JP2008259183A - Device to be authenticated and wireless authentication system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a device to be authenticated and a wireless authentication system for improving confidentiality of a signal received and transmitted in wireless authentication performed between the device to be authenticated and a portable radio apparatus. <P>SOLUTION: A wireless authentication system is provided for performing authentication by exchanging radio signals at predetermined time intervals A between the device to be authenticated and the portable radio apparatus. The device to be authenticated generates a random number so as to transmit to the portable radio apparatus different challenge signals at time intervals B times (B is a natural number) as long as the time intervals A, and the device to be authenticated transmits to the portable radio apparatus divided challenge signals obtained by dividing the challenge signals for the lapse of time B times as long as the time intervals A from the transmission of the challenge signals. <P>COPYRIGHT: (C)2009,JPO&INPIT

Description

  The present invention relates to an authentication target device that performs wireless communication between authentication target devices that are to perform wireless authentication, and a wireless authentication system that includes a portable wireless device and an authentication target device.

  In recent years, when it is determined that the reception strength of the radio wave received from the wireless key (portable wireless device) is equal to or higher than a predetermined value and the authentication with the wireless key is successful based on a signal transmitted / received using the wireless communication An authentication target device with a wireless authentication function that unlocks when the reception strength of radio waves received from the wireless key is less than a predetermined value or when it is determined that the above authentication with the wireless key has failed is proposed (For example, Patent Document 1). Examples of devices that have been put into practical use include automobiles that use wireless keys and wireless authentication to lock or unlock door keys, or wireless keys and wireless authentication that reject or allow reception using operation keys. Mobile phone, etc.

JP 2004-143806 A

  In the future, it is assumed that the wireless authentication function will be installed in various electronic devices. However, when performing wireless authentication between the authentication target device and the portable wireless device, the confidentiality of signal transmission / reception is high. It has been demanded.

  The present invention has been made in view of the above circumstances, and provides an authentication target device and a wireless authentication system that enhance confidentiality of signals transmitted and received in wireless authentication performed between the authentication target device and a portable wireless device. With the goal.

  The wireless authentication system of the present invention generates a random number so that the authentication target device can transmit a different challenge signal to the portable wireless device every time interval B times the recording interval A (B is a natural number), The device to be authenticated transmits a divided challenge signal obtained by dividing the challenge signal to the portable wireless device during a period from the transmission of the challenge signal to B times the time interval A. .

  In addition, the authentication target device of the present invention generates a random number so that a different challenge signal can be transmitted to the portable wireless device every time interval B times the time interval A (where B is a natural number), and the time interval A A divided challenge signal obtained by dividing the challenge signal is transmitted to the portable wireless device at the time interval A during a period from when the challenge signal is transmitted to B times the time interval A after B times To do.

  Further, the portable wireless device in the wireless authentication system of the present invention, the divided response signal obtained by dividing the response signal generated by encrypting the challenge signal received from the authentication target device every B times the time interval A, This is sent to the authentication target device.

  In addition, the authentication target device in the wireless authentication system of the present invention divides the challenge signal into B equal parts during a period from when the challenge signal is transmitted B times the time interval A to B times the time interval A. A divided challenge signal obtained by dividing is generated, and the divided challenge signal including the last part of the challenge signal is sequentially transmitted to the portable radio apparatus.

  In addition, the authentication target device in the wireless authentication system of the present invention divides the challenge signal into B equal parts during a period from when the challenge signal is transmitted B times the time interval A to B times the time interval A. A divided challenge signal obtained by dividing is generated, and transmitted to the portable wireless device in order from the divided challenge signal including the forefront part of the challenge signal.

  In addition, the authentication target device in the wireless authentication system of the present invention divides the challenge signal into B equal parts during a period from when the challenge signal is transmitted B times the time interval A to B times the time interval A. A division challenge signal obtained by division is generated, and the division challenge signal is transmitted to the portable radio apparatus based on a predetermined order.

  In addition, the authentication target device in the wireless authentication system of the present invention divides the challenge signal into B equal parts during a period from when the challenge signal is transmitted B times the time interval A to B times the time interval A. A division challenge signal obtained by division is generated, and the division challenge signal is transmitted to the portable radio apparatus based on transmission order information included in the challenge signal.

  According to the authentication target device and the wireless authentication system of the present invention, it is possible to improve the confidentiality of signals transmitted and received in wireless authentication performed between the authentication target device and the portable wireless device.

(First embodiment)
Hereinafter, a portable wireless device and an authentication target device according to an embodiment of the present invention will be described. First, the concept of processing by a wireless authentication system configured to include the portable wireless device 1 (for example, a wireless key) and the authentication target device 21 will be described. FIG. 1 shows a conceptual diagram of lock and unlock processing by the wireless authentication system. In FIG. 1, it is assumed that the user of the wireless authentication system has the portable wireless device 1, and the portable wireless device also moves as the user moves.

  The portable wireless device 1 and the authentication target device 21 execute roughly two processes. One is a process of authenticating the partner apparatus by transmitting and receiving a signal in accordance with the wireless authentication protocol, and the other is a process of measuring the reception intensity of the radio wave received from the partner apparatus. The circle centered on the authentication target device 21 (mobile phone in FIG. 1) shown in FIG. 1 has a reception intensity that is greater than or equal to a predetermined value when it receives radio waves from the mobile wireless device 1 located inside it, When a radio wave is received from the mobile wireless device 1 located outside, the boundary is shown in which the reception intensity is less than a predetermined value. The authentication target device 21 fails to authenticate with the portable wireless device 1 or when the reception intensity of the radio wave received from the portable wireless device 1 is less than a predetermined value (the portable wireless device 1 shown in FIG. 1A). Is located outside the circle), at least part of the functions of the authentication target device 21 is restricted. On the other hand, the authentication target device 21 succeeds in the authentication with the portable wireless device 1 and the reception intensity of the radio wave received from the portable wireless device 1 is a predetermined value or more (the portable wireless device shown in FIG. 1B). 1 is located inside the circle), the restriction placed on the function of the authentication target device 21 is released. It should be noted that the predetermined value of the reception strength may be different between FIGS. 1A and 1B so that the range for releasing the restriction is narrower than the range for limiting the function.

  By the wireless authentication system configured to include the portable wireless device and the authentication target device, the authentication target device is configured so that the portable wireless device set in a pair with the authentication target device does not exist within a predetermined range. Since the restriction is applied, the use of the authentication target apparatus by a third party can be restricted (prohibited). In addition, the mobile wireless device outputs an alarm sound when the authentication target device set as a pair with the mobile wireless device moves out of the predetermined range, etc., so that the authentication target device is misplaced or authenticated. Theft of the target device can be prevented. Hereinafter, processing by the portable wireless device and the authentication target device according to the embodiment of the present invention will be described in detail.

[Wireless authentication by the first authentication target device and portable wireless device]
First, a series of processes in which the portable wireless device 1 that has not performed wireless authentication with any authentication target device starts wireless authentication with one authentication target device 21 and continues wireless authentication will be described. FIG. 2 shows a sequence in the search mode by the portable radio apparatus and the authentication target apparatus according to the embodiment of the present invention. When there is an authentication target device that has not performed wireless authentication among at least one of the authentication target devices set as a pair with the portable wireless device 1, the portable wireless device 1 starts from the authentication target device that has not performed wireless authentication. In order to receive the transmitted signal, the carrier sense of the search channel is repeated at a certain period T (the mobile wireless device 1 performs the carrier sense of the search channel at the time indicated by “◯” in FIG. 2. ). On the other hand, the authentication target device 21 transmits a search request signal at least for a period equal to or longer than the carrier sense period T of the portable radio apparatus 1 (a period when the width of the thick arrow representing the search request signal in FIG. Corresponding). The authentication target device 21 that is not synchronized with the portable wireless device 1 can cause the portable wireless device 1 to receive the search request signal by transmitting a search request signal for a period equal to or longer than the carrier sense T of the portable wireless device 1. I can do it. The authentication target device 21 continues to periodically transmit the search request signal until receiving the search signal transmitted from the portable wireless device 1 that has received the search request signal.

  If the mobile radio apparatus 1 does not receive the search request signal from the authentication target apparatus 21, it repeats the carrier sense of the search channel. On the other hand, when the mobile wireless device 1 receives a search request signal from the authentication target device 21 in the wireless communication range during the carrier sense, the mobile wireless device 1 transmits a search signal to the authentication target device 21. Then, the authentication target device 21 receives the search signal and transmits a search response to the portable wireless device 1. The mobile wireless device 1 that has received the search response transmits a key ID signal including an identification code for identifying the own device (portable wireless device 1) to the authentication target device 21. Upon receiving the key ID signal, the authentication target device 21 receives the identification code included in the key ID signal and the identification code stored in advance as data by the own device (authentication target device 21). Is the identification code of the portable wireless device that is paired with the authentication target device in order to identify the device (authentication target device 21). The terminal ID signal including the code is transmitted to the portable wireless device 1.

  The portable wireless device 1 that has received the terminal ID signal thereafter transmits and receives signals to and from the authentication target device 21 using the challenge and response method. That is, the mobile wireless device 1 that has received the terminal ID signal transmits a challenge request signal to the authentication target device 21. Upon receiving the challenge request signal, the authentication target device 21 transmits a challenge signal generated by generating a random number of 8 bytes to the portable wireless device 1 and encrypts the challenge signal by an encryption process common to the portable wireless device 1. The encrypted signal is stored. The portable wireless device 1 that has received the challenge signal transmits a response signal generated by performing an encryption process common to the authentication target device 21 on the challenge signal to the authentication target device 21. Upon receiving the response signal, the authentication target device 21 compares and verifies the response signal with the encrypted signal stored when the challenge signal is transmitted to the portable wireless device 1. If the signals match, the authentication target device 21 determines that the authentication with the portable wireless device 1 is successful, and transmits an ACK signal notifying that the authentication is successful to the portable wireless device 1.

  If the signal after the key ID signal cannot be received from the counterpart device for a predetermined time, the authentication target device 21 starts transmission of the search request signal again, while the portable wireless device 1 is transmitted from the authentication target device 21. The carrier sense of the search request signal is started again. Among the above-described sequences, a period from when the authentication target device 21 starts transmitting the search request signal to when the portable wireless device 1 receives the ACK signal is referred to as a search mode (note that the authentication target device 21 is the search request signal). The period from when the mobile wireless device 1 receives the terminal ID signal until the mobile wireless device 1 receives the terminal ID signal until the mobile wireless device 1 receives the ACK signal after the mobile wireless device 1 transmits the challenge request signal. The period may be referred to as an initial authentication mode.) In addition, after transmitting or receiving the ACK signal, the authentication target device 21 and the portable wireless device 1 transition to an authentication mode described later.

  By the way, the authentication target device 21 transmits and receives various signals shown in the above-described sequence, and measures the reception intensity of some signals (or all signals) among the various signals received from the portable wireless device 1. Alternatively, the reception strength is notified from the portable wireless device 1 that measures the reception strength of the signal received from the authentication target device 21. If the authentication target device 21 that has received the response signal determines that the authentication with the portable wireless device 1 has been successful, the received intensity of the signal measured or notified before receiving the response signal is less than a predetermined value. For example, although the ACK signal is transmitted to the portable wireless device 1 and the mode is changed to the authentication mode, the restriction on at least a part of the functions provided in the authentication target device 21 is continued. On the other hand, if the reception intensity of the signal measured or notified before receiving the response signal is equal to or greater than a predetermined value, the authentication target device 21 transmits an ACK signal to the portable wireless device 1 and transitions to the authentication mode. The restriction on at least a part of the functions provided in the authentication target device 21 is released.

  Next, a sequence after the authentication target device 21 transmits a response signal in the search mode will be described. FIG. 3 shows a sequence in the authentication mode by the portable radio apparatus and the authentication target apparatus according to the embodiment of the present invention. In order to synchronize with the counterpart device, the mobile wireless device 1 and the authentication target device 21 start timing from the time when the mobile wireless device 1 transmits a response signal to the authentication target device 21. Assume that the device 21 starts timing from the time when the response signal is received from the portable wireless device 1. Note that the authentication target device 21 corrects the timekeeping time in accordance with the frame synchronization of various signals received from the mobile wireless device 1.

  The portable wireless device 1 repeats the carrier sense of the signal transmitted from the authentication target device 21 at a cycle of 2T after the start of timing (the portable wireless device 1 authenticates at the time indicated by “◯” in FIG. 3). Carry out channel carrier sense.) The authentication target device 21 that has transitioned to the authentication mode thereafter transmits an arbitrary request signal to the mobile wireless device 1 in accordance with the timing at which the mobile wireless device 1 senses the carrier. In addition, the portable wireless device 1 may perform carrier sense of the search channel at a period of T after starting the time measurement. The carrier sense of the search channel by the portable wireless device 1 is an authentication target in which a plurality of authentication target devices set as a pair with the portable wireless device 1 are registered in the portable wireless device 1 and no wireless authentication is performed. When there is a device, it is performed in order to receive a signal transmitted from an authentication target device that is not performing wireless authentication. Note that the timing for performing carrier sense for the authentication channel may overlap with the timing for performing carrier sense for the search channel. In such a case, the mobile wireless device 1 performs carrier sense for the authentication channel first. This corresponds to the processing of performing carrier sense of the search channel when radio waves from the authentication target device cannot be detected.

  When the time 2T has elapsed after receiving the response signal, the authentication target device 21 transmits a challenge signal (Full) generated by generating a random number of 8 bytes up to that time to the portable wireless device 1. The 8-byte challenge signal and the 8-byte encrypted signal obtained by encrypting the challenge signal (Full) by the encryption process common to the portable wireless device 1 are stored. The mobile radio apparatus 1 that has received the challenge signal (Full) receives this challenge signal (Full) and an 8-byte response signal generated by performing an encryption process common to the authentication target apparatus 21 on the challenge signal (Full). And 1 byte (response signal 1/8) from the head of the response signal is transmitted to the authentication target device 21. Upon receiving the response signal (1/8), the authentication target device 21 transmits the response signal (1/8) and the encrypted signal stored when the challenge signal (Full) is transmitted to the portable wireless device 1. Compare and collate 1 byte from the beginning. If the signals match, the authentication target device 21 determines that the authentication with the mobile wireless device 1 has succeeded.

  Furthermore, the authentication target device 21 transmits 1 challenge from the end of the 1-byte of the stored 8-byte challenge signal when 16T has elapsed since the challenge signal (Full) was transmitted to the portable wireless device 1. (Challenge signal 2/8) is transmitted to the portable radio apparatus 1. The mobile radio apparatus 1 that has received the challenge signal (2/8) transmits 1 byte (response signal 2/8) from the end of the 1-byte of the stored 8-byte response signal to the authentication target apparatus 21. To do. Upon receiving the response signal (2/8), the authentication target device 21 transmits the response signal (2/8) and the encrypted signal stored when the challenge signal (Full) is transmitted to the portable wireless device 1. Of these, 1 byte from the end of 1 byte is compared and compared. If the signals match, the authentication target device 21 determines that the authentication with the mobile wireless device 1 has succeeded. Similarly, the authentication target device 21 ends the second byte of the stored 8-byte challenge signal when 16T has elapsed since the challenge signal (2/8) was transmitted to the portable wireless device 1. 1 byte (challenge signal 3/8) from is transmitted to the portable radio apparatus 1. The portable wireless device 1 that has received the challenge signal 3/8 transmits 1 byte (response signal 3/8) from the end of the second byte of the stored 8-byte response signal to the authentication target device 21. Upon receiving the response signal (3/8), the authentication target device 21 transmits the response signal (3/8) and the encrypted signal stored when the challenge signal (Full) is transmitted to the portable wireless device 1. Of these, 1 byte from the end of the 2nd byte is compared and compared. If the signals match, the authentication target device 21 determines that the authentication with the mobile wireless device 1 has succeeded.

  In FIG. 3, a period of 16T from when the authentication target device 21 transmits the challenge signal (Full) to the portable wireless device 1 until it transmits the challenge signal (2/8) to the portable wireless device 1 is referred to as block 1. ing. Thereafter, the authentication target device 21 transmits a challenge signal (n / 8) (n = 2, 3,... 7) to the portable wireless device 1, and then sends the challenge signal ((n + 1) / 8) to the portable wireless device 1. A period of 16T until transmission is performed is referred to as a block n. Furthermore, after the authentication target device 21 transmits the challenge signal (8/8) to the portable wireless device 1, it transmits the challenge signal (Full) generated by generating a random number of 8 bytes again to the portable wireless device 1. The period of 16T is referred to as block 8. In block 8, the authentication target device 21 generates a random number of 8 bytes again when 16T has elapsed since the challenge signal (8/8) was transmitted to the portable wireless device 1, and generated the challenge again. A signal (Full) is transmitted to the portable radio apparatus 1, and the 8-byte challenge signal and an 8-byte encrypted signal obtained by encrypting the challenge signal (Full) by the encryption process common to the portable radio apparatus 1, Remember. Then, a challenge signal (n / 8) and a response signal (n / 8) corresponding to each period of the blocks 1, 2,. Thereafter, the authentication target apparatus 21 repeats the above process every 128T. In addition, according to the block order n, 1 byte from the end of (n−1) of the 8-byte challenge signal and the response signal is defined as a challenge signal (n / 8) and a response signal (n / 8). However, a configuration that does not match the block order n may be used. For example, an 8-byte challenge signal and 1 byte from the end of the response signal are defined as a challenge signal (1/8) and a response signal (1/8). Hereinafter, the challenge signal and the challenge signal in units of 1 byte from the end of the response signal ( n / 8) and response signal (n / 8), or a random order (for example, 8, 3, 2, 5, 7, 6, 1, 4) determined in advance between each other. Alternatively, information indicating the order is placed on the challenge signal (Full) to share the order, and 1 byte corresponding to the order may be used as the challenge signal (n / 8) and the response signal (n / 8). Then, “from the end ...” and “from the beginning ...” may be alternately switched. Thereby, the secrecy in signal transmission / reception between the portable wireless device 1 and the authentication target device 21 is enhanced.

  In each block n (n = 1, 2,..., 8), the authentication target device 21 that has transmitted the challenge signal (Full) or the challenge signal (n / 8) then receives a response signal (n / 8) is received, or the reception strength is notified from the portable wireless device 1 that measures the reception strength of the signal received from the authentication target device 21 using the response signal. When the authentication target device 21 that has received the response signal (n / 8) determines that the authentication with the portable wireless device 1 has succeeded, the reception intensity of the signal measured or notified from the response signal (n / 8) If the value is less than the predetermined value, the authentication mode is maintained, but the restriction on at least a part of the functions of the authentication target device 21 is continued. On the other hand, if the reception intensity of the signal measured or notified from the response signal (n / 8) is equal to or higher than a predetermined value, the authentication target device 21 maintains the authentication mode and at least functions provided to the authentication target device 21 are included. Remove restrictions on some. Note that the authentication target apparatus 21 may comprehensively determine whether the reception intensity is greater than or less than a predetermined value based on the reception intensity of the signal measured or notified in each of the blocks 1 to 8. For example, a method of calculating a maximum value (or minimum value) or an averaged numerical value of the reception intensity in the blocks 1 to 8 and determining whether the numerical value is equal to or greater than a predetermined value of the reception intensity can be considered. The authentication target device 21 has a function of measuring the reception strength of the response signal (n / 8) and a function of acquiring the reception strength from the portable wireless device 1 using the response signal (n / 8). If it is included, it may be determined whether the larger (or smaller) received intensity obtained from each function is greater than or less than a predetermined value.

  By the way, it has been described that the authentication target device 21 that has transitioned to the authentication mode transmits an arbitrary request signal to the portable wireless device 1 in accordance with the timing (cycle 2T) at which the portable wireless device 1 senses the carrier. The “arbitrary request signal” includes, for example, a signal for requesting notification to the portable wireless device 1 provided with the notification function (for the specific timing of transmitting this signal, the authentication target device sends the signal to the authentication target device. A signal that requests the portable wireless device 1 provided with the LED to turn on the LED (specific timing of transmitting this signal is the authentication target device). In the case of a mobile phone, when the mobile phone detects an incoming voice call or an e-mail), a signal requesting that a character string or an image be displayed on the mobile wireless device 1 provided with a display function (this As a specific timing for transmitting a signal, when the device to be authenticated is a mobile phone, information on the destination of the voice call received by the mobile phone and the destination of the received email A signal for transmitting the information to the portable wireless device and displaying it on the portable wireless device), or a signal for requesting the portable wireless device 1 to measure the received intensity (specific timing for transmitting this signal is the authentication target device 21). In order to increase the frequency at which the reception intensity measured or notified from the portable wireless device 1 is extremely close to the limit value for communication and the reception intensity is detected, in addition to the timing of the response signal reception period 16T, Furthermore, when it is desired to detect the reception intensity at another timing).

  The authentication target device 21 transmits this “arbitrary request signal” during any period of block 1 to block 8. For example, when the authentication target device 21 transmits an arbitrary request signal to the portable wireless device 1 during the period of block 1, 1 byte (challenge signal 1/8) from the top of the stored 8-byte challenge signal An arbitrary request signal (1/8) to which is given is transmitted to the portable radio apparatus 1. When the mobile radio apparatus 1 that has received the arbitrary request signal (1/8) transmits 1 byte added to the arbitrary request signal (1/8) and a challenge signal (Full) to the mobile radio apparatus 1 Of the signal stored in (1) and 1 byte from the head are compared and collated. If the signals match, the portable wireless device 1 determines whether or not the process according to the request can be executed. If it is determined that the process can be executed, the arbitrary request signal (1/8) ACK signal (1/8) notifying that the response is to be sent to the authentication target device 21. In addition, when transmitting the ACK signal (1/8) to the authentication target device 21, the portable wireless device 1 transmits the ACK signal (1 byte from the head of the stored 8-byte response signal ( 1/8) is transmitted. The authentication target device 21 that has received the ACK signal (1/8) stores the 1 byte assigned to the ACK signal (1/8) and the challenge signal (Full) when it is transmitted to the portable wireless device 1. Of the enciphered signal, 1 byte from the head is compared and collated. If the signals match, the authentication target device 21 determines that the process requested by the portable wireless device 1 is to be executed. The same applies to the case where the authentication target device 21 transmits an arbitrary request signal in another block, except that the arbitrary request signal and the signal added to the ACK are changed to 1 byte corresponding to the block.

  Next, a sequence when the authentication target device 21 cannot receive a response signal in the authentication mode will be described. FIG. 4 shows another example of the sequence in the authentication mode by the portable wireless device and the authentication target device according to the embodiment of the present invention. The device to be authenticated 21 transmits a challenge signal (Full) or a challenge signal (n / 8) at a period of 16T, but cannot receive a response signal (n / 8) from the portable wireless device 1 for those challenge signals. In this case, the same challenge signal (Full) or challenge signal (n / 8) is retransmitted 2T after the first challenge signal (Full) or challenge signal (n / 8) is transmitted (in FIGS. 3 and 4, Challenge signal (Full) retransmission 1 or challenge signal (n / 8) retransmission 1). If the authentication target apparatus 21 can receive the response signal (n / 8) from the portable radio apparatus 1 to the challenge signal (Full) retransmission 1 or the challenge signal (n / 8) retransmission 1, the first challenge signal (n / 8) is transmitted to the portable radio apparatus 1, and when 16T has elapsed, a challenge signal (n + 1) / 8 is transmitted to the portable radio apparatus 1.

  On the other hand, the authentication target device 21 transmits a challenge signal (Full) retransmission 1 or a challenge signal (n / 8) retransmission 1 and then receives a response signal (n / 8) from the portable wireless device 1 for those challenge signals. If it is not possible, the same challenge signal (Full) or challenge signal (n / 8) is retransmitted 2T after the transmission of the challenge signal (Full) retransmission 1 or challenge signal (n / 8) retransmission 1 (FIGS. 3 and 4 is represented as challenge signal (Full) retransmission 2 or challenge signal (n / 8) retransmission 2). If the authentication target apparatus 21 can receive the response signal (n / 8) from the portable radio apparatus 1 in response to the challenge signal (Full) retransmission 2 or the challenge signal (n / 8) retransmission 2, the first challenge signal (n / 8) is transmitted to the portable radio apparatus 1, and when 16T has elapsed, a challenge signal (n + 1) / 8 is transmitted to the portable radio apparatus 1.

  Further, the authentication target device 21 transmits a challenge signal (Full) or a challenge signal (n / 8), transmits a challenge signal (Full) retransmission 1 or a challenge signal (n / 8) retransmission 1, and a challenge. After transmitting the signal (Full) retransmission 2 or the challenge signal (n / 8) retransmission 2, if the response signal (n / 8) from the portable wireless device 1 cannot be received for any challenge signal, the search request signal Is started, and the mode is changed to the search mode. Then, the authentication target device 21 adds a restriction on at least a part of the functions provided in the authentication target device 21 or continues the restriction if the restriction has already been added. On the other hand, the portable wireless device 1 has passed 4T from the time when the first challenge signal (Full) or the challenge signal (n / 8) should be received from the authentication target device 21 (that is, the authentication target device 21 is a series of three times). When the time required for transmission of the challenge signal elapses), the carrier sense of the authentication channel for the authentication target apparatus 21 at the 2T interval is stopped, and the carrier sense of the search channel is performed at the same time.

  Although the portable wireless device 1 can receive the challenge signal (Full) or the challenge signal (n / 8) from the authentication target device 21, the authentication target device 21 transmits a response signal ( n / 8) may not be received. After transmitting the response signal (n / 8), the portable wireless device 1 receives the challenge signal (Full) retransmission 1, retransmission 2 or challenge signal (n / 8) retransmission 1, retransmission 2 from the authentication target device 21. In this case, the response signal (n / 8) is retransmitted.

  The authentication target device 21 performs wireless authentication with the portable wireless device 1 by the sequence as described above, and adds or removes restrictions on some or all of the various functions provided in the authentication target device 21. To do.

[Wireless authentication by second authentication target device and portable wireless device]
Next, a sequence in the case where one portable wireless device performs wireless authentication with a plurality of authentication target devices will be described. In the above-described [wireless authentication by the first authentication target device and the portable wireless device], the authentication target device 21 has received 16T for one block since the previous challenge signal (n / 8) was transmitted to the portable wireless device 1. The sequence based on the process of transmitting the challenge signal ((n + 1) / 8) to the portable wireless device 1 when it has elapsed has been described. [Wireless Authentication Using Second Authentication Target Device and Portable Wireless Device] describes a process of performing wireless authentication with another authentication target device 22 during the one block period.

  An outline of processing when the portable wireless device according to the embodiment of the present invention performs wireless authentication with two authentication target devices will be described. FIG. 5 shows a sequence for explaining an outline of wireless authentication by the portable wireless device and the two authentication target devices according to the embodiment of the present invention. As described in [Wireless Authentication Using First Authentication Target Device and Portable Wireless Device], a challenge signal (Full) or a challenge signal (n / 8) is transmitted to authentication target device 21 that has transitioned to the authentication mode. Opportunities should be secured three times, including two occasions of retransmission. This means that when a 16T period for one block is regarded as one frame, a 4T section is assigned as a time slot to one authentication target apparatus 21 (in FIG. 5, time is allocated to the authentication target apparatus 21). Slot SL1 is assigned). For this reason, by assigning another time slot SL2 that does not overlap with the time slot SL1 assigned to the authentication target apparatus 21 to the second authentication target apparatus 22, the portable radio apparatus 1 can perform time division multiplexing (TDM). : Time Division Multiplexing) enables wireless communication with a plurality of authentication target devices. Hereinafter, details of processing when the portable wireless apparatus according to the embodiment of the present invention performs wireless authentication with two authentication target apparatuses will be described.

  FIG. 6 shows a sequence for explaining wireless authentication by the portable wireless device and the two authentication target devices according to the embodiment of the present invention. In FIG. 6, the authentication target device 21 has already transitioned to the authentication mode by the sequence described in [Wireless authentication by the first authentication target device and the portable wireless device]. On the other hand, the authentication target device 22 is in the search mode and starts transmitting a search request signal.

  When there is an authentication target device 22 that does not perform wireless authentication among the authentication target devices that are paired with the portable wireless device 1, the portable wireless device 1 does not perform wireless authentication. The carrier sense of the search channel is repeated at period T in order to receive the signal transmitted from 22. On the other hand, the authentication target device 22 transmits a search request signal at least for a period equal to or longer than the carrier sense period T of the portable wireless device 1. The authentication target device 22 that is not synchronized with the portable wireless device 1 can cause the portable wireless device 1 to receive the search request signal by transmitting the search request signal for a period equal to or longer than the carrier sense T of the portable wireless device 1. I can do it. The authentication target device 22 continues to periodically transmit the search request signal until receiving the search signal transmitted from the portable wireless device 1 that has received the search request signal.

  For example, as illustrated in FIG. 6, when the period during which the authentication target device 22 transmits the search request signal overlaps with the time when the authentication target device 21 retransmits the challenge signal (2/8), the portable wireless device 1 In order to cope with the process of performing carrier sense of the authentication channel first and performing carrier sense of the search channel when radio waves from the authentication target device cannot be detected, here, the challenge signal (2 / 8) is received by the portable wireless device 1, the search request signal transmitted by the authentication target device 22 is not received by the portable wireless device 1.

  For example, as illustrated in FIG. 6, when the period during which the authentication target device 22 transmits the search request signal overlaps with the time point when the mobile wireless device 1 performs carrier sense of the search channel, the authentication target device 22 transmits. The search request signal is received by the mobile wireless device 1. The mobile radio apparatus 1 that has received the search request signal transmits a search signal to the authentication target apparatus 22, and thereafter, the mobile radio apparatus 1 and the authentication target apparatus 22 follow the sequence in the search mode described in FIG. Processing until the authentication target device 22 transmits a challenge signal is performed. It should be noted that the time required for the process from when the portable wireless device 1 receives the search request signal to when the authentication target device 22 transmits the challenge signal is extremely short compared to the time interval T. The sequence of is omitted.

  The portable wireless device 1 that has received the challenge signal from the authentication target device 22 performs the following process and starts wireless authentication with the authentication target device 22 in the authentication mode. That is, when the portable wireless device 1 receives the challenge signal from the authentication target device 22, the portable wireless device 1 transmits a response signal to the authentication target device 22 before the time interval 2T before the time when the authentication target device 22 wants to start timing. Candidates for when the authentication target device 22 wants to start timing are “4T” (time interval for one time slot) and “8T” (time interval for two time slots) from the start time of an arbitrary block. ) And after “12T” (a time interval corresponding to three time slots). The portable wireless device 1 selects a time point at which no authentication target device performs wireless authentication from among the time point candidates at which the time measurement is desired to be started, and sends a response signal before the time interval 2T. It transmits to the authentication object apparatus 22. In FIG. 6, the mobile wireless device 1 authenticates the challenge signal (Full) after “8T” from the start time of block 2 by transmitting a response signal to the authentication target device 22 after “6T” from the start time of block 2. It can be received from the target device 22. On the other hand, the authentication target device 22 that has received the response signal compares and compares the response signal with the encrypted signal stored when the challenge signal is transmitted to the portable wireless device 1. If the signals match, the authentication target device 22 determines that the authentication with the portable wireless device 1 is successful, and transmits an ACK signal notifying that the authentication is successful to the portable wireless device 1. Then, the authentication target device 22 starts timing from the time when the response signal is received from the mobile wireless device 1, and generates a 8-byte random number when the time 2T has elapsed since the start of timing. A signal (Full) is transmitted to the portable wireless device 1. The subsequent processing by the portable wireless device 1 and the authentication target device 22 is the same as the processing by the portable wireless device 1 and the authentication target device 21, and therefore will be omitted.

  When the portable wireless device 1 receives the challenge signal (Full) from the authentication target device 22, “8T” after the start time of an arbitrary block among candidates at the time point when the other authentication target device wants to start timing. The time point is stored as a time point when any of the authentication target devices is performing wireless authentication. Thereafter, when a series of signals in the search mode from the search request signal to the challenge signal is received from another authentication target device 23 other than the authentication target devices 21 and 22, no authentication target device performs wireless authentication. A time point “4T” after the start time of an arbitrary block or a time point after “12T” is selected, and a response signal is transmitted to the authentication target device 22 before the time interval 2T. Will do.

  In FIG. 6, the mobile wireless device 1 has described the sequence that causes the authentication target device 22 to transmit a challenge signal (Full) after “8T” from the start time of an arbitrary block. When the challenge target (Full) is transmitted to the authentication target apparatus 22 after “4T” or “12T”, it is necessary to add another process. FIG. 7 shows a sequence for explaining wireless authentication by the portable wireless device and the two authentication target devices according to the embodiment of the present invention.

  Consider a case where a challenge signal is transmitted to the authentication target device 22 after “4T” from the start time of an arbitrary block. The portable wireless device 1 transmits a response signal to the authentication target device 22 after “2T” from the start time of the block so that the challenge signal is transmitted to the authentication target device 22 after “4T” from the start time of an arbitrary block. Although it is necessary, as shown in FIG. 7, when the portable wireless device 1 cannot receive the challenge signal (2/8) transmitted from the authentication target device 21 in the authentication mode at the start time of block 2, block 2 Since a challenge signal (2/8) retransmitted after “2T” from the start time of the authentication channel needs to be subjected to carrier sense of the authentication channel in order to receive retransmission 1, a response signal is sent “2T” after the start time of block 2 It cannot be transmitted to the authentication target device 22. For this reason, when the mobile radio apparatus 1 can receive a challenge signal (2/8) transmitted at the start time of block 3 from the authentication target apparatus 21 in the authentication mode, as in block 3 shown in FIG. The response signal is transmitted to the authentication target apparatus 22 after “2T” from the start time of the block 3.

  In addition, when the time slot of the section 4T is continuously assigned to the authentication target device 21 and the authentication target device 22, respectively, the mobile wireless device 1 includes the mobile wireless device according to the embodiment of the present invention shown in FIG. As shown in another example of a sequence for explaining wireless authentication by an authentication target apparatus, the following processing may be executed. That is, the portable wireless device 1 transmits a challenge signal (n / 8) transmitted at the start time of an arbitrary block (block 8 in FIG. 8) from the authentication target device 21 to which a certain time slot SL1 is assigned, and the block If the challenge signal (n / 8) retransmission 1 transmitted after “2T” from the start time of the block cannot be received, the challenge signal (n / 8) retransmission 2 transmitted after “4T” from the start time of the block is received. Therefore, it is necessary to perform carrier sense of the authentication channel. On the other hand, the mobile radio device 1 receives the challenge signal transmitted “4T” after the start time of the block from the authentication target device 22 assigned the time slot SL2 continuous to the time slot SL1. Career sense is required. As a result, when the mobile wireless device 1 assigns a continuous time slot to each of a plurality of authentication target devices, the boundaries of those time slots (the boundaries are “4T”, “8T”, “ 12T ”and“ 16T ”, where the time point“ 16T ”from the start time of the block coincides with the start time of the next block). May be received in duplicate.

  In FIG. 8, the portable wireless device 1 receives the challenge signal (8/8) retransmission 2 transmitted from the authentication target device 21 after “4T” from the start time of the block 8 and is transmitted from the authentication target device 22. The case where a challenge signal (6/8) is not received is shown. Thereafter, the authentication target device 22 that has not received the response signal (6/8) to the challenge signal (6/8), when 2T elapses after transmitting the challenge signal (6/8), 6/8) The retransmission signal 1 is transmitted, and the response signal (6/8) is received from the portable wireless device 1 that has received the challenge signal (6/8) retransmission 1.

  As described above, even when consecutive time slots are assigned to a plurality of authentication target devices, the portable wireless device 1 determines that the challenge signals from the plurality of authentication target devices do not overlap (blocks in FIG. 8). Since the carrier sense is executed once at the time of “2T”, “6T”, “10T”, and “14T” from the start time), between one portable wireless device and two authentication target devices Wireless authentication can be performed. In FIG. 8, the time slot SL1 from the start time “0” to “4T” of a certain block and the time slot SL2 from the start time “4T” to “8T” of the block are respectively represented by the authentication target device 21 and The case of assigning to the authentication target device 22 has been described, but when assigning the time slot from the start time “8T” to “12T” of the block and the time slot from the start time “12T” to “16T” of the block, The same applies to the case of assigning the time slot from the start time “12T” to “16T” of the block and the time slot from the start time “0” to “4T” of the next block.

  As described above, according to the portable wireless device and the authentication target device of the embodiment of the present invention, by controlling the timing of outputting radio waves from a plurality of authentication target devices during the authentication mode period so as not to overlap, The portable wireless device can reliably receive signals transmitted from a plurality of authentication target devices.

  In addition, by not assigning continuous time slots to a plurality of authentication target devices (that is, by assigning a plurality of time slots spaced at least one time slot to a plurality of authentication target devices), the portable wireless device is authenticated. Since more opportunities for receiving retransmission of the challenge signal (n / 8) from the target device can be secured, the accuracy of wireless authentication can be improved. On the other hand, even when continuous time slots are assigned to a plurality of authentication target devices, a larger number of authentication target devices and portable wireless devices than when a continuous time slot is not assigned to a plurality of authentication target devices And wireless authentication can be performed between them.

[Wireless authentication by third and subsequent authentication target devices and portable wireless devices]
Next, wireless authentication by the third and fourth authentication target devices and the portable wireless device will be described. FIG. 9 shows a sequence for explaining wireless authentication by the portable wireless device and three authentication target devices according to the embodiment of the present invention. In FIG. 9, the authentication target device 21 and the authentication target device 22 have already transitioned to the authentication mode by the sequence described in [Wireless authentication by the second authentication target device and the portable wireless device]. On the other hand, the authentication target apparatus 23 is in the search mode and starts transmitting a search request signal.

  When there is an authentication target device 23 that does not perform wireless authentication among the authentication target devices that are paired with the portable wireless device 1, the portable wireless device 1 does not perform wireless authentication. In order to receive the signal transmitted from the terminal 23, the carrier sense of the search channel is repeated at the period T. On the other hand, the authentication target device 23 transmits a search request signal at least for a period equal to or longer than the carrier sense period T of the portable wireless device 1. The authentication target device 23 continues to periodically transmit the search request signal until it receives the search signal transmitted from the portable wireless device 1 that has received the search request signal.

  For example, as shown in FIG. 9, when the period during which the authentication target device 23 transmits the search request signal overlaps with the time when the authentication target device 22 transmits the challenge signal (Full), the portable wireless device 1 In this case, the challenge signal (8/8) transmitted by the authentication target device 22 is used in order to cope with the process of performing the carrier sense of the search channel and the carrier sense of the search channel when the radio wave from the authentication target device cannot be detected. ) Is received by the portable wireless device 1, the search request signal transmitted by the authentication target device 23 is not received by the portable wireless device 1. Similarly, when the period during which the authentication target device 23 transmits the search request signal overlaps with the time when the authentication target device 21 and the authentication target device 22 transmit or resend the challenge signal (n / 8), the authentication target device The search request signal transmitted by 23 is not received by the portable radio apparatus 1.

  For example, as shown in FIG. 9, when the period during which the authentication target device 23 transmits the search request signal overlaps with the time when the mobile radio device 1 performs the search channel, or the mobile radio device 1 is the carrier of the authentication channel. When the search channel carrier sense after the sense is overlapped, the search request signal transmitted by the authentication target device 23 is received by the mobile wireless device 1. The mobile wireless device 1 that has received the search request signal transmits a search signal to the authentication target device 23. Thereafter, the mobile wireless device 1 and the authentication target device 23 follow the sequence in the search mode described in FIG. Processing until the authentication target device 23 transmits a challenge signal is performed. It should be noted that the time required for the process from when the portable wireless device 1 receives the search request signal until the authentication target device 23 transmits the challenge signal is extremely short compared to the time interval T. The sequence of is omitted.

  The mobile wireless device 1 that has received the challenge signal from the authentication target device 23 performs the following process and starts wireless authentication with the authentication target device 23 in the authentication mode. That is, when the portable wireless device 1 receives the challenge signal from the authentication target device 23, the portable wireless device 1 transmits a response signal to the authentication target device 23 before the time interval 2T before the time when the authentication target device 23 wants to start timing. The portable wireless device 1 wirelessly transmits to any authentication target device after “4T”, after “8T”, and after “12T” from the start time of an arbitrary block that is a candidate for the time point at which this timing is to be started. Either the time point after “4T” or the time point “12T”, which is the time point when authentication is not performed, is selected, and a response signal is transmitted to the authentication target device 23 before the time interval 2T. In the case of FIG. 9, it is assumed that the mobile wireless device 1 selects a time point “4T” after the start time of the block 3. The mobile wireless device 1 transmits a response signal to the authentication target device 23 after “2T” from the start time of the block 3, thereby transmitting a challenge signal (Full) from the authentication target device 23 after “4T” from the start time of the block 3. Can be received. On the other hand, the authentication target device 23 that has received the response signal compares and verifies the response signal with the encrypted signal stored when the challenge signal is transmitted to the portable wireless device 1. If the signals match, the authentication target device 23 determines that the authentication with the portable wireless device 1 is successful, and transmits an ACK signal notifying that the authentication is successful to the portable wireless device 1. Then, the authentication target device 23 starts timing from the time when the response signal is received from the portable wireless device 1, and when the time 2T has elapsed from the start of timing, generates a random number of 8 bytes by that time. The challenge signal (Full) generated in this way is transmitted to the portable radio apparatus 1. The subsequent processing by the portable wireless device 1 and the authentication target device 23 is the same as the processing by the portable wireless device 1 and the authentication target device 21, and the portable wireless device 1 and the authentication target device 22, and is therefore omitted.

  When the portable wireless device 1 receives the challenge signal (Full) from the authentication target device 23, “4T” after the start time of an arbitrary block among candidates at the time point when other authentication target devices want to start timing. The time point is stored as the time point when the authentication target apparatus is performing wireless authentication. Thereafter, when a series of signals in the search mode from the search request signal to the challenge signal is received from another authentication target device 24 other than the authentication target devices 21, 22, and 23, all the authentication target devices are allowed to perform wireless authentication. A time point “12T” after the start time of an arbitrary block, which is not a time point, is selected, and a response signal is transmitted to the authentication target device 22 before the time interval 2T.

  As described above, according to the portable wireless device and the authentication target device of the embodiment of the present invention, wireless authentication can be performed between the same number of authentication target devices and portable wireless devices as the number of time slots. . As a result, wireless authentication can be performed with a maximum of four authentication target devices at the same carrier sense frequency that the conventional portable wireless device has performed for one authentication target device. It is effective in realizing low power consumption of the battery activation key.

  Furthermore, when the mobile wireless device 1 starts wireless authentication in the authentication mode with all of the authentication target devices that are registered in advance as a pair with the mobile wireless device 1, a search request is issued from the authentication target device thereafter. Since no signal is transmitted, the carrier sense of the search channel with the period T may be stopped and only the carrier sense of the authentication channel with the period 2T may be executed. Thereby, the power consumption by the portable radio | wireless apparatus 1 accompanying a carrier sense can be reduced.

[Wireless authentication when authentication target device changes from authentication mode to search mode]
Next, a process when any one of a plurality of authentication target devices that have performed wireless authentication with the mobile wireless device 1 transitions from the authentication mode to the search mode will be described. FIG. 10 shows another example of a sequence for explaining wireless authentication by the portable wireless device and three authentication target devices according to the embodiment of the present invention.

  The portable wireless device 1 stores the time when “4T”, “8T”, or “16T” after the start time of an arbitrary block stored as the time when the device to be authenticated performs wireless authentication. ("16T" coincides with the start time of the block.) From the time point, the challenge signal (n / 8), the challenge signal (n / 8) is retransmitted, or the challenge signal (n / 8) is retransmitted. When 4T elapses without receiving, the time after “4T”, the time after “8T”, or “16T” stored as the time when the authentication target device is performing wireless authentication Is stored as a point in time when no authentication target device is performing wireless authentication. In FIG. 10, the mobile wireless device 1 stores a time point “8T” after the start time of an arbitrary block as a time point when no authentication target device is performing wireless authentication. Thereafter, when a series of signals in the search mode from the search request signal to the challenge signal is received from another authentication target device other than the authentication target devices 21 and 23, no wireless authentication is performed on any authentication target device. The time point “8T” or the time point “12T” after the start time of an arbitrary block is selected, and a response signal is transmitted to the authentication target apparatus 22 before the time interval 2T. It will be.

  As described above, every time a certain authentication target device transitions from the authentication mode to the search mode, the portable wireless device 1 sets the time slot that has been allocated to the authentication target device to an unallocated state. The time slot assignment can be continuously updated according to the status of wireless authentication with the device to be authenticated from time to time.

  Note that the process for controlling the allocation of time slots each time a certain authentication target apparatus transitions from the authentication mode to the search mode has been described. The transition from the authentication mode to the search mode by the authentication target apparatus is used as a trigger for this process. There is no necessity. For example, the mobile wireless device 1 stores one of the time point after “4T”, the time point after “8T”, or “16T” stored as the time point when the authentication target device is performing wireless authentication. Authentication target devices 21 and 22 are selected from among the selection target, retransmission of challenge signal (n / 8), challenge signal (n / 8), or re-transmission of challenge signal (n / 8) for a period of 4T from the selected time point. , 23, the authentication target devices 21, 22, 23 are shifted to the search mode by not transmitting the response signal (n / 8). Furthermore, the portable wireless device 1 corresponds to the time point after “4T”, the time point after “8T”, or “16T” stored as the time point when the authentication target device is performing wireless authentication. Is stored as a point in time when no authentication target device is performing wireless authentication.

  By such processing for controlling time slot assignment, the mobile radio apparatus can control the time slot assignment independently. As a result, when the number of authentication target devices that perform wireless authentication in the authentication mode is reduced from three to two as shown in FIG. 10, for example, the portable wireless device 1 continues to two authentication target devices 21 and 23 in FIG. The portable wireless device receives a retransmission of the challenge signal (n / 8) from the device to be authenticated by controlling the time slot assignment so that the assigned time slots are not assigned consecutive time slots. More opportunities can be secured and the accuracy of wireless authentication can be improved.

[Wireless authentication by authentication target devices and portable wireless devices more than the number of time slots]
Here, a process in the case where the mobile wireless device 1 performs wireless authentication with an authentication target device larger than the number of time slots will be described. So far, the portable radio apparatus 1 has been described with respect to the case where the carrier sense of the search channel is executed in the period T and the carrier sense of the authentication channel is executed in the period 2T. Perform sense. That is, the portable wireless device 1 performs a process of performing carrier sense of the authentication channel first, and performing carrier sense of the search channel when the radio wave from the device to be authenticated cannot be detected in the period T.

  The wireless authentication by the portable wireless device and the five authentication target devices of the embodiment of the present invention shown in FIG. 11 will be described when the portable wireless device 1 performs carrier sense of the authentication channel and the search channel at the period T. As in the sequence, wireless authentication can be performed with 5 to 8 devices to be authenticated. That is, wireless authentication is performed with four authentication target devices in a time slot of a 4T period starting from a time point after “4T”, “8T”, “12T”, and “16T” from the start time of an arbitrary block. Further, wireless authentication is performed with another four authentication target devices in a time slot of a period of 4T starting from time points after “1T”, “5T”, “9T”, and “13T”. Hereinafter, processing by 5 to 8 devices to be authenticated and a portable wireless device that performs wireless authentication will be described in detail.

  In FIG. 11, the authentication target device 21, the authentication target device 22, the authentication target device 23, and the authentication target device 24 have already been authenticated by the sequence described in [Wireless authentication by the third and subsequent authentication target devices and the portable wireless device]. Transition to mode. On the other hand, the authentication target device 25 is in the search mode and starts transmitting a search request signal.

  The portable wireless device 1 repeats carrier sense of the search channel and the authentication channel at a period T in order to receive a signal transmitted from the authentication target device 25 that is not performing wireless authentication. On the other hand, the authentication target device 25 transmits a search request signal at least for a period equal to or longer than the carrier sense period T of the portable wireless device 1. The authentication target device 25 continues to periodically transmit the search request signal until receiving the search signal transmitted from the portable wireless device 1 that has received the search request signal.

  For example, as illustrated in FIG. 11, when the period during which the authentication target device 25 transmits the search request signal overlaps with the time point when the authentication target device 21 transmits the challenge signal (3/8), the portable wireless device 1 In order to cope with the process of performing carrier sense of the authentication channel first and performing carrier sense of the search channel when radio waves from the authentication target device cannot be detected, here, the challenge signal (3 / 8) is received by the portable wireless device 1, the search request signal transmitted by the authentication target device 25 is not received by the portable wireless device 1. Similarly, when the period during which the authentication target device 25 transmits the search request signal overlaps with the time when the authentication target device 21 to the authentication target device 24 transmits or retransmits the challenge signal (n / 8), the authentication target device similarly. The search request signal transmitted by 25 is not received by the portable radio apparatus 1.

  In addition, for example, as illustrated in FIG. 11, when the period during which the authentication target device 25 transmits the search request signal overlaps with the time point when the mobile wireless device 1 performs search channel carrier sense after carrier sense of the authentication channel, authentication is performed. The search request signal transmitted by the target device 25 is received by the portable wireless device 1. The mobile wireless device 1 that has received the search request signal transmits a search signal to the authentication target device 25. Thereafter, the mobile wireless device 1 and the authentication target device 25 follow the sequence in the search mode described in FIG. Processing is performed until the authentication target device 25 transmits a challenge signal. Since the time required for the process from when the portable wireless device 1 receives the search request signal to when the authentication target device 25 transmits the challenge signal is extremely short compared to the time interval T, the process in FIG. The sequence of is omitted.

  The portable wireless device 1 that has received the challenge signal from the authentication target device 25 performs the following process and starts wireless authentication in the authentication mode with the authentication target device 25. That is, when the portable wireless device 1 receives the challenge signal from the authentication target device 25, the portable wireless device 1 transmits a response signal to the authentication target device 23 before the time interval 2T before the time when the authentication target device 25 wants to start timing. The mobile wireless device 1 can select any one of the time points after “1T”, “5T”, “9T”, and “13T” from the start time of an arbitrary block that is a candidate for the time point to start timing. The response signal is transmitted to the authentication target device 25 before the time interval 2T at that time. In the case of FIG. 11, it is assumed that the mobile wireless device 1 selects a time point “9T” after the start time of the block 3. The portable wireless device 1 transmits a response signal to the authentication target device 25 after “7T” from the start time of the block 3, thereby transmitting a challenge signal (Full) from the authentication target device 25 after “9T” from the start time of the block 3. Can be received. On the other hand, the authentication target device 25 that has received the response signal compares and compares the response signal with the encrypted signal stored when the challenge signal is transmitted to the portable wireless device 1. If the signals match, the authentication target device 25 determines that the authentication with the portable wireless device 1 has been successful, and transmits an ACK signal notifying that the authentication has been successful to the portable wireless device 1. Then, the authentication target device 25 starts timing from the time when the response signal is received from the portable wireless device 1, and when the time 2T has elapsed from the start of timing, generates a random number of 8 bytes by that time. The challenge signal (Full) generated in this way is transmitted to the portable radio apparatus 1. Subsequent processing by the mobile wireless device 1 and the authentication target device 25 is the same as the processing by the mobile wireless device 1 and the authentication target devices 21 to 25, and thus will be omitted.

  When the portable wireless device 1 receives the challenge signal (Full) from the authentication target device 25, “9T” after the start time of an arbitrary block among candidates at the time point at which other authentication target devices want to start timing. The time point is stored as the time point when the authentication target apparatus is performing wireless authentication. Thereafter, when a series of signals in the search mode from the search request signal to the challenge signal is received from another authentication target device 26 other than the authentication target devices 21, 22, 23, 24, 25, wirelessly transmits to any authentication target device. Select a time point after “1T”, “5T”, and “13T” from the start time of an arbitrary block, which is a time point when authentication is not performed, and send a response signal before the time interval 2T before that time point. It is transmitted to the authentication target device 26.

  As described above, according to the portable wireless device and the authentication target device of the embodiment of the present invention, it is possible to perform wireless authentication between the authentication target device and the portable wireless device that are larger in number of time slots. . As a result, wireless authentication can be performed with a maximum of eight authentication target devices at a carrier sense frequency twice that of the carrier sense frequency that a conventional portable wireless device has performed for one authentication target device. Therefore, it is effective in realizing low power consumption of the battery activation key.

[Configuration of portable wireless device and authentication target device of the embodiment of the present invention]
Next, configurations of the portable wireless device and the authentication target device according to the embodiment of the present invention will be described. FIG. 12 is a functional block diagram of the portable wireless device and the authentication target device according to the embodiment of the present invention. A portable radio apparatus 1 according to an embodiment of the present invention includes a radio unit 11, a slot allocation storage unit 12, a timer 13, and a radio control unit 14. The authentication target device 2 of the present invention includes a wireless authentication unit 20, a drive unit 30, and a drive control unit 40.

  In the portable wireless device 1, the wireless unit 11 includes a radio wave for short-distance communication and UWB (Ultra Wide Band) used in 400 MHz band specific low power radio, RFID (Radio Frequency Identification) via an antenna. Using ultra-wideband radio) or the like, radio waves including the identification code of the authentication target device 2 set as a pair with the portable wireless device 1 by pairing processing are transmitted / received.

  The wireless control unit 14 uses a predetermined communication protocol (that is, [the wireless authentication by the first authentication target device and the portable wireless device], [the wireless authentication by the second authentication target device and the portable wireless device], [three Wireless authentication by the authentication target device and the portable wireless device after the first step, [Wireless authentication when the authentication target device transitions from the authentication mode to the search mode], [By the authentication target device and the portable wireless device having more than the number of time slots A signal to be transmitted / received to / from the wireless unit 11 is controlled based on the communication protocol described in [Wireless Authentication]. The wireless control unit 14 includes circuits such as an amplifier circuit, a modulation circuit, a demodulation circuit, an encoding circuit, and a decoding circuit. Further, the radio control unit 14 is based on the reception intensity of radio waves used in radio communication (for example, the voltage level and S / N ratio of radio waves input to the demodulation circuit, the error rate of data decoded by the decode circuit, etc.). And the received intensity is determined to be greater than or less than a preset threshold value (a numerical value for distinguishing the authentication area and the non-authentication area).

  The slot assignment storage unit 12 transmits a challenge signal (n / 8) or a challenge signal (Full) to the authentication target device set based on the identification code of the authentication target device in the authentication mode and a predetermined communication protocol. Time points (“1T”, “4T”, “5T”, “8T”, “9T”, “12T”, “13T”, “16T”) are stored in association with each other. The wireless unit 11 refers to the identification code stored in the slot assignment storage unit 12 and the time when the authentication target device transmits the challenge signal (n / 8) or the challenge signal (Full), and applies to each time slot. Wireless authentication is performed with the device 2 to be authenticated.

  The timer 13 starts timing from the time when the wireless unit 11 transmits a response signal to the first authentication target device 2 that has started wireless authentication.

  In the wireless authentication unit 20 of the device 2 to be authenticated, the wireless unit 201 transmits a radio wave for short-range communication or UWB used for 400 MHz band specific low power radio, RFID (Radio Frequency Identification) via an antenna. (Ultra Wide Band) or the like is used to transmit and receive radio waves including the identification code signal of the portable wireless device 1 set as a pair with the authentication target device 2 by pairing processing.

  The wireless control unit 203 uses a predetermined communication protocol (that is, [wireless authentication by the first authentication target device and the portable wireless device], [wireless authentication by the second authentication target device and the portable wireless device], [three Wireless authentication by the authentication target device and the portable wireless device after the first step, [Wireless authentication when the authentication target device transitions from the authentication mode to the search mode], [By the authentication target device and the portable wireless device having more than the number of time slots Based on the communication protocol described in [Wireless Authentication], a signal to be transmitted and received by the wireless unit 201 is controlled. The wireless control unit 203 includes circuits such as an amplifier circuit, a modulation circuit, a demodulation circuit, an encoding circuit, and a decoding circuit. Also, the radio control unit 203 is based on the reception intensity of radio waves used in radio communication (for example, the voltage of the radio wave level input to the demodulation circuit, the S / N ratio, the error rate of the data decoded by the decode circuit, etc.). And the received intensity is determined to be greater than or less than a preset threshold value (a numerical value for distinguishing the authentication area and the non-authentication area). The wireless control unit 203 outputs a use restriction request signal to the drive control unit 40 when authentication with the portable wireless device 1 fails or when the reception intensity of the radio wave received from the portable wireless device 1 is less than a predetermined value. Thus, at least a part of the functions provided in the authentication target device 2 is restricted. On the other hand, when the wireless control unit 203 succeeds in authentication with the portable wireless device 1 and the reception intensity of the radio wave received from the portable wireless device 1 is equal to or higher than a predetermined value, the wireless control unit 203 sends a use restriction release signal to the drive control unit 40. The restriction applied to the function of the authentication target device 21 is released.

  The timer 202 starts measuring time when the wireless unit 201 receives a response signal from the portable wireless device 1. In addition, the timer 202 corrects the time measured according to the time of the portable wireless device 1 in accordance with the frame synchronization of various signals received from the portable wireless device 1.

  The drive control unit 40 limits the execution of the functions of the various drive units 30 that can be executed by the authentication target device 2 during the period when the use restriction request signal is notified from the wireless control unit 203.

  Note that a wireless key is conceivable as an embodiment of the portable wireless device of the present invention. However, the wireless key is not limited to the wireless key, and an electronic device such as a cellular phone, a PDA, or a wireless card functions as one function. It may be in a form including

(Second Embodiment)
In the first embodiment of the present invention described so far, when the portable wireless device 1 receives the challenge signal from the authentication target device in the search mode, it is a time point when no authentication target device is performing wireless authentication. Select a time point after 4T, a time point after 8T, or a time point after 12T from the start time of any block, and send the response signal to the authentication target before the time interval 2T To be sent to the device. That is, the response signal has both a function as one process in the authentication by the challenge and response method and a function of synchronizing the portable wireless device 1 and the authentication target device. In this configuration, even when the portable wireless device 1 transmits the response signal to the authentication target device at the earliest timing after receiving the challenge signal, the portable wireless device 1 transmits the response signal after receiving the challenge signal. May take 16T.

  Furthermore, the time when the portable wireless device 1 transmits a response signal to the authentication target device in the search mode and the time when the portable wireless device 1 receives various signals from another authentication target device in the authentication mode overlap. There is. For example, as shown in FIG. 7, when the mobile wireless device 1 performs carrier sense of the authentication channel to receive a challenge signal (2/8) retransmission 1 that is retransmitted after “2T” from the start time of block 2 And “2T” from the start time of block 3 (or the start time of blocks after block 3) as a result of the overlap of the time when the response signal is transmitted to the authentication target device 22 after “2T” from the start time of block 2. This is a case where a response signal is transmitted to the authentication target device 22 later. In this case, the portable wireless device 1 cannot transmit a response signal to the authentication target device in the search mode until it does not overlap with the time when various signals are received from another authentication target device in the authentication mode. It is assumed that it takes more time to transmit the response signal.

  Thus, if the time until the portable wireless device 1 receives the challenge signal and transmits the response signal becomes longer, the time until the authentication target device transitions from the search mode to the authentication mode becomes longer. Since it takes time until the authentication target device is unlocked, the authentication target device may be unusable.

  Therefore, in the second embodiment of the present invention, the function of synchronizing the portable wireless device 1 and the authentication target device provided in the response signal in the first embodiment is replaced with another signal (authentication timing designation described later). This corresponds to a signal.), So that the above-described time required until the authentication target apparatus changes from the search mode to the authentication mode will be described. FIG. 13 shows a sequence in the authentication mode by the portable wireless device and the authentication target device according to the second embodiment of the present invention. In the sequence of FIG. 13, the processing until the portable wireless device 1 receives the challenge signal from the authentication target device 21 is the same processing as the sequence of FIG.

  When the portable wireless device 1 receives the challenge signal from the authentication target device 21, it does not stop the transmission of the response signal until a predetermined point in time as in the first embodiment of the present invention, but immediately authenticates the response signal. Transmit to the target device 21. Upon receiving the response signal, the authentication target device 21 compares and verifies the response signal with the encrypted signal stored when the challenge signal is transmitted to the portable wireless device 1. If the signals match, the authentication target device 21 determines that the authentication with the portable wireless device 1 has succeeded, transmits an ACK signal notifying that the authentication has been successful, to the portable wireless device 1, and performs the authentication mode. Transition to. With this configuration, the time required for the authentication target device 21 to change from the search mode to the authentication mode does not occur.

  Further, when the authentication target device 21 transmits the ACK signal to the portable wireless device 1, it continues carrier sense of the authentication channel until the authentication timing designation signal transmitted from the portable wireless device 1 is received (authentication target device 21). (The carrier sense of the search channel is performed during the period indicated by “□” in FIG. 13). On the other hand, the portable wireless device 1 transmits an authentication timing designation signal to the authentication target device 21 at an arbitrary time point when the wireless authentication in the authentication mode with another authentication target device has not been performed yet. When wireless authentication is performed with the apparatus in the authentication mode, an authentication timing designation signal is transmitted to the authentication target apparatus 21 at a time point that does not overlap with a 2T cycle from an arbitrary block start time.

  The authentication target device 21 has been described to continue the carrier sense of the authentication channel until the authentication timing designation signal transmitted from the mobile wireless device 1 is received. In order to reduce the power consumption associated with the carrier sense, The carrier sense of the authentication channel may be repeated at a certain period. For example, the authentication target device 21 starts timing from the time when the response signal is received, and has a period of 0.25T (this period is determined by the mobile wireless device 1 and other authentication target devices in the authentication mode. The carrier sense is repeated at a period 2T in which signals are transmitted and received, preferably not overlapping. On the other hand, the portable wireless device 1 starts timing from the time when the response signal is transmitted to the authentication target device 21, and transmits an authentication timing designation signal to the authentication target device 21 in accordance with the timing of the cycle.

  Upon receiving the authentication timing specification signal, the authentication target device 21 transmits an ACK signal notifying that the authentication timing specification signal has been received to the portable wireless device 1, and then transmits a challenge signal (Full) to the portable wireless device 1 at the next timing. To do. That is, the authentication target device 21 is arranged in advance to transmit the Chan Resin signal (Full) to the portable wireless device 1 after the elapse of AT from the time when the authentication timing designation signal is received (A is a natural number). The target device 21 transmits a chain resin signal (Full) to the mobile wireless device 1 after the elapse of AT from the time when the authentication timing designation signal is received. At this time, in the case where the portable wireless device 1 has already performed wireless authentication in the authentication mode with another device to be authenticated, the time when the AT has elapsed since the time when the authentication timing designation signal was transmitted to the device to be authenticated 21 is arbitrary. It is necessary to transmit the authentication timing designation signal so as to coincide with any one of the time point after “4T”, the time point after “8T”, or the time point after “12T” from the start time of the block.

  Alternatively, the portable wireless device 1 has a control signal for requesting transmission of a challenge signal (Full) after AT in the authentication timing designation signal, and the authentication target device 21 that has received the authentication timing designation signal With reference to the control signal, a challenge signal (Full) is transmitted to the portable wireless device 1 after AT has elapsed since the reception of the authentication timing designation signal. At this time, in the case where the portable wireless device 1 has already performed wireless authentication in the authentication mode with another device to be authenticated, the time when the AT has elapsed since the time when the authentication timing designation signal was transmitted to the device to be authenticated 21 is arbitrary. It is necessary to transmit the authentication timing designation signal so as to coincide with any one of the time point after “4T”, the time point after “8T”, or the time point after “12T” from the start time of the block. By setting “A” to “(A0) T”, “(A0 + 16) T”, or “(A0 + 32) T” (where A0 is a natural number of 0 <A0 <16T), The wireless device 1 designates a block that causes the authentication target device 21 to transmit a challenge signal (Full), a time point “4T”, a time point “8T”, or a time point “12T” after the start time of the block In any of the above cases, the authentication target device 21 may transmit a challenge signal (Full). At this time, the portable wireless device 1 sets in which block the authentication target device 21 is to transmit the challenge signal (Full) based on the communication status with the authentication target device 21, the radio wave status, or a random number. You may do it.

  On the other hand, if the authentication target device 21 cannot receive the authentication timing designation signal from the portable wireless device 1 within a predetermined time, the authentication target device 21 transitions to the search mode and starts transmitting a search request signal.

  As described above, according to the portable wireless device and the authentication target device of the second embodiment of the present invention, the function of synchronizing the portable wireless device 1 and the authentication target device included in the response signal in the first embodiment. By providing the authentication timing designation signal, it is possible to prevent the above-described time required until the authentication target apparatus transitions from the search mode to the authentication mode. As a result, when the portable wireless device 1 is nearby, the authentication target device can immediately unlock the authentication target device, so that the usability of the authentication target device can be improved.

  ADVANTAGE OF THE INVENTION According to the authentication object apparatus and radio | wireless authentication system of this invention, there exists an effect that the confidentiality of the signal transmitted / received in the radio | wireless authentication performed between an authentication object apparatus and a portable radio | wireless apparatus can be improved, and radio | wireless authentication is performed. This is useful in the field related to portable wireless devices that perform wireless communication between devices to be authenticated. Further, the present invention is useful not only for wireless authentication but also in the field of a wireless communication system that synchronizes communication timing with a plurality of wireless communication devices.

Conceptual diagram of lock and unlock processing by wireless authentication system Sequence in Search Mode by Portable Wireless Device and Authentication Target Device of Embodiment of Present Invention Sequence in Authentication Mode by Portable Wireless Device and Authentication Target Device of Embodiment of Present Invention Other examples of sequence in authentication mode by portable radio apparatus and authentication target apparatus according to embodiment of present invention Sequence for explaining an outline of wireless authentication by a portable wireless device and two authentication target devices according to an embodiment of the present invention Sequence explaining wireless authentication by portable wireless device and two authentication target devices according to an embodiment of the present invention Sequence explaining wireless authentication by portable wireless device and two authentication target devices according to an embodiment of the present invention Another example of sequence for explaining wireless authentication by portable wireless device and two authentication target devices of the embodiment of the present invention Sequence explaining wireless authentication by portable wireless device and three authentication target devices according to an embodiment of the present invention Sequence explaining wireless authentication by portable wireless device and three authentication target devices according to an embodiment of the present invention Sequence explaining wireless authentication by portable wireless device and five authentication target devices according to an embodiment of the present invention Functional block diagram of portable radio apparatus and authentication target apparatus according to an embodiment of the present invention Sequence in Authentication Mode by Portable Wireless Device and Authentication Target Device of Second Embodiment of Present Invention

Explanation of symbols

DESCRIPTION OF SYMBOLS 1 Portable radio | wireless apparatus 11 Radio | wireless part 12 Slot allocation memory | storage part 13 Timer 14 Radio | wireless control part 2, 21, 22, 23, 24, 25 Authentication object apparatus 20 Radio | wireless authentication part 201 Radio | wireless part 202 Timer 203 Radio | wireless control part 30 Drive part 40 Drive Control unit

Claims (7)

A wireless authentication system that performs authentication by transmitting and receiving wireless signals at a predetermined time interval A between an authentication target device and a portable wireless device,
The authentication target device generates a random number so that a challenge signal that is different for each time interval B times the time interval A (B is a natural number) can be transmitted to the portable wireless device,
The authentication target device transmits a divided challenge signal obtained by dividing the challenge signal to the portable wireless device during a period from the transmission of the challenge signal to B times the time interval A. Wireless authentication system.   The portable wireless device transmits a divided response signal obtained by dividing a response signal generated by encrypting a challenge signal received from the authentication target device every B times the time interval A to the authentication target device. The wireless authentication system described.   The authentication target apparatus transmits a divided challenge signal obtained by dividing the challenge signal into B equal parts during a period from when the challenge signal is transmitted at B times the time interval A to B times the time interval A. The radio | wireless authentication system of Claim 1 or 2 which produces | generates and transmits to the said portable radio | wireless apparatus in order from the division | segmentation challenge signal containing the last part of the said challenge signal.   The authentication target apparatus transmits a divided challenge signal obtained by dividing the challenge signal into B equal parts during a period from when the challenge signal is transmitted at B times the time interval A to B times the time interval A. The radio | wireless authentication system of Claim 1 or 2 which produces | generates and transmits to the said portable radio | wireless apparatus in order from the division | segmentation challenge signal containing the forefront part of the said challenge signal.   The authentication target apparatus transmits a divided challenge signal obtained by dividing the challenge signal into B equal parts during a period from when the challenge signal is transmitted at B times the time interval A to B times the time interval A. The radio | wireless authentication system of Claim 1 or 2 which produces | generates and transmits the said division | segmentation challenge signal to the said portable radio | wireless apparatus based on the order decided beforehand.   The authentication target apparatus transmits a divided challenge signal obtained by dividing the challenge signal into B equal parts during a period from when the challenge signal is transmitted at B times the time interval A to B times the time interval A. The radio | wireless authentication system of Claim 1 or 2 which produces | generates and transmits the said division | segmentation challenge signal to the said portable radio | wireless apparatus based on the transmission order information contained in the said challenge signal. An authentication target device that performs authentication by transmitting and receiving a wireless signal at a predetermined time interval A with a portable wireless device,
A random number is generated so that a different challenge signal can be transmitted to the portable wireless device every time interval B times the time interval A (B is a natural number),
The divided challenge signal obtained by dividing the challenge signal during the period from the transmission of the challenge signal at B times the time interval A to the B time of the time interval A at the time interval A A device to be authenticated, which is transmitted to a wireless device.

Images