JP2008084225A - Data carrier device, issuing device, data reading device, data authentication system and data authentication method - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To perform reliable data authentication to recording information in a data carrier device. <P>SOLUTION: The system comprises an information acquisition means for acquiring recording information to be recorded to the data carrier device and master information; an electronic signature generation means for generating electronic signature information by performing hash processing to calculation result information of the recording information and the master information; a recording means for recording the recording information and the electronic signature information to the data carrier device; a first reading means for reading the recording information and electronic signature information recorded in the data carrier device; a second reading means for reading the master information from a master data carrier device; and an authentication means for performing authentication of the recording information read by the first reading means according to a comparison result of the electronic signature information read by the first reading means with information obtained by performing hash processing to the recording information read by the first reading means and the master information read by the second reading means. <P>COPYRIGHT: (C)2008,JPO&INPIT

Description

  The present invention relates to a data authentication method, a data carrier device, an issuing device, a data reading device, and a data authentication system that can prevent forgery, falsification, duplication, and diversion of a data carrier device.

  Conventionally, a data carrier device in which information such as personal information, product information, and position information is stored is known. Typical data carrier devices include RFID, Smart cards, Active Chips, 2D barcodes, and the like. In addition, there are devices called “wireless markers” that transmit information by wireless communication such as infrared, Bluetooth (registered trademark), ZigBee, and the like, which can also be said to be data carrier devices. These data carrier devices can be used as tags attached to individual objects, used for distribution management of products and foods, article management in libraries and museums, installed wireless markers on advertising billboards, Use in various fields, such as use for information provision services such as evacuation guidance in a disaster, is assumed (for example, see Non-Patent Document 1).

As an application example of a data carrier device, the manufacturer attaches an electronic signature to the certificate data on the product tag, records it in the memory of the product tag, ships it with the product, and the purchaser uses a dedicated reader at the store. There is known a product authentication system that can read this and confirm whether the product is genuine or fake (see, for example, Patent Document 1).
Ken Sakamura, Noboru Koshizuka, “Ubiquitous ID Center Initiative” Monthly Barcode, vol.16, no.5, Nihon Kogyo Publishing, April 2003, pp.15-20 JP 2000-011114 A

  By the way, a two-dimensional barcode such as a QR code can also be said to be a data carrier device. However, since there are many free softwares for creating a QR code, this QR code can be easily created by an individual. be able to. In addition, by copying the image of the QR code itself with a copying machine, copying can be easily performed. Thus, a two-dimensional barcode such as a QR code can be said to be a data carrier device with low reliability. For example, a case has been reported in which a QR code seal of address information that is directed to an adult site by a malicious third party is attached to a billboard on which a QR code of tourist information site address information is printed. In addition, there is a problem that data carrier devices other than two-dimensional barcodes may be forged, falsified, duplicated and misused. In addition, in a tag type data carrier device, there is a problem that a regular tag may be affixed to a basket and used.

  The present invention has been made in view of such circumstances, and solves the above-described problems, and is a highly reliable data carrier device, issuing device, data reading device, and data authentication that is difficult to forge, tamper, duplicate, and divert. It is an object to provide a system and a data authentication method.

  The present invention provides electronic signature information generated by performing hash processing on information obtained as a result of computing record information and parent information that guarantees the record information, a data carrier device that records the record information, The parent data carrier device in which the parent information is recorded, the recording information to be recorded on the data carrier device, the information acquisition means for acquiring the parent information, the recording information, and the parent information are calculated. An electronic signature generating means for generating the electronic signature information by hashing the resulting information, a recording means for recording the recording information and the electronic signature information on the data carrier device, and the data carrier First reading means for reading the recording information recorded on the device and the electronic signature information; and the parent data carrier device A second reading unit that reads the parent information from the source; a hash for information obtained by computing the record information read by the first reading unit and the parent information read by the second reading unit; An authentication unit for authenticating the recorded information read by the first reading unit according to a result of comparing the processed information with the electronic signature information read by the first reading unit; It is characterized by.

  The present invention provides a first reading means for reading recorded information and electronic signature information generated by hash processing from a data carrier device, and a second reading for reading parent information for guaranteeing the recorded information from a parent data carrier device. And authentication means for authenticating the recording information according to a result of comparing the electronic signature information with information obtained by hashing the information obtained as a result of computing the recording information and the parent information. It is characterized by having.

  The present invention provides information acquisition means for acquiring record information and parent information for guaranteeing the record information to a data carrier device, hash information on information obtained by calculating the record information and the parent information. Electronic signature generation means for generating electronic signature information by processing, recording means for recording the electronic signature information on the data carrier device, and recording means for recording the electronic signature information.

  The present invention is characterized in that electronic signature information generated by performing hash processing on information obtained as a result of calculating record information and parent information that guarantees the record information, and the record information are recorded.

  The present invention provides electronic signature information generated by performing hash processing on information obtained as a result of computing record information and parent information that guarantees the record information, a data carrier device that records the record information, A data authentication method in a data authentication system comprising a parent data carrier device on which parent information is recorded, the information acquisition step for acquiring the recording information to be recorded on the data carrier device and the parent information; A digital signature generating step for generating the digital signature information by performing a hash process on the information obtained as a result of calculating the record information and the parent information, the record information, and the digital signature information. A recording step for recording on a carrier device; the recording information recorded on the data carrier device; A first reading step for reading electronic signature information; a second reading step for reading the parent information from the parent data carrier device; and the recording information and the second reading step read by the first reading step. The first reading step is performed according to a result of comparing the information obtained by hashing the information obtained as a result of calculating the parent information read by the step and the electronic signature information read by the first reading step. And an authentication step for authenticating the recorded information read by step (a).

  According to the present invention, only the identification ID number and the electronic signature are recorded in the data carrier device, and the parent data carrier device is provided for generating the electronic signature, so that the recognition ID of both the parent and the child can be obtained when authenticating the electronic signature. Since the authentication is not performed unless the numbers match, forgery, falsification, duplication, and diversion can be prevented.

  Hereinafter, a data carrier device, an issuing device, a data reading device, a data authentication system, and a data authentication method according to an embodiment of the present invention will be described with reference to the drawings. FIG. 1 is a block diagram showing the configuration of the embodiment. In this figure, reference numeral 1 denotes a data carrier device composed of an IC tag or the like, in which an identification ID number capable of uniquely identifying the data carrier device 1 and electronic signature information are recorded. In the data carrier device 1, information bodies such as personal information, product information, and position information are not recorded. Reference numeral 2 denotes a parent data carrier device of the data carrier device 1, and a parent identification ID number capable of uniquely identifying the parent data carrier device 2 is recorded therein. Reference numeral 3 denotes a reading device that reads information recorded in the data carrier device 1 and the parent data carrier device 2, and can communicate information with other devices by connecting to the network 7. is there. Reference numeral 4 denotes a data carrier device issuing machine that issues the data carrier device 1 by writing information in the data carrier device 1. Reference numeral 5 denotes an identification ID number issuing server 51 (hereinafter referred to as an issuing server) that performs an identification ID number issuing process, and an information identification ID number database 52 (hereinafter referred to as an identification ID number) that stores the identification ID number and the information body in association with each other. And an identification ID number resolution server 53 (hereinafter referred to as a resolution server) for retrieving the information body associated with the identification ID number stored in the database 52. Reference numeral 6 denotes a content server composed of a Web server or the like.

  Next, the operation of the system shown in FIG. 1 will be described. The issuing server 51 issues an identification ID number and also issues an electronic signature that determines the authenticity of the issued identification ID number. This electronic signature is generated from its own identification ID number and the parent identification ID number recorded in the parent data carrier device 2 that guarantees this electronic signature. The identification ID number and electronic signature issued by the issuing server 51 are recorded in the data carrier device 1 by the data carrier device issuing machine 4. When reading the information recorded in the data carrier device 1, the reading terminal 3 is used. At this time, the information recorded in the parent data carrier device 2 necessary for the authentication of the electronic signature also needs to be read by the reading terminal 3, but the parent data carrier device 2 is realized by a known wireless marker, and the reading terminal It is desirable to read automatically when 3 falls within the communication range. Authentication of the electronic signature is performed by either the reading terminal 3 or the resolution server 53. When the authentication of the electronic signature is successful, the information body associated with the identification ID number is read from the database 52 by the resolution server 53 and transferred to the reading terminal 3 to be displayed on the screen of the reading terminal 3. Become. If the information body associated with the identification ID number indicates the address of the content server 6, the reading terminal 3 starts dedicated browsing software and accesses the content server 6.

  Next, an operation for issuing / authenticating an electronic signature will be described with reference to FIGS. FIG. 2 is a diagram illustrating an operation for issuing and authenticating an electronic signature. FIG. 3 is a diagram showing a general operation for issuing and authenticating an electronic signature. The electronic signature is issued by adding the identification ID number to be issued by the issuing server 51 and the identification ID number of the parent that guarantees the identification ID number, hashing the added value, and then encrypting the electronic signature. Is generated. Then, the data carrier device 1 is issued by recording the identification ID number issued by the issuing server 51 and the generated electronic signature on the data carrier device 1 via the data carrier device issuing machine 4.

  On the other hand, in the authentication of the electronic signature, the reading device 3 or the resolution server 53 reads the identification ID number recorded in the data carrier device 1 and the parent identification ID number recorded in the parent data carrier device 2, respectively. The read identification ID number and the parent identification ID number are added, and the added value is hashed. Also, the electronic signature read from the data carrier device 1 is decrypted, and the decrypted one is compared with the hashed value obtained by adding the identification ID number and the parent identification ID number. It is considered that the identification ID number read from the carrier device 1 has been successfully authenticated.

  Compared with the issuance / authentication operation according to the present invention shown in FIG. 2 and the general issuance / authentication operation shown in FIG. 3, the present invention records only the identification ID number without storing the information body in the certificate. However, when generating an electronic signature, only the identification ID number is not hashed, but is hashed after adding the identification ID number and the parent identification ID number of the identification ID number. That is, the authentication condition is whether or not the parent identification ID number set when the electronic signature is issued matches the parent identification ID number recorded in the parent data carrier device 2 read when the electronic signature is authenticated.

  In this way, the data carrier device 1 does not store information such as personal information, product information, and position information, but stores only an identification ID number and an electronic signature, thereby preventing forgery and tampering. In addition, by providing the parent data carrier device 2 for generating the electronic signature, it is prevented from being authenticated if the recognition ID numbers of both the parent and the child do not match even when authenticating the electronic signature, thereby preventing duplication and diversion. Can do. This method can also be applied to a data carrier device such as a two-dimensional barcode with low reliability.

  Next, a data carrier device, an issuing device, a data reading device, a data authentication system, and a data authentication method according to the present invention will be described with specific examples.

  FIG. 4 is a diagram showing an example of information stored in the database 52 when the present invention is used for sightseeing guidance. In this case, an application execution function such as Java (registered trademark) or BREW is installed, and an identification ID number is obtained from a Bluetooth (registered trademark) marker and a QR code by an application created using this function. The mobile phone that performs identification ID authentication, resolution server 53 access, and content server 6 access corresponds to the reader 3 shown in FIG. Further, a personal computer and a printer for printing the QR code correspond to the data carrier device issuing machine 4, the Bluetooth (registered trademark) marker is the parent data carrier device 2, and the printed matter on which the QR code image is printed is the data carrier device 1. It corresponds to. The database 52 is associated with URLs (Uniform Resource Locators) of WEB sites that guide tourist attractions for each identification ID number of the data carrier device. Of the information stored in the database 52, the type is information for identifying whether it is a parent data carrier device or a child data carrier device. In the case of a child data carrier device, A parent identification ID number is defined.

  By configuring in this way, the URL of the WEB site that guides the tourist attraction where this QR code exists is obtained by reading the QR code using a mobile phone owned by a tourist who has visited the tourist attraction. Therefore, the tourist can browse the tourist guide information displayed on the screen of the mobile phone. According to this configuration, even when the digital signature is authenticated, authentication is not performed unless the recognition ID numbers of both the parent and the child match, so that it is possible to prevent forgery and falsification of the QR code by a malicious third party.

  FIG. 5A is a diagram showing an example of information stored in the database 52 when the present invention is used for management of toys stored in a toy box. In this case, a dedicated terminal capable of simultaneously reading a plurality of IC tags corresponds to the reading device 3 shown in FIG. An IC tag attached to each toy corresponds to the data carrier device 1, and an IC tag attached to the toy box corresponds to the data carrier device 2. The database 52 is associated with information for identifying a toy box to be stored for each identification ID number of the data carrier device.

  As shown in FIG. 5B, in the case where X and Y's toys D are misunderstood, in order to detect this misunderstanding, the read-only terminal is held over the toy box, and the toy box and the inclusion are included. The identification ID number of the toy is read simultaneously. And since the read-only terminal performs the authentication process and the authentication fails, the owner is a different toy, so the display means of the read-only terminal is used to display that fact, so that it is exactly the same Even owners of toys can be managed reliably.

  FIG. 6A is a diagram showing an example of information stored in the database 52 when the present invention is used for managing an assembly line of a small quantity and a wide variety of automobiles. In this case, the IC tag reader installed in the work place of each attachment process of the parts A to D corresponds to the reading device 3 shown in FIG. An IC tag attached to each component corresponds to the data carrier device 1, and an IC tag attached to the body frame of the automobile corresponds to the data carrier device 2. In addition, the database 52 is associated with information that can identify parts to be attached to the body frame of each automobile for each identification ID number of the data carrier device.

  As shown in FIG. 6 (b), an IC tag reader is installed in each of the mounting processes of the parts A to D in order to prevent an operator from attaching a wrong part in the small-lot, high-mix assembly line. This IC tag reader simultaneously reads the body frame of the automobile and the identification ID numbers of the parts to be attached that have flowed through the assembly line. If the IC tag reader performs an authentication process and the authentication fails, the worker is trying to attach an incorrect part. Therefore, the display means of the IC tag reader is used to indicate that fact. By warning the above, it is possible to perform the work of securely attaching the parts to be attached to the vehicle body frame.

  FIG. 7A is a diagram showing an example of information stored in the database 52 when the present invention is used for automatic management of the installation location of equipment. In this case, the IC tag reader installed at the entrance of the room corresponds to the reading device 3 shown in FIG. An IC tag attached to each fixture corresponds to the data carrier device 1, and an IC tag built in the IC tag reader corresponds to the data carrier device 2. Further, in the database 52, information for identifying equipment and information for identifying an installation location are associated with each identification ID number of the data carrier device.

  As shown in FIG. 7B, when the fixture C (ID = 35) is moved from the room Y (ID = 31) to the room X (ID = 30), (1) to (2 ) Is detected by the IC tag reader (reading device) in the room Y, and the identification ID is changed so that the parent ID of the equipment C is changed from the room Y (ID = 31) to moving (ID = 32). Requests to the number editing server 8. In addition, at the timing of (2) to (3), the IC tag reader (reading device) in the room X detects the loading of the equipment C, and the parent ID of the equipment C is moving (ID = 32) to the room X (ID = 30). ) Is requested to the editing server 8 of the identification ID number. Then, the installation location of the equipment A to D is confirmed by the equipment search terminal 9 referring to the database 52 and displaying it on the display means of the equipment search terminal 9.

  In addition, instead of equipment, if an IC tag is attached to livestock such as cattle, and an IC tag reader containing an IC tag corresponding to the parent data carrier device 2 is attached to the cowhouse that houses each cow, the storage location of the livestock is managed. It is also applicable to.

  FIG. 8A is a diagram showing an example of information stored in the database 52 when the present invention is used for ticket authenticity determination. In this case, in the first performance and the second performance, the QR code reader in which the secret key for encryption and decryption of the authentication process is changed corresponds to the reader 3 shown in FIG. This QR code reader is attached to the seat. In the first performance and the second performance, the ticket issuing machine in which the secret key for encryption and decryption of the authentication process is changed corresponds to the data carrier device issuing machine 4. The QR code affixed to each ticket corresponds to the data carrier device 1, and the IC tag built in the QR code reader corresponds to the data carrier device 2. The database 52 is associated with information for identifying the parent-child relationship for each identification ID number of the data carrier device.

  As shown in FIG. 8B, when the QR code affixed to each ticket is read by the QR code reader (reading terminal) of each seat and the authentication process is successful, the seat chair can be opened and seated. By applying the authentication process according to the present invention, forgery and falsification of a ticket can be prevented. In addition, the ticket for the first performance and the second performance can be distinguished easily by changing the encryption / decryption secret key.

It is a block diagram which shows the structure of one Embodiment of this invention. It is explanatory drawing which shows operation | movement of issue / authentication of an electronic signature in the system shown in FIG. It is explanatory drawing which shows the operation | movement of issuance and authentication of a general electronic signature. 2 is an explanatory diagram illustrating a configuration of Example 1. FIG. 6 is an explanatory diagram illustrating a configuration of Example 2. FIG. FIG. 10 is an explanatory diagram illustrating a configuration of Example 3. FIG. 10 is an explanatory diagram showing a configuration of Example 4. FIG. 10 is an explanatory diagram showing a configuration of Example 5.

Explanation of symbols

  DESCRIPTION OF SYMBOLS 1 ... Data carrier device, 2 ... Parent data carrier device, 3 ... Reading terminal, 4 ... Data carrier device issuing machine, 5 ... Management center, 51 ... Issuing identification ID number Server, 52 ... Identification ID number database, 53 ... Identification ID number resolution server, 6 ... Content server, 7 ... Network

Claims (5)

Electronic signature information generated by performing hash processing on information obtained as a result of computing record information and parent information that guarantees the record information, and a data carrier device that records the record information;
A parent data carrier device in which the parent information is recorded;
Information acquisition means for acquiring the recording information to be recorded on the data carrier device and the parent information;
An electronic signature generating means for generating the electronic signature information by performing a hash process on information obtained as a result of calculating the recording information and the parent information;
Recording means for recording the recording information and the electronic signature information on the data carrier device;
First reading means for reading the recording information recorded on the data carrier device and the electronic signature information;
Second reading means for reading the parent information from the parent data carrier device;
Information obtained by hashing the information obtained by calculating the recorded information read by the first reading unit and the parent information read by the second reading unit, and read by the first reading unit A data authentication system comprising: authentication means for authenticating the recorded information read by the first reading means in accordance with a result of comparison with the electronic signature information. First reading means for reading recorded information and electronic signature information generated by hash processing from a data carrier device;
Second reading means for reading parent information for guaranteeing the recording information from a parent data carrier device;
Authentication means for authenticating the recording information according to a result of comparing the electronic signature information with information obtained by performing hash processing on information obtained as a result of calculating the recording information and the parent information. A data reader characterized by the above. Information acquisition means for acquiring recording information for the data carrier device and parent information for guaranteeing the recording information;
Electronic signature generation means for generating electronic signature information by hashing the information obtained as a result of calculating the recording information and the parent information;
An issuing device comprising: recording means for recording the recording information and the electronic signature information on the data carrier device.   A data carrier device, wherein electronic signature information generated by performing hash processing on information obtained as a result of computing record information and parent information for guaranteeing the record information, and the record information are recorded. Electronic signature information generated by performing hash processing on information obtained as a result of computing record information and parent information that guarantees the record information, a data carrier device that records the record information, and the parent information recorded A data authentication method in a data authentication system comprising a parent data carrier device, comprising:
An information acquisition step of acquiring the recording information to be recorded on the data carrier device and the parent information;
An electronic signature generating step for generating the electronic signature information by performing a hash process on information obtained as a result of calculating the recording information and the parent information;
A recording step of recording the recording information and the electronic signature information on the data carrier device;
A first reading step of reading the recording information recorded on the data carrier device and the electronic signature information;
A second reading step of reading the parent information from the parent data carrier device;
Information obtained by hashing the information obtained as a result of calculating the recorded information read by the first reading step and the parent information read by the second reading step, and read by the first reading step A data authentication method comprising: an authentication step of authenticating the recorded information read in the first reading step according to a result of comparison with the electronic signature information.

Images