JP2007304785A - Building security system, user information generation apparatus and access control method - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a building security system that further reduces security management costs. <P>SOLUTION: At least one of a plurality of buildings 10A to 10C under security management is equipped with a user information generation apparatus 1 capable of accessing a center DB 2 that is a storage device for centrally managing personal identification information. The user information generation apparatus 1 is configured to register and update in the center DB 2 user information assigned to and set for each user which includes access permission information about the buildings that the user is permitted to access, and to reflect it in local DBs 2A to 2C that are storage devices of servers 3A to 3C installed in the respective buildings 10A to 10C. <P>COPYRIGHT: (C)2008,JPO&INPIT

Description

  The present invention relates to a building security system, a user information generation device, and a user entry / exit management method in the building security system.

Conventionally, as a building security system, a user permitted to enter and exit based on user identification information read from a card using a card reader (input device) is detected, and an electric lock installed at the entrance of the building is detected. A system for unlocking is known (see, for example, Patent Document 1).
In addition, according to the building security system described above, since it is necessary to install a monitoring device (server) in each building and place an administrator, it can be used from a location (center) away from the building to each server in the building. There is also known a system that reduces security management costs by transmitting person identification information (see, for example, Patent Document 2).
JP-A-6-89395 (paragraphs “0009” to “0012”, FIG. 1) JP 2004-265158 A (paragraph “0005”, FIG. 1)

  However, according to the technique disclosed in Patent Document 2 described above, in order to change the user identification information, a server installed in each building receives the user identification information transmitted from the center server and re-executes. It takes time and effort to edit, and does not lead to a reduction in security management costs as expected.

  The present invention has been made in order to solve the above-described problems, and is designed to further reduce the security management cost. The building security system, the user information generation device, and the user entry / exit management in the building security system are provided. It aims to provide a method.

  In order to solve the above-described problems, the present invention includes a user information generation device in at least one of a plurality of buildings that perform security management, and the user information generation device centrally manages user identification information. The user identification information is registered and updated in the database (second storage device) to be reflected, and this user identification information is reflected in the database (first storage device) of each building server.

  According to the present invention, it is possible to further reduce the security management cost.

FIG. 1 is a diagram showing a system configuration of a building security system according to an embodiment of the present invention.
In FIG. 1, a plurality of buildings 10, that is, a building A (10A), a building B (10B), and a building C (10C), can access local DBs (databases) 2A to 2C as first storage devices, respectively. Building server 3A (3) -3C (3), user information detection device 4A (4) -4C (4), card reader 5A (5) -5C (5), and electric lock locking / unlocking device 6A ( 6) to 6C (6), electric locks 7A (7) to 7C (7), and building terminals 8A (8) to 8C (8) are installed.

  In each of the buildings 10A to 10C described above, user identification information (hereinafter also simply referred to as “ID”) read by the card readers 5A to 5C as input devices, and IDs stored in the local DBs 2A to 2C The user information detection devices 4A to 4C collate, and the user information detection devices 4A to 4C control the electric locks 7A to 7C by the electric lock locking / unlocking devices 6A to 6C based on the collation results, respectively. Realizes building access control.

  Also, in the building A (10A), which is one of the plurality of buildings 10A to 10C, the user information generation device 1 that can access the center DB 2 as a second storage device that performs unified management of IDs. is set up. The building servers 3B and 3C of the other buildings B (10B) and C (10C) and the user information generating device 1 are connected by a communication line 100.

  The center DB 2 stores user information of each building 10. The user information includes the ID described above. An example of the configuration of user information stored in the center DB 2 is shown in FIG.

  As shown in FIG. 2, the user information 20 includes an ID 21 and a building name 22. ID21 is a unique code assigned to each user. The building name 22 is a unique code assigned to each building. In addition, the user information 20 includes entry / exit permission information such as a stay permission time zone 23 indicating a time during which the user is allowed to stay, a passage pattern 24 which is a passage permission within the building permitted by the user, and the like. It may be a configuration.

  Subsequently, it is stored in the local DBs 2A to 2C (see FIG. 1) of each building. User information will be described.

  First, FIG. 3A shows an example of the configuration of building-specific user information stored in the local DB 2A (see FIG. 1). As shown in FIG. 3A, the building-specific user information 20A stored in the local DB 2A (see FIG. 1) includes an ID 21A. In addition, the building-specific user information 20A may include a stay permission time zone 23A and a traffic pattern 24A.

  Next, FIG. 3B shows an example of the configuration of the building-specific user information stored in the local DB 2B (see FIG. 1). As shown in FIG. 3B, the building-specific user information 20B stored in the local DB 2B (see FIG. 1) includes an ID 21B. In addition, the building-specific user information 20B may include a stay permission time zone 23B and a traffic pattern 24B.

  Moreover, an example of a structure of the user information according to building stored in local DB2C (refer FIG. 1) is shown in FIG.3 (c). As shown in FIG. 3C, the building-specific user information 20C stored in the local DB 2C (see FIG. 1) includes an ID 21C. In addition, the building-specific user information 20C may include a stay permission time zone 23C and a traffic pattern 24C.

  FIG. 4 is a diagram illustrating an example of a traffic pattern. FIG. 4A is a schematic diagram illustrating the traffic pattern, and FIG. 4B is a table illustrating the traffic pattern. FIG. 4A shows a traffic pattern of the building A, for example. The building A has a common section and a room A (11A) to a room F (11F), and a card reader 5 is installed around the entrance / exit of each room. Here, in the passage pattern # 1, it is possible to pass through the common part, in the passage pattern # 2, it is possible to pass through the common part and the room A (11A) to the room D (11D), and in the passage pattern # 3, it is shared. Section and room A (11A) to room F (11F) are allowed to pass. FIG. 4A shows a state in which the passage pattern # 1 cannot pass through the room A (11A), and a state in which the passage pattern # 2 cannot pass through the room E (11E).

  In the table shown in FIG. 4B, as described above, in the passage pattern # 1, the common portion can pass, and in the passage pattern # 2, the common portion and the room A (11A) to the room D (11D). In the passage pattern # 3, information indicating that the common section and the room A (11A) to the room F (11F) can pass is shown. This information is stored in the local DB 2A, and can be updated via the building terminal 8A, for example.

FIG. 5 is a block diagram showing an expanded function of the internal configuration of the user information generating apparatus 1 shown in FIG. Hereinafter, the internal configuration of the user information generating apparatus 1 will be described with reference to FIG. 5 (see FIG. 1 as appropriate).
In FIG. 5, the user information generation device 1 includes a registration update information acquisition unit 11, a user information generation unit 12, a center DB update unit 13, and a user information transmission unit 14. Further, the user information generating device 1 can access the center DB 2.

The registration update information acquisition unit 11 supplies user information input for each user to the user information generation unit 12 using an input device (not shown) provided in the user information generation device 1. This user information includes user identification information (ID), and may be configured to include a stay permission time zone, a traffic pattern, and the like, which are the aforementioned entrance / exit permission information. The user information generation unit 12 converts the user information output by the registration update information acquisition unit 11 into a format that can be stored in the center DB 2 and supplies the converted information to the center DB update unit 13.
The center DB update unit 13 stores the user information generated by the user information generation unit 12 in the center DB 2 as a second storage device. Further, the user information transmission unit 14 transmits the user information stored in the center DB 2 in synchronization with the transmission timing to the related building servers 3 (3A to 3C) via the communication line 100, and the building server 3A. Reflected in the local DBs 2A to 2C via ~ 3C.

FIG. 6 is a block diagram showing functional development of the internal configuration of the user information detection devices 4A to 4C and the building servers 3A to 3B shown in FIG. Hereinafter, the internal configuration of the user information detection devices 4A to 4C will be described with reference to FIG. 6 (see FIG. 1 as appropriate).
In FIG. 6, the user information detection device 4 </ b> A includes a collation information acquisition unit 41 and a collation unit 42. The user information detection devices 4B and 4C also have the same configuration as the user information detection device 4A. The building server 3 </ b> A includes a user information receiving unit 43 and a local DB update unit 44. The building servers 3B and 3C have the same configuration as the building server 3A. The user information detection devices 4A to 4C and the building servers 3A to 3B can access the local DBs 2A to 2C, respectively.

  The verification information acquisition unit 41 supplies the ID read by the card reader 5A to the verification unit 42 based on the ID card inserted by the user. In addition to this, the registered ID is supplied from the local DB (2A) via the local DB update unit 44 of the building server 3A. The collating unit 42 collates the ID read by the card reader 5A with the ID registered in the local DB (2A) as the first storage device, and based on the result of the collation, the electric lock / unlock device 6A. The electric lock 7A installed in the building is controlled via In addition, when the stay permission time zone is stored in local DB (2A), the collation information acquisition part 41 acquires the time which read ID of the ID card from the card reader 5A, and the time is the stay permission time zone. It may be determined whether the condition is met, and the electric lock 7A installed in the building may be controlled via the electric lock locking / unlocking device 6A based on the determination result. If the traffic pattern is stored in the local DB (2A), the verification information acquisition unit 41 acquires the room ID from the card reader 5A, and the room ID is the traffic pattern shown in FIG. It may be determined whether the condition is met, and the electric lock 7A installed in the building may be controlled via the electric lock locking / unlocking device 6A based on the determination result. In addition, although user information detection apparatus 4A was demonstrated, user information detection apparatus 4B and 4C also have a function similar to user information detection apparatus 4A.

  The user information receiving unit 43 receives the user information generated and transmitted by the user information generating device 1 and supplies it to the local DB update unit 44. The local DB update unit 44 updates the building-specific user information stored in the local DB (2A to 2C) based on the user information received by the user information receiving unit 43.

FIG. 7 is a diagram schematically showing a change in the traffic pattern due to a change in the work style of the user.
As shown in FIG. 7, for example, suppose that Mr. X is working full-time in the building A and the traffic pattern # 1 is permitted in the building A. When Mr. X is transferred to the building B, the traffic pattern # 1A is permitted in the building B. Further, if Mr. X is on a full-time basis at Building A and makes a business trip to Building C for one day, traffic pattern # 1B is permitted for one day at Building C.

  FIG. 8 is a flowchart showing the operation of the information update process of the building security system according to the embodiment of the present invention. With reference to FIG. 8 (refer to FIG. 1, FIG. 5, FIG. 6 and FIG. 7 as appropriate), the operation of the information update processing of the building security system is described.

  First, the user applies to the center manager to issue an ID card. An ID card can also be applied online. In this case, an ID card issuance request is generated by the operator operating the building terminals 8A to 8C, and this request is sent to the building server of the building where the user works ( 3A to 3C) and the communication line 100. Here, the center refers to the building A (10A) where the user information generation apparatus 1 is installed. The user information generating apparatus 1 executes an ID card issuing process when issuing an ID card based on the ID issuing request.

  The registration update information acquisition unit 11 inputs a processing type via the building terminal 8A (step S110). For example, when Mr. X is working full time at Building A (see FIG. 7), “New” is input as the processing type via the building terminal 8A, and Mr. X is transferred to Building B (see FIG. 7). It is conceivable that “update” is input as the processing type via the building terminal 8A.

  When the process type is new (“new” in step S120), the user information generation unit 12 generates user identification information (ID) (step S121). As a method for generating the ID, for example, a method of automatically assigning numbers that uniquely specify the user in order from the smallest number can be considered. And the user information production | generation part 12 acquires a building name and entrance / exit permission information (step S122). Here, for example, “Building A” is acquired from the building terminal 8A as the building name, and the entry / exit permission information is input separately by the operator of the building server 3A by operating the building terminal 8A. A traffic pattern for building A, a stay permission time zone, and the like are conceivable. The user information generation unit 12 assembles these pieces of information (ID, building name, and entry / exit permission information) to generate registration information (step S123).

  Thereafter, the center DB update unit 13 registers the registration information generated by the user information generation unit 12 in the center DB 2 (step S124). Then, an ID card on which an ID is recorded is issued and output by an ID card issuing machine (not shown) (step S125).

  The user information transmission unit 14 transmits update data to the building where the center DB 2 has been updated at a predetermined timing. Here, since the user information regarding the building A (10A) where the user is in full-time operation is registered in the center DB 2, the building-specific user information (ID and entry / exit permission information) is transmitted to the building server 3A. The predetermined timing may be regular, immediately after the center DB 2 is updated, or may be immediately after a predetermined number of update registrations are made. The building server 3A registers the building-specific user information transmitted from the user information transmission unit 14 at a predetermined timing in the local DB (2A).

  Next, when the processing type is update (“update” in step S120), the user information generation unit 12 first acquires an ID input by the operator operating the building terminals 8A to 8C (step S131). ), The center DB update unit 13 authenticates the ID by collating with the ID stored in the center DB 2 (step S132).

  When the authentication is established (“Yes” in step S133), the user information generation unit 12 acquires the building name and the entry / exit permission information (step S134). Here, for example, “Bill B” is acquired as the building name from the building terminal 8B, and the entrance / exit permission information is separately input by the operator of the building server 3B operating the building terminal 8B. A traffic pattern for building B, a stay permission time zone, and the like are conceivable. The user information generation unit 12 assembles these pieces of information (ID, building name, and entry / exit permission information) to generate registration information (step S135).

  Thereafter, the center DB update unit 13 registers the registration information generated by the user information generation unit 12 in the center DB 2 (step S136). If information having the same ID and building name as the registered information ID and building name already exists in the center DB 2 in step S136, the building terminal 8B is notified of confirmation to overwrite the data. When confirmation is obtained, the data may be overwritten, or the data may be overwritten unconditionally.

  As described above, the user information transmission unit 14 transmits the update data to the building where the center DB 2 has been updated at a predetermined timing. Here, since the user information regarding the building B (10B) in which the user is working is registered in the center DB 2, the building-specific user information (ID and entry / exit permission information) is transmitted to the building server 3B. The building server 3B registers the building-specific user information transmitted from the user information transmission unit 14 at a predetermined timing in the local DB (2B).

  The data registered in the center DB 2 may be deleted by inputting an ID and a building name from the building terminals 8A to 8C. A search may be performed by inputting an ID from the building terminals 8A to 8C, and data obtained by the search may be selected and deleted. Moreover, you may make it delete automatically the data whose entrance / exit permission information is "always" among the data registered into center DB2 which corresponds with ID obtained at step S131. Furthermore, by searching for data stored in the center DB 2 by inputting IDs from the building terminals 8A to 8C, it is possible to browse data stored in local DBs of other buildings. is there.

  FIG. 9 is a flowchart showing the operation of the unlocking process of the building security system according to the embodiment of the present invention. The operation of the unlocking process of the building security system will be described with reference to FIG. 9 (see FIGS. 1, 5 and 6 as appropriate).

  Next, when the user (for example, Mr. X) carries the ID 10 updated and issued as described above and uses the building 10, the user inserts the ID card into the card reader 5. The card reader 5 reads the user ID and the like from the inserted ID card, and transfers the read ID, time, and room ID to the user information detection device 4 (step S201). Here, the time is the time acquired when the ID is read, and the room ID is set in the card reader in advance.

  The verification information acquisition unit 41 outputs the acquired ID, time, and room ID to the verification unit 42, and the verification unit 42 performs ID verification (step S202). That is, the ID input from the verification information acquisition unit 41 and the ID registered in the local DBs 2A to 2C are verified. If the IDs do not match (“No” in step S203), the process ends. If the IDs match (“Yes” in step S203), the collation unit 42 determines the time (step S204). That is, it is determined whether or not the time acquired from the verification information acquisition unit 41 matches the stay permission time zones 23A to 23C (see FIG. 3) registered in the local DBs 2A to 2C. If the time does not match (“No” in step S205), the process ends. If the times match (“Yes” in step S205), the collation unit 42 determines the room (step S206). That is, it is determined whether or not the room ID input from the verification information acquisition unit 41 matches the traffic pattern registered in the local DBs 2A to 2C (see FIG. 4B). If the room does not fit (“No” in step S207), the process ends. If the room is suitable (“Yes” in step S207), the room is unlocked (step S208). That is, the lock of the room of the card reader 5 that has read the ID from the ID card is unlocked via the electric lock locking / unlocking device 6. Note that acquisition of time and room ID, determination of time, determination of a room, and the like may be performed as necessary.

  As described above, according to the embodiment of the present invention, the user information including the traffic patterns assigned to the building users in the plurality of buildings is installed in one building among the plurality of buildings. The information generation apparatus 1 can centrally manage and register and update, and the update contents can be automatically reflected in the local DBs (2A to 2C) installed in the related buildings 10A to 10C. it can.

  Therefore, the building servers 3A to 3C installed in each building do not need to re-edit the building-specific user information transmitted from the user information generating device 1, and thus the management cost can be further reduced.

  The building security system according to the embodiment of the present invention can be applied not only to a company but also to various buildings such as commercial buildings and apartment houses.

  Furthermore, according to the building security system which concerns on embodiment of this invention, although demonstrated as what installs user information detection apparatus 4A-4C in each building as a dedicated apparatus, the building installed in each building 10A-10C Server 3A-3C is good also as providing the function of user information detection apparatus 4A-4C. Moreover, it is good also as a building server also having the function of the user information generation apparatus 1. Furthermore, not only a server but also various control devices such as a PC (Personal Computer), a workstation, and a dedicated terminal can be used. Furthermore, either wired transmission or wireless transmission may be used for transmission of building-specific user information between the center DB 2 and the local DB (2A to 2C). Further, although the card readers 5A to 5C are used for reading the ID, it can be replaced by an ecology detection device such as a fingerprint, iris, finger vein, or handprint detection as an input device.

  In addition, the registration update information acquisition part 11, the user information generation part 12, the center DB update part 13, the user information transmission part 14 which comprise the user information generation apparatus 1 shown in FIG. 5, and the use shown in FIG. The procedures executed by each of the collation information acquisition unit 41, collation unit 42, user information reception unit 43, and local DB update unit 44 constituting the person information detection devices 4A to 4C are recorded on a computer-readable recording medium. The program recorded on the recording medium is read and executed by a computer system (CPU (Central Processing Unit) of the user information generating device 1 or CPU of the user information detecting devices 4A to 4C), and the building of the present invention is executed. A security system can be realized. The computer system here includes an OS (Operating System) and hardware of peripheral devices in addition to the above-described CPU.

  Further, the “computer system” includes a homepage providing environment (or display environment) if a WWW (World Wide Web) system is used. The program may be transmitted from a computer system storing the program in a storage device or the like to another computer system by a transmission medium or a transmission wave in the transmission medium. Here, the “transmission medium” for transmitting the program refers to a medium having a function of transmitting information, such as a network (communication network) such as the Internet or a communication line such as a telephone line. The program may be for realizing a part of the functions described above. Furthermore, what can implement | achieve the above-mentioned function in combination with the program already stored in the computer system, and what is called a difference file may be sufficient.

It is a figure which shows the system configuration | structure of the building security system which concerns on embodiment of this invention. It is a figure which shows an example of the data structure of the user information used with the building security system which concerns on embodiment of this invention. It is a figure which shows an example of the data structure of the user information stored in local DB which concerns on embodiment of this invention. It is a figure which shows an example of the traffic pattern which concerns on embodiment of this invention, (a) is a schematic diagram which shows a traffic pattern, (b) is a table which shows a traffic pattern. It is the block diagram which expanded the function and showed the internal structure of the user information generation apparatus which concerns on embodiment of this invention. It is the block diagram which expanded and showed the internal structure of the user information detection apparatus and building server which concern on embodiment of this invention. It is the figure which showed typically the change of the traffic pattern by the change of the user's work style which concerns on embodiment of this invention. It is the flowchart which showed the operation | movement of the information update process of the building security system which concerns on embodiment of this invention. It is the flowchart which showed the operation | movement of the unlocking process of the building security system which concerns on embodiment of this invention.

Explanation of symbols

1 User information generation device 2 Center DB (second storage device)
2A-2C Local DB (first storage device)
3A to 3C (3) Bill server 4A to 4C (4) User information detection device 5A to 5C (5) Card reader 6A to 6C (6) Electric lock locking and unlocking device 7A to 7C (7) Electric lock 8A to 8C ( 8) Building terminals 10A to 10C (10) Building 100 Communication line 11 Registration update information acquisition unit 12 User information generation unit 13 Center DB update unit 14 User information transmission unit 41 Verification information acquisition unit 42 Verification unit 43 User information reception Part 44 Local DB update part

Claims (5)

A building security system for managing the entrance and exit of users in multiple buildings,
A building provided in at least one of the plurality of buildings, storing user identification information and a building name in a second storage device, and providing the user identification information in a building corresponding to the building name A user information generating device that transmits to a server and registers the first storage device provided in the building via the building server;
The user identification information provided through each of the plurality of buildings and obtained through the input device is collated with the user identification information stored in the first storage device, and the collation result is normal. A user information detecting device for unlocking an electric lock installed in the building,
Building security system characterized by comprising The user information generation device includes:
The entrance / exit permission information indicating the entrance / exit permission conditions in the plurality of buildings is further stored in the second storage device, and the entrance / exit permission information is further stored in a building server provided in the building corresponding to the building name. Transmitted, and further registered in the first storage device provided in the building via the building server,
The user information detection device includes:
The time and room ID are acquired via the input device, and it is further determined whether or not the acquired time and room ID are compatible with the entry / exit permission information stored in the first storage device. The building security system according to claim 1, wherein when the result is normally performed, the electric lock installed in the building is unlocked. Electricity installed in the building based on a result of collation between the user identification information provided through each of the plurality of buildings and acquired through the input device and the user identification information stored in the first storage device. A user information generating device connected to a user information detecting device for controlling a lock via a communication line, and provided in at least one of the plurality of buildings,
A center DB update unit that stores user identification information and a building name in the second storage device;
The user identification information is transmitted to the building server provided in the building corresponding to the building name via the communication line, and is transmitted to the first storage device provided in the building via the building server. A user information transmission unit to be registered;
A user information generating device comprising: The user information generation device includes:
The entrance / exit permission information indicating the entrance / exit permission conditions in the plurality of buildings is further stored in the second storage device, and the entrance / exit permission information is further stored in a building server provided in the building corresponding to the building name. The user information generation device according to claim 3, wherein the user information generation device transmits the information to the first storage device provided in the building via the building server. Provided in each of the plurality of buildings and stored in the first storage device, the user information detection device capable of acquiring via the building server, and provided in at least one of the plurality of buildings, A user entry / exit management method in a building security system configured by connecting a user information generation device accessible to a second storage device via a communication line,
The user information generating device is
Acquiring user identification information and a building name via the input device, and storing the acquired user identification information and the building name in the second storage device;
The user identification information stored in the second storage device is transmitted to the building server provided in the building corresponding to the building name via the communication line, and provided in the building via the building server. Registering in the first storage device, and
Run
The user information detection device is
The step of collating the user identification information inputted from the outside with the user identification information stored in the first storage device, and controlling the electric lock installed in the building based on the result of the collation The entrance / exit management method characterized by performing.

Images