking data from the key at predetermined intervals by automatic communication, and the unlocking data comparing means is configured to register the unlocking data stored in the unlocking device side memory and the unlocking request. When the unlocking data is automatically compared with the unlocking data automatically acquired by the accepting means, the unlocking control device is made to function as a request to lock the unlocking key. Program for unlocking device.

In the present invention, even if the same key is used, if the authentication data changes, the same unlock data cannot be generated. Therefore, even if another person uses the key, the key cannot be opened. Further, even the same person cannot generate the same unlocking data with different keys. The unlocking device is highly safe because there is no means for reading unlocking data from the outside. Since the authentication information data is stored only inside the key and the authentication information data is not the same as the actual authentication information, personal data does not flow outside. Moreover, after unlocking, it can be locked automatically, and forgetting to lock can be prevented. In the present invention, “unlocking a locked key” refers to an operation to open a door or the like that cannot be opened by locking. Any known mechanism can be adopted as the locking mechanism. The unlocking mechanism only needs to be compatible with the locking mechanism. The “unlocking device” controls the operation of this unlocking mechanism. The key is carried to the user and used to activate the unlocking device. Hereinafter, embodiments of the present invention will be described in detail for each example.

FIG. 1 is a block diagram showing the internal structure of a key device according to the present invention.
The key device 1 is constituted by the key 10 and the unlocking device 30 shown in this figure. The key 10 is carried by the user, and the unlocking device 30 is integrally attached to a key mechanism portion such as a door. The appearance of the key 10 and the unlocking device 30 will be described later with reference to FIG. Inside the key 10, an authentication information acquisition unit 11, an authentication information data generation unit 12, an authentication information registration unit 14, a reset unit 17, and a key side memory 23 are provided. Further, the authentication information comparison means 16 and the key identification code 18
, Unlock data generation means 19, unlock data registration request means 21, unlock request means 22, and display means 24 are provided.

In this embodiment, fingerprint image data is used as an example of authentication information. The authentication information acquisition means 11 is a sensor that reads the image data of the fingerprint and digitizes it when the finger is pressed, as described in the prior art. The authentication information data generation means 12, the authentication information registration means 14, the authentication information comparison means 16, the unlock data generation means 19, the unlock data registration request means 21, and the unlock request means 22 are all incorporated in the key 10. A computer program for operating a computer. The key-side memory 23 stores input authentication information data 13, registration authentication information data 15, and a key identification code 18.

The unlock data registration request unit 21 and the unlock request unit 22 are input / output interfaces for transmitting predetermined data and commands from the key 10 to the unlocking device 30. For example, communication is performed by an electrical magnetic or optical signal or other wireless coupling. Of course, a mechanical connector having electrical contacts may be used. The unlock data registration accepting means 31 and the request accepting means 32 of the unlocking device 30 are also similar input / output interfaces. The display means is for displaying whether the key is unlocked or locked.

As described above, the key 10 is provided with the authentication information acquisition means 11, and in the present invention, the authentication information data is registered only in the key 10. The authentication information data generation unit 12 has a function of receiving fingerprint image data and generating predetermined authentication processing to generate authentication information data. The input authentication information data 13 is stored in the key side memory 23. The input authentication information data 13 is data indicating the characteristics of a fingerprint, and its format is arbitrary. The authentication information registration unit 14 has a function of storing the authentication information data generated by the authentication information data generation unit 12 in advance as registered authentication information data 15 in the key-side memory 23 and storing it.

The authentication information comparison means 16 compares the input authentication information data 13 newly read by the authentication information acquisition means 11 with the registered authentication information data 15 stored in the key-side memory 23, and unlocks when they match. It has a function of starting the data generation means 19. If there is a mismatch, do nothing.
The key-side memory 23 of the key 10 further stores a unique key identification code 18 that can distinguish all the keys. The unlocking data generation means 19 is used for registration authentication information data 1
5 and the key identification code 18 have a function of generating unlocking data. Key side memory 2
The registration authentication information data 15 stored in 3 is reset using the reset means 17 by a predetermined reset process by the administrator.

This reset process is, for example, a process of clearing the registration authentication information data 15 to zero.
Alternatively, the predetermined key code is replaced with the registration authentication information data 15.
The authentication information registration unit 14 has a function of registering the input authentication information data 13 as the registration authentication information data 15 only when the registration authentication information data 15 is in a reset state. In other cases, registration processing of new authentication information data is not performed. The user of the key 10 can only perform the registration process, and once registered, it cannot be rewritten. Therefore, the registration authentication information data is not easily rewritten.

Further, if the circuit of the key 10 is created by a one-chip integrated circuit and an interface capable of reading the registration authentication information data 15 and the key identification code 18 is not provided, these data are reliably protected. Moreover, since it is the input authentication information data 13 generated through the arithmetic processing by the authentication information registration means 14, there is no fear of being stolen as it is as personal information. The comparison between the registered authentication information data 15 and the newly read input authentication information data 13 is not only when they are completely matched, but when the difference is less than a certain value, it is processed as the user's own. Enhanced.

On the other hand, since the unlock data is generated using the registration authentication information data 15, it is unique data and does not change depending on the reading condition of the authentication information. The unlock data registration request means 21 transfers the unlock data generated by the unlock data generation means 19 to the unlocking device 30 side,
Has a function to register unlock data. The unlock request means 22 has a function of transferring the unlock data generated by the unlock data generation means 19 to the unlock device 30 and requesting the unlock.

As described above, first, the registration authentication information data 15 is registered in the key 10, and then the unlocking data is registered in the unlocking device 30, so that the key device can be used for the first time. Thereafter, if the input authentication information data 13 obtained by reading by the authentication information acquisition means 11 sufficiently matches the registration authentication information data 15, the unlock request means 22 transmits the unlock data to the unlocking device 30 and sends the key. Can be opened. If the authentication information data obtained by the authentication information acquisition means 11 does not match sufficiently, unlock data is not generated and is not output from the key 10, so there is no means for the person who picks up the key to use the key illegally. , Safe.

The unlocking device 30 includes an unlocking data registration receiving unit 31, a request receiving unit 32, an unlocking data comparison unit 34, a reset unit 36, and a display unit 39. These means are programs for operating a computer that controls the unlocking device 30. The unlocking device 30 is provided with an unlocking device side memory 38. Here, registered unlock data 33 and unlock data 37 are stored. The unlock control device 35 is a key mechanism portion controlled by the unlock data comparison means 34. The display means 39 is for displaying whether the key is unlocked or locked. Therefore, for example, it is constituted by an LED or the like that is turned on when a state signal is received from the unlocking control device 35. Alternatively, the display means 39 may be configured by a computer program or a communication device that notifies the key whether the key is unlocked or locked through a wireless or wired network 48. Notification can be made by transmitting a status signal output from the unlock control device 35. It is on the go that the user is worried and asks for confirmation. Therefore,
Notification is preferably made through the Internet or a cellular phone network.

In the example of FIG. 1, the unlock data registration request means 21 of the key 10 transmits an unlock data registration request command to the unlock data registration acceptance means 31 of the unlock device 30 and simultaneously transfers the unlock data. Further, the unlock request means 22 of the key 10 sends a request accepting means 32 of the unlocking device 30 to the request accepting means 32.
An unlock request command and unlock data are transmitted. The unlocking data registration receiving means 31 has a function of confirming the contents of the registered unlocking data 33 stored in the unlocking device side memory 38 when receiving the unlocking data registration request from the unlocking data registration requesting means 21. And this registered unlocking data 3
As long as 3 is reset, registration of unlocking data is accepted.

That is, even if there is an unlocking data registration request from the unlocking data registration request means 21, if the registered unlocking data 33 exists effectively, registration of new unlocking data is not accepted. The reset processing of the registered unlocking data 33 is performed by operating the reset means 36. As will be described later, the operation of the reset means 36 has a structure that is impossible unless the administrator uses a specific resetting device. Once the registered unlocking data 33 is registered, the key 10
The unlocking process is performed only when the unlocking data is transferred and the unlocking request is received.

When receiving the unlock request command and receiving the unlock data, the request receiving means 32 temporarily stores the unlock data in the unlock device memory 38 and notifies the unlock data comparing means 34. The unlocking data comparing means 34 reads the registered unlocking data 33 and the unlocking data 37 from the unlocking device side memory 38 and compares them to determine whether or not they match. Control data for unlocking is output only when the unlocking data is completely identical. The output is transferred to the unlock control device 35. The unlock control device 35 is a device that controls opening and closing of a key. Release the locked key using any known mechanism. When the locking button 40 is pressed, the key is forcibly locked. Further, it has a function of automatically locking a key at a predetermined timing as described below.

In the above example, an example in which fingerprint image data is used as authentication information has been described. On the other hand, various kinds of authentication information such as passwords using letters and numbers, barcodes printed on identification cards, identification information output by IC tags, and the like have been used.
Biometric information such as the iris of the eye, veins of hands, and fingerprints is also widely used. In the present invention, these arbitrary information can be used as authentication information. For example, the authentication information acquisition unit 11 may accept an input of a code number of numbers or characters. Alternatively, the identification information may be acquired by communicating with the IC tag. An imaging device that acquires biometric information as image data may be used.

It is preferable that the authentication information data generation unit 12 receives the authentication information and executes a predetermined calculation process to generate authentication information data whose contents are modified to such an extent that the acquired authentication information cannot be reproduced. Thereby, authentication information can be protected strictly. In addition, this calculation process
It is preferable that the authentication information data is such that the authentication information cannot be easily reproduced by backward calculation. For this purpose, a known arithmetic expression frequently used in the data encryption processing technique may be employed. Note that the authentication information data generation unit 12 may be configured to generate registration authentication information data from both the password code and the biometric information. For example, biometric information is used as a primary key.
For example, if biometric information cannot be acquired due to a sensor failure or the like, the password is switched to use. For example, when an agent other than the key owner unlocks the key, it can also be used as a subkey such as a one-time password.

Here, the function of automatically locking the key will be described. When the unlock request means 22 makes an unlock request for the first time, the unlock request means 22 stores the unlock data as it is in a register or the like and holds it. Unlock request means 2
2 further maintains a state in which communication with the request receiving means 22 is possible. For example, it is preferable that the request receiving means 32 is always in a receivable state so that the unlock request means 22 may send the unlock request and the unlock data at any time. In order to enable two-way automatic communication,
After the unlock request means 22 transmits the unlock request and the unlock data, the reception function of the unlock request means 22 is utilized until an operation to confirm that the key is locked again is performed. Is preferred. The unlock request means 22 transfers the unlock data to the unlock device for unlock request, for example, 3
The same operation is repeated every 0 seconds. That is, the same unlocking request and unlocking data are transferred to the unlocking device 30 every time a certain time elapses. This is preferably automatic communication requiring no operation.

On the unlocking device 30 side, the request receiving means 32 receives the unlock request and the unlock data. As already described, the unlocking data comparing means 34 compares the registered unlocking data 33 and the unlocking data 37, and if they match, the unlocking control device 35 unlocks the key. Request. If the key has already been unlocked, the unlocking is requested again and the unlocked state is maintained. Thus, for example, when the person holding the key is near the unlocking device, the key remains unlocked. On the other hand, if the person holding the key leaves the unlocking device as it is, communication between the unlock requesting means 22 and the request receiving means 32 becomes impossible.

When the request receiving means 32 cannot receive the unlocking request and the unlocking data, for example, the unlocking data 37 stored in the unlocking device side memory 38 is deleted and initialized. Thereafter, if the registered unlocking data 33 and the unlocking data 37 are compared, they do not match. At this time, the unlock control device 35 is requested to lock the key. As a result, the key is locked immediately. If there is an auto-lock function that always locks the key after a certain time after unlocking, the unlocking data 37 may be erased and left as it is.

FIG. 2 is a perspective view of the key and the unlocking device. 2A is an external perspective view of a key, and FIG. 2B is an external perspective view of an apparatus including a locking mechanism and an unlocking mechanism.
As shown in FIG. 2A, the key 10 includes an authentication information acquisition unit 11, an integrated circuit 20, a display unit 24, and a head 25. For example, the authentication information acquisition unit 11 has a function of detecting the pressure when a person's thumb 27 is pressed and starting the operation to acquire image data of the thumb fingerprint. This data is taken into the integrated circuit 20 and subjected to certain processing.

The integrated circuit 20 is a one-chip microcomputer. Therefore, CPU and ROM
Components such as RAM and RAM are incorporated in the integrated circuit 20. The display means 24 is an LED that displays the state of the key. The head 25 is a data transfer interface between the key 10 and the unlocking device 30 using wireless or the like. The key 10 can have a very simple configuration like a cash card or a credit card. Therefore, it can be made disposable in consideration of security.

The key identification code 18 described with reference to FIG. 1 is different data for all the keys 10. Therefore, even when the same person is used, the same unlock data is not generated when different keys are used, so that a highly reliable key device is realized. The mechanism of FIG. 2B has a well-known structure in appearance. A locking mechanism and an unlocking mechanism are incorporated therein. Mechanism 43
Is known. The unlocking device 30 is provided with a slot 41 for inserting the key 10 and opening and closing the key. Further, the unlocking device 30 is provided with a locking button 40, a display means 39 and an integrated circuit 42.

The integrated circuit 42 is also a one-chip microcomputer. Therefore, CPU and ROM
Parts such as RAM and RAM are incorporated in the integrated circuit 42. The slot 41 is an interface that is connected to the head 25 of the key 10 and controls data transfer between the key 10 and the unlocking device 30. The mechanism 43 is composed of a general mechanism that controls the opening and closing of the door by operating the pins 44 and 45. In the present invention, the unlocking device 30 is most preferably an independent closed system that does not have a special terminal outside and is not connected to a network or the like.

When the key 10 is inserted into the slot 41, only unlocking data input and a registration request command or unlock request command are accepted. Further, as will be described later, when a reset card is inserted, only the reset processing of the registered unlocking data 33 is performed. Other data input / output terminals are not provided, and operations such as reading and rewriting of the registered unlocking data 33 cannot be performed from the outside. Therefore, the security is extremely high.
The unlock button 40 is a button for forcibly controlling the locking device 30 to execute a locking process. It is installed in a place where the user can easily operate. The display means 39 is an LED that displays the key status.

FIG. 3 shows a block diagram of each part of the key device and the reset device. FIG. 3A shows the key 1
It is a hardware block diagram of 0. The key 10 includes a fingerprint reading sensor 51 and a pressure sensor 5
2 is provided. As a result, when the key 10 is grasped with a finger as shown in FIG. 2A, the pressure is detected and the fingerprint reading sensor 51 operates, and the image data of the read fingerprint is transferred to the arithmetic circuit 53. The The key circuit memory 23 shown in FIG. 1 is provided inside the arithmetic circuit 53, but is integrated when viewed from the outside, and is a terminal for taking out the input authentication information data 13 and the registration authentication information data 15. Because there is no such thing, safety is high.

The unlock data generated by the arithmetic circuit 53 is output to the unlock data output head 54. The unlocking data output head 54 is used for transmitting unlocking data and commands in combination with the head on the unlocking device 30 side. As already described, these data are transferred by radio such as electric or magnetic. The reset signal input head 55 is a head that receives a signal for resetting the registration authentication information data 15 registered in the arithmetic circuit 53.

FIG. 3B is a block diagram of the reset device. FIG. 3C is a perspective view of a key reset device 61 for resetting the key 10. The key reset device 61 includes a slot 68. When the key 10 is inserted into the slot 68, the reset signal input head 55 of the key 10 is combined with the reset signal output head 65 of the key reset device 61, and reset processing is executed. Is done.

The switch circuit 67 shown in FIG. 3B has a key 1 in the slot 68 of the key reset device 61.
This switch is turned on when 0 is inserted. When the key 10 is inserted, the switch circuit 67 is turned on to activate the reset signal generation circuit 66. The reset signal generation circuit 66 generates a reset signal and supplies the reset signal to the arithmetic circuit 53 through the reset signal output head 65 and the reset signal input head 55. The reset signal includes a command for starting the reset means 17 shown in FIG.

When the reset means 17 (FIG. 1) accepts the reset command, the registration authentication information data 1
Has the function of rewriting 5 to the initial value. In this way, the registration authentication information data 1 of the key 10
5 is not reset unless the key reset device 61 stored by the administrator is used. In order to reset the unlocking device 30, the same card-type unlocking device reset card 62 as the key is used. The unlocking device reset card 62 shown in FIG. 3D is also provided in the inside thereof as shown in FIG.
All circuit blocks shown in FIG. When the unlocking device reset card 62 is inserted into the slot of the unlocking device 30, the switch circuit 67 operates to reset the unlocking device 3 of the unlocking device 30.
6 is started and reset processing is performed.

The unlocking device 30 includes, for example, an unlocking data input head 71, a reset signal input head 72, an arithmetic circuit 73, and an auto lock 74 as shown in FIG. The arithmetic circuit 73 receives the unlock data through the unlock data input head 71 and performs registration of unlock data and key opening / closing control. The reset signal input head 72 is connected to the reset signal output head 65 from the unlocking device reset card 62 when the unlocking device reset card 62 is inserted into the slot.
Accept the reset signal through. The arithmetic circuit 73 sends this reset signal to the reset means 3
6 is supplied as a reset command, and the registration unlocking data 33 is reset.

Thus, the registered unlock data 33 is rewritten to the initial value. The auto-lock 74 is
When the unlocking process is finished and a certain time has passed, it automatically starts and operates to lock the door again.
For example, the auto-lock 74 has a function of releasing a key by exciting a solenoid, and automatically locking the excitation current after the excitation current is cut off automatically by a fixed timer. With such a hardware configuration, for example, a hotel key device or a car key device can be realized. However, such a function is not always convenient for a door key of a general household. Therefore, the unlocking device of the present invention controls the unlock request means 22 and the request accepting means 32 to repeatedly communicate to maintain the unlocked state, and to lock immediately when communication becomes impossible. .

FIG. 4 is a flowchart showing a specific operation of the key device as described above.
Steps S11 to S24 in FIG. 4 are operation flowcharts of the computer program incorporated in the key 10. First, in step S11, the pressure of the thumb or the like is detected by the pressure sensor 52. If this pressure is above a certain level, the fingerprint reading sensor 51 is activated. In this way, the authentication information data generation means 12 shown in FIG.
Image data is transferred (step S12).

In step S <b> 13, the authentication information data generation unit 12 generates the input authentication information data 13 and stores it in the key side memory 23. In step S14, the authentication information registration unit 14 determines whether the registered authentication information data 15 is an initial value. That is, it is determined whether or not an initial value is recorded in the area where the registration authentication information data 15 of the key memory 23 is stored. If it is the initial value, the authentication information data read and generated is registered at a predetermined address in the key-side memory 23 (step S15).

If the registration authentication information data 15 has already been registered, the registration authentication information data 15 is input to the authentication information comparison means 16 in step S16. In step S 17, the input authentication information data 13 stored in the key-side memory 23 is input to the authentication information comparison unit 16.
In step S18, the authentication information comparison unit 16 performs a comparison operation process between the input authentication information data 13 and the registered authentication information data 15. In this case, as is generally well known in the comparison operation of digital data, bits that match and bits that do not match are extracted, and for example, the number of bits that do not match is counted. In the case of multi-value data instead of binary data, a difference value between individual values is obtained.

Then, the total value is set as a substantial difference value and compared with a predetermined threshold value in step S19. In the case of general data comparison processing, it is only necessary to determine whether or not the two data match. However, in the case of authentication information data, there may be a slight difference between the reading condition when registering and the reading condition when holding the key to open the key. In this case, if the comparison process is too strict, the key cannot be unlocked. Therefore, in order to determine whether or not they are sufficiently similar, a so-called pattern comparison method is employed.

That is, if there is a certain degree of similarity or more, it is determined that they are similar, that is, are fingerprints of the same finger. For this purpose, a process for comparing the difference value and the threshold value is executed. For this purpose, the threshold value may be set according to the security level. In step S20, it is determined whether or not it is equal to or less than a threshold value. If below threshold, unlock. If it is equal to or greater than the threshold value, the process ends.

If it is equal to or less than the threshold value, the process proceeds to step S21 to generate unlocking data. Then, the unlock data is supplied to the unlock data registration request means 21 and the unlock request means 22. When the key 10 is inserted into the unlocking device 30, a response indicating whether unlocking data has already been registered is returned from the unlocking device 30. Here, it is determined in step S22 whether or not unlocking data has been registered. If registered, the process jumps to step S24. If it is not registered yet, an unlock data registration request is sent in step S23.

As a result, new unlock data is registered in the unlocking device. If the unlock data has already been registered, unlock data for unlock control is sent, and an unlock request is sent in step S24. Note that the user need not make any judgment in these processes. When the key is first pinched with the thumb and the thumb is placed on the fingerprint reading sensor 51, the registration authentication information data 15 is automatically registered. This operation may be performed when a room is designated at the hotel counter and a new key is received.

On the hotel side, the registration authentication information data 15 of the key 10 is reset in advance, and when the user pinches the key, the registration authentication information data 15 can be registered on the spot. In addition, the registered unlocking data 33 of the unlocking device 30 in the designated room is reset on the hotel side. Therefore, its key 1
If 0 is inserted into the unlocking device 30, the unlocking data is automatically registered at that time. Thereafter, the unlocking device 3 is operated unless the user operates the key to transmit unlocking data to the unlocking device.
0 does not work.

FIG. 5A is an operation flowchart of the unlocking device 30.
First, when an unlocking data registration request is received from the key 10 through the unlocking data registration receiving means 31 in step S31, the registered unlocking data 3 in the unlocking device side memory 38 in step S32.
It is determined whether 3 is an initial value. If it is an initial value, the process which memorize | stores unlocking data in the unlocking device side memory 38 in step S33 is performed. If it is not the initial value, step S33 is passed and the process proceeds to step S34. In step S 34, the registered unlock data 33 is transferred to the unlock data comparing means 34. In step S35, the unlocking data 37 received by the request receiving means 32.
Is transferred to the unlocking data comparison means 34.

Then, the two are compared (step S36). As a result of comparison, if the unlock data matches,
In step S37, the unlock control device 35 is activated and unlocked. In other cases, the unlocking operation is not performed. Normally, if an illegal act is attempted, the unlocking data registered in the unlocking device 30 is read out. However, as shown in this figure, the interface of the unlocking device 30 is only for receiving unlocking data from the outside, and has no other functions. If the device inside the unlocking device 30 is constituted by a one-chip microcomputer or the like, the internal data cannot be read or analyzed unless the unlocking device 30 is destroyed. Since it is not connected to a network or the like, the security is extremely high.

FIG. 5B is a flowchart for resetting the key, FIG. 5C is a flowchart for resetting the unlocking device, and FIG.
The reset operation of the key and the unlocking device will be described with reference to FIG. In (b), when the key 10 (FIG. 1) is mounted in the slot 68 of the key reset device 61, the switch circuit 67 detects the mounting in step S41 and activates the reset signal generation circuit 66. In step S <b> 42, the reset signal generation circuit 66 sends a reset signal to the key 10 through the reset signal output head 65. In (c), when the unlocking device reset card 62 is attached to the unlocking device 30 in step S51, the same processing is executed inside the unlocking device reset card 62 in step S52. Is done.

On the other hand, in FIG. 1, when a reset signal is input in step S61 of FIG. 5D, the reset means 17 is activated inside the key 10 and the registration authentication information data 15 stored in the key-side memory 23 is initialized. The value is rewritten (step S62). Also, exactly the same processing is executed inside the unlocking device 30, and when a reset signal is input, the reset means 36 is activated and the registered unlocking data 33 stored in the unlocking device side memory 38 is stored as an initial value. Rewrite to

FIG. 6 is an operation flowchart of the key.
This process shows a procedure in which the unlock request means 22 of the key 10 repeatedly transmits the unlock data and the unlock request. Thereby, while the unlocked state is maintained, when the key 10 moves away from the unlocking device 30, it is automatically locked. First, in step S11, the authentication information acquisition unit 11 acquires authentication information. In step S12, the authentication information comparison unit 16 compares the registered authentication information data 15 with the input authentication information data 13. Since this procedure has already been described with reference to FIG. 4, it is simply expressed as a comparison process. In step S13, the authentication information comparison unit 16 determines whether the difference is equal to or less than a threshold value. As already described with reference to FIG. 4, it is determined whether or not the input authentication information data 13 belongs to the user.

If it is the user's own, the result of this determination is yes, and the process proceeds to step S14. If the answer is no, the process is terminated. In step S14, the unlock data generation means 19 generates unlock data. In step S15, the unlock request means 22 generates an unlock request.
In step S16, the unlock request means 22 starts the program timer process. This is because the unlock data and the unlock request are transmitted at regular intervals. In step S <b> 17, the unlock request means 22 transmits an initial unlock request and unlock data to the unlocking device 30.

In step S18, it is determined whether or not the lock has been recognized. In this embodiment, when there is a notification of the locking state from the unlocking device 30, the unlocking request unit 22 recognizes this and displays the state using the display unit 24. For example, the display means 24 emits red light in the unlocked state, and emits green light in the locked state. In the unlocked state, since the result of determination in step S18 is no, the process proceeds to step S19. Then, the process proceeds to the process of repeatedly transmitting the unlocking request and the unlocking data. On the other hand, in the locked state, the result of the determination is yes and the process jumps to step S21. After locking, for safety reasons, post-processing is always performed to end all processing.

In step S19, it is determined whether or not the switch is off. When the key power supply or lock switch is forcibly turned off, post-processing after step S21 is performed. Note that this determination is unnecessary for keys without a power switch or the like. If the result of this determination is no, the process proceeds to step S20. In step S20, it is determined whether the time is up. In the unlocked state, when a certain period of time has passed since the unlock request and unlock data were sent,
The same transmission process is performed again. Accordingly, when the result of this determination is yes, the process returns to step S16. If no, wait. Step S21 and subsequent steps are post-processing after locking. In step S21, the unlock request means 22 initializes the unlock request and unlock data held for transmission. Thereafter, in step S22, the display unit 24 is used to display the lock. with this,
The key returns to the initial state. As described above, in order to hold the key in the unlocked state, the unlock request and the unlock data are continuously transmitted from the key 10 to the unlocking device 30, for example, every 30 seconds.

FIG. 7 is an automatic locking operation flowchart of the unlocking device.
First, in step S31, the request receiving means 32 of the unlocking device 30 receives the unlock request and the unlock data from the unlock request means 22 of the key 10. In step S32, the unlocking data comparison unit 34 compares the input unlocking data with the registered unlocking data according to the procedure already described with reference to FIG. In step S33, it is determined whether or not they match. When the result of this determination is yes, the process proceeds to step S34, and when no, the process proceeds to the locking process after step S42. In step S34, the unlock control device 35 is activated. In step S35,
The unlock control device 35 checks the key mechanism and determines whether or not the lock is locked.

When the result of this determination is yes, the process proceeds to step S36, and when the result is no, the process proceeds to step S37. If it is locked, it is the first unlocking request, so unlocking is performed in step S36. When unlocked, it is a request for unlocking for a certain period of time after the second time, so step S36 is skipped and the process proceeds to step S37. In step S37, the display means 3
9 shows the unlocked state. It is preferable to use an LED or the like. The display method may be the same as that of the key. In step S38, the unlock control device 35 starts a program timer. In step S39, the request receiving means 32 determines whether or not the second and subsequent unlock requests and unlock data have been received. If the result of this determination is yes, step S35
Return to the process. That is, the unlocked state is maintained as long as the unlock request and the unlock data are continuously received.

On the other hand, when the lock request and unlock data are not received, the process proceeds to step S40. In step S40, it is determined whether or not the lock button has been pressed. When the result of this determination is yes, the process proceeds to the end processing after step S42, and when no, step S4 is entered.
The process proceeds to 1. In step S41, it is determined whether the timer is up. This timer is for performing the locking process when the unlocking request from the key is not received for a certain time or longer. Therefore, when the result of this determination is yes, the process proceeds to the locking process after step S42, and when the result is no, the process proceeds to step S39.

In step S42, the unlock control device 35 performs a locking process. This is also the procedure described in FIG. When the locking process is completed, the locked state using the display means 39 is displayed in step S43. For example, when the display means 39 is connected to a key management center or the like via the network 48, the lock state may be notified to the corresponding management terminal device. Further, the unlocking request means 22 of the key 10 may be notified of the locking state through the network 48. The network may be a LAN (Local Area Network) or the Internet. Communication between the key 10 and the unlocking device 30 can be realized by freely using infrared rays, radio waves, light, and other various means. Even if the authentication information is characters, symbols, images, or other various types of data, the other configurations may be exactly the same by changing the authentication information acquisition unit 11. In order to use the password, it is only necessary to add a numeric input button to the key shown in FIG.

In the above apparatus, for example, it is assumed that the user has dropped the key 10. The person who picks up the key 10 cannot open the door illegally because the fingerprint is different. Further, even if the person who picks up the key 10 destroys the inside and takes out the registration authentication information data 15, the registration authentication information data 15 itself is subjected to predetermined calculation processing by the authentication information data generation means 12. This data is different from personal biometric data and cannot be used illegally.

On the other hand, on the hotel side, the administrator immediately prepares a new key 10 and resets the registered unlocking data 33 of the unlocking device 30. The user again generates new unlocking data and unlocks the unlocking device 30.
You can register for. Thus, the door is opened and closed by completely new unlocking data. That is, even if the key is lost, the lost key is discarded and no problem occurs.

Further, since the key identification code 18 is individual data for each key 10, when the same user generates unlocking data with another key 10, it becomes different from the original unlocking data. If the key 10 is made disposable, the same unlocking data will never be used, so it can be used as a highly secure key. In addition, when a plurality of users require a key to be a key, two or more unlocking data may be registered. The key that the hotel manager enters for cleaning the room may be registered in the same manner. If the unlocking device side is a closed system that is not connected to a network or the like, there is no means for reading unlocking data from the outside, so safety is high.

In addition, the unlocking device described above is configured so that the unlocking request unit 22 and the request receiving unit 32 repeatedly communicate to maintain the unlocked state and forcibly lock the lock promptly when communication is not possible. Control. Therefore, for example, in addition to the known auto-lock function or instead of the known auto-lock function, forgetting to lock the key can be surely prevented. In addition, mobile phones that can use biometric information for user authentication have been developed. The above key function can be mounted on such a mobile phone to make a mobile phone with a key. The key and the unlocking device as described above are particularly suitable for hotels, rental houses, etc., where the unspecified user uses the key, but can also be used in a wide range of fields such as houses, automobiles, and the like. Furthermore, the present invention can be implemented by installing the key program on a card-type key. Further, the present invention can be implemented by installing the above-described unlocking device program in an unlocking device that is separated from an external network or the like and has only an interface with a key.

The functional block diagram which shows the internal structure of the key apparatus based on this invention. The external appearance perspective view of a key and an unlocking apparatus. Hardware block diagram of each part of the key device and the reset device. The flowchart which shows the specific operation | movement of a key apparatus. The flowchart which shows the specific operation | movement of an unlocking apparatus. The operation | movement flowchart of a key. The automatic locking operation | movement flowchart of an unlocking apparatus.

Explanation of symbols

10 keys, 11 authentication information acquisition means, 12 authentication information data generation means, 13 input authentication information data, 14 authentication information registration means, 15 registration authentication information data, 16 authentication information comparison means, 17 reset means, 18 key identification code, 19 Unlock data generation means, 21
Unlock data registration request means, 22 unlock request means, 23 key side memory, 24 display means,
30 unlocking device, 31 unlocking data registration receiving means, 32 request receiving means, 33 registered unlocking data, 34 unlocking data comparison means, 35 unlocking control device, 36 resetting means, 37
Unlocking data, 38 Unlocking device side memory, 39 Display means, 40 Locking button

Claims (9)

Authentication information acquisition means for acquiring authentication information;
Authentication information data generating means for accepting the authentication information acquired by the authentication information acquiring means and generating predetermined authentication processing to generate authentication information data;
Authentication information registration means for storing authentication information data generated by the authentication information data generation means and storing and storing it in the key side memory as registration authentication information data;
When the input authentication information data generated by the authentication information data generation means from the authentication information data newly acquired by the authentication information acquisition means is compared with the registered authentication information data stored in the key side memory, and they match. Only in the authentication information comparing means for activating the unlocking data generating means,
The unlocking data is generated based on the key identification code unique to the key, which is activated by the authentication information comparing means and stored in advance in the key side memory, and the registration authentication information data stored in the key side memory. Unlocking data generation means;
Unlocking data generated by the unlocking data generating means is transferred to the unlocking device, and unlocking data registration requesting means for registering new unlocking data;
After unlocking data is registered, in order to unlock the locked key, the unlocking data generated by the unlocking data generating means is transferred to the unlocking device at an arbitrary timing to request unlocking. Unlocking request means,
The unlocking requesting means transfers the unlocking data to the unlocking device at predetermined intervals after unlocking the key. The key of claim 1,
The authentication information data generation means generates registered authentication information data from either one or both of a password and biometric information. When receiving the unlocking data registration request from the key, the unlocking data registration accepting means for accepting transfer of the unlocking data and storing and storing new registered unlocking data in the unlocking device side memory;
After registering the unlock data, in order to unlock the locked key, an unlock request receiving means for receiving an unlock request from the key and receiving transfer of the unlock data;
Compared with the unlocking data stored in the unlocking device side memory and the unlocking data received by the unlocking request accepting means, the unlocking data that activates the unlocking control device only when they match each other A comparison means;
An unlocking control device which is activated by the unlocking data comparing means and controls an operation of unlocking the locked key;
Comprising reset means for resetting the registered unlocking data stored in the unlocking device side memory,
The unlocking data registration accepting means is only when the registered unlocking data is reset,
A process for storing and storing new unlocking data in the unlocking device side memory is executed,
The unlock request receiving means acquires the unlock data from the key at predetermined intervals by automatic communication,
The unlocking data comparing means compares the registered unlocking data stored in the unlocking device side memory with the unlocking data automatically acquired by the unlocking request receiving means, and when both do not match, An unlocking device that requests the unlocking control device to lock a key being unlocked. The unlocking device according to claim 3,
The request accepting unit erases the unlocking data stored in the unlocking device side memory when unlocking data cannot be acquired from the key. The unlocking device according to claim 3,
An unlocking device, comprising: a display means for displaying an end of locking when the unlocking control device locks a key being unlocked. The unlocking device according to claim 5,
The unlocking device, wherein the display means notifies the key whether the key is being unlocked or locked through a network. The key of claim 1,
After the unlocking data is transferred to the unlocking device side, when communication with the unlocking device side is not established, it is provided with a display means for displaying whether the key is unlocked or locked. Key to do. Computer
Authentication information acquisition means for acquiring authentication information;
Authentication information data generating means for accepting the authentication information acquired by the authentication information acquiring means and generating predetermined authentication processing to generate authentication information data;
Authentication information registration means for storing authentication information data generated by the authentication information data generation means and storing and storing it in the key side memory as registration authentication information data;
When the input authentication information data generated by the authentication information data generation means from the authentication information data newly acquired by the authentication information acquisition means is compared with the registered authentication information data stored in the key side memory, and they match. Only in the authentication information comparing means for activating the unlocking data generating means,
The unlocking data is generated based on the key identification code unique to the key, which is activated by the authentication information comparing means and stored in advance in the key side memory, and the registration authentication information data stored in the key side memory. Unlocking data generation means;
Unlocking data generated by the unlocking data generating means is transferred to the unlocking device, and unlocking data registration requesting means for registering new unlocking data;
After unlocking data is registered, in order to unlock the locked key, the unlocking data generated by the unlocking data generating means is transferred to the unlocking device at an arbitrary timing to request unlocking. Unlocking request means,
The unlock request means transfers the unlock data to the unlock device side every predetermined time after unlocking the key,
Program for keys to function as. Computer
When receiving the unlocking data registration request from the key, the unlocking data registration accepting means for accepting transfer of the unlocking data and storing and storing new registered unlocking data in the unlocking device side memory;
After registering the unlock data, in order to unlock the locked key, an unlock request receiving means for receiving an unlock request from the key and receiving transfer of the unlock data;
Compared with the unlocking data stored in the unlocking device side memory and the unlocking data received by the unlocking request accepting means, the unlocking data that activates the unlocking control device only when they match each other A comparison means;
An unlocking control device which is activated by the unlocking data comparing means and controls an operation of unlocking the locked key;
Comprising reset means for resetting the registered unlocking data stored in the unlocking device side memory,
The unlocking data registration accepting means is only when the registered unlocking data is reset,
A process for storing and storing new unlocking data in the unlocking device side memory is executed,
The unlock request receiving means acquires the unlock data from the key at predetermined intervals by automatic communication,
The unlocking data comparing means compares the registered unlocking data stored in the unlocking device side memory with the unlocking data automatically acquired by the unlocking request receiving means, and when both do not match, Requesting the unlocking control device to lock the unlocking key,
Program for unlocking device to function as.

Images