JP2008015990A - Authentication system, authentication computer and program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an individual authentication system whose security and convenience is high. <P>SOLUTION: When receiving the user attribute information of a user from a first client computer, this authentication computer specifies the mail address of a second client computer corresponding to the received user attribute information of the user based on user management information, and selects a mail address for confirmation, and when receiving an electronic mail, the authentication computer specifies the mail address of a transmission origin and the mail address of a transmission destination from the received electronic mail, and decides whether or not the correspondence of the specified mail address of the transmission destination to the specified mail address of the transmission destination is matched with the correspondence of the mail address of the second client computer to the mail address for confirmation, and when deciding that those two correspondences are matched, the authentication computer decides that the first client computer is operated by a legal user. <P>COPYRIGHT: (C)2008,JPO&INPIT

Description

The present invention relates to an authentication system, an authentication computer, and a program.

Conventionally, a combination of a user ID and a password is known as personal authentication when a user is specified and a service is provided. For example, a person who logs in to a WEB site via the Internet inputs a user ID and a password according to a WEB screen displayed on a personal computer to be operated, and transmits an authentication request to the WEB server. In addition, when a user of a financial institution withdraws a deposit at the ATM of the financial institution, a cash card is inserted into the ATM, a personal identification number is input, and an authentication request is transmitted to the authentication server. The user ID in this case is a cash card.

However, the user of the WEB site has the trouble of inputting the user ID and password according to the screen of the WEB site. In addition, this authentication method is widely used, and is adopted in Internet banking and various electronic commerce WEB sites. For this reason, user IDs and passwords to be managed by one person are increasing. If the user of the WEB site forgets the user ID or password, it is necessary to inquire the user of the user ID or password to the site operator, and the user cannot enjoy the convenience of the WEB site. Further, impersonation in which a person who is not an original user gives up a user ID and a password and performs a transaction has become a social problem. Phishing and spyware are known as means for giving up the user ID and password. Phishing is an act of providing a pseudo site that looks just like a regular WEB site, allowing the original user to input a user ID and password, and giving up the user ID and password. Spyware is software that is installed without the knowledge of the user of the personal computer, and is software that reads various user IDs and passwords input by the user and notifies the server of the eavesdropper via the Internet. When a transaction by impersonation is established by Internet banking or electronic commerce, not only the original user but also the WEB site operator will suffer serious damage due to the loss of site reliability and compensation problems.

When a user of a financial institution withdraws a deposit at the ATM of the financial institution, it is troublesome to insert a cash card into the ATM and input a personal identification number. Further, when a personal identification number is voyeurized by a voyeur camera and a cash card is stolen, a deposit is withdrawn by an impersonating user. Banks as well as depositors are severely damaged by the loss of reliability and compensation issues.

Patent Document 1 discloses a personal authentication method for authenticating a user by inputting a user ID and a password to the WEB site and dialing a specific telephone number when the user of the WEB site is authenticated.

Patent Document 2 discloses a personal authentication method for authenticating a user by inputting a telephone number as a user ID into the WEB site and dialing a specific telephone number when the user of the WEB site is authenticated. Yes.
Patent Publication 2002-229951 Patent Publication No. 2004-213440

According to the technique of Patent Document 1, impersonation can be prevented even when a user ID and a password are complied for using a caller telephone number. Further, according to the technique of Patent Document 2, impersonation can be prevented even when a spoofed telephone number is input to a WEB site in order to use a caller telephone number. However, in the techniques of Patent Literature 1 and Patent Literature 2, authentication cannot be performed when the user cannot make a dial accompanied by a caller telephone number notification. For example, authentication cannot be performed when the mobile phone does not receive radio waves.

Further, with the techniques of Patent Document 1 and Patent Document 2, it is impossible to accurately grasp the correspondence between the user who dialed with the caller telephone number notification and the computer operated by the user. For this reason, the techniques of Patent Document 1 and Patent Document 2 cannot provide authentication with high safety and convenience. For example, in the techniques of Patent Document 1 and Patent Document 2, a person who is not an original user may impersonate the legitimate user by inputting the user ID of the legitimate user many times. Specifically, if a legitimate user authenticates by dialing a specific telephone number and then redials the specific telephone number by mistake, the person who is not the original user is authenticated as a legitimate user. It will be.

The present invention has been made in view of the above-described problems, and an object thereof is to provide a personal authentication system with high safety and convenience.

One of the exemplary embodiments of the present invention includes one or more first client computers including a processor, a memory and an interface, one or more second client computers including a processor, a memory and an interface, a processor, a memory, and An authentication system comprising an interface and connected to the first client computer and the second client computer via a network, wherein the authentication computer is owned by the user and information unique to the user User management information indicating correspondence with the mail address of the second client computer is stored, and when the user specific information is received from the first client computer, the received user specific information is based on the user management information. Email address of the second client computer corresponding to Identify and select a mail address that is not associated with any of the previously identified mail addresses of the second client computer from among the mail addresses that can be received by the authentication computer as the confirmation mail address. The second mail address of the second client computer and the selected confirmation mail address are stored in association with each other, the selected confirmation mail address is notified to the second client computer, and the second client computer is notified. An e-mail is received from the client computer, the e-mail address of the transmission source and the e-mail address of the transmission destination are specified from the received e-mail, and the specified e-mail address of the transmission source and the e-mail of the specified transmission destination The correspondence with the address, and the stored mail address of the second client computer It is determined whether or not the correspondence with the authorization email address matches, and if it is determined that the two correspondences match, the first client computer that is the transmission source of the user's unique information is It is characterized by determining that it is operated.

One exemplary embodiment of the present invention includes one or more first client computers including a processor, a memory and an interface, one or more second client computers including a processor, a memory and an interface, a processor, a memory, and An authentication system comprising an interface and connected to the first client computer and the second client computer via a network, wherein the authentication computer is owned by the user and information unique to the user User management information indicating the correspondence with the mail address of the second client computer is stored, and when the user's unique information is received from the first client computer, previously received among the mail addresses that the authentication computer can receive Associated with any of your specific information Is selected as a confirmation email address, the received unique information of the user and the selected confirmation email address are stored in association with each other, and the selected confirmation email address is Notifying the second client computer, receiving an e-mail from the second client computer, identifying a source e-mail address and a destination e-mail address from the received e-mail, and based on the user management information Identifying the user's unique information corresponding to the identified sender's email address, the correspondence between the identified user's unique information and the identified destination email address, and It is determined whether the correspondence between the unique information of the user and the confirmation e-mail address matches, and the two correspondences match If that, and judging a transmission source at a first client computer specific information of the user is being operated by the authorized user.

One exemplary embodiment of the present invention includes one or more first client computers including a processor, a memory and an interface, one or more second client computers including a processor, a memory and an interface, a processor, a memory, and An authentication system comprising an interface and connected to the first client computer and the second client computer via a network, wherein the authentication computer is owned by the user and information unique to the user User management information indicating the correspondence with the mail address of the second client computer is stored, and when the user's unique information is received from the first client computer, previously received among the mail addresses that the authentication computer can receive Associated with any of your specific information Is selected as a confirmation e-mail address, the received unique information of the user and the selected confirmation e-mail address are associated with each other and stored in the confirmation e-mail address correspondence information, and the selected Notifying the second client computer of the confirmation email address, receiving the email from the second client computer, identifying the sender email address and the recipient email address from the received email, Based on the confirmation mail address correspondence information, user specific information corresponding to the specified destination mail address is specified, and the specified user specific information and the specified source mail are specified. The correspondence with the address, the user-specific information included in the user management information, and the second client computer The first client computer, which is the transmission source of the user's unique information, is operated by a legitimate user. It is determined that it is present.

One of the exemplary embodiments of the present invention includes one or more first client computers including a processor, a memory and an interface, one or more second client computers including a processor, a memory and an interface, a processor, a memory, and An authentication system comprising an interface and connected to the first client computer and the second client computer via a network, wherein the authentication computer is owned by the user and information unique to the user User management information indicating correspondence with the mail address of the second client computer is stored, and when the user specific information is received from the first client computer, the received user specific information is based on the user management information. Email address of the second client computer corresponding to Identify and notify the second client computer of an email address that can be received by the authentication computer, receive an email from the second client computer, and identify the email address of the sender from the received email Then, it is determined whether or not the specified mail address of the transmission source matches the mail address of the specified second client computer, and when it is determined that the two mail addresses match, It is determined that the first client computer that is a transmission source of unique information is operated by a legitimate user.

According to the exemplary embodiment of the present invention, the safety and convenience of the personal authentication system can be improved.

Embodiments of the present invention will be described with reference to the drawings. Note that a general-purpose embodiment of the present invention will be described as the first embodiment. Next, as the second embodiment, a specific embodiment in which the first embodiment is used for a WEB site will be described. Next, as the third embodiment, a specific embodiment for easily introducing the second embodiment into an existing WEB server will be described. Next, as the fourth embodiment, a specific embodiment in which the third embodiment is used for Internet credit card settlement will be described. Next, as a fifth embodiment, a specific embodiment in which the first embodiment is used for an ATM of a financial institution will be described. Next, as a sixth embodiment, a specific embodiment in which the first embodiment is used for credit card payment at a store will be described. Next, as the seventh embodiment, a specific embodiment in which the first embodiment is used for connection to an in-house intranet will be described. Next, as an eighth embodiment, a specific embodiment in which the first embodiment is used for connecting a thin client to a centralized server will be described. Next, a specific embodiment in which the first embodiment is used for public wireless LAN connection will be described as a ninth embodiment. Next, an embodiment in which authentication is performed based on the reception time of an e-mail will be described as a tenth embodiment.

(First embodiment)
FIG. 1 is a schematic configuration diagram of a personal authentication system according to the first embodiment. The personal authentication system shown in FIG. 1 includes a plurality of client devices 7010, a plurality of mobile phones 7060, and a mail authentication device 703. The client device 7010 is a computer operated by a user who is going to be authenticated. The client device 7010 is connected to the network 9. Details of the client device 7010 will be described with reference to FIG. The network 9 is a data communication network such as a leased line network, a public switched telephone line network, or a LAN. The network 9 may be an internal network or the Internet. The mobile phone 7060 is operated by a user who wants to receive authentication. In this embodiment, the user owns the client device 7010 and the mobile phone 7060. Then, the user is authenticated on the client device 7010 by transmitting an e-mail from the mobile phone 7060. Therefore, the mobile phone 7060 is equipped with an e-mail transmission function. In addition, the mobile phone 7060 is connected to the network 1. The network 1 is, for example, the Internet. The mail authentication device 703 is connected to the client device 7010 via the network 9. Specifically, the mail authentication device 703 is connected to the client device 7010 via the Internet or an internal network. Note that the mail authentication device 703 may include an interface for the Internet and an interface for an internal network. In this case, the mail authentication device 703 is connected to some client devices 7010 via the Internet, and further connected to some other client devices 7010 via the internal network. Details of the mail authentication device 703 will be described with reference to FIG. For the sake of clarity, the authentication process for one client device 7010 will be described in the personal authentication system of the first embodiment. In practice, the mail authentication device 703 authenticates a plurality of client devices 7010 via the network 9. That is, the mail authentication device 703 can receive authentication requests from a plurality of client devices 7010. In FIG. 1, four client devices 7010 and four mobile phones 7060 are shown, but any number of personal authentication systems may be provided. Note that the mobile phone 7060 may be replaced with any device that can transmit an e-mail.

FIG. 2 is a block diagram of a configuration of the client device 7010 provided in the personal authentication system according to the first embodiment. The client device 7010 is physically a computer system including a transmission / reception unit 7011, a central processing unit 7012, a main storage device 7013, an auxiliary storage device 7014, an input device (not shown), a display device (not shown), and the like. . The transmission / reception unit 7011 is an interface that is connected to the network 9 and transmits / receives data to / from an external device (mail authentication device 703). The central processing unit 7012 is, for example, a CPU. The central processing unit 7012 performs various processes by executing programs stored in the main storage device 7013. The main storage device 7013 is, for example, a memory. The main storage device 7013 stores a program executed by the central processing unit 7012, information required by the central processing unit 7012, and the like. The auxiliary storage device 7014 is, for example, a hard disk. The auxiliary storage device 7014 stores various types of information. The input device is, for example, a mouse, a keyboard, or a touch panel. Various information is input to the input device from the user. The display device is a display. On the display device, information instructed to be displayed by the central processing unit 7012 is displayed. The client device 7010 may be in any form as long as it includes the transmission / reception unit 7011, the central processing unit 7012, and the main storage device 7013. For example, the client device 7010 is a personal computer, a server, a mobile phone, an ATM, or the like.

The client device 7010 transmits user-specific information to the mail authentication device 703 in response to a user operation. The unique information of the user is an identifier that uniquely identifies the user. For example, the user's unique information includes at least one of a user ID, a password, a user's date of birth, a user's phone number, a user's biometric information, a cash card number, and a credit card number. In the description of the present embodiment, a case where the user's unique information is a user ID will be described. Details of the confirmation e-mail address will be described later.

The mobile phone 7060 receives an email including a confirmation email address from the email authentication device 703. Specifically, the e-mail received by the mobile phone 7060 has a confirmation e-mail address written in at least one of the body and the subject. Alternatively, in the electronic mail received by the mobile phone 7060, the confirmation mail address is the transmission source. As a result, the user is notified of the confirmation e-mail address. Then, the cellular phone 7060 transmits an e-mail addressed to the confirmation e-mail address in response to a user operation.

The client device 7010 transmits an authentication result request to the mail authentication device 703. The authentication result request includes a connection ID. The connection ID is an identifier that uniquely identifies the connection between the client device 7010 and the mail authentication device 703. The mail authentication device 703 can process the user ID received in advance from the client device 7010 and the authentication result request in association with the connection ID. Since this connection management method is a technique employed in a general WEB server, detailed description thereof is omitted. Further, even when the mail authentication device 703 is not a WEB server, a connection management method similar to that for the WEB server may be used. Note that the client device 7010 may transmit an authentication result request in response to a user operation, or may transmit an authentication result request at regular intervals.

Thereafter, the client device 7010 receives the authentication result from the mail authentication device 703.

FIG. 3 is a block diagram of a configuration of the mail authentication device 703 provided in the personal authentication system of the first embodiment. The mail authentication device 703 is physically a computer system including a transmission / reception unit 7031, a central processing unit 7032, a main storage device 7033, an auxiliary storage device 7034, an input device (not shown), a display device (not shown), and the like. is there. The mail authentication device 703 is assigned an IP address and a domain (DOMAIN) for receiving electronic mail. The transmission / reception unit 7031 is connected to the network 9 and is an interface for transmitting / receiving data to / from an external device (client device 7010). The central processing unit 7032 is, for example, a CPU. The central processing unit 7032 performs various processes by executing programs stored in the main storage device 7033. The main storage device 7033 is a memory, for example. The main storage device 7033 stores a program executed by the central processing unit 7032, information required by the central processing unit 7032, and the like. The auxiliary storage device 7034 is, for example, a hard disk. The auxiliary storage device 7034 stores various types of information. The input device is, for example, a mouse, a keyboard, or a touch panel. Various information is input to the input device from the administrator. The display device is a display. On the display device, information instructed to be displayed by the central processing unit 7032 is displayed. The mail authentication device 703 may be in any form as long as it includes the transmission / reception unit 7031, the central processing unit 7032, and the main storage device 7033. For example, the mail authentication device 703 is a personal computer or a server.

FIG. 4 is a functional block diagram of the mail authentication device 703 according to the first embodiment. The auxiliary storage device 7034 of the mail authentication device 703 stores the authentication program 70300 of the first embodiment. When the authentication program 70300 of the first embodiment is executed, the main storage device 7033 of the mail authentication device 703 includes a main module 70331, a user ID reception module 703321, an authentication result request reception module 703322, a user information search module 70333, A confirmation mail address generation module 70334, a confirmation mail address transmission module 70335, a mail reception module 70336, a received mail reading module 70337, an authentication module 70338, and an authentication result transmission module 70339 are stored.

The main module 70331 includes a user ID reception module 703321, an authentication result request reception module 703322, a user information search module 70333, a confirmation mail address generation module 70334, a confirmation mail address transmission module 70335, a mail reception module 70336, and a received mail reading module 70337. The processing of the authentication module 70338 and the authentication result transmission module 70339 is integrated.

The user ID reception module 703321 receives a user ID from the client device 7010. Next, the user ID reception module 703321 delivers the received user ID to the user information search module 70333. Then, the user ID reception module 703321 requests the user information search module 70333 to search for a user mail address. The user email address is an email address of the mobile phone 7060 owned by the user identified by the user ID.

The authentication result request reception module 703322 receives an authentication result request from the client device 7010. Upon receiving the authentication result request, the authentication result request receiving module 703322 requests the authentication module 70338 for authentication.

The user information search module 70333 accepts the user ID from the user ID reception module 703321. The user information search module 70333 selects from the user management table 70342 a record in which the accepted user ID and the user ID 703421 of the user management table 70342 match. The user information search module 70333 extracts the user mail address 703422 from the selected record. In this way, the user information search module 70333 searches for a user mail address corresponding to the accepted user ID. Details of the user management table 70342 will be described with reference to FIG. Then, the user information search module 70333 delivers the extracted user mail address 703422 to the confirmation mail address generation module 70334.

The confirmation e-mail address generation module 70334 accepts the user e-mail address extracted by the user information search module 70333. Then, the confirmation mail address generation module 70334 newly generates a mail address that can be received by the mail authentication device 703. Then, the confirmation mail address generation module 70334 assigns the generated mail address as the confirmation mail address to the accepted user mail address. Further, the confirmation email address generation module 70334 stores the correspondence between the accepted user email address and the generated confirmation email address in the confirmation email address correspondence table 70341 stored in the auxiliary storage device of the email authentication device 703. . Details of the confirmation mail address correspondence table 70341 will be described with reference to FIG. An expiration date may be set for the confirmation e-mail address. If the confirmation e-mail address expires, there is no impersonation access to the confirmation e-mail address. The expiration date of the confirmation e-mail address is, for example, after a predetermined time has elapsed since the generation of the confirmation e-mail address. Specifically, the confirmation e-mail address expires 10 minutes after the generation of the confirmation e-mail address. The expiration date of the confirmation e-mail address is left to the practitioner of the present invention.

An example of a confirmation mail address generation method of the confirmation mail address generation module 70334 will be described. First, the confirmation e-mail address generation module 70334 generates a unique character string based on a random number, an application ID, a generation time of the confirmation e-mail address, and the like. The application ID is a unique identifier of the authentication program 70300 installed in the mail authentication device 703. The application ID is generally known as a license key and will not be described in detail. As a method for generating a character string, other methods may be used as long as the purpose is achieved. The confirmation email address generation module 70334 generates a confirmation email address based on the generated character string and the domain assigned to the email authentication device 703. When the character string is “0029382” and the domain is “authadd.com”, the confirmation email address generation module 70334 generates “0029382@authadd.com” as the confirmation email address. Since the generated character string is unique, the confirmation e-mail address is also unique. Note that another method may be used as a method for generating the confirmation e-mail address as long as the purpose is achieved.

FIG. 5 is a configuration diagram of the confirmation mail address correspondence table 70341 stored in the auxiliary storage device 7034 of the mail authentication device 703 according to the first embodiment. The confirmation mail address correspondence table 70341 includes a confirmation mail address 703412 and a user mail address 703413. The confirmation mail address 70312 stores the confirmation mail address generated by the confirmation mail address generation module 70334. The user mail address 703413 is the mail address of the mobile phone 7060 owned by the user who requests authentication. Note that the user mail address 703422 stores the user mail address 703422 extracted by the user information search module 70333. That is, the confirmation email address correspondence table 70341 includes the email address of the mobile phone 7060 owned by the user identified by the user ID received from the client device 7010 and the email address that can be received by the email authentication device 703. The correspondence with the email address assigned to the email address is shown.

Note that a confirmation mail address assignment module may be stored in the main storage device 7033 of the mail authentication apparatus 703 instead of the confirmation mail address generation module 70334. In this case, a plurality of mail addresses that can be received by the mail authentication apparatus 703 are set in advance in the mail authentication apparatus 703. When the confirmation e-mail address assignment module accepts the user e-mail address, the e-mail address authentication apparatus 703 identifies an e-mail address that is not assigned to any of the previously accepted user e-mail addresses. Then, the confirmation email address assignment module assigns the identified email address as the confirmation email address to the accepted user email address. In other words, the confirmation mail address assignment module does not assign the confirmation mail address already assigned to the user mail address to other user mail addresses. Also in this case, the correspondence between the confirmation mail address and the user mail address is one-to-one. That is, the user mail address is uniquely specified by the confirmation mail address. However, the confirmation mail address assignment module needs to cancel the assignment of the confirmation mail address to the user mail address. This is because the mail address assigned to the user mail address is insufficient. For example, the confirmation e-mail address assignment module cancels the assignment of the confirmation e-mail address when a predetermined time elapses after the confirmation e-mail address is assigned. Also, when the authentication for the user mail address is completed, the confirmation mail address assignment module cancels the assignment of the confirmation mail address for the user mail address. Then, the confirmation e-mail address assignment module can re-assign to the different user e-mail addresses the e-mail addresses whose assignment has been canceled as confirmation e-mail addresses. However, the mail authentication device 703 cannot authenticate a larger number of users within a predetermined time than the preset number of mail addresses. This is because the confirmation mail address assignment module cannot assign a mail address to a newly assumed user mail address if all of the mail addresses that can be received by the mail authentication apparatus 703 are already assigned to the user ID. It is. Accordingly, it is preferable that the number of mail addresses that can be received by the mail authentication apparatus 703 is set in advance according to the service provision scale.

FIG. 6 is a configuration diagram of the user management table 70342 stored in the auxiliary storage device 7034 of the mail authentication device 703 according to the first embodiment. The user management table 70342 includes a user ID 703421 and a user mail address 703422. A user ID 703421 is a unique identifier of a user who is authenticated by the mail authentication device 703 of the first embodiment. The user mail address 703422 is an e-mail address of the mobile phone 7060 owned by the user identified by the user ID 703421 of the record. Normally, the user mail address 703422 is an email address that can be used only by the user identified by the user ID 703421 of the record. Because e-mail contains private content, many individuals have their own e-mail addresses. Note that the user management table 70342 may hold other information unique to the user. The user-specific information includes, for example, at least one of a user ID, a user name, a password, a credit card number, a cash card number, a user's biometric information, a schedule table, an operation history, and a deposit balance. That is, in the user management table 70342, information unique to the user is managed corresponding to the user mail address 703422.

The user of the mail authentication apparatus 703 of the first embodiment registers the user ID 703421 and the user mail address 703422 in the user management table 70342 in advance by a predetermined method.

Returning now to FIG. The confirmation email address generation module 70334 delivers the generated confirmation email address and the accepted user email address to the confirmation email address transmission module 70335.

The confirmation email address transmission module 70335 accepts the confirmation email address and the user email address from the confirmation email address generation module 70334. Next, the confirmation e-mail address transmission module 70335 notifies the cellular phone 7060 of the accepted confirmation e-mail address. Specifically, the confirmation e-mail address transmission module 70335 transmits an e-mail in which the accepted confirmation e-mail address is described in the text or subject to the accepted user e-mail address. Alternatively, the confirmation e-mail address transmission module 70335 may transmit an e-mail whose transmission source is the accepted confirmation e-mail address to the accepted user e-mail address. Accordingly, the confirmation e-mail address transmission module 70335 can notify the confirmation e-mail address to the mobile phone 7060. Note that the confirmation mail address transmission module 70335 may notify the confirmation mail address to the mobile phone 7060 by any method.

Mail receiving module 70336 receives an e-mail from mobile phone 7060. Next, the mail reception module 70336 acquires a destination mail address from the received electronic mail. Next, the mail receiving module 70336 invalidates the confirmation mail address that matches the acquired mail address of the transmission destination. As a result, the mail authentication device 703 cannot receive an e-mail addressed to the invalid e-mail address. Note that the mail reception module 70336 may determine whether or not the mail address of the transmission source of the received electronic mail has been camouflaged. The received mail reading module 70337 performs processing only when the mail receiving module 70336 determines that the sender's mail address is not impersonated. It should be noted that impersonation of the sender mail address may be determined by any method. For example, the mail receiving module 70336 is equipped with a mail receiving function in accordance with SPF (Sender Policy Framework). SPF is a technique for an electronic mail server to detect forged mail. The mail reception module 70336 requests an inquiry from a DNS (Domain Name Server) for the domain of the received electronic mail. Then, the mail reception module 70336 determines whether or not the email address of the email transmission source is spoofed by checking the inquiry result by DNS and the IP address of the email transmission source. It should be noted that the camouflaged mail detection technology employed by the mail receiving module 70336 may be another method as long as the purpose is achieved.

The received mail reading module 70337 acquires the transmission source mail address and the transmission destination mail address from the electronic mail received by the mail reception module 70336. Subsequently, the received mail reading module 70337 stores the acquired transmission source mail address and the acquired transmission destination mail address in association with each other. Note that the correspondence between the mail address of the transmission source and the mail address of the transmission destination is managed by a received mail address correspondence table 70344 stored in the auxiliary storage device of the mail authentication device 703. The received mail address correspondence table 70344 will be described in detail with reference to FIG.

FIG. 7 is a configuration diagram of the received mail address correspondence table 70344 stored in the auxiliary storage device 7034 of the mail authentication device 703. The received mail address correspondence table 70344 includes a destination mail address 703442 and a source mail address 703443. The transmission destination mail address 703442 stores the transmission destination mail address acquired by the received mail reading module 70337. The sender mail address 703443 stores the sender mail address acquired by the received mail reading module 70337.

The authentication module 70338 receives an authentication request from the authentication result request reception module 703322. Subsequently, the authentication module 70338 selects a record related to the authentication result request from the confirmation mail address correspondence table 70341 based on the connection ID included in the authentication result request. The authentication module 70338 extracts the confirmation e-mail address 703412 and the user e-mail address 703413 from the selected record. Next, the authentication module 70338 matches the extracted confirmation e-mail address 703412 with the destination e-mail address 703442 of the received e-mail address correspondence table 70344, and the extracted user e-mail address 703413 and the source of the received e-mail address correspondence table 70344 It is determined whether or not a record matching the mail address 703443 exists in the received mail address correspondence table 70344. If the record exists in the received mail address correspondence table 70344, the authentication module 70338 determines that authentication is possible. On the other hand, if the record does not exist in the received mail address correspondence table 70344, the authentication module 70338 determines that authentication is not possible. Then, the authentication module 70338 passes the authentication result to the authentication result transmission module 70339.

Moreover, it may be as follows. The authentication module 70338 selects a record related to the authentication result request from the confirmation mail address correspondence table 70341 based on the connection ID included in the authentication result request. The authentication module 70338 extracts the confirmation e-mail address 703412 and the user e-mail address 703413 from the selected record. Next, the authentication module 70338 selects, from the received mail address correspondence table 70344, a record in which the extracted confirmation mail address 703412 matches the destination mail address 703442 of the received mail address correspondence table 70344. The authentication module 70338 extracts the transmission source mail address 703443 from the selected record. Next, the authentication module 70338 compares the user mail address 703413 extracted from the confirmation mail address correspondence table 70341 with the source mail address 703443 extracted from the received mail address correspondence table 70344. If the user mail address 703413 matches the source mail address 703443, the authentication module 70338 determines that authentication is possible. On the other hand, when the user email address 703413 and the source email address 703443 do not match, the authentication module 70338 determines that authentication is not possible.

Moreover, it may be as follows. The authentication module 70338 selects a record related to the authentication result request from the confirmation mail address correspondence table 70341 based on the connection ID included in the authentication result request. The authentication module 70338 extracts the confirmation e-mail address 703412 and the user e-mail address 703413 from the selected record. Next, the authentication module 70338 selects, from the received mail address correspondence table 70344, a record in which the extracted user mail address 703413 matches the transmission source mail address 703443 of the received mail address correspondence table 70344. Next, the authentication module 70338 extracts the transmission destination mail address 703442 from the selected record. Next, the authentication module 70338 compares the confirmation email address 703342 extracted from the confirmation email address correspondence table 70341 with the transmission destination email address 703442 extracted from the reception email address correspondence table 70344. If the confirmation e-mail address 703412 matches the destination e-mail address 703442, the authentication module 70338 determines that authentication is possible. On the other hand, if the confirmation e-mail address 703341 and the transmission destination e-mail address 703442 do not match, the authentication module 70338 determines that authentication is not possible.

In any of the cases described above, the authentication module 70338 determines whether the correspondence between the transmission source mail address 703443 and the transmission destination mail address 703442 matches the correspondence between the user mail address 703413 and the confirmation mail address 703342. Judgment is made. If the two correspondences match, the authentication module 70338 determines that authentication is possible. That is, the authentication module 70338 determines that the client device 7010 that is the transmission source of the user's unique information is operated by a legitimate user. On the other hand, if the two correspondences do not match, the authentication module 70338 determines that authentication is not possible. That is, the authentication module 70338 determines that the client device 7010 that is the transmission source of the user's unique information is operated by an unauthorized user.

The authentication result transmission module 70339 transmits the authentication result determined by the authentication module 70338 to the client device 7010. Note that when the authentication module 70338 determines that authentication is possible, the authentication result transmission module 70339 may transmit an authentication result accompanied with user-specific information corresponding to the user ID 703421 of the user management table 70342.

Next, processing of the personal authentication method of the first embodiment will be described with reference to the drawings. FIG. 8 is a sequence diagram of processing of the personal authentication method of the first embodiment.

The client device 7010 transmits a user ID to the mail authentication device 703 via the network 9 in response to a user operation (ST70111).

Then, user ID reception module 703321 receives the user ID from client apparatus 7010 (ST70112). Next, the user ID reception module 703321 delivers the received user ID to the user information search module 70333.

When the user information search module 70333 accepts the user ID, the user information search module 70333 selects from the user management table 70342 a record in which the accepted user ID matches the user ID 703421 of the user management table 70342. Next, user information search module 70333 extracts user mail address 703422 from the selected record (ST70113). Then, the user information search module 70333 delivers the extracted user mail address 703422 to the confirmation mail address generation module 70334.

The confirmation mail address generation module 70334 accepts the user mail address 703422 from the user information search module 70333. Next, the confirmation e-mail address generation module 70334 generates a confirmation e-mail address (ST70114). Next, the confirmation mail address generation module 70334 generates a new record in the confirmation mail address correspondence table 70341. Next, the confirmation e-mail address generation module 70334 stores the generated confirmation e-mail address in the confirmation e-mail address 703412 of the created new record. Next, the confirmation e-mail address generation module 70334 stores the user e-mail address 703422 accepted from the user information search module 70333 in the user e-mail address 703413 of the created new record (ST70115). Next, the confirmation mail address generation module 70334 delivers the generated confirmation mail address and the accepted user mail address 703422 to the confirmation mail address transmission module 70335.

The confirmation mail address transmission module 70335 accepts the confirmation mail address and the user mail address 703422 from the confirmation mail address generation module 70334. Next, the confirmation e-mail address transmission module 70335 notifies the cellular phone 7060 of the accepted confirmation e-mail address. Specifically, confirmation e-mail address transmission module 70335 transmits an e-mail in which the accepted confirmation e-mail address is described in the text or subject to addressed user e-mail address 703422 (ST70116). Alternatively, the confirmation e-mail address transmission module 70335 may transmit an e-mail whose transmission source is the accepted confirmation e-mail address to the accepted user e-mail address 703422.

Mobile phone 7060 receives an e-mail including a confirmation e-mail address (ST70117). Next, cellular phone 7060 transmits an e-mail to the confirmation e-mail address in response to a user operation (ST70118).

Then, mail reception module 70336 receives an electronic mail from mobile phone 7060 (ST70119).

The received mail reading module 70337 acquires the transmission source mail address and the transmission destination mail address from the electronic mail received by the mail reception module 70336. Next, the received mail reading module 70337 generates a new record in the received mail address correspondence table 70344. Next, the received mail reading module 70337 stores the acquired destination mail address in the destination mail address 703442 of the created new record. Next, the received mail reading module 70337 stores the acquired transmission source mail address in the transmission source mail address 703443 of the created new record. (ST70120).

On the other hand, the client device 7010 transmits an authentication result request to the mail authentication device 703 via the network 9 (ST70121).

Then, authentication result request reception module 703322 receives an authentication result request from client apparatus 7010 (ST70122). Then, the authentication result request reception module 703322 delivers the received authentication result request to the authentication module 70338. The authentication result request reception module 703322 requests the authentication module 70338 for authentication.

The authentication module 70338 receives an authentication request. The authentication module 70338 selects a record related to the authentication result request from the confirmation mail address correspondence table 70341 based on the connection ID included in the accepted authentication result request. The authentication module 70338 extracts the confirmation e-mail address 703412 and the user e-mail address 703413 from the selected record. Next, the authentication module 70338 matches the extracted confirmation e-mail address 703412 with the destination e-mail address 703442 of the received e-mail address correspondence table 70344, and the extracted user e-mail address 703413 and the source of the received e-mail address correspondence table 70344 It is determined whether or not a record matching the mail address 703443 exists in the received mail address correspondence table 70344. If the record exists in the received mail address correspondence table 70344, the authentication module 70338 determines that authentication is possible. On the other hand, if the record does not exist in the received mail address correspondence table 70344, the authentication module 70338 determines that authentication is not possible. Then, authentication module 70338 delivers the authentication result to authentication result transmission module 70339 (ST70123).

The authentication result transmission module 70339 takes the authentication result from the authentication module 70338. Next, the authentication result transmission module 70339 transmits the accepted authentication result to the client device 7010 via the network 9 (ST70124). Note that the authentication result transmission module 70339 may transmit the user's unique information corresponding to the user ID in the authentication result.

Then, client apparatus 7010 receives the authentication result from mail authentication apparatus 703 (ST70125).

As described above, the user of the client device 7010 uses the e-mail of the mobile phone 7060 in order to receive authentication. The user of the client device 7010 cannot receive personal authentication without both the user ID and the mobile phone 7060. As a result, another person who has acquired only the user ID cannot impersonate the user of the client device 7010 and receive authentication. That is, even if the user ID is given up, information leakage can be prevented. Even if the e-mail is forged, information leakage can be prevented. A plurality of users can be set for one mobile phone 7060. Thus, according to the present embodiment, a safe and convenient personal authentication system can be provided. Further, when the mail authentication device 703 includes a confirmation mail address assignment module, the following effects are produced. The mail authentication device 703 compares the user mail address associated with the user ID with the mail address of the transmission source. For this reason, even if a user who has been authenticated once erroneously sends an e-mail to the same confirmation e-mail address, other users will not be authenticated by impersonating the user who sent the e-mail by mistake. In addition, the mobile phone 7060 receives an email including a confirmation email address from the email authentication device 703. Therefore, the user can send an e-mail addressed to the confirmation e-mail address from the mobile phone 7060 only by operating the confirmation e-mail address included in the e-mail. That is, the user does not need to input a confirmation e-mail address from the mobile phone. Therefore, the user can log in easily.

In the present embodiment, the mail authentication device 703 is configured by a single device, but may be configured by a plurality of devices depending on the scale of the service to be provided. In this case, the devices constituting the mail authentication device 703 are connected to each other via an appropriate data transfer path. Further, the mail authentication device 703 may be configured by a plurality of devices according to function. For example, the mail authentication device 703 generates a confirmation email address, receives an email, a user ID and an authentication result request, sends an email including the confirmation email address, and sends an authentication result. And a transmitting device. Also in this case, the devices constituting the mail authentication device 703 are connected to each other via an appropriate data transfer path. Information including the confirmation e-mail address and the e-mail address is delivered between the devices via the data transfer path.

By the way, in the above-described embodiment, the user of the client device 7010 transmits an e-mail from the mobile phone 7060 in order to receive authentication. A user of the client device 7010 may use communication by SIP (Session Initiation Protocol) in order to receive authentication. In this case, the mobile phone 7060 has the function of a SIP user agent. The mail authentication device 703 has a SIP user agent function and a SIP server function. Then, the mail authentication device 703 generates a confirmation user agent address instead of the confirmation mail address. The confirmation user agent address is an address for the mail authentication apparatus 703 to receive communication based on SIP. Since the address system is the same as that of electronic mail, detailed description is omitted. The method for generating the confirmation user agent address may be the same as the method for generating the confirmation mail address. The mail authentication device 703 associates the user agent address of the user corresponding to the user ID received from the client device 7010 with the generated confirmation user agent address, and stores them in the confirmation mail address correspondence table. Further, the mail authentication device 703 notifies the mobile phone 7060 of the confirmation user agent address. Specifically, the mail authentication device 703 transmits an electronic mail including the confirmation user agent address to the mobile phone 7060. Alternatively, the mail authentication device 703 transmits signaling having the confirmation user agent address as a transmission source to the mobile phone 7060. Then, the cellular phone 7060 transmits signaling to the confirmation user agent address by SIP in response to a user operation. The mail authentication device 703 receives signaling from the mobile phone 7060. The mail authentication device 703 extracts the source user agent address and the destination user agent address from the received signaling. Next, the mail authentication device 703 associates the extracted transmission source user agent address with the extracted transmission destination user agent address and stores them in the received mail address correspondence table. The mail authentication device 703 receives an authentication result request from the client device 7010. Then, the mail authentication device 703 selects a record related to the authentication result request from the confirmation mail address correspondence table based on the connection ID included in the received authentication result request. The mail authentication device 703 extracts the confirmation user agent address and the user agent address of the user from the selected record. Next, the mail authentication device 703 matches the extracted confirmation user agent address with the destination user agent address of the received mail address correspondence table, and transmits the extracted user agent address and received mail address correspondence table. It is determined whether or not a record that matches the original user agent address exists in the received mail address correspondence table. If the record exists in the received mail address correspondence table, the mail authentication device 703 determines that authentication is possible. On the other hand, if the record does not exist in the received mail address correspondence table, the mail authentication device 703 determines that authentication is not possible. Note that the details of the authentication using SIP are the same as the authentication using e-mail. Further, for the authentication using SIP, a modification similar to the authentication using e-mail can be considered.

Here, a first modification of the first embodiment of the present invention will be described. The mail authentication device 703 according to the first embodiment compares the correspondence between the transmission destination mail address and the transmission source mail address with the correspondence between the confirmation mail address and the user mail address. However, in the first modification, the mail authentication device 703 compares the correspondence between the user's unique information and the destination mail address with the correspondence between the user's unique information and the confirmation email address. In this case, the confirmation mail address correspondence table 70341 includes information unique to the user instead of the user mail address 703413. The received mail address correspondence table 70344 includes information unique to the user instead of the sender mail address 703443. The mail authentication device 703 stores the correspondence between the received unique information of the user and the created confirmation mail address in the confirmation mail address correspondence table 70341. Also, the mail authentication device 703 refers to the user management table 70342 and identifies the unique information of the user corresponding to the mail address of the transmission source acquired from the e-mail. Next, the mail authentication device 703 stores the correspondence between the specific information of the identified user and the destination mail address acquired from the email in the received mail address correspondence table 70344. The mail authentication device 703 then associates the user's unique information stored in the received mail address correspondence table 70344 with the destination mail address, and the user's unique information stored in the confirmation mail address correspondence table 70341. The correspondence between the correct information and the confirmation e-mail address. If the two correspondences compared with each other match, the mail authentication device 703 determines that authentication is possible. On the other hand, if the two compared correspondences do not match, the mail authentication device 703 determines that authentication is not possible. Note that similar modifications are possible in all the embodiments described below.

Here, a second modification of the first embodiment of the present invention will be described. The mail authentication device 703 according to the first embodiment compares the correspondence between the transmission destination mail address and the transmission source mail address with the correspondence between the confirmation mail address and the user mail address. However, in the second modified example, the mail authentication device 703 has the correspondence between the received user's unique information and the sender's mail address acquired from the e-mail and the user's unique information stored in the user management table 70342. The correspondence between the information and the user mail address is compared. In this case, the confirmation mail address correspondence table 70341 includes information unique to the user instead of the user mail address 703413. The received mail address correspondence table 70344 includes information unique to the user instead of the destination mail address 703442. The mail authentication device 703 stores the correspondence between the received unique information of the user and the created confirmation mail address in the confirmation mail address correspondence table 70341. Also, the mail authentication device 703 refers to the confirmation mail address correspondence table 70341, and identifies user-specific information corresponding to the destination mail address acquired from the electronic mail. Next, the mail authentication device 703 stores the correspondence between the specific information of the identified user and the mail address of the transmission source acquired from the electronic mail in the received mail address correspondence table 70344. The mail authentication device 703 then associates the user's unique information stored in the received mail address correspondence table 70344 with the sender's mail address, and the user's unique information stored in the user management table 70342. The correspondence with the user mail address is compared. If the two correspondences compared with each other match, the mail authentication device 703 determines that authentication is possible. On the other hand, if the two compared correspondences do not match, the mail authentication device 703 determines that authentication is not possible. Note that similar modifications are possible in all the embodiments described below.

A specific example of authentication according to this embodiment will be described. For example, the client device 7010 requests login to the WEB page by transmitting the user ID. In this case, the mail authentication device 703 may be a WEB server or an authentication-dedicated device that receives an authentication request from the WEB server. Further, the client device 7010 requests a credit card settlement on the WEB page by transmitting the user ID. In this case, the mail authentication device 703 may be a WEB server that performs credit card settlement, or may be a dedicated authentication device that receives an authentication request from the WEB server. Further, the client device 7010 requests the withdrawal of the deposit, the repayment of the borrowing, or the borrowing of the borrowing by transmitting the user ID. In this case, the client device 7010 is an ATM. Furthermore, the mail authentication device 703 is a management server that manages settlement in ATM. Also, the client device 7010 requests a credit card settlement at the store by transmitting the user ID. In this case, the client device 7010 is a reader device that reads credit card information. Further, the mail authentication device 703 is a management server that manages credit card settlement in the reader device. In addition, the client device 7010 requests debit card settlement by transmitting the user ID. In this case, the client device 7010 is a reader device that reads information of the debit card. Further, the mail authentication device 703 is a management server that manages debit card settlement in the reader device. In addition, the client device 7010 requests borrowing by post-payment with the public fee by transmitting the user ID. In this case, the client device 7010 is an ATM. Further, the mail authentication device 703 is a management server that manages borrowing in the ATM. In addition, the client device 7010 requests payment of the unpaid utility bill by transmitting the user ID. In this case, the client device 7010 is an information terminal installed in a convenience store or the like. Furthermore, the mail authentication device 703 is a management server that manages the information terminal. In addition, the client device 7010 requests connection to the in-house intranet by transmitting the user ID. In this case, the mail authentication device 703 is a management server that manages an intranet in the company. Also, the client device 7010 requests connection to the server by a thin client (THIN CLIENT) by transmitting the user ID. In this case, the mail authentication device 703 is a management server that manages the connection between the thin client device and the server. Further, the client device 7010 requests connection to a wireless LAN access point by transmitting a user ID. In this case, the mail authentication device 703 is a management server that manages the connection between the client device 7010 and the access point. Note that the above-described user may be a computer instead of a person. For example, the computer may be authenticated as a user.

(Second Embodiment)
Although the personal authentication system of the second embodiment will be described below, the same reference numerals are used for portions that overlap with the personal authentication system of the first embodiment, and description thereof is omitted.

FIG. 9 is a schematic configuration diagram of a personal authentication system according to the second embodiment. The personal authentication system shown in FIG. 9 includes a client device 7110, a mobile phone 7060, and a mail authentication WEB device 713. The client device 7110 is a computer operated by a user who is going to be authenticated. The mobile phone 7060 is operated by a user who wants to receive authentication. In this embodiment, the user owns the client device 7110 and the mobile phone 7060. Then, the user is authenticated on the client device 7110 by transmitting an e-mail from the mobile phone 7060. Therefore, the mobile phone 7060 is equipped with an e-mail transmission function. Further, the client device 7110 and the mobile phone 7060 are connected to the network 9. In the second embodiment, the network 9 is the Internet. Since the configuration of the client device 7110 is the same as that of the client device 7010 (FIG. 2) provided in the personal authentication system of the first embodiment, the description thereof is omitted. The client device 7110 may be in any form as long as it includes a transmission / reception unit, a central processing unit, and a main storage device. For example, the client device 7110 is a personal computer, a server, a mobile phone, an ATM, or the like. However, the mobile phone functioning as the client device 7110 has a WEB browser function. The mail authentication WEB device 713 is connected to the client device 7110 and the mobile phone 7060 via the network 9. The mail authentication WEB device 713 has a WEB server function and a mail receiving server function. The configuration of the mail authentication WEB apparatus 713 is the same as that of the mail authentication apparatus 703 (FIG. 3) provided in the personal authentication system of the first embodiment, and thus the description thereof is omitted. For the sake of clarity, the authentication process for one client device 7110 will be described in the personal authentication system of the second embodiment. In practice, the mail authentication WEB device 713 authenticates a plurality of client devices 7110 via the network 9. In FIG. 9, two client devices 7110 and two mobile phones 7060 are shown, but any number of personal authentication systems may be provided. In the description of the present embodiment, a case where the unique information of the user is a user ID will be described.

Since the function of the client device 7110 is the same as that of the client device 7010 provided in the personal authentication system of the first embodiment, description thereof is omitted. Specifically, the client device 7110 transmits a user ID and an authentication result request to the mail authentication WEB device 713 by HTTP. The client device 7110 receives the authentication result from the mail authentication WEB device 713 by HTTP.

The client device 7110 has the following functions in addition to the functions of the client device 7010 provided in the personal authentication system of the first embodiment. The client device 7110 transmits a request for a login WEB page to the mail authentication WEB device 713 in response to a user operation. Then, the client device 7110 receives a login WEB page from the mail authentication WEB device 713. The client device 7110 displays the login WEB page received from the mail authentication WEB device 713 on the display device. The login WEB page (not shown) displayed on the display device of the client device 7110 includes a user ID input field and a user ID transmission button. The user ID transmission button receives an instruction to transmit a user ID from the user. That is, when the user ID button is operated by the user, the client device 7110 transmits the user ID input in the user ID column to the mail authentication WEB device 713. In other words, user-specific information is input to the login WEB page. Then, the client device 7110 inputs user-specific information input to the login WEB page to the mail authentication WEB device 713.

FIG. 10 is a functional block diagram of the mail authentication WEB apparatus 713 according to the second embodiment. The auxiliary storage device of the mail authentication web device 713 stores the authentication program 71300 of the second embodiment. When the authentication program 71300 of the second embodiment is executed, the main module 70331, user ID reception module 703321, authentication result request reception module 703322, user information search module 70333, A confirmation mail address generation module 70334, a confirmation mail address transmission module 70335, a mail reception module 70336, a received mail reading module 70337, an authentication module 70338, and an authentication result transmission module 71339 are stored.

The authentication result transmission module 71339 has the same function as the authentication result transmission module 71339 provided in the mail authentication device 703 of the first embodiment. The other modules are the same as those provided in the mail authentication device 703 of the first embodiment, and thus description thereof is omitted.

The authentication result transmission module 71339 generates a WEB page including the authentication result of the authentication module 70338 in addition to the same function as the authentication result transmission module 70339 of the first embodiment. The authentication result transmission module 71339 transmits the generated WEB page to the client device 7110 as an authentication result. When the authentication result can be authenticated, the WEB page generated by the authentication result transmission module 71339 may include user-specific information corresponding to the user ID. For example, the user-specific information includes at least one of a user name, a password, a credit card number, a cash card number, a schedule table, an operation history, a deposit balance, and the like.

Next, the personal authentication method of the second embodiment will be described with reference to the drawings. FIG. 11 is a sequence diagram of processing of the personal authentication method according to the second embodiment. The personal authentication method of the second embodiment (FIG. 11) is compared with the personal authentication method of the first embodiment (FIG. 8). The personal authentication method of the second embodiment includes ST71124 instead of ST70124. The processing of the personal authentication method of the second embodiment is the same as that of the personal authentication method of the first embodiment (FIG. 8) except for ST71124. Therefore, description of steps other than ST71124 will be omitted.

Next, ST71124 will be described. The authentication result transmission module 71339 takes the authentication result from the authentication module 70338. Next, the authentication result transmission module 71339 generates a WEB page including the accepted authentication result. Next, the authentication result transmission module 71339 transmits the generated WEB page to the client device 7110 via the network 9 (ST71124). Note that the authentication result transmission module 71339 may generate a WEB page including user-specific information corresponding to the user ID, and transmit the generated WEB page.

As described above, the user of the client device 7110 used e-mail to receive authentication. A user of the client device 7110 cannot receive personal authentication without both a user ID and a mobile phone 7060 that transmits an e-mail. Accordingly, another person who has acquired only the user ID cannot impersonate the user of the client device 7110 and receive authentication. That is, even if the user ID is given up, information leakage can be prevented. In addition, since the user ID is input, information leakage can be prevented even if the e-mail is forged. A plurality of users can be set for one mail address. Thus, according to the present embodiment, a safe and convenient personal authentication system can be provided.

(Third embodiment)
In the following, the personal authentication system of the third embodiment will be described. However, the same reference numerals are used for portions that overlap the personal authentication system of the first embodiment or the personal authentication system of the second embodiment. Omitted.

The mail authentication WEB apparatus 713 provided in the personal authentication system of the second embodiment includes an authentication function and a WEB page transmission function including user-specific information. At this time, in order to change the conventional WEB server to have the function of the mail authentication WEB apparatus 713, it is essential to change the program of the WEB server. On the other hand, in the third embodiment, an embodiment in which the personal authentication method of the present invention can be easily introduced to a conventional WEB server will be described. A conventional WEB server provided in the personal authentication system of the third embodiment is referred to as an introduction WEB server 5.

FIG. 12 is a schematic configuration diagram of a personal authentication system according to the third embodiment. The personal authentication system shown in FIG. 12 includes a plurality of client apparatuses 7110, a plurality of mobile phones 7060, an introduction WEB server 5, and a mail authentication dedicated WEB apparatus 743. The client device 7110 is a computer operated by a user who is going to be authenticated. In addition, the mobile phone 7060 is operated by a user who intends to receive authentication. In this embodiment, the user owns the client device 7110 and the mobile phone 7060. Then, the user is authenticated on the client device 7110 by transmitting an e-mail from the mobile phone 7060. Therefore, the mobile phone 7060 is equipped with an e-mail transmission function. Further, the client device 7110 and the mobile phone 7060 are connected to the network 9. Since the configuration of the client device 7110 is the same as that of the client device 7010 (FIG. 2) provided in the personal authentication system of the first embodiment, the description thereof is omitted. However, the mobile phone functioning as the client device 7110 has a WEB browser function. The introduction WEB server 5 is connected to the client device 7110 and the mobile phone 7060 via the network 9. In the present embodiment, the network 9 is the Internet. The introduction WEB server 5 is a conventional WEB server. For example, the introduction WEB server 5 receives a login from the user of the client device 7110. Then, the introduction WEB server 5 transmits a WEB page including user-specific information to the client device 7110. Specifically, the introduction WEB server 5 transmits a member WEB page corresponding to the user ID. The mail authentication dedicated WEB device 743 is connected to the client device 7110 and the mobile phone 7060 via the network 9. The mail authentication dedicated WEB device 743 has a WEB server function and a mail receiving server function. Since the configuration of the mail authentication dedicated WEB device 743 is the same as that of the mail authentication device 703 (FIG. 3) provided in the personal authentication system of the first embodiment, the description thereof is omitted. In FIG. 12, two client devices 7110 and two mobile phones 7060 are shown, but any number of personal authentication systems may be provided.

For the sake of clarity, in the description of the personal authentication system of the third embodiment, it is assumed that the domain “dunyu.jp” is assigned to the introduction WEB server 5. Further, it is assumed that the domain “ninsho.jp” is assigned to the mail authentication dedicated WEB device 743.

The client device 7110 has the following functions in addition to the functions of the client device 7010 provided in the personal authentication system of the first embodiment. The client device 7110 transmits a request for a login WEB page to the introduction WEB server 5 in response to a user operation. Further, the client apparatus 7110 receives a login WEB page from the introduction WEB server 5. The client device 7110 displays the login WEB page received from the introduction WEB server 5 on the display device. The login WEB page (not shown) displayed on the display device of the client device 7110 includes a user ID input field and a user ID transmission button. The user ID transmission button receives an instruction to transmit a user ID from the user. When the user ID transmission button is operated by the user, the client apparatus 7110 transmits the user ID input in the user ID column to the mail authentication dedicated WEB apparatus 743. Further, the client device 7110 transmits a request for the member WEB page to the introduction WEB server 5 based on information included in the WEB page indicating the authentication result received from the mail authentication dedicated WEB device 743.

The introduction WEB server 5 receives a request for a login WEB page from the client device 7110. Then, the introduction WEB server 5 transmits a login WEB page to the client device 7110. As described above, the login WEB page includes a user ID input field and a user ID transmission button. The login WEB page includes authentication site information. The authentication site information includes the URL and return URL of the mail authentication dedicated WEB device 743 that is the transmission destination of the user ID. The return URL is a URL for the client apparatus 7110 to transmit a request for a member WEB page after the authentication by the mail authentication dedicated WEB apparatus 743 is completed. Here, an example of authentication site information is shown. For example, the authentication site information is <FORM METHOD = “POST” ACTION = “http://www.ninsho.jp/index.php?rule=http://www.dunyu.jp/member.php”> user ID : <INPUT TYPE = “text” NAME = “USRID”> <BR> <INPUT TYPE = “submit” VALUE = “transmission”> </ FORM>. The URL after “rurl =” is the return URL. The authentication site information may be other information as long as the purpose is achieved.

When the authentication is permitted by the mail authentication dedicated WEB device 743, the client device 7110 transmits a request for the member WEB page. The introduction WEB server 5 receives a request for a member WEB page from the client device 7110. Then, the introduction WEB server 5 extracts the user's mail address from the received request for the member WEB page. The introduction WEB server 5 generates a WEB page including user-specific information corresponding to the extracted user mail address. The introduction WEB server 5 transmits the generated WEB page to the client device 7110 as a member WEB page.

The function of the mail authentication dedicated WEB device 743 is mainly the same as that of the mail authentication WEB device 713 provided in the personal authentication system of the second embodiment. The function of the mail authentication dedicated WEB device 743 includes the following function in addition to the function of the mail authentication WEB device 713 provided in the personal authentication system of the second embodiment. The mail authentication dedicated WEB device 743 receives the return URL from the client device 7110 together with the user ID. Further, the mail authentication dedicated WEB device 743 stores the received return URL in association with the generated confirmation mail address in the confirmation mail address correspondence table 70341. Therefore, the confirmation e-mail address correspondence table 70341 includes a return URL (not shown). Further, the mail authentication dedicated WEB device 743 generates a WEB page including the authentication result, the return URL, and the user's mail address. The example of the source code contained in the produced | generated WEB page is shown. For example, the source code is “<meta http-equiv =“ Refresh ”content =“ 0; url = http: // www. dounyu. jp / member. php? usrmail = taka @ yahoo. co. jp & auth = 1 ">". The URL after “url =” is the return URL. The mail address after “usmail =” is the user's mail address. The value after “auth =” is the authentication result. For example, “1” can be authenticated, and “0” cannot be authenticated. However, “auth =” is not necessarily included. For example, the source code is “<A HREF =“ http: // www. dounyu. jp / member. php? usrmail = taka @ yahoo. co. jp & auth = 1 "> Membership page is here </A>". The URL after “url =” is the return URL. The mail address after “usmail =” is the user's mail address. The value after “auth =” is the authentication result. For example, “1” can be authenticated, and “0” cannot be authenticated. However, “auth =” is not necessarily included. The source code included in the WEB page may be other as long as the purpose is achieved.

Next, a personal authentication method according to the third embodiment will be described with reference to the drawings. FIG. 13 is a sequence diagram of processing of the personal authentication method of the third embodiment. The personal authentication method of the third embodiment (FIG. 13) is compared with the personal authentication method of the second embodiment (FIG. 11). The personal authentication method of the third embodiment includes ST74112 instead of ST70112. Also, the personal authentication method of the third embodiment includes ST74115 instead of ST70115. Also, the personal authentication method of the third embodiment includes ST74124 instead of ST71124. The personal authentication method of the third embodiment includes ST74109, ST74110, ST74126, ST74127, and ST74128. The processing of the personal authentication method of the third embodiment is the same as that of the personal authentication method of the second embodiment (FIG. 11) except for ST74115, ST74112, and ST74124. Therefore, description of steps other than ST74115, ST74112, and ST74124 is omitted.

ST74109 will be described. Client apparatus 7110 transmits a request for a login WEB page to introduction WEB server 5 via network 9 (ST74109).

ST74110 will be described. The introduction WEB server 5 receives a request for a login WEB page from the client device 7110. Then, the introduction WEB server 5 transmits a login WEB page including the authentication site information to the client device 7110 via the network 9 (ST74110).

ST74112 will be described. The user ID receiving module 703321 provided in the mail authentication dedicated WEB device 743 receives the user ID and the return URL from the client device 7110. Next, user ID reception module 703321 delivers the received user ID to user information search module 70333 (ST74112).

ST74115 will be described. The confirmation e-mail address generation module 70334 generates a new record in the confirmation e-mail address correspondence table 70341. Next, the confirmation mail address generation module 70334 stores the user mail address received from the user information search module 70333 in the user mail address 703413 of the new record created. Next, the confirmation e-mail address generation module 70334 stores the generated confirmation e-mail address in the confirmation e-mail address 703412 of the created new record. Next, the confirmation e-mail address generation module 70334 stores the return URL received by the user ID reception module 703321 in the return URL of the created new record (ST74115).

ST74124 will be described. The authentication result transmission module 71339 takes the authentication result from the authentication module 70338. Next, the authentication result transmission module 71339 selects, from the confirmation mail address correspondence table 70341, a record in which the confirmation mail address used for authentication matches the confirmation mail address 703412 of the confirmation mail address correspondence table 70341. . Next, the authentication result transmission module 71339 extracts the return URL and the user mail address 703413 from the selected record. The authentication result transmission module 71339 generates a WEB page including the accepted authentication result, the extracted return URL, and the extracted user mail address 703413. Next, the authentication result transmission module 71339 transmits the generated WEB page as an authentication result to the client device 7110 via the network 9 (ST74124).

ST74126 will be described. The client device 7110 receives the WEB page transmitted as the authentication result from the mail authentication dedicated WEB device 743. Next, based on the received WEB page, client apparatus 7110 transmits a request for a member WEB page to introduction WEB server 5 via network 9 (ST74126). The request for the member's WEB page includes the user's email address. For example, a request for a WEB page for a member is a URL “http://www.dunyu.jp/member.php?usrmail=taka@yaho.co.jp&auth=1”. The user's mail address is after “usmail =”.

ST74127 will be described. The introduction WEB server 5 receives a request for a member WEB page from the client device 7110. Next, the introduction WEB server 5 extracts the user's mail address from the received request for the member WEB page. Next, the introduction WEB server 5 specifies the user based on the extracted user's mail address. Next, the introduction WEB server 5 generates a member WEB page corresponding to the identified user. Next, the introduction WEB server 5 transmits the generated member WEB page to the client device 7110 via the network 9 (ST74127).

ST74128 will be described. The client device 7110 receives a member WEB page from the introduction WEB server 5 via the network 9. Next, client apparatus 7110 displays the received member WEB page on the display apparatus (ST74128).

An outline of processing of the personal authentication method of the third embodiment will be described. The client apparatus 7110 requests the introduction WEB server 5 for a login WEB page in response to a user operation (ST74109). The introduction WEB server 5 transmits the requested login WEB page to the client device 7110 (ST74110). Client apparatus 7110 transmits the user ID and return URL to mail authentication dedicated WEB apparatus 743 based on the authentication site information included in the login WEB page (ST70111). The mail authentication dedicated WEB device 743 receives the user ID and the return URL (ST74112). Next, the mail authentication dedicated WEB device 743 searches for a user mail address based on the received user ID (ST70113). Next, a mail authentication dedicated WEB device 743 and a confirmation mail address are generated (ST70114). Next, the mail authentication dedicated WEB device 743 associates the searched user mail address, the generated confirmation mail address, and the received return URL with each other and stores them in the confirmation mail address correspondence table 70341 (ST74115). Next, WEB device 743 dedicated for mail authentication transmits an electronic mail including the generated confirmation mail address to mobile phone 7060 (ST70116). Mobile phone 7060 receives the confirmation e-mail address (ST70117). Then, cellular phone 7060 transmits an e-mail addressed to the confirmation e-mail address (ST70118). Then, the mail authentication dedicated WEB device 743 receives an electronic mail from the mobile phone 7060 (ST70119). Next, the mail authentication-dedicated WEB device 743 specifies a source mail address and a destination mail address from the received electronic mail. Next, the mail authentication dedicated WEB device 743 associates the specified destination mail address with the specified source mail address, and stores them in the received mail address correspondence table 70344 (ST70120). On the other hand, client apparatus 7110 transmits an authentication result request to WEB apparatus 743 dedicated for mail authentication (ST70121). Then, the mail authentication dedicated WEB device 743 receives an authentication result request from the client device 7110 (ST70122). The mail authentication dedicated WEB device 743 selects a record related to the authentication result request from the confirmation mail address correspondence table 70341 based on the connection ID included in the received authentication result request. The mail authentication dedicated WEB device 743 extracts a confirmation mail address 7031212 and a user mail address 703413 from the selected record. Next, the mail authentication dedicated WEB device 743 matches the extracted confirmation mail address 703412 with the destination mail address 703442 of the received mail address correspondence table 70344, and extracts the extracted user mail address 703413 and the received mail address correspondence table 70344. It is determined whether or not there is a record in the received mail address correspondence table 70344 that matches the sender mail address 703443. If the record exists in the received mail address correspondence table 70344, the mail authentication-dedicated WEB device 743 determines that authentication is possible. On the other hand, when the record does not exist in received mail address correspondence table 70344, mail authentication-dedicated WEB device 743 determines that authentication is not possible (ST70123). Next, the mail authentication dedicated WEB device 743 transmits a WEB page including the return URL, the user's mail address, and the authentication result to the client device 7110 (ST74124). Client apparatus 7110 receives the WEB page (ST70125). Next, based on the return URL included in the received WEB page, the client device 7110 transmits a request for the member WEB page to the introduction WEB server 5 (ST74126). The introduction WEB server 5 receives a request for a member WEB page from the client device 7110. Next, the introduction WEB server 5 extracts the user's mail address from the received request for the member WEB page. Next, the introduction WEB server 5 transmits a member WEB page corresponding to the extracted user's mail address to the client device 7110 (ST74127). The member WEB page includes user-specific information corresponding to the extracted user mail address. Next, the client device 7110 receives a member WEB page from the introduction WEB server 5. Next, client apparatus 7110 displays the received member WEB page on the display apparatus (ST74128).

As described above, the introduction WEB server 5 which is a conventional WEB server can introduce the personal authentication method of the present invention only by including the authentication site information in the login WEB page transmitted to the client device 7110.

In the embodiment described above, the introduction WEB server 5 transmits the member WEB page by trusting the mail address included in the request for the member WEB page received from the client device 7110. However, the e-mail address included in the request for the member WEB page may be forged. Accordingly, the introduction WEB server 5 may confirm that the link source is the mail apparatus 743 dedicated to mail authentication by referring to the referer.

(Fourth embodiment)
Although the personal authentication system of the fourth embodiment will be described below, the same reference numerals are used for portions that overlap with the personal authentication system of the third embodiment, and description thereof is omitted.

In electronic commerce on the Internet, a credit card is often used as a settlement means. In the fourth embodiment, an example in which the personal authentication system of the third embodiment is applied to credit card settlement on the Internet will be described. In the fourth embodiment, the credit card number plays the same role as the user ID in the third embodiment. That is, in the fourth embodiment, the user's unique information is the credit card number.

Since the schematic configuration diagram of the personal authentication system of the fourth embodiment is the same as the schematic configuration diagram (FIG. 12) of the personal authentication system of the third embodiment, detailed description thereof is omitted. The client device 7110 is operated by a user who intends to execute a credit card payment. The mobile phone 7060 is operated by a user who intends to execute credit card payment. The introduction WEB server 5 is a WEB server that provides electronic commerce such as article sales or service sales. The mail authentication dedicated WEB device 743 is a WEB device that processes credit card credit examination and billing. The user management table 70342 of the mail authentication dedicated WEB device 743 includes a credit card number (not shown). The credit card number included in the user management table is a credit card number owned by the user. The user management table 70342 stores a credit card number and an e-mail address of a user who owns the credit card in association with each other. Further, the confirmation mail address correspondence table 70341 of the mail authentication dedicated WEB device 743 includes a settlement amount (not shown). The settlement amount included in the confirmation mail address correspondence table 70341 is an amount to be settled with a credit card.

The outline of the process of the personal authentication method of the fourth embodiment will be described. The introduction WEB server 5 determines the payment amount with the user's operation. The settlement amount determination method may be a method adopted in a conventional electronic commerce site. Next, the client device 7110 transmits a request for a settlement WEB page to the introduction WEB server 5 instead of a request for a login WEB page in response to a user operation. The introduction WEB server 5 receives a request for a payment WEB page. Then, the introduction WEB server 5 generates the requested payment WEB page. Next, the introduction WEB server 5 transmits the generated payment WEB page to the client device 7110. The payment WEB page generated by the introduction WEB server 5 includes authentication site information. The authentication site information includes a return URL and a payment amount. The client device 7110 receives a WEB page for payment. The WEB page for payment includes a credit card number input field, a credit card number transmission button, and a payment amount. Further, the payment WEB page includes authentication site information. The credit card number transmission button accepts an instruction to transmit a credit card number from the user. When the credit card number transmission button is operated by the user, the client device 7110 transmits the credit card number input in the credit card number input field to the mail authentication dedicated WEB device 743. At this time, based on the authentication site information included in the received payment web page, the client device 7110 transmits the return URL and the payment amount to the mail authentication dedicated WEB device 743 together with the credit card number. The mail authentication dedicated WEB device 743 receives the credit card number, the return URL, and the settlement amount. Next, the mail authentication dedicated WEB device 743 extracts the user mail address 703422 from the user management table 70342 based on the received credit card number. Next, the email authentication dedicated WEB device 743 generates a confirmation email address. Next, the mail authentication dedicated WEB device 743 stores the extracted user mail address 703422, the generated confirmation mail address, the received return URL, and the received payment amount in the confirmation mail address correspondence table 70341 in association with each other. . Next, the mail authentication dedicated WEB device 743 transmits an e-mail including the generated confirmation e-mail address to the mobile phone 7060. The cellular phone 7060 receives an e-mail including a confirmation e-mail address. Next, the mobile phone 7060 transmits an e-mail to the confirmation e-mail address. The mail authentication dedicated WEB device 743 receives an e-mail from the mobile phone 7060. Then, the mail authentication-dedicated WEB device 743 acquires a transmission source mail address and a transmission destination mail address from the received electronic mail. Next, the mail authentication dedicated WEB device 743 associates the acquired transmission source mail address with the acquired transmission destination mail address, and stores them in the received mail address correspondence table 70344. On the other hand, the client device 7110 transmits an authentication result request to the mail authentication dedicated WEB device 743. The mail authentication dedicated WEB device 743 receives an authentication result request from the client device 7110. Next, the mail authentication dedicated WEB device 743 selects a record related to the authentication result request from the confirmation mail address correspondence table 70341 based on the connection ID included in the received authentication result request. The mail authentication dedicated WEB device 743 extracts a confirmation mail address 7031212 and a user mail address 703413 from the selected record. Next, the mail authentication dedicated WEB device 743 matches the extracted confirmation mail address 703412 with the destination mail address 703442 of the received mail address correspondence table 70344, and extracts the extracted user mail address 703413 and the received mail address correspondence table 70344. It is determined whether or not there is a record in the received mail address correspondence table 70344 that matches the sender mail address 703443. If the record does not exist in the received mail address correspondence table 70344, the mail authentication dedicated WEB device 743 determines that authentication is not possible. On the other hand, when the record exists in the received mail address correspondence table 70344, the mail authentication-dedicated WEB device 743 performs a credit examination for the credit card corresponding to the extracted user mail address 703422. In the credit screening, the mail authentication-dedicated WEB device 743 determines whether the payment amount stored in the confirmation mail address correspondence table 70341 can be settled with the credit card. The credit screening is the same as the conventional credit screening when using a credit card. By the way, since the mail authentication-dedicated WEB device 743 includes the credit card number in the user management table 70342, the credit card corresponding to the user mail address can be easily specified. If the credit examination is satisfactory, the mail authentication dedicated WEB device 743 charges the payment amount to the credit card. Note that the mail authentication dedicated WEB device 743 may request the credit examination processing and the billing processing from a device dedicated to the credit examination processing and the billing processing. The mail authentication dedicated WEB device 743 determines that the authentication result can be authenticated when the accounting process is completed. The mail authentication dedicated WEB device 743 transmits a WEB page including the user mail address, the authentication result, and the return URL to the client device 7110. Based on the authentication result and the return URL included in the received WEB page, the client apparatus 7110 transmits a request for the settlement-completed WEB page including the user mail address to the introduction WEB server 5. The introduction WEB server 5 receives a request for a WEB page for which payment is completed from the client device 7110. Next, the introduction WEB server 5 extracts the user mail address from the received request for the ending WEB page. Next, the introduction WEB server 5 transmits to the client device 7110 a WEB page for which payment has been completed corresponding to the extracted user mail address. The payment-finished WEB page includes user-specific information corresponding to the extracted user mail address.

As described above, the personal authentication system of the third embodiment can be applied to a credit card settlement. In the fourth embodiment, the credit card settlement has been described. However, the settlement means may be any means as long as it is a means for settlement through authentication. For example, the payment means includes “Edy” (trademark), “Jay debit” (trademark), “mobile phone payment service” (trademark), and the like. “Edy” (trademark) is electronic money that can be used in stores or on the Internet. “J Debit” (trademark) is a settlement service for deposit account withdrawal that can be used in stores or on the Internet. “Mobile Phone Payment Service” (trademark) is a postpaid payment service available on the Internet, where the payment amount is added to the charge for the mobile phone fee.

By the way, the WEB page for settlement generated by the introduction WEB server includes a credit card number input field. The payment WEB page generated by the introduction WEB server may include a credit card expiration date input field, a contractor name input field, and a password input field in addition to the credit card number input field. The client device 7110 transmits not only the credit card number but also the credit card expiration date, the contractor name, and the personal identification number to the mail authentication dedicated WEB device 743. The mail authentication-dedicated WEB device 743 repeatedly performs conventional authentication based on the credit card number, the credit card expiration date, the contractor name, and the password. By combining with the conventional authentication process, the safety of the personal system of the present embodiment is enhanced. Note that the unique information of the user in the present embodiment includes a credit card expiration date, a contractor's name or a password.

(Fifth embodiment)
In the following, the personal authentication system of the fifth embodiment will be described. However, the same reference numerals are used for portions that overlap with the personal authentication system of the first embodiment, and the description thereof is omitted.

A specific embodiment in which the personal authentication system of the first embodiment is used for ATM user authentication as a personal authentication system of the fifth embodiment will be described. Conventionally, ATMs collate passwords to prevent the use of impersonation. However, the operation of impersonation by voyeuring of a personal identification number has become a social problem. In the personal authentication system according to the fifth embodiment, an example will be described in which an electronic mail is used instead of collation of a personal identification number. In the fifth embodiment, the account number of the financial institution plays the same role as the user ID in the first embodiment. That is, in the fifth embodiment, the unique information of the user is the unique information of the cash card including the account number and the like.

FIG. 14 is a schematic configuration diagram of a personal authentication system according to the fifth embodiment. The personal authentication system shown in FIG. 14 includes a plurality of ATM (AUTOMATIC TELLER MACHINE) 7210, a plurality of mobile phones 7060, and an ATM mail authentication device 723. The ATM 7210 is operated by a user who is authenticated and intends to withdraw or withdraw cash. The ATM 7210 is connected to the network 9. The mobile phone 7060 is operated by a user who is authenticated and intends to withdraw or withdraw cash. The cellular phone 7060 has an e-mail transmission function. A cellular phone 7060 is connected to the Internet 1. The ATM mail authentication device 723 is connected to the ATM 7210 via the network 9. In the fifth embodiment, the network 9 is an internal network. The network 9 may include a relay device that aggregates ATM mail authentication devices installed in a plurality of financial institutions. The ATM mail authentication device 723 is connected to a mobile phone 7060 via the Internet 1. The configuration of the ATM mail authentication device 723 is the same as that of the mail authentication device 703 (FIG. 3) provided in the personal authentication system of the first embodiment, and a description thereof will be omitted. For the sake of clarity, in the personal authentication system of the fifth embodiment, an authentication process for one ATM 7210 will be described. Actually, the ATM mail authentication device 723 authenticates a plurality of ATMs 7210 via the network 9. In FIG. 14, three ATM 7210s are shown, but any number of personal authentication systems may be provided. Further, although three mobile phones 7060 are illustrated, any number of personal authentication systems may be provided. Note that the personal authentication system may include any terminal having an e-mail transmission function instead of the mobile phone 7060.

FIG. 15 is a block diagram of a configuration of an ATM 7210 provided in the personal authentication system of the fifth embodiment. The ATM 7210 physically includes a transmission / reception unit 7211, a central processing unit 7212, a main storage device 7213, an auxiliary storage device 7214, an input device (not shown), a display device (not shown), a cash handling unit 7215, and a card information reading unit. 7216 and the like. The transmission / reception unit 7211 is an interface that is connected to the network 9 and transmits / receives data to / from an external device (ATM mail authentication device 723). The central processing unit 7212 is, for example, a CPU. The central processing unit 7212 performs various processes by executing programs stored in the main storage device 7213. The main storage device 7213 is, for example, a memory. The main storage device 7213 stores a program executed by the central processing unit 7212, information required by the central processing unit 7212, and the like. The auxiliary storage device 7214 is, for example, a hard disk. The auxiliary storage device 7214 stores various types of information. The input device is, for example, a keyboard or a touch panel. Various information is input to the input device from the user. The display device is a display. On the display device, information instructed to be displayed by the central processing unit 7212 is displayed. The cash handling unit 7215 physically manages banknotes and money. Further, the cash handling unit 7215 deposits and withdraws banknotes and money. The cash handling unit 7215 may be provided in an ATM of a general financial institution. The card information reading unit 7216 is a device that reads information stored in a cash card. The card information reading unit 7216 provided in a general ATM is sufficient. Note that the ATM 7210 is not necessarily provided with the auxiliary storage device 7214.

The functions of the ATM 7210 provided in the personal authentication system of the fifth embodiment are mainly the same as those of the client device 7010 provided in the personal authentication system of the first embodiment. The ATM 7210 provided in the personal authentication system of the fifth embodiment has the following functions in addition to the functions of the client device 7110 provided in the personal authentication system of the first embodiment. The ATM 7210 reads information specific to the cash card from the cash card in response to a user operation. The ATM 7210 transmits information unique to the cash card to the ATM mail authentication device 723. The information unique to the cash card includes, for example, at least one of a bank number, a branch number, an account number, and an account type. In the description of this embodiment, the unique information of the cash card is an account number.

The cellular phone 7060 is equipped with an Internet connection function. Therefore, the mobile phone 7060 transmits an e-mail to the ATM mail authentication device 723 via the Internet 1.

The function of the ATM mail authentication device 723 provided in the personal authentication system of the fifth embodiment is mainly the same as that of the mail authentication device 703 provided in the personal authentication system of the first embodiment. The ATM mail authentication device 723 provided in the personal authentication system of the fifth embodiment has the following functions in addition to the same functions as the mail authentication device 703 provided in the personal authentication system of the first embodiment. The ATM mail authentication device 723 of the fifth embodiment manages user accounts. The user management table 70342 of the ATM mail authentication device 723 includes an account number (not shown). The account number included in the user management table 70342 is an account number of a financial institution owned by the user. In the user management table 70342, an account number and a user mail address 703422 are stored in advance in association with each other. In addition, the user management table 70342 stores financial institution account information corresponding to the user ID. The account information of the financial institution includes a deposit balance, a borrowing balance, a borrowable balance, and the like. However, the user-specific information is not necessarily managed by the user management table 70342, and may be managed by a plurality of tables corresponding to the user ID. The management method of the user's unique information is left to the implementer of the present invention according to the type of service and the scale of the user. Part of the user's unique information corresponding to the user ID is included in the authentication result transmitted from the ATM mail authentication device 723 to the ATM 7210.

Next, a personal authentication method according to the fifth embodiment will be described. The sequence diagram of the personal authentication method of the fifth embodiment is mainly the same as FIG. 8 which is the sequence diagram of the personal authentication method of the first embodiment.

The card information reading unit 7216 of the ATM 7210 reads the account number by the user's card operation. Next, ATM 7210 transmits the read account number to ATM mail authentication apparatus 723 (ST70111). The ATM mail authentication device 723 receives the account number (ST70112). Next, the ATM mail authentication device 723 selects from the user management table 70342 a record in which the received account number matches the account number of the user management table 70342. Next, the ATM mail authentication device 723 extracts the user mail address 703422 from the selected record (ST70113). Next, the ATM mail authentication device 723 generates a confirmation mail address (ST70114). Next, ATM mail authentication apparatus 723 associates the extracted user mail address 703422 with the generated confirmation mail address and stores them in confirmation mail address correspondence table 70341 (ST70115). Next, ATM mail authentication apparatus 723 transmits an electronic mail including the generated confirmation mail address to mobile phone 7060 (ST70116). Mobile phone 7060 receives an e-mail including a confirmation e-mail address (ST70117). Next, mobile phone 7060 transmits an e-mail addressed to the confirmation e-mail address in response to a user operation (ST70118). The ATM mail authentication device 723 receives an email from the mobile phone 7060 (ST70119). Next, the ATM mail authentication device 723 acquires a destination mail address and a source mail address from the received electronic mail. Next, the ATM mail authentication device 723 associates the acquired transmission destination mail address with the acquired transmission source mail address and stores them in the received mail address correspondence table 70344 (ST70120). On the other hand, ATM 7210 transmits an authentication result request to ATM mail authentication device 723 (ST70121). ATM mail authentication apparatus 723 receives an authentication result request from ATM 7210 (ST70122). Next, the ATM mail authentication device 723 selects a record related to the authentication result request from the confirmation mail address correspondence table 70341 based on the connection ID included in the received authentication result request. The ATM mail authentication device 723 extracts the confirmation mail address 703413 and the user mail address 703413 from the selected record. Next, the ATM mail authentication device 723 matches the extracted confirmation mail address 703412 with the destination mail address 703442 of the received mail address correspondence table 70344, and the extracted user mail address 703413 and the received mail address correspondence table 70344. It is determined whether or not a record that matches the transmission source mail address 703443 exists in the received mail address correspondence table 70344. If the record does not exist in the received mail address correspondence table 70344, the ATM mail authentication device 723 determines that authentication is not possible. On the other hand, when the record exists in the received mail address correspondence table 70344, the ATM mail authentication apparatus 723 determines that authentication is possible (ST70123). The ATM mail authentication device 723 transmits the authentication result to the ATM 7210 (ST70124). The ATM 7210 receives the authentication result (ST70125). Next, the ATM 7210 displays the authentication result on the display device. A user of the ATM 7210 executes a subsequent operation based on information displayed on the display device of the ATM 7210. Subsequent operations are, for example, withdrawal of deposits, repayment of borrowings or borrowing of borrowings.

Note that the ATM 7210 may not send an authentication result request to the ATM mail authentication device 723. In this case, the ATM mail authentication device 723 matches the transmission destination mail address acquired from the electronic mail with the confirmation mail address 703412 of the confirmation mail address correspondence table 70341 and confirms the transmission source mail address acquired from the electronic mail. It is determined whether or not a record matching the user mail address 703413 of the mail address correspondence table 70341 exists in the confirmation mail address correspondence table 70341. If the record does not exist in the confirmation mail address correspondence table 70341, the ATM mail authentication device 723 determines that authentication is not possible. On the other hand, if the record exists in the confirmation mail address correspondence table 70341, the ATM mail authentication device 723 determines that authentication is possible.

By the way, a general ATM can accept various operations such as withdrawal of deposits, repayment of borrowings and borrowing of borrowings. Therefore, prior to ST70111, ATM 7210 accepts the type of operation from the user. The ATM 7210 transmits the accepted operation type to the ATM mail authentication device 723 together with the account number. The ATM mail authentication device 723 receives the type of operation from the ATM 7210. Then, the ATM mail authentication device 723 determines user-specific information to be included in the authentication result based on the type of received operation.

The following procedure may also be used. A general ATM can accept various operations such as withdrawal of deposits, repayment of borrowings and borrowing of borrowings. Here, the ATM mail authentication device 723 stores operations that can be received from the user of the ATM 7210 in advance corresponding to the user ID. In this case, the ATM 7210 does not accept the type of operation from the user before transmitting the user ID. The ATM mail authentication device 723 includes an acceptable operation corresponding to the authenticated user ID in the authentication result and transmits it to the ATM 7210. The ATM 7210 displays the authentication result received from the ATM mail authentication device 723 and acceptable operations on the display device. The user of the ATM 7210 selects an operation from the types of operations displayed on the display device of the ATM 7210. The ATM 7210 then performs the selected type of operation. .

The personal authentication method of the fifth embodiment may be combined with a conventional personal authentication method using a cash card and a personal identification number. As a result, even if the cash card and the password are stolen, the deposit is not withdrawn by the impersonating user unless an e-mail is transmitted by the user's e-mail address.

Here, an application example of the fifth embodiment of the present invention will be described. An ATM mail authentication device 723 provided in the personal authentication system of the fifth embodiment also serves as a device for calculating a utility bill. The ATM mail authentication device 723 calculates a utility bill, issues a bill, and manages the payment status. For example, public charges are telephone charges, mobile phone charges, electricity charges, gas charges, and water charges. The ATM mail authentication device 723 stores the mail address of the mobile phone 7060 and the identifier of the user who receives the utility bill service in association with each other. When the ATM mail authentication device 723 lends a loan to a user of the ATM 7210, the ATM mail authentication device 723 bills the loan together with a bill for a utility bill. In addition, the ATM mail authentication device 723 accepts payment of a utility bill from a user of the ATM 7210. When the ATM mail authentication device 723 authenticates the user of the ATM 7210, the ATM mail authentication device 723 receives from the ATM 7210 the payment of the unpaid utility fee of the user of the mobile phone 7060.

(Sixth embodiment)
The personal authentication system of the sixth embodiment will be described below, but the same reference numerals are used for the same portions as those of the personal authentication system of the first embodiment and the personal authentication system of the fifth embodiment. Omitted.

As a personal authentication system of the sixth embodiment, a specific embodiment in which the personal authentication system of the first embodiment is used for credit card payment at a store will be described. Conventionally, in store credit card settlement, in order to prevent the use of impersonation, a store salesperson visually compares the signature of the usage slip with the signature on the back of the credit card. However, visual verification is not sufficient as an anti-spoofing measure. In the personal authentication system according to the sixth embodiment, an example in which an electronic mail address is used instead of signature verification will be described. In the sixth embodiment, the credit card number plays the same role as the user ID in the first embodiment. That is, in the sixth embodiment, the unique information of the user is the credit card number.

FIG. 16 is a schematic configuration diagram of a personal authentication system according to the sixth embodiment. The personal authentication system shown in FIG. 16 includes a plurality of reader devices 7310, a plurality of mobile phones 7060, and a mail authentication device 703. The reader device 7310 is connected to the network 9. The reader device 7310 is a device for reading credit card information. The reader device 7310 will be described in detail with reference to FIG. In the store, the store salesperson usually operates the reader device 7310. However, the user who is authenticated in the personal authentication system of the sixth embodiment is a credit card holder. Therefore, in order to simplify the description, in the description of this embodiment, the user of the reader device 7310 is assumed to be a credit card holder. The cellular phone 7060 is operated by a credit card holder who is authenticated and intends to use the credit card. The cellular phone 7060 has an e-mail transmission function. A cellular phone 7060 is connected to the Internet 1. The mail authentication device 703 is connected to the reader device 7310 via the network 9. The mail authentication device 703 is connected to a mobile phone 7060 via the Internet 1. The block diagram of the mail authentication device 703 is the same as the mail authentication device 703 (FIG. 3) provided in the personal authentication system of the first embodiment, and a description thereof will be omitted. For the sake of clarity, the authentication process of one reader device 7310 will be described in the personal authentication system of the sixth embodiment. Actually, the mail authentication device 703 authenticates a plurality of reader devices 7310 via the network 9. That is, the mail authentication device 703 can receive credit card numbers from a plurality of reader devices 7310. In practice, the mail authentication device 703 is connected to a plurality of mobile phones 7060 via the Internet 1. In FIG. 16, three reader devices 7310 are illustrated, but any number of personal authentication systems may be provided. In FIG. 16, three mobile phones 7060 are illustrated, but any number of personal authentication systems may be provided.

FIG. 17 is a block diagram of a configuration of a reader device 7310 provided in the personal authentication system of the sixth embodiment. The reader device 7310 physically includes a transmission / reception unit 7311, a central processing unit 7312, a main storage device 7313, an auxiliary storage device 7314, an input device (not shown), a display device (not shown), a card information reading unit 7316, and the like. Prepare. The transmission / reception unit 7311 is an interface that is connected to the network 9 and transmits / receives data to / from an external device (mail authentication device 703). The central processing unit 7312 is, for example, a CPU. The central processing unit 7312 performs various processes by executing programs stored in the main storage device 7313. The main storage device 7313 is, for example, a memory. The main storage device 7313 stores a program executed by the central processing unit 7312, information required by the central processing unit 7312, and the like. The auxiliary storage device 7314 is, for example, a hard disk. The auxiliary storage device 7314 stores various types of information. The input device is, for example, a keyboard or a touch panel. Various information is input to the input device from the user. The display device is a display. On the display device, information instructed to be displayed from the central processing unit 7312 is displayed. The card information reading unit 7316 is a device that reads information stored in a credit card. The card information reading unit 7316 provided in a general credit card card reader is sufficient. Note that the reader device 7310 does not necessarily include the auxiliary storage device 7314.

The function of the reader device 7310 provided in the personal authentication system of the sixth embodiment is mainly the same as the client device 7010 provided in the personal authentication system of the first embodiment. The reader device 7310 provided in the personal authentication system of the sixth embodiment has the following functions in addition to the functions of the client device 7010 provided in the personal authentication system of the first embodiment. The reader device 7310 receives a credit card number and a payment amount by a user operation. The reader device 7310 transmits the accepted credit card number and settlement amount to the mail authentication device 703.

The cellular phone 7060 is equipped with an Internet connection function. The mobile phone 7060 transmits an e-mail to the mail authentication device 703 via the Internet 1.

The function of the mail authentication device 703 of the sixth embodiment is mainly the same as that of the personal authentication system of the first embodiment. The mail authentication device 703 of the sixth embodiment has the following functions in addition to the same functions as the mail authentication device 703 provided in the personal authentication system of the first embodiment. The mail authentication apparatus 703 of the sixth embodiment processes credit card credit examination and billing. The user management table 70342 of the mail authentication device 703 includes a credit card number (not shown). The credit card number included in the user management table 70342 is a credit card number owned by the user. The user management table 70342 stores in advance the correspondence between the credit card number and the e-mail address of the mobile phone 7060 owned by the user. Further, the confirmation mail address correspondence table 70341 of the mail authentication device 703 includes a settlement amount (not shown). The settlement amount included in the confirmation mail address correspondence table 70341 is an amount to be settled with a credit card.

Next, an outline of processing of the personal authentication method of the sixth embodiment will be described. The sequence diagram of the personal authentication method of the sixth embodiment is mainly the same as FIG. 8 which is the sequence diagram of the personal authentication method of the first embodiment.

The reader device 7310 receives a payment amount by a user operation. In addition, the card information reading unit 7316 of the reader device 7310 reads the credit card number by the user's card operation. Next, reader apparatus 7310 transmits the read credit card number and the accepted payment amount to mail authentication apparatus 703 (ST70111). Mail authentication device 703 receives the credit card number and the payment amount (ST70112). Next, the mail authentication device 703 selects from the user management table 70342 a record in which the received credit card number matches the credit card number in the user management table 70342. Next, the mail authentication device 703 extracts the user mail address 703422 from the selected record (ST70113). Next, the mail authentication device 703 generates a confirmation mail address (ST70114). Next, the mail authentication device 703 stores the extracted user mail address 703422, the generated confirmation mail address, and the received payment amount in association with each other in the confirmation mail address correspondence table 70341 (ST70115). Next, mail authentication device 703 transmits the generated e-mail including the confirmation e-mail address to mobile phone 7060 (ST70116). Reader apparatus 7310 receives the confirmation e-mail address (ST70117). Next, mobile phone 7060 transmits an e-mail addressed to the confirmation e-mail address in response to a user operation (ST70118). Mail authentication device 703 receives an electronic mail from mobile phone 7060 (ST70119). Next, the mail authentication device 703 acquires a destination mail address and a source mail address from the received electronic mail. The mail authentication device 703 associates the acquired transmission destination mail address with the acquired transmission source mail address and stores them in the received mail address correspondence table 70344 (ST70120). Meanwhile, reader apparatus 7310 transmits an authentication result request to mail authentication apparatus 703 (ST70121). Mail authentication device 703 receives an authentication result request from reader device 7310 (ST70122). Next, the mail authentication apparatus 703 selects a record related to the authentication result request from the confirmation mail address correspondence table 70341 based on the connection ID included in the received authentication result request. The mail authentication device 703 extracts the confirmation mail address 7031212 and the user mail address 703413 from the selected record. Next, the email authentication device 703 matches the extracted confirmation email address 703341 with the destination email address 703442 of the received email address correspondence table 70344, and sends the extracted user email address 703413 and the received email address correspondence table 70344. It is determined whether or not a record matching the original mail address 703443 exists in the received mail address correspondence table 70344 (ST70123). If the record does not exist in the received mail address correspondence table 70344, the mail authentication device 703 determines that authentication is not possible. On the other hand, when the record exists in the received mail address correspondence table 70344, the mail authentication apparatus 703 performs credit examination for the credit card corresponding to the extracted user mail address. Incidentally, since the mail authentication device 703 includes a credit card number in the user management table 70342, it is easy to specify a credit card corresponding to the user mail address. If the credit examination is good, the mail authentication device 703 charges the payment amount to the credit card. Note that the mail authentication device 703 may request the credit screening process and the billing process from a device dedicated to the credit screening process and the billing process. When the mail authentication apparatus 703 completes the accounting process, it determines that the authentication result can be authenticated. Mail authentication device 703 transmits the authentication result to reader device 7310 (ST70124). Reader apparatus 7310 receives the authentication result (ST70125). Then, the reader device 7310 displays the authentication result on the display device.

Note that the reader device 7310 may not send an authentication result request to the mail authentication device 703. In this case, the mail authentication device 703 matches the transmission destination mail address acquired from the electronic mail with the confirmation mail address 703412 of the confirmation mail address correspondence table 70341 and confirms the transmission source mail address acquired from the electronic mail with the confirmation mail address. It is determined whether or not a record that matches the user mail address 703413 in the mail address correspondence table 70341 exists in the confirmation mail address correspondence table 70341. If the record does not exist in the confirmation mail address correspondence table 70341, the mail authentication device 703 determines that authentication is not possible. On the other hand, if the record exists in the confirmation mail address correspondence table 70341, the mail authentication device 703 determines that authentication is possible.

As described above, in the personal authentication system of the sixth embodiment, the user's e-mail address could be used instead of signature verification in credit card payment at a store. In the sixth embodiment, the credit card settlement has been described. However, the settlement means is not limited to a credit card as long as it is a means for settlement after authentication. For example, the settlement means is “Jay Debit” (trademark).

Here, an application example of the sixth embodiment of the present invention will be described. The mail authentication device 703 provided in the personal authentication system of the application example of the sixth embodiment also serves as a device for calculating the utility bill. The e-mail authentication device 703 calculates utility charges, issues bills, and manages payment status. For example, public charges are telephone charges, mobile phone charges, electricity charges, gas charges, and water charges. The mail authentication device 703 provided in the personal authentication system of the sixth embodiment stores the correspondence between the user's mail address and credit card number in the user management table 70342. In the application example of the sixth embodiment, the mail authentication device 703 stores the correspondence between the user's e-mail address and the identifier of the user who receives the utility bill service in the user management table 70342. The email authentication device 703 adds the payment amount at the store to the public bill instead of charging the credit card. The user of the reader device 7310 can complete payment at the store only by sending an e-mail from the mobile phone 7060 or the like.

(Seventh embodiment)
In the following, an example in which a personal computer and a PDA are connected to an in-house intranet in the personal authentication system of the first embodiment will be described as the personal authentication system of the seventh embodiment. The same code | symbol is used for the location which overlaps with the personal authentication system of 1st Embodiment.

Many companies set up an internal intranet to encourage employees to communicate information while keeping internal information confidential. Employees connect a portable terminal such as a personal computer or PDA to a company intranet via dial-up or VPN (VIRTUAL PRIVATE NETWORK) for the purpose of browsing or updating company information from the office or sending and receiving e-mail. To do. Conventionally, an employee inputs a user ID and a password and connects to an in-house intranet. However, the user of the personal computer or PDA is authenticated by the personal authentication system of the first embodiment, and can connect the personal computer or PDA to the in-house intranet. In this case, the client device 7010 is a personal computer and a PDA that are to be connected to an in-house intranet. The mail authentication device 703 is a management server that manages an intranet in the company. The employee can connect the client device 7010 to the in-house intranet by inputting the user's unique information and sending mail from the user mail address. A user who wants to connect the client device 7010 to the corporate intranet cannot connect to the corporate intranet without the user's unique information, the client device 7010 and the mobile phone 7060. As a result, another person who has acquired only the client device 7010 can impersonate the user of the client device 7010 and cannot be authenticated. That is, even if the client device 7010 is lost, information leakage can be prevented.

(Eighth embodiment)
The following describes an example in which a thin client device is connected to an in-house server in the personal authentication system of the first embodiment as the personal authentication system of the eighth embodiment. The same code | symbol is used for the location which overlaps with the personal authentication system of 1st Embodiment.

The thin client device is a personal computer having a minimum auxiliary storage device. Companies have introduced a thin client system in order to prevent information leakage due to theft or loss of personal computers. The auxiliary storage device of the thin client device does not store sufficient in-house data and applications. In-house data and applications are stored by the central server. The employee operates the thin client device to connect to the central server, and browses and updates data. Conventionally, the employee inputs at least one of the user ID and the password and connects to the central server. The user of the thin client device is authenticated by the personal authentication system of the second embodiment. Then, the thin client device is connected to the in-house intranet. In this case, the client device 7010 is a thin client device to be connected to the central server. The mail authentication device 703 is a management server that manages the connection between the thin client device and the central server. The management server may be the central server itself. The employee can connect the thin client device to the central server by inputting the user's unique information and sending mail from the mobile phone 7060. A user who wants to connect a thin client device to the central server cannot connect to the central server without both the user's unique information and the mobile phone 7060. Thus, another person who has acquired only the thin client device can impersonate the user of the thin client device and cannot connect to the central server. That is, even if the thin client device is lost, information leakage can be prevented.

(Ninth embodiment)
In the following, an example of connecting a personal computer and a PDA to a public wireless LAN in the personal authentication system of the first embodiment will be described as the personal authentication system of the ninth embodiment. The same code | symbol is used for the location which overlaps with the personal authentication system of 1st Embodiment.

Public wireless LANs that connect to the Internet at the destination are widespread. Conventionally, a user of a public wireless LAN inputs a user ID and a password, and connects a portable terminal such as a personal computer and a PDA (PERSONAL DIGITAL ASSISTANCE) to an access point of the public wireless LAN. The public wireless LAN user is authenticated by the personal authentication system of the first embodiment, and can connect the personal computer and the PDA to the access point. In this case, the client device 7010 is a personal computer and a PDA to be connected to the access point. The mail authentication device 703 is a management server that manages connections between personal computers and PDAs and access points. The user of the public wireless LAN can connect the client device 7010 to the access point by inputting the user's unique information and sending a mail from the mobile phone 7060. A user who wants to connect the client device 7010 to the public wireless LAN cannot connect to the public wireless LAN without both the user's unique information and the mobile phone 7060. As a result, another person who has acquired only the client device 7010 can impersonate the user of the client device 7010 and cannot connect to the public wireless LAN.

(Tenth embodiment)
Although the personal authentication system of the tenth embodiment will be described below, the same reference numerals are used for portions that overlap with the personal authentication system of the first embodiment, and description thereof is omitted. Note that the personal authentication system of the tenth embodiment can be applied to any of the first to ninth embodiments.

In the first embodiment, a confirmation mail address that does not overlap is assigned to each client computer 7010. In the tenth embodiment, the confirmation e-mail address may be assigned to the client computer 7010 redundantly.

The mail authentication device 703 according to the tenth embodiment does not store the confirmation mail address generation module. The mail authentication device 703 according to the tenth embodiment does not store the confirmation mail address correspondence table 70341 because the confirmation mail address is not uniquely assigned. Also, the user management table 70342 stored in the mail authentication device 703 of the tenth embodiment is different from that of the first embodiment.

FIG. 18 is a configuration diagram of the user management table 70342 stored in the auxiliary storage device 7034 of the mail authentication device 703 according to the tenth embodiment. The user management table 70342 includes a user ID 703421, a user mail address 703422, and a reception time 703423. A user ID 703421 is a unique identifier of a user who is authenticated by the mail authentication device 703 of the first embodiment. The user mail address 703422 is an e-mail address of the mobile phone 7060 owned by the user identified by the user ID 703421 of the record. The reception time 703423 is the time at which the mail authentication apparatus 703 receives an e-mail that is sent from the user mail address 703422 of the record.

Next, processing of the personal authentication method of the tenth embodiment will be described with reference to the drawings. FIG. 19 is a sequence diagram of processing of the personal authentication method of the tenth embodiment.

Client apparatus 7010 transmits a user ID to mail authentication apparatus 703 via network 9 in response to a user operation (ST80111).

Then, user ID reception module 703321 receives the user ID from client apparatus 7010 (ST80112). Next, the user ID reception module 703321 delivers the received user ID to the user information search module 70333.

When the user information search module 70333 accepts the user ID, the user information search module 70333 selects from the user management table 70342 a record in which the accepted user ID matches the user ID 703421 of the user management table 70342. Next, user information search module 70333 extracts user mail address 703422 from the selected record (ST80113). Then, the user information search module 70333 delivers the extracted user mail address 703422 to the confirmation mail address transmission module 70335.

The confirmation email address transmission module 70335 accepts the user email address 703422 from the user information search module 70333. Next, the confirmation mail address transmission module 70335 notifies the mobile phone 7060 of a confirmation mail address that is a mail address that can be received by the mail authentication apparatus 703. The confirmation e-mail address transmission module 70335 may always notify one e-mail address that can be received by the e-mail authentication apparatus 703 as a confirmation e-mail address, or a plurality of e-mail addresses that can be received by the e-mail authentication apparatus 703. Any one of them may be notified by the confirmation mail address. Specifically, confirmation e-mail address transmission module 70335 transmits an e-mail in which the confirmation e-mail address is described in the text or subject to addressed user e-mail address 703422 (ST80116). Alternatively, the confirmation e-mail address transmission module 70335 may transmit an e-mail whose transmission source is the confirmation e-mail address to the received user e-mail address 703422.

Mobile phone 7060 receives the electronic mail including the confirmation mail address (ST80117). Next, cellular phone 7060 transmits an e-mail addressed to the confirmation e-mail address in response to a user operation (ST80118).

Then, mail receiving module 70336 receives an electronic mail from mobile phone 7060 (ST80119).

The received mail reading module 70337 acquires the mail address of the transmission source from the electronic mail received by the mail receiving module 70336. Next, the received mail reading module 70337 selects from the user management table 70342 a record in which the acquired transmission source mail address matches the user mail address 703422 of the user management table 70342. Next, the received mail reading module 70337 stores the current time or the time when the mail receiving module 70336 receives the e-mail in the reception time 703423 of the selected record (ST80120).

On the other hand, client apparatus 7010 transmits an authentication result request to mail authentication apparatus 703 via network 9 (ST80121).

Then, authentication result request reception module 703322 receives an authentication result request from client apparatus 7010 (ST80122). Then, the authentication result request reception module 703322 delivers the received authentication result request to the authentication module 70338. The authentication result request reception module 703322 requests the authentication module 70338 for authentication.

The authentication module 70338 receives an authentication request. Based on the connection ID included in the accepted authentication result request, authentication module 70338 selects again the record selected from user management table 70342 in ST80113. Next, the authentication module 70338 extracts the reception time 703423 from the selected record. Next, the authentication module 70338 compares the extracted reception time 703423 with the current time. If the difference between the reception time 703423 and the current time is within a preset threshold, the authentication module 70338 determines that authentication is possible. On the other hand, if the difference between the reception time 703423 and the current time is greater than a preset threshold, the authentication module 70338 determines that authentication is not possible. Then, authentication module 70338 delivers the authentication result to authentication result transmission module 70339 (ST80123).

The authentication result transmission module 70339 takes the authentication result from the authentication module 70338. Next, authentication result transmission module 70339 transmits the accepted authentication result to client apparatus 7010 via network 9 (ST80124). Note that the authentication result transmission module 70339 may transmit the user's unique information corresponding to the user ID in the authentication result.

Then, client apparatus 7010 receives the authentication result from mail authentication apparatus 703 (ST80125).

As described above, the mail authentication device 703 can perform authentication without assigning a confirmation mail address that does not overlap.

It is a figure which shows schematic structure of the personal authentication system of 1st Embodiment. 2 is a block diagram of a configuration of a client device 7010. FIG. 3 is a block diagram of a configuration of a mail authentication device 703. FIG. 3 is a functional block diagram of a mail authentication device 703. FIG. 10 is a configuration diagram of a confirmation mail address correspondence table 70341 stored in an auxiliary storage device 7034 of the mail authentication device 703. FIG. 7 is a configuration diagram of a user management table 70342 stored in an auxiliary storage device 7034 of the mail authentication device 703. FIG. FIG. 10 is a configuration diagram of a received mail address correspondence table 70344 stored in an auxiliary storage device 7034 of the mail authentication device 703. It is a sequence diagram of a process of the personal authentication method of the first embodiment. It is a schematic block diagram of the personal authentication system of 2nd Embodiment. 3 is a functional block diagram of a mail authentication WEB device 713. FIG. It is a sequence diagram of a process of the personal authentication method of the second embodiment. It is a schematic block diagram of the personal authentication system of 3rd Embodiment. It is a sequence diagram of a process of the personal authentication method of the third embodiment. It is a schematic block diagram of the personal authentication system of 5th Embodiment. It is a block diagram of a structure of ATM7210. It is a schematic block diagram of the personal authentication system of 6th Embodiment. 3 is a block diagram of a configuration of a reader device 7310. FIG. It is a block diagram of the user management table 70342 memorize | stored in the auxiliary storage device 7034 of the mail authentication apparatus 703 of 10th Embodiment. It is a sequence diagram of a process of the personal authentication method of the tenth embodiment.

Explanation of symbols

1 Internet 5 Introduced WEB server 7010 Client device 7011 Transmission / reception unit 7012 Central processing unit 7013 Main storage unit 7014 Auxiliary storage unit 703 Mail authentication unit 70300 Authentication program 7031 Transmission / reception unit 7032 Central processing unit 7033 Main storage unit 70331 Main module 703321 User ID reception module 703322 Authentication result request reception module 70333 User information search module 70334 Confirmation email address generation module 70335 Confirmation email address transmission module 70336 Email reception module 70337 Received mail reading module 70338 Authentication module 70339 Authentication result transmission module 7034 Auxiliary storage device 70341 Confirmation mail Address correspondence table 703412 confirmation Mail address 703413 User mail address 70342 User management table 703421 User ID
703422 User mail address 703423 Reception time 70344 Received mail address correspondence table 703442 Destination mail address 703443 Sender mail address 7060 Mobile phone 7110 Client device 713 Mail authentication WEB device 71300 Authentication program 71339 Authentication result transmission module 7210 ATM
7211 Transmission / reception unit 7212 Central processing unit 7213 Main storage unit 7214 Auxiliary storage unit 7215 Cash handling unit 7216 Card information reading unit 723 ATM mail authentication unit 7310 Reader unit 7311 Transmission / reception unit 7312 Central processing unit 7313 Main storage unit 7314 Auxiliary storage unit 7316 Card information Reading unit 743 Email authentication dedicated WEB device 9 Network

Claims (63)

One or more first client computers including a processor, a memory, and an interface; one or more second client computers including a processor, a memory, and an interface; and the first client computer and the second client computer including a processor, a memory, and an interface. An authentication system comprising an authentication computer connected to a client computer via a network,
The authentication computer is
Storing user management information indicating correspondence between the unique information of the user and the mail address of the second client computer owned by the user;
When receiving user-specific information from the first client computer, based on the user management information, specify the second client computer's email address corresponding to the received user-specific information,
From among the email addresses that can be received by the authentication computer, select an email address that is not associated with any of the email addresses of the second client computer previously identified as a confirmation email address,
Storing the identified second client computer mail address and the selected confirmation mail address in association with each other;
Notifying the second client computer of the selected confirmation e-mail address;
Receiving an email from the second client computer;
From the received e-mail, specify the source e-mail address and the destination e-mail address,
Whether the correspondence between the identified sender email address and the identified recipient email address matches the stored second client computer email address and confirmation email address Determine whether or not
An authentication system, wherein if it is determined that the two correspondences match, it is determined that the first client computer that is a transmission source of the unique information of the user is operated by a legitimate user. One or more first client computers including a processor, a memory, and an interface; one or more second client computers including a processor, a memory, and an interface; and the first client computer and the second client computer including a processor, a memory, and an interface. An authentication system comprising an authentication computer connected to a client computer via a network,
The authentication computer is
Storing user management information indicating correspondence between the unique information of the user and the mail address of the second client computer owned by the user;
Upon receipt of user-specific information from the first client computer, a mail address that is not associated with any of the previously received user-specific information among the mail addresses that can be received by the authentication computer is confirmed. Select as your email address,
Storing the received unique information of the user and the selected confirmation e-mail address in association with each other;
Notifying the second client computer of the selected confirmation e-mail address;
Receiving an email from the second client computer;
From the received e-mail, specify the source e-mail address and the destination e-mail address,
Based on the user management information, identify the unique information of the user corresponding to the email address of the identified sender,
Whether the correspondence between the specific information of the identified user and the email address of the identified destination matches the correspondence between the stored unique information of the user and the confirmation email address Determine
An authentication system, wherein if it is determined that the two correspondences match, it is determined that the first client computer that is a transmission source of the unique information of the user is operated by a legitimate user. One or more first client computers including a processor, a memory, and an interface; one or more second client computers including a processor, a memory, and an interface; and the first client computer and the second client computer including a processor, a memory, and an interface. An authentication system comprising an authentication computer connected to a client computer via a network,
The authentication computer is
Storing user management information indicating correspondence between the unique information of the user and the mail address of the second client computer owned by the user;
Upon receipt of user-specific information from the first client computer, a mail address that is not associated with any of the previously received user-specific information among the mail addresses that can be received by the authentication computer is confirmed. Select as your email address,
The received unique information of the user and the selected confirmation email address are associated with each other and stored in the confirmation email address correspondence information,
Notifying the second client computer of the selected confirmation e-mail address;
Receiving an email from the second client computer;
From the received e-mail, specify the source e-mail address and the destination e-mail address,
Based on the confirmation e-mail address correspondence information, specific information of the user corresponding to the e-mail address of the identified destination is specified,
A correspondence between the specific information of the identified user and the email address of the identified sender, a correspondence between the unique information of the user included in the user management information and the email address of the second client computer, Determine whether they match,
An authentication system, wherein if it is determined that the two correspondences match, it is determined that the first client computer that is a transmission source of the unique information of the user is operated by a legitimate user. One or more first client computers including a processor, a memory, and an interface; one or more second client computers including a processor, a memory, and an interface; and the first client computer and the second client computer including a processor, a memory, and an interface. An authentication system comprising an authentication computer connected to a client computer via a network,
The authentication computer is
Storing user management information indicating correspondence between the unique information of the user and the mail address of the second client computer owned by the user;
When receiving user-specific information from the first client computer, based on the user management information, specify the second client computer's email address corresponding to the received user-specific information,
Notifying the second client computer of an email address that can be received by the authentication computer,
Receiving an email from the second client computer;
Identify the email address of the sender from the received email,
Determining whether the identified sender's email address matches the identified second client computer's email address;
An authentication system, wherein when it is determined that two mail addresses match, it is determined that the first client computer, which is a transmission source of the user's unique information, is operated by a legitimate user. The authentication computer is
Measure the time from receiving the email address that the authentication computer can receive to receiving the email,
Determining whether the measurement time is within a predetermined value;
If it is determined that the two email addresses match and the measurement time is within a threshold, it is determined that the first client computer that is the transmission source of the user's unique information is operated by a legitimate user. The authentication system according to claim 4. The authentication computer is
Measuring the time between receiving the user's unique information and receiving the email,
Determining whether the measurement time is within a threshold;
If it is determined that the two mail addresses match and the measurement time is within a predetermined value, it is determined that the first client computer that is a transmission source of the unique information of the user is operated by a legitimate user. The authentication system according to claim 4, wherein:   The authentication computer sends the e-mail including the selected confirmation e-mail address to the e-mail address of the specified second client computer, thereby obtaining the selected confirmation e-mail address. The authentication system according to claim 1, wherein the authentication is notified to a client computer. The authentication computer is
Based on the user management information, specify the mail address of the second client computer corresponding to the received unique information of the user,
By sending an e-mail including the selected confirmation e-mail address to the e-mail address of the specified second client computer, the selected confirmation e-mail address is notified to the second client computer. The authentication system according to claim 2 or 3, wherein   The authentication computer sends an e-mail including an e-mail address that can be received by the authentication computer to the e-mail address of the specified second client computer, so that the e-mail address that can be received by the authentication computer is 5. The authentication system according to claim 4, wherein a notification is sent to the second client computer.   The user-specific information includes at least one of a user identifier, a personal identification number, a user date of birth, a user phone number, a card number owned by the user, and a user's biometric information. The authentication system according to any one of claims 1 to 4. The authentication computer is
When a predetermined time has elapsed since the confirmation email address is stored in association with each other, the association of the confirmation email address is canceled,
The authentication system according to any one of claims 1 to 3, wherein the confirmation e-mail address for which the association has been canceled is associated again.   The authentication computer, when determining that the two correspondences do not match, determines that the first client computer that is a transmission source of the unique information of the user is operated by an unauthorized user. 4. The authentication system according to any one of items 1 to 3. And a WEB computer for transmitting a WEB page to the first client computer.
5. The authentication system according to claim 1, wherein the authentication computer determines validity of a user who operates the first client computer accessing the WEB computer. 6.   5. The authentication system according to claim 1, wherein the first client computer is any one of a personal computer, a mobile phone, a reader device that reads card information, or an ATM.   The authentication system according to any one of claims 1 to 4, wherein the second client computer is a mobile phone.   The authentication system according to claim 1, wherein the authentication computer is a WEB server. The authentication computer is
Create a new email address that can be received by the authentication computer,
4. The authentication system according to claim 1, wherein the created new mail address is selected as a confirmation mail address.   The authentication computer invalidates the selected confirmation e-mail address when a predetermined time has elapsed after selecting the new e-mail address as the confirmation e-mail address. The authentication system according to claim 17, wherein the association is canceled. The authentication computer is
Determine whether the email address of the identified sender is forged,
If it is determined that the specified email address of the transmission source is camouflaged, it is determined that the first client computer that is the transmission source of the user's unique information is operated by an unauthorized user. The authentication system according to any one of claims 1 to 4. An authentication computer connected to one or more first client computers and one or more second client computers via a network, and comprising a processor, a memory and an interface,
Storing user management information indicating correspondence between the unique information of the user and the mail address of the second client computer owned by the user;
When receiving user-specific information from the first client computer, based on the user management information, specify the second client computer's email address corresponding to the received user-specific information,
From among the email addresses that can be received by the authentication computer, select an email address that is not associated with any of the email addresses of the second client computer previously identified as a confirmation email address,
Storing the identified second client computer mail address and the selected confirmation mail address in association with each other;
Notifying the second client computer of the selected confirmation e-mail address;
Receiving an email from the second client computer;
From the received e-mail, specify the source e-mail address and the destination e-mail address,
Whether the correspondence between the identified sender email address and the identified recipient email address matches the stored second client computer email address and confirmation email address Determine whether or not
If it is determined that the two correspondences match, it is determined that the first client computer, which is the transmission source of the user's unique information, is operated by a legitimate user. An authentication computer connected to one or more first client computers and one or more second client computers via a network, and comprising a processor, a memory and an interface,
Storing user management information indicating correspondence between the unique information of the user and the mail address of the second client computer owned by the user;
Upon receipt of user-specific information from the first client computer, a mail address that is not associated with any of the previously received user-specific information among the mail addresses that can be received by the authentication computer is confirmed. Select as your email address,
Storing the received unique information of the user and the selected confirmation e-mail address in association with each other;
Notifying the second client computer of the selected confirmation e-mail address;
Receiving an email from the second client computer;
From the received e-mail, specify the source e-mail address and the destination e-mail address,
Based on the user management information, identify the unique information of the user corresponding to the email address of the identified sender,
Whether the correspondence between the specific information of the identified user and the email address of the identified destination matches the correspondence between the stored unique information of the user and the confirmation email address Determine
If it is determined that the two correspondences match, it is determined that the first client computer, which is the transmission source of the user's unique information, is operated by a legitimate user. An authentication computer connected to one or more first client computers and one or more second client computers via a network, and comprising a processor, a memory and an interface,
Storing user management information indicating correspondence between the unique information of the user and the mail address of the second client computer owned by the user;
Upon receipt of user-specific information from the first client computer, a mail address that is not associated with any of the previously received user-specific information among the mail addresses that can be received by the authentication computer is confirmed. Select as your email address,
The received unique information of the user and the selected confirmation email address are associated with each other and stored in the confirmation email address correspondence information,
Notifying the second client computer of the selected confirmation e-mail address;
Receiving an email from the second client computer;
From the received e-mail, specify the source e-mail address and the destination e-mail address,
Based on the confirmation e-mail address correspondence information, specific information of the user corresponding to the e-mail address of the identified destination is specified,
A correspondence between the specific information of the identified user and the email address of the identified sender, a correspondence between the unique information of the user included in the user management information and the email address of the second client computer, Determine whether they match,
If it is determined that the two correspondences match, it is determined that the first client computer, which is the transmission source of the user's unique information, is operated by a legitimate user. An authentication computer connected to one or more first client computers and one or more second client computers via a network, and comprising a processor, a memory and an interface,
Storing user management information indicating correspondence between the unique information of the user and the mail address of the second client computer owned by the user;
When receiving user-specific information from the first client computer, based on the user management information, specify the second client computer's email address corresponding to the received user-specific information,
Notifying the second client computer of an email address that can be received by the authentication computer,
Receiving an email from the second client computer;
Identify the email address of the sender from the received email,
Determining whether the identified sender's email address matches the identified second client computer's email address;
If it is determined that the two mail addresses match, it is determined that the first client computer, which is the transmission source of the user's unique information, is operated by a legitimate user. Measure the time from receiving the email address that the authentication computer can receive to receiving the email,
Determining whether the measurement time is within a predetermined value;
If it is determined that the two email addresses match and the measurement time is within a threshold, it is determined that the first client computer that is the transmission source of the user's unique information is operated by a legitimate user. 24. The authentication computer according to claim 23. Measuring the time between receiving the user's unique information and receiving the email,
Determining whether the measurement time is within a threshold;
If it is determined that the two mail addresses match and the measurement time is within a predetermined value, it is determined that the first client computer that is a transmission source of the unique information of the user is operated by a legitimate user. The authentication computer according to claim 23, wherein:   By sending an e-mail including the selected confirmation e-mail address to the e-mail address of the specified second client computer, the selected confirmation e-mail address is notified to the second client computer. 21. The authentication computer according to claim 20, wherein Based on the user management information, specify the mail address of the second client computer corresponding to the received unique information of the user,
By sending an e-mail including the selected confirmation e-mail address to the e-mail address of the specified second client computer, the selected confirmation e-mail address is notified to the second client computer. The authentication computer according to claim 21 or 22, characterized in that   By sending an e-mail including an e-mail address that can be received by the authentication computer to the e-mail address of the specified second client computer, the e-mail address that can be received by the authentication computer is sent to the second client computer. The authentication computer according to claim 23, wherein notification is performed.   The user-specific information includes at least one of a user identifier, a personal identification number, a user date of birth, a user phone number, a card number owned by the user, and a user's biometric information. The authentication computer according to any one of claims 20 to 23. When a predetermined time has elapsed since the confirmation email address is stored in association with each other, the association of the confirmation email address is canceled,
The authentication computer according to any one of claims 20 to 22, wherein the confirmation e-mail address for which the association has been canceled is associated again.   23. The method according to claim 20, wherein if it is determined that the two correspondences do not coincide with each other, it is determined that the first client computer that is a transmission source of the unique information of the user is operated by an unauthorized user. The authentication computer according to one. And connected to a WEB computer that transmits a WEB page to the first client computer,
The authentication computer according to any one of claims 20 to 23, wherein the authenticity of a user who operates the first client computer accessing the WEB computer is determined.   24. The authentication computer according to claim 20, wherein the first client computer is one of a personal computer, a mobile phone, a reader device that reads card information, or an ATM.   The authentication computer according to any one of claims 20 to 23, wherein the second client computer is a mobile phone.   The authentication computer according to any one of claims 20 to 23, wherein the authentication computer is a WEB server. Create a new email address that can be received by the authentication computer,
The authentication computer according to any one of claims 20 to 22, wherein the created new mail address is selected as a confirmation mail address.   When a predetermined time elapses after selecting the new e-mail address as the confirmation e-mail address, the selected confirmation e-mail address is deactivated by invalidating the selected confirmation e-mail address. The authentication computer according to claim 36, wherein: Determine whether the email address of the identified sender is forged,
If it is determined that the specified email address of the transmission source is camouflaged, it is determined that the first client computer that is the transmission source of the user's unique information is operated by an unauthorized user. The authentication computer according to any one of claims 20 to 23. A program executed by an authentication computer connected to one or more first client computers and one or more second client computers via a network,
Storing user management information indicating correspondence between the unique information of the user and the mail address of the second client computer owned by the user;
When receiving user-specific information from the first client computer, based on the user management information, specifying a mail address of the second client computer corresponding to the received user-specific information;
Selecting an email address that is not associated with any of the previously identified email addresses of the second client computer among email addresses that can be received by the authentication computer, as a confirmation email address;
Storing the identified email address of the second client computer in association with the selected confirmation email address;
Notifying the second client computer of the selected confirmation e-mail address;
Receiving an email from the second client computer;
Identifying the source email address and the destination email address from the received email;
Whether the correspondence between the identified sender email address and the identified recipient email address matches the stored second client computer email address and confirmation email address Determining whether or not,
And a step of determining that the first client computer, which is a transmission source of the unique information of the user, is operated by a valid user when it is determined that the two correspondences match. A program executed by an authentication computer connected to one or more first client computers and one or more second client computers via a network,
Storing user management information indicating correspondence between the unique information of the user and the mail address of the second client computer owned by the user;
Upon receipt of user-specific information from the first client computer, a mail address that is not associated with any of the previously received user-specific information among the mail addresses that can be received by the authentication computer is confirmed. Selecting as your email address,
Storing the received unique information of the user and the selected confirmation e-mail address in association with each other;
Notifying the second client computer of the selected confirmation e-mail address;
Receiving an email from the second client computer;
Identifying the source email address and the destination email address from the received email;
Identifying specific information of the user corresponding to the email address of the identified sender based on the user management information;
Whether the correspondence between the specific information of the identified user and the email address of the identified destination matches the correspondence between the stored unique information of the user and the confirmation email address Determining
And a step of determining that the first client computer, which is a transmission source of the unique information of the user, is operated by a valid user when it is determined that the two correspondences match. A program executed by an authentication computer connected to one or more first client computers and one or more second client computers via a network,
Storing user management information indicating correspondence between the unique information of the user and the mail address of the second client computer owned by the user;
Upon receipt of user-specific information from the first client computer, a mail address that is not associated with any of the previously received user-specific information among the mail addresses that can be received by the authentication computer is confirmed. Selecting as your email address,
Storing the received unique information of the user and the selected confirmation email address in the confirmation email address correspondence information in association with each other;
Notifying the second client computer of the selected confirmation e-mail address;
Receiving an email from the second client computer;
Identifying the source email address and the destination email address from the received email;
Identifying specific information of the user corresponding to the identified destination email address based on the confirmation email address correspondence information;
A correspondence between the specific information of the identified user and the email address of the identified sender, a correspondence between the unique information of the user included in the user management information and the email address of the second client computer, Determining whether or not match,
And a step of determining that the first client computer, which is a transmission source of the user's unique information, is operated by a legitimate user when it is determined that the two correspondences match. A program executed by an authentication computer connected to one or more first client computers and one or more second client computers via a network,
Storing user management information indicating correspondence between the unique information of the user and the mail address of the second client computer owned by the user;
When receiving user-specific information from the first client computer, based on the user management information, specifying a mail address of the second client computer corresponding to the received user-specific information;
Notifying the second client computer of an email address that can be received by the authentication computer;
Receiving an email from the second client computer;
Identifying the email address of the sender from the received email;
Determining whether the identified sender's email address matches the identified second client computer's email address;
Determining that the two mail addresses coincide with each other, determining that the first client computer, which is a transmission source of the user's unique information, is being operated by a legitimate user. . An authentication computer connected to one or more first client computers and one or more second client computers via a network, and comprising a processor, a memory and an interface,
Storing user management information indicating correspondence between the unique information of the user and the user agent address of the second client computer owned by the user;
Upon receiving user-specific information from the first client computer, the user agent address of the second client computer corresponding to the received user-specific information is specified based on the user management information,
Among user agent addresses that can be received by the authentication computer, a user agent address that is not associated with any of the previously identified user agent addresses of the second client computer is selected as a user agent address for confirmation,
Storing the identified user agent address of the second client computer and the selected user agent address for confirmation in association with each other;
Notifying the second client computer of the selected confirmation user agent address;
Receiving signaling from the second client computer;
From the received signaling, specify the source user agent address and the destination user agent address,
A correspondence between the specified user agent address of the specified transmission source and the user agent address of the specified transmission destination, a correspondence between the stored user agent address of the second client computer and the user agent address for confirmation, Determine whether they match,
If it is determined that the two correspondences match, it is determined that the first client computer, which is the transmission source of the user's unique information, is operated by a legitimate user. An authentication computer connected to one or more first client computers and one or more second client computers via a network, and comprising a processor, a memory and an interface,
Storing user management information indicating correspondence between the unique information of the user and the user agent address of the second client computer owned by the user;
Upon receiving user-specific information from the first client computer, a user agent address that is not associated with any of the previously received user-specific information among user agent addresses that can be received by the authentication computer. Select it as the user agent address for confirmation,
Storing the received user-specific information and the selected confirmation user agent address in association with each other;
Notifying the second client computer of the selected confirmation user agent address;
Receiving signaling from the second client computer;
From the received signaling, specify the source user agent address and the destination user agent address,
Based on the user management information, identify user-specific information corresponding to the identified user agent address of the sender,
Whether the correspondence between the specific information of the identified user and the user agent address of the identified destination matches the correspondence between the unique information of the stored user and the confirmation user agent address Determine whether or not
If it is determined that the two correspondences match, it is determined that the first client computer, which is the transmission source of the user's unique information, is operated by a legitimate user. An authentication computer connected to one or more first client computers and one or more second client computers via a network, and comprising a processor, a memory and an interface,
Storing user management information indicating correspondence between the unique information of the user and the user agent address of the second client computer owned by the user;
Upon receiving user-specific information from the first client computer, a user agent address that is not associated with any of the previously received user-specific information among user agent addresses that can be received by the authentication computer. Select it as the user agent address for confirmation,
Storing the received user-specific information and the selected confirmation user agent address in the confirmation user agent address correspondence information in association with each other;
Notifying the second client computer of the selected confirmation user agent address;
Receiving signaling from the second client computer;
From the received signaling, specify the source user agent address and the destination user agent address,
Based on the confirmation user agent address correspondence information, specific information of the user corresponding to the user agent address of the identified destination is identified,
Correspondence between the specific information of the specified user and the user agent address of the specified transmission source, and correspondence between the specific information of the user included in the user management information and the user agent address of the second client computer And whether or not match,
If it is determined that the two correspondences match, it is determined that the first client computer, which is the transmission source of the user's unique information, is operated by a legitimate user. An authentication computer connected to one or more first client computers and one or more second client computers via a network, and comprising a processor, a memory and an interface,
Storing user management information indicating correspondence between the unique information of the user and the user agent address of the second client computer owned by the user;
Upon receiving user-specific information from the first client computer, the user agent address of the second client computer corresponding to the received user-specific information is specified based on the user management information,
Notifying the second client computer of a user agent address that can be received by the authentication computer,
Receiving signaling from the second client computer;
From the received signaling, identify the source user agent address,
Determining whether the identified user agent address of the transmission source matches the user agent address of the identified second client computer;
When it is determined that two user agent addresses coincide with each other, it is determined that the first client computer, which is a transmission source of the unique information of the user, is operated by a valid user. Measure the time from notification of the user agent address that can be received by the authentication computer to reception of the signaling,
Determining whether the measurement time is within a predetermined value;
If it is determined that the two user agent addresses match and the measurement time is within a threshold, it is determined that the first client computer that is a transmission source of the unique information of the user is operated by a legitimate user The authentication computer according to claim 46, wherein: Measuring the time between receiving the user specific information and receiving the signaling;
Determining whether the measurement time is within a threshold;
When it is determined that the two user agent addresses match and the measurement time is within a predetermined value, the first client computer that is a transmission source of the user's unique information is operated by a legitimate user. The authentication computer according to claim 46, wherein the authentication computer is determined.   By transmitting signaling including the selected confirmation user agent address to the user agent address of the identified second client computer, the selected confirmation user agent address is transmitted to the second client computer. The authentication computer according to claim 43, wherein notification is performed. Based on the user management information, specify a user agent address of the second client computer corresponding to the received unique information of the user,
By transmitting signaling including the selected confirmation user agent address to the user agent address of the identified second client computer, the selected confirmation user agent address is transmitted to the second client computer. 46. The authentication computer according to claim 44, wherein notification is performed.   By transmitting signaling including a user agent address that can be received by the authentication computer to the user agent address of the specified second client computer, the user agent address that can be received by the authentication computer is changed to the second client. The authentication computer according to claim 46, wherein the authentication computer is notified. The user management information further indicates correspondence between the unique information of the user and the mail address of the second client computer owned by the user,
Based on the user management information, specify the mail address of the second client computer corresponding to the received unique information of the user,
By sending an e-mail containing the selected confirmation user agent address to the e-mail address of the identified second client computer, the selected confirmation user agent address is sent to the second client computer. 46. The authentication computer according to any one of claims 43 to 45, wherein notification is performed. The user management information further indicates correspondence between the unique information of the user and the mail address of the second client computer owned by the user,
Based on the user management information, specify the mail address of the second client computer corresponding to the received unique information of the user,
By sending an e-mail including a user agent address that can be received by the authentication computer to the e-mail address of the specified second client computer, the user agent address that can be received by the authentication computer is changed to the second client. The authentication computer according to claim 46, wherein the authentication computer is notified.   The user-specific information includes at least one of a user identifier, a personal identification number, a user date of birth, a user phone number, a card number owned by the user, and a user's biometric information. 47. The authentication computer according to any one of claims 43 to 46. When a predetermined time has elapsed since the confirmation user agent address is stored in association with each other, the association of the confirmation user agent address is canceled,
46. The authentication computer according to claim 43, wherein the confirmation user agent address for which the association has been canceled is associated again.   46. Any one of claims 43 to 45, wherein if it is determined that the two correspondences do not match, it is determined that the first client computer that is a transmission source of the unique information of the user is operated by an unauthorized user. The authentication computer according to one. And connected to a WEB computer that transmits a WEB page to the first client computer,
47. The authentication computer according to any one of claims 43 to 46, wherein validity of a user operating the first client computer accessing the WEB computer is determined.   47. The authentication computer according to claim 43, wherein the first client computer is any one of a personal computer, a mobile phone, a reader device that reads card information, or an ATM.   47. The authentication computer according to claim 43, wherein the second client computer is a mobile phone.   47. The authentication computer according to any one of claims 43 to 46, wherein the authentication computer is a WEB server. Create a new user agent address that can be received by the authentication computer,
46. The authentication computer according to claim 43, wherein the created new user agent address is selected as a confirmation user agent address.   When a predetermined time elapses after the new user agent address is selected as the confirmation user agent address, the selected confirmation user agent address is invalidated by invalidating the selected confirmation user agent address. 62. The authentication computer according to claim 61, wherein the association is canceled. Determining whether the identified source user agent address is spoofed;
When it is determined that the specified user agent address of the transmission source is impersonated, it is determined that the first client computer that is the transmission source of the unique information of the user is operated by an unauthorized user The authentication computer according to any one of claims 43 to 46.

Images