JP2007259280A - Radio communication reliability construction system, radio terminal and radio communication reliability construction method - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a system capable of constructing the reliability of radio communication between a radio terminal and a device by preventing the impersonation of a third person. <P>SOLUTION: In a reliable relation transmission module 12 of a terminal 1, reliability construction request information is created which contains at least private information generated for constructing a reliable relation on radio communication between the terminal 1 and a device 2, and the created information is transmitted from a radio wave output variable radio communication module 13 to the target device 2 while minimizing output radio waves. In a reliable relation reception module 22, a hash value is generated from a device ID which is received when a reliability construction response is redirected from the device 2, and the private information transmitted beforehand, the reliability construction response containing a hash value that has been generated from a device ID specific for the relevant device 2 and the received private information, and the device ID, and the coincidence of the reliability construction response with the hash value is confirmed. Furthermore, a device name acquired from a device number management server 3 is outputted from a user input/output module 11 and after user confirmation is obtained, a confirmation response containing a hash value created separately is redirected to the device 2. In the device 2, similar confirmation is also performed. <P>COPYRIGHT: (C)2008,JPO&INPIT

Description

  The present invention relates to a wireless communication trust construction system, a wireless terminal, and a wireless communication trust construction method, and in particular, uses such as constructing a trust relationship in wireless communication between the two when operating an information home appliance using a remote control function of a mobile phone or the like. The present invention relates to a wireless communication trust construction system, a wireless terminal, and a wireless communication trust construction method applied to the above.

  In order for a user to safely operate an information home appliance in the home by wireless communication using a mobile phone as an operation terminal, it is important to prevent the user from operating it. For this purpose, it is necessary to perform authentication in both the mobile phone and the information home appliance. For authentication, secret information must be shared with each other as an initial setting (see Patent Document 1).

Generally, a method of inputting a password to each of the mobile phone and the information home appliance can be considered. However, it is difficult to set a password because the information home appliance usually has a poor user interface. For this reason, it is conceivable to set a password for the information home appliance from the mobile phone via the wireless section, but there is a possibility that it is eavesdropped in the vicinity where the wireless signal reaches.
JP 2004-215232 A (page 10-11)

In order to solve the above-described problems, a mechanism is required in which secret information is not intercepted by a third party when secret information such as a password is exchanged.
Furthermore, in general terms, there are the following problems. When establishing a trust relationship between the wireless terminal and the device in an environment where wireless communication is performed between the wireless terminal and the device, the trust building information (secret information between the wireless terminal and the device) is transmitted to a third party within the reach of the radio wave. There is a possibility that the wireless terminal or the device is impersonated based on the trust construction information that is wiretapped by a third party. In a state where a trust relationship is not established between the wireless terminal and the device, it is impossible to confirm whether communication with the correct partner is possible even if encrypted communication can be performed.

  For this reason, when performing a procedure for establishing a wireless communication trust relationship between the wireless terminal and the device, not only a mechanism for sharing secret information between the wireless terminal and the device, but also authenticating each other's legitimacy It is also necessary to introduce a mechanism.

  In view of such circumstances, the present invention provides a device for connecting a wireless terminal when sharing trust construction information (secret information only between the wireless terminal and the device) in order to establish a trust relationship between the wireless terminal and the device. Only when the wireless terminal transmits trust construction information, the radio output is reduced to prevent eavesdropping by a third party, and the trust construction information is transmitted to the device. The purpose is to provide a mechanism for confirming that the trust building information can be shared by both parties based on the trust building information and authenticating each other's legitimacy after sending the trust building information It is said.

  In order to solve the above-described problems, the wireless communication trust construction system, the wireless terminal, and the wireless communication trust construction method according to the present invention employ the following characteristic configuration.

(1) In a wireless communication trust construction system that establishes a mutual wireless communication trust relationship between a wireless terminal and a device that exchange information using wireless radio waves, the wireless terminal is connected to the device When transmitting to the device the generating means for generating secret information for building the trust relationship and the trust building request information including at least the generated secret information, the output radio wave is changed to be kept small and transmitted. A radio communication trust construction system comprising radio wave output variable radio communication means capable of performing the above.
(2) The device that has received the trust construction request information from the wireless terminal generates a hash value from the secret information included in the trust construction request information and a device ID that can uniquely identify the device. The wireless communication trust construction system according to (1), wherein a trust construction response including at least the generated hash value and the device ID is generated and returned to the wireless terminal that is the transmission source of the trust construction request information.
(3) When the wireless terminal that has transmitted the trust construction request information to the device receives the trust construction response, the wireless terminal first transmits the device ID included in the trust construction response and the wireless terminal. The authenticity of the device is authenticated by generating a hash value from the secret information of the trust construction request information and confirming that it matches the hash value included in the trust construction response The wireless communication trust construction system according to (2) above.
(4) When further comprising a device name management server that registers a correspondence relationship between the device name of each device and a device ID that can uniquely identify each device, and the wireless terminal authenticates the validity of the device A device name request for requesting a return of a device name corresponding to a device ID included in the trust construction response is sent to the device name management server, and a device name returned from the device name management server (3) The wireless communication trust construction system according to (3) above, which displays a screen for user confirmation.
(5) When the wireless terminal displaying the device name on the screen receives a confirmation notification from the user, the wireless terminal uniquely identifies the wireless terminal and the secret of the trust construction request information transmitted earlier The wireless communication trust construction system according to (4), wherein a hash value is generated from the information, and a confirmation notification including at least the generated hash value and the terminal ID is transmitted to the device that is the transmission source of the trust construction response. .
(6) The device that has received the confirmation notification from the wireless terminal generates a hash value from the terminal ID included in the confirmation notification and the secret information of the trust construction request information received earlier, The wireless communication trust construction system according to (5), wherein the validity of the wireless terminal is authenticated by confirming that it matches the hash value included in the confirmation notification.
(7) The wireless communication trust construction system according to (6), wherein information exchange between the wireless terminal and the device is performed based on the secret information shared by both.
(8) In a wireless terminal that establishes a mutual trust relationship in wireless communication with a device that exchanges information using wireless radio waves, secret information for creating a trust relationship with the device is generated And a radio wave output variable radio communication unit capable of changing and suppressing the output radio wave to be small when transmitting the trust building request information including at least the generated secret information to the device. Wireless terminal equipped with.
(9) In a wireless communication trust construction method for constructing a trust relationship in wireless communication between a wireless terminal and a device that exchange information using wireless radio waves, the wireless terminal is connected to the device. Wireless communication trust that generates secret information for constructing a trust relationship and transmits the trust construction request information including at least the generated secret information to the device while changing the output radio wave to suppress it to a small level Construction method.
(10) The device that has received the trust construction request information from the wireless terminal generates a hash value from the secret information included in the trust construction request information and a device ID that can uniquely identify the device. The wireless communication trust construction method according to (9), wherein a trust construction response including at least the generated hash value and the device ID is generated and returned to the wireless terminal that is the transmission source of the trust construction request information.
(11) When the wireless terminal that has transmitted the trust construction request information to the device receives the trust construction response, the wireless terminal first transmits the device ID included in the trust construction response and the wireless terminal. The authenticity of the device is authenticated by generating a hash value from the secret information of the trust construction request information and confirming that it matches the hash value included in the trust construction response (10) The wireless communication trust construction method according to (10).
(12) In the case where the device further includes a device name management server that registers a correspondence between a device name of each device and a device ID that can uniquely identify each device, and the wireless terminal authenticates the validity of the device A device name request for requesting a return of a device name corresponding to a device ID included in the trust construction response is sent to the device name management server, and a device name returned from the device name management server (11) The wireless communication trust construction method according to the above (11), wherein the screen is displayed to ask the user for confirmation.
(13) When the wireless terminal displaying the device name on the screen receives a confirmation notification from the user, the wireless terminal uniquely identifies the wireless terminal and the secret of the trust construction request information transmitted earlier The wireless communication trust construction method according to (12), wherein a hash value is generated from the information, and a confirmation notification including at least the generated hash value and the terminal ID is transmitted to the device that is the transmission source of the trust construction response. .
(14) The device that has received the confirmation notification from the wireless terminal generates a hash value from the terminal ID included in the confirmation notification and the secret information of the trust construction request information received earlier, The wireless communication trust construction method according to (13), wherein the validity of the wireless terminal is authenticated by confirming that it matches the hash value included in the confirmation notification.
(15) The wireless communication trust construction method according to (14), wherein information exchange between the wireless terminal and the device is performed based on the secret information shared by both.

  According to the wireless communication trust construction system, the wireless terminal, and the wireless communication trust construction method of the present invention, the following effects can be obtained.

  The first effect is that a user who possesses a wireless terminal approaches a device for which a trust relationship is to be established and performs a trust relationship construction operation, so that an eavesdropping between the wireless terminal and the device is possible without being intercepted by a third party. It is to be able to share secret information safely. The reason is that when transmitting secret information from the wireless terminal to the device, the radio wave output is reduced and transmitted to the device, so that the secret information is not wiretapped by a third party. Further, by performing mutual authentication based on the shared secret information, a wireless communication trust relationship can be established without eavesdropping by a third party.

  The second effect is that the radio wave output variable wireless communication module can be used only for the wireless terminal, and a general wireless communication module can be used for the other communication device, that is, the device that constructs the trust relationship. The reason is that, based on the secret information transmitted by the wireless terminal with low output power, it is then encrypted using the secret information between the wireless terminal and the device, and information related to authentication and information after authentication are transmitted and received. This is because the information received between each other is decrypted to confirm the communication contents.

  A third effect is that even in a wireless environment, a user can confirm a device that has established a trust relationship. The reason is that the wireless terminal can check the device in front of the user in the state where the user who owns the wireless terminal is approaching the device that wants to establish a wireless communication trust relationship. This is because the information is displayed on the screen and the establishment of the trust relationship is confirmed.

  According to the present invention in which such effects are obtained, for example, when a mobile phone is used as a wireless terminal and an information home appliance remotely controlled from the mobile phone is used as a device, after establishing a trust relationship, the device ID and the secret Based on the information, the information home appliance can confirm that the mobile phone may be operated. Therefore, the present invention can be suitably applied to uses such as building a trust relationship with information appliances using a remote control function of a mobile phone.

  Hereinafter, preferred embodiments of a wireless communication trust construction system, a wireless terminal and a wireless communication trust construction method according to the present invention will be described with reference to the accompanying drawings. First, the outline of the features of the present invention will be described.

[Features of the invention]
The present invention provides an environment in which wireless communication between a wireless terminal and a device is performed when the wireless terminal performs a procedure for establishing a trust relationship with the device in a state where the wireless terminal and the device have not established a trust relationship. Only by bringing the wireless terminal and the device close to each other and reducing the radio wave output, the wireless terminal can be prevented from receiving radio waves other than the device that the wireless terminal is close to, and the wireless terminal and the device placed in close proximity can be safely and reliably The feature is to build. The trust relationship here means that the wireless terminal and the device have confirmed that the secret information for recognizing each other can be safely shared, that is, the mutual validity can be authenticated. I mean.

  Here, the wireless terminal in the present invention is a terminal that transmits and receives wireless radio waves, and has a wireless communication function such as a mobile phone, a PHS (Personal Handy-Phone System), a PDA (Personal Digital Assistants), and a notebook PC. As long as it is a mobile terminal, it may be in any form. In the following description, a wireless terminal is simply abbreviated as a terminal. The device may be any device that has a wireless communication function and can exchange information with the wireless terminal, such as an information home appliance, an information communication device, and an image processing device. In addition, the radio waves used are 800 MHz band, 1.5 GHz band, 1.9 GHz band, IEEE802.11a / b / g for wireless LAN, Bluetooth used in mobile phones and PHS, or in some cases, Infrared radio may be used.

[Configuration of Example]
Next, the configuration of the embodiment of the present invention will be described in detail with reference to FIG. FIG. 1 is a system configuration diagram showing a configuration example of a wireless communication trust construction system of the present invention. Referring to FIG. 1, a wireless communication trust construction system 100 according to the present invention includes a terminal 1, a device 2, and a device number management server 3.

  The terminal 1 includes at least a user input / output module 11, a trust relationship transmission module 12, a radio wave output variable wireless communication module 13, and a trust construction database 14. The user input / output module 11 is used for the user to operate the terminal 1 and display information related to the trust relationship. When the operation for establishing the trust relationship with the device 2 is performed by the user, the user input / output module 11 Call the sending module 12.

  The trust relationship transmission module 12 generates secret information to be shared with the device 2 when called from the user input / output module 11 in response to a trust relationship construction operation. Also, the trust relationship transmission module 12 acquires a terminal ID that can uniquely identify the terminal 1 from the trust construction database 14 or registers the device 2 that has established a trust relationship with the terminal 1.

  Further, the trust relationship transmission module 12 calls the radio wave output variable radio communication module 13 and transmits to the apparatus 2 trust construction request information including the generated secret information and the terminal ID of the terminal. Further, the trust relationship transmission module 12 inquires of the device number management server 3 in order to acquire the device name of the device 2 from the device ID of the device 2 that establishes the trust relationship. Further, the trust relationship transmission module 12 can also generate a hash value between the secret information and the terminal ID.

  When the radio wave output variable radio communication module 13 is called from the trust relationship transmission module 12 and receives the trust construction request information from the trust relationship transmission module 12, the radio wave output variable radio communication module 13 transmits the trust construction request information to the device 2. Reduce the output and send. When transmitting / receiving information other than the trust construction request information, the apparatus 2 communicates with a steady radio wave output. The radio wave output variable radio communication module 13 communicates with a steady radio wave output when communicating with the device number management server 3.

  The trust construction database 14 stores the terminal ID of the terminal 1. Also, the generated secret information, the device ID of the device 2 that established the trust relationship, and the device name corresponding to the device ID acquired from the device number management server 3 are registered.

  The device 2 includes at least a wireless communication module 21, a trust relationship receiving module 22, and a device side trust construction database 23. The wireless communication module 21 is for the device 2 to communicate with the terminal 1 wirelessly. The trust construction request information received from the terminal 1 is sent to the trust relationship receiving module 22.

  The trust relationship receiving module 22 registers the terminal ID and secret information included in the trust construction request information sent from the terminal 1 in the device side trust construction database 23. Further, the trust relationship receiving module 22 acquires a device ID that can uniquely identify the device 2 from the device-side trust construction database 23. Further, the trust relationship receiving module 22 can generate a hash value from the secret information and device ID included in the trust construction request information sent from the terminal 1.

  The device-side trust construction database 23 stores the device ID of the device 2. Further, the terminal ID and secret information of the terminal 1 that has established the trust relationship are registered.

  The device number management server 3 provides device name management means for managing a device ID and device name that can uniquely identify the device 2 in association with each other, and includes a wireless communication module 31, a device ID search module 32, and a device. An ID database 33 is included at least. The wireless communication module 31 is for the device number management server 3 to communicate with the terminal 1 wirelessly. Inquiry data regarding the device ID received from the terminal 1 is sent to the device ID search module 32. Further, the wireless communication module 31 transmits the device name sent from the device ID search module 32 to the terminal 1 that has made the inquiry.

  The device ID search module 32 searches the device ID database 33 for a corresponding device name based on the device ID received from the terminal 1. When the device name is returned from the device number management server 3 to the terminal 1, the device name is displayed on the screen of the terminal 1, and this device name is the user who has the terminal 1 and approaches the device 2 Is used as information for confirming the device 2 in front of the user. In the device ID database 33, the correspondence between the device ID and the device name is registered.

[Description of operation of embodiment]
Next, the operation of the wireless communication trust construction system 100 shown in FIG. 1 will be described using the flowchart of FIG. FIG. 2 is a flowchart for explaining an example of the operation of the wireless communication trust construction system 100 according to the present invention, and shows a procedure for constructing a trust relationship between the terminal 1 and the device 2. .

  First, when the user performs an operation for establishing a trust relationship with the device 2 in the user input / output module 11 of the terminal 1 while holding the terminal 1 and in the vicinity of the device 2, the user input / output module 11 The trust relationship transmission module 12 is called (step S1). The trust relationship transmission module 12 acquires the terminal ID of the terminal 1 from the trust construction database 14 (step S2). Further, after generating the secret information (step S3), the trust relationship transmission module 12 sends the trust construction request information including the acquired terminal ID and the generated secret information to the radio wave output variable radio communication module 13 (step S4). ). When the radio wave output variable radio communication module 13 receives the trust construction request information from the trust relationship transmission module 12, the radio wave output variable radio communication module 13 reduces the output of the radio wave and transmits the trust construction request information including the terminal ID and the secret information to the device 2 ( Step S5).

  Upon receiving the terminal ID and the secret information, the wireless communication module 21 of the device 2 sends it to the trust relationship receiving module 22 (step S6). The trust relationship receiving module 22 acquires the device ID of the device 2 from the device-side trust construction database 23 (step S7). The trust relationship receiving module 22 generates a hash value based on the received secret information and the acquired device ID, creates a trust construction response including the device ID and the hash value, and sends it to the wireless communication module 21. (Step S8). The wireless communication module 21 transmits a trust construction response including the device ID and the hash value to the terminal 1 that has transmitted the trust construction request information (step S9).

  When receiving the trust construction response including the device ID and the hash value, the radio wave output variable wireless communication module 13 of the terminal 1 sends it to the trust relationship transmission module 12 (step S10). When receiving the trust construction response including the device ID and the hash value, the trust relationship transmission module 12 uses the secret information generated and transmitted in the trust construction request information, and the sent device ID. A hash value is generated, and it is confirmed whether or not it matches the sent hash value (step S11). By confirming that the generated hash value matches the hash value sent, it is possible to confirm the validity of the trust construction response sent from the device 2 and sent.

  When confirmation of the validity of the trust construction response is obtained, the trust relationship transmission module 12 transmits a device name request including the device ID to the radio wave output variable wireless communication module 13 (step S12). The radio wave output variable wireless communication module 13 transmits a device name request including the device ID to the device number management server 3 (step S13).

  When receiving the device name request including the device ID, the wireless communication module 31 of the device number management server 3 sends it to the device ID search module 32 (step S14). The device ID search module 32 searches the device ID database 33 for the device name from the device ID, and sends the device name corresponding to the device ID to the wireless communication module 31 as a device name response (step S15). The wireless communication module 31 transmits a device name response to the terminal 1 (step S16).

  The radio wave output variable wireless communication module 13 of the terminal 1 that has received the device name response sends the device name response to the trust relationship transmission module 12 (step S17). The trust relationship transmission module 12 acquires the device name from the device name response and sends the device name to the user input / output module 11 (step S18). The user input / output module 11 displays the device name (step S19). When the user collates and confirms the displayed device name with the device name of the device 2 in front of him and performs a confirmation operation, the user input / output module 11 transmits a confirmation notification to the trust relationship transmission module 12. (Step S20). Here, if the terminal 1 and the device 2 are connected by wire, the user can visually confirm that the destination to which the terminal 1 is connected is the device 2 that is communicating. However, when the communication between the terminal 1 and the device 2 is wireless, the connection destination cannot be visually confirmed as in the case of wired connection, so that the device name of the device 2 that is communicating can be confirmed. .

  Upon receiving the confirmation notification from the user, the trust relationship transmission module 12 registers the device ID and the secret information in the trust construction database 14 as trust construction information, assuming that the validity of the device 2 has been authenticated (step S21). . Thereafter, the trust relationship transmission module 12 generates a hash value from the terminal ID and the secret information, and transmits it to the apparatus 2 as a confirmation notification including the terminal ID and the generated hash value. The data is sent to the communication module 13 (step S22). The radio wave output variable wireless communication module 13 transmits a confirmation notification including the terminal ID and the hash value to the device 2 (step S23).

  The wireless communication module 21 of the device 2 that has received the confirmation notification sends a confirmation notification including the terminal ID and the hash value to the trust relationship receiving module 22 (step S24). Upon receipt of the confirmation notification, the trust relationship receiving module 22 generates a hash value from the sent terminal ID and the secret information included in the trust construction request information received earlier, and the sent hash value and By confirming whether or not they match, the validity of the confirmation notification is confirmed (step S25). When it is confirmed that the hash values match, it is recognized as a valid confirmation notification, and it is confirmed that the confirmation notification is transmitted from the legitimate terminal 1 of the other party that has returned the trust construction response from the device 2. Can do. Thus, the received terminal ID and secret information are registered in the device-side trust construction database 23 as trust construction information, assuming that the legitimacy of the transmission source terminal 1 has been authenticated (step S26).

  After the processing from step S1 to step S26 in FIG. 2 is completed, communication between the terminal 1 and the device 2 is performed by encrypting information based on secret information shared as trust construction information, Information can be sent and received.

  FIG. 3 is a schematic diagram schematically showing the radio wave reachable range of the radio wave output variable radio communication module 13 provided in the terminal 1, and shows the radio wave reachable range when secret information is transmitted as the trust construction request information. This is shown schematically. In other words, the radio wave transmitted from the radio wave output variable radio communication module 13 of the terminal 1 is a normal radio information reachable range A2 when transmitting trust construction request information including secret information that is not allowed to be intercepted by a third party. Can reach the device 2 as long as it does not move to a position close to the device 2 to which the trust construction request information is transmitted. The radio signal is so weak that it cannot be done. Therefore, even if the third party terminal 4 is in the vicinity of the terminal 1 and within the normal radio wave reachable range A1, it is out of the radio wave reachable range A2 when transmitting confidential information. The secret information cannot be intercepted.

  Unlike the terminal 1 side, the wireless communication module 21 on the device 2 side does not transmit secret information itself, and as shown in FIG. The wireless communication module can be used as it is.

  As is clear from the above description, the following effects are obtained in the wireless communication trust construction system, the wireless terminal, and the wireless communication trust construction method of the present invention.

  The first effect is that the user who possesses the terminal 1 approaches the device 2 that wants to establish a trust relationship and performs an operation of establishing the trust relationship, so that the terminal 1 and the device 2 The secret information can be safely shared between the two. The reason is that when secret information is transmitted from the terminal 1 to the device 2, the radio wave output is reduced and transmitted to the device 2, so that the secret information is not wiretapped by a third party. Further, by performing mutual authentication based on the shared secret information, a wireless communication trust relationship can be established without eavesdropping by a third party.

  The second effect is that the radio wave output variable wireless communication module 13 is used only for the terminal 1, and a general wireless communication module can be used for the other communication device, that is, the device 2 side for establishing the trust relationship. . The reason is that, based on the secret information transmitted by the terminal 1 with low output power, the terminal 1 and the device 2 then encrypt using the secret information and mutually confirm the communication contents. is there.

  A third effect is that the user can visually check the device 2 that is trying to establish a trust relationship even in a wireless environment. The reason is that the terminal 1 confirms the establishment of the trust relationship by displaying information such as the device name on the screen that allows the user who owns the terminal 1 to confirm the device 2 in front of him. Because.

  The present invention that can obtain the effect as described above can be suitably applied to, for example, an application in which a trust relationship with an information home appliance is established using a remote control function of a mobile phone or the like.

  The configuration of the preferred embodiment of the present invention has been described above. However, it should be noted that such examples are merely illustrative of the invention and do not limit the invention in any way. Those skilled in the art will readily understand that various modifications and changes can be made according to a specific application without departing from the gist of the present invention.

1 is a system configuration diagram showing a configuration example of a wireless communication trust construction system of the present invention. It is a flowchart for demonstrating an example of operation | movement of the radio | wireless communication trust construction system by this invention. It is the schematic diagram which showed typically the radio wave reachable range of the radio wave output variable radio | wireless communication module with which the terminal was equipped.

Explanation of symbols

1 Terminal 2 Device 3 Device Number Management Server 4 Third Party Terminal 11 User Input / Output Module 11
DESCRIPTION OF SYMBOLS 12 Trust relationship transmission module 13 Radio wave output variable radio communication module 14 Trust construction database 21 Wireless communication module 22 Trust relationship receiving module 23 Device side trust construction database 31 Wireless communication module 32 Device ID search module 33 Device ID database 100 Wireless communication trust construction system

Claims (15)

  In a wireless communication trust construction system that establishes a mutual trust relationship in wireless communication between a wireless terminal and a device that exchange information using wireless radio waves, the wireless terminal has a trust relationship with the device. When transmitting to the device the generation means for generating secret information for construction and the trust construction request information including at least the generated secret information, it is possible to change the output radio wave and transmit the information while keeping it small. A wireless communication reliability construction system comprising: a variable radio communication means for variable radio wave output.   The device that has received the trust construction request information from the wireless terminal generates a hash value from the secret information included in the trust construction request information and a device ID that can uniquely identify the device, and generates the hash value 2. The wireless communication trust construction according to claim 1, wherein a trust construction response including at least the hash value and the device ID is generated and returned to the wireless terminal that is the transmission source of the trust construction request information. system.   The wireless terminal that has transmitted the trust construction request information to the device, when receiving the trust construction response, the device ID included in the trust construction response and the trust that the wireless terminal has transmitted first. Generating a hash value from the secret information of the construction request information, and authenticating the validity of the device by confirming that the hash value is included in the trust construction response. The wireless communication trust construction system according to claim 2.   The device further includes a device name management server that registers the correspondence between the device name of each device and a device ID that can uniquely identify each device, and when the wireless terminal authenticates the device, the device A device name request for requesting the return of the device name corresponding to the device ID included in the trust construction response is transmitted to the name management server, and the device name returned from the device name management server 4. The wireless communication trust construction system according to claim 3, wherein a screen is displayed to request confirmation.   When the wireless terminal displaying the device name on the screen receives a confirmation notification from the user, the wireless terminal uniquely identifies the wireless terminal and the secret information of the trust construction request information transmitted earlier. The wireless communication according to claim 4, wherein a hash notification is generated, and a confirmation notification including at least the generated hash value and the terminal ID is transmitted to the device that is the transmission source of the trust construction response. Trust building system.   The device that has received the confirmation notification from the wireless terminal generates a hash value from the terminal ID included in the confirmation notification and the secret information of the trust construction request information received earlier, and the confirmation notification The wireless communication trust construction system according to claim 5, wherein the validity of the wireless terminal is authenticated by confirming that the hash value included in the wireless terminal matches the hash value.   The wireless communication trust construction system according to claim 6, wherein information exchange between the wireless terminal and the device is performed based on the secret information shared by both.   Generation means for generating secret information for establishing a trust relationship with the device in a wireless terminal that establishes a trust relationship for mutual wireless communication with a device that exchanges information using radio waves And radio wave output variable radio communication means capable of changing and suppressing the output radio wave to be small when transmitting the trust building request information including at least the generated secret information to the device. A wireless terminal.   In a wireless communication trust construction method for establishing a mutual trust relationship in wireless communication between a wireless terminal and a device that exchange information using wireless radio waves, the wireless terminal has a trust relationship with the device. A radio that generates secret information for construction and transmits the trust construction request information including at least the generated secret information to the device while changing the output radio wave to keep the information small. Communication trust building method.   The device that has received the trust construction request information from the wireless terminal generates a hash value from the secret information included in the trust construction request information and a device ID that can uniquely identify the device, and generates the hash value 10. The wireless communication trust construction according to claim 9, wherein a trust construction response including at least the hash value and the device ID is generated and returned to the wireless terminal that is the transmission source of the trust construction request information. Method.   The wireless terminal that has transmitted the trust construction request information to the device, when receiving the trust construction response, the device ID included in the trust construction response and the trust that the wireless terminal has transmitted first. Generating a hash value from the secret information of the construction request information, and authenticating the validity of the device by confirming that the hash value is included in the trust construction response. The wireless communication trust construction method according to claim 10.   The device further includes a device name management server that registers the correspondence between the device name of each device and a device ID that can uniquely identify each device, and when the wireless terminal authenticates the device, the device A device name request for requesting the return of the device name corresponding to the device ID included in the trust construction response is transmitted to the name management server, and the device name returned from the device name management server The wireless communication trust construction method according to claim 11, wherein a screen display is performed to request confirmation of the wireless communication.   When the wireless terminal displaying the device name on the screen receives a confirmation notification from the user, the wireless terminal uniquely identifies the wireless terminal and the secret information of the trust construction request information transmitted earlier. 13. The wireless communication according to claim 12, wherein a hash notification is generated, and a confirmation notification including at least the generated hash value and the terminal ID is transmitted to the device that is the transmission source of the trust construction response. Trust building method.   The device that has received the confirmation notification from the wireless terminal generates a hash value from the terminal ID included in the confirmation notification and the secret information of the trust construction request information received earlier, and the confirmation notification The wireless communication trust construction method according to claim 13, wherein the validity of the wireless terminal is authenticated by confirming that the hash value included in the wireless terminal matches the hash value.   15. The wireless communication trust building method according to claim 14, wherein information exchange between the wireless terminal and the device is performed based on the secret information shared by both.

Images