JP2008276367A - Mobile terminal and control program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a mobile terminal for temporarily releasing a lock state of a non-contact IC card function according to prescribed conditions without requiring troublesome operation to a user. <P>SOLUTION: This mobile terminal having the non-contact IC card function previously registers an available time or a specific store to be used as lock release conditions for at least specific service based on the non-contact IC card function. The non-contact IC card function is normally locked (a restrained state). When the user uses the non-contact IC card function in a certain store at a certain date, the lock state is automatically released without authenticating the user when the data and the store satisfy the lock release conditions. After use, the non-contact IC card function is locked again. <P>COPYRIGHT: (C)2009,JPO&INPIT

Description

  The present invention relates to a portable terminal that can use a service based on a non-contact IC card function and a control program thereof.

  In recent years, non-contact IC cards that realize traffic commuter passes and electronic payment functions have become widespread, and mobile phone terminals with built-in non-contact IC card functions are also becoming popular.

  Since the contactless IC card function is often used in systems involving money such as electronic payments, a portable terminal equipped with the contactless IC card function has a password to prevent unauthorized use by a third party such as a finder. Many have a security lock function using biometric authentication.

  However, since the conventional security lock function turns on / off the non-contact IC card function itself, when this security lock function is used, the user performs an authentication process by inputting a password every time the non-contact IC card function is used. Must be done. In particular, in the case of a foldable mobile phone terminal, it is necessary to open the casing and input a password each time to release the lock, and the operation is complicated.

  In order to reduce the troublesomeness of the authentication process, a mobile phone terminal having a function of unlocking using a side key while the terminal is folded is also provided. However, in this case as well, there is no change in forcing the user to input a password, and there is a problem that the security strength is reduced with simplification.

Patent Document 1 reads the ID number of a non-contact IC, compares it with an ID number registered in advance as a release condition, and releases the lock state of the non-contact IC card function according to the comparison result, and A technique is disclosed in which a locked state is automatically set when authentication is not performed during a predetermined period.
JP 2006-113719 A

  As described above, conventionally, a complicated operation has been required to release the security lock of the non-contact IC card function.

  According to the release of the lock state by the ID number described in Patent Document 1, a complicated operation of the user is solved, but there is a problem that unauthorized use by a third party cannot be prevented.

  The present invention has been made in such a background, and a portable terminal capable of temporarily releasing the lock state of the non-contact IC card function according to a predetermined condition without requiring a complicated operation from the user. It is intended to provide the control program.

  A portable terminal according to the present invention is a portable terminal that can use a service based on a non-contact IC card function, and includes a deterring means for inhibiting use of a service based on a non-contact IC card function, and a service that provides the service Registration means for registering a time zone that can be used for each object to be used, and use of a service based on the contactless IC card function is normally inhibited, and the registered service use object is externally transferred to the contactless IC card function. Control means for automatically canceling the inhibition state when the current date and time corresponds to the registered time zone.

  In general, services such as electronic payment systems using contactless IC card functions installed in mobile terminals are used in accordance with the individual life cycle, so they are used in relatively the same stores and the same time zone. It is estimated that there are many cases.

  Therefore, for such services, normally, the non-contact IC card function of the mobile terminal is kept in a deterred state (that is, security lock state), and deterred based on information such as the service usage target and the user's usage time zone. Is automatically canceled. As a result, it is possible to ensure a certain level of security without a troublesome release operation by a user operation. The control program according to the present invention is a control program that operates in a portable terminal that can use a service based on a non-contact IC card function, and the step of suppressing the use of the service based on the non-contact IC card function; Registering a usable time zone for each service usage target providing the service, setting the service usage based on the contactless IC card function to a normal deterrent state, and registering the service usage target registered from outside When the non-contact IC card function is accessed, the control unit of the portable terminal executes the step of automatically canceling the inhibition state when the current date and time corresponds to the registered time zone.

  According to the present invention, when using a specific service under a predetermined condition while maintaining the security of the contactless IC card function, it is temporarily suppressed without the need for complicated user operations for authentication. The state can be canceled and the service can be used.

  By accumulating service usage history information, it is possible to easily register lock release conditions such as service type, store, and use time zone.

  DESCRIPTION OF EXEMPLARY EMBODIMENTS Hereinafter, preferred embodiments of the invention will be described in detail with reference to the drawings.

  FIG. 1 shows a schematic configuration of the entire system including a use environment of a mobile terminal in the present embodiment. In this example, the portable terminal 100 has a non-contact IC card function, and can use services using the non-contact IC card in various non-contact IC card service usage targets 200a to 200n (collectively simply 200). It is a mobile phone terminal. The contactless IC card service usage target 200 is an organization that provides services using contactless IC card functions, such as stores, vending machines, and transportation gates. Each contactless IC card reader / writer (R / W) ) 20. The service is an arbitrary service such as an electronic money function, a transportation ticket function, a commuter pass function, and a key function.

  In this embodiment, at least a specific service is always in a security lock state (that is, a deterred state) in which the non-contact IC card function of the mobile terminal cannot be used. For services that are often used in the same store and at the same time zone, the security lock is automatically released based on information such as the unique ID of the service usage target and the user's usage time zone. To do. As a result, a certain level of security can be ensured without a security lock releasing operation by a user operation. That is, the user feels bothered by automatically releasing the security lock only for the time period specified by the user for a specific service and only for communication with the specified contactless IC card reader / writer. Reduce. Hereinafter, a store will be described as an example of the service usage target 200.

  If an attempt is made to illegally use the non-contact IC card function of a portable terminal picked up by a third party, it is estimated that it is extremely difficult to know the store / time zone registered by the owner of the portable terminal. For this reason, it is considered that the method of the present invention functions as sufficiently strong security at least for the designated service if conditions such as the use store, service, and time are appropriately set.

  FIG. 2 is a block diagram showing a schematic hardware configuration of mobile terminal 100 according to the present embodiment.

  The portable terminal 100 includes a control unit 101, a communication unit 103, a display unit 104, an operation unit 105, a memory 106, a calendar / clock unit 107, a sound processing unit 110, and a non-contact IC card function unit that are connected to each other via a bus 120. 113, a non-contact IC card reader 114, and a speaker 111 and a microphone 112 connected to the sound processing unit 110.

  The control unit 101 includes a CPU and the like, and controls each unit of the mobile terminal 100. The “suppression means”, “registration means”, and “control means” in the present invention are all realized by the function of the control unit 101.

  The communication unit 103 includes an RF unit, a modulation circuit, and the like, and performs wireless communication for communication and mail communication with the base station via the antenna 102.

  The display unit 104 includes a display device such as an LCD and an organic EL, and a display drive circuit, and displays display information such as text and images.

  The operation unit 105 includes various keys such as a control key and a numeric keypad, and accepts an instruction and data input by a user.

  The memory 106 includes a ROM, a RAM, and the like, and stores programs and data such as an OS executed by the CPU and various applications. The ROM may include a rewritable nonvolatile memory such as a flash memory. The service use history information, authentication permission condition setting information, condition table, and the like in the present embodiment can also be stored in this memory 106.

  The calendar / clock unit 107 includes an RTC (Real Time Clock) and the like, and provides a calendar function, a clock function, a timer function, and the like according to a reference clock.

  The non-contact IC card function unit 113 includes an IC chip that stores information, is accessed by an external reader, and information is written to and read from the IC chip wirelessly (radio waves or electromagnetic waves).

  The non-contact IC card reader 114 is a functional unit that reads stored information (store ID, etc.) from a non-contact IC card outside the terminal such as a store.

  The non-contact IC card function unit 113 is in a state (security lock state) in which it cannot be normally read by the control unit 101 for the purpose of preventing unauthorized use of electronic money or the like mounted on at least a specific service. And The user can make the contactless IC card function unit 113 temporarily usable by performing an authentication process with the control unit 101 using a password set in advance from the operation unit 105.

  FIG. 3 shows an example of the contents of the service usage history information 300 stored in the mobile terminal 100 each time the contactless IC card function is used in the present embodiment.

  Information (record) additionally stored at the time of each use provides “use time” indicating the date, time, minute, and second when the service is used, “service ID” that is identification information of the service, and the service. “Store name” which is the name of the store and “Store ID” which is the store identification information as the use target identification information of the present invention are included. Note that data exceeding the storage capacity limit given to the history information may be automatically deleted from the oldest because of the limitation of the storage capacity of the memory 106.

  FIG. 4 is an explanatory diagram illustrating an example of a method for setting the authentication permission condition (that is, the unlock condition) according to the present embodiment. In this example, in the display unit 104 of the mobile terminal, the application on the mobile terminal displays the usage history display screen 410 in a list format with usage history information by a predetermined operation by the user on the operation unit 105. This display content is based on the usage history information 300 shown in FIG. The user selects a store from which the password input is to be omitted at the next and subsequent uses from this list. When the user selects one record on the usage history display screen 410, an authentication setting screen 420 is displayed. The authentication setting screen 420 includes display fields for store information 421, a use permission service 422, and day information 433 and time period information 424 among the permitted time periods. In the store information 421 column, the store name of the record selected on the usage history display screen 410 is automatically input. In the use permission service 422 column, the service type of the record selected on the use history display screen 410 is automatically input. Default setting contents are displayed in the columns of the day information 433 and the time zone information 424, and the user can freely change the setting.

  By such a user operation, a condition is added to a condition table 500 (described later in FIG. 5) that stores conditions for automatically releasing the security lock.

  Note that the usage history stored in the mobile terminal and the set condition table 500 are key information for authentication. Therefore, when adding a condition to the condition table 500 based on such information, an authentication operation such as password entry is performed by the user. It is preferable to request.

  Also, here, an example in which authentication setting is performed by a user operation is shown, but based on the usage history information 300, a time condition such as a store or a time zone in which the usage frequency is a predetermined level or more is extracted automatically according to a predetermined algorithm. Alternatively, authentication setting data (that is, authentication permission conditions) may be determined and set. At that time, the authentication setting data may be presented to the user so that the user can be confirmed and modified as necessary.

  FIG. 5 shows an example of the contents of a condition table 500 that stores authentication permission conditions for automatically releasing the security lock set on the authentication setting screen 420 described in FIG. Each condition includes “R / W ID”, “store name”, “available service”, and “usable time”. “R / W ID” is identification information of the reader / writer 20 (FIG. 1) of the store. In this embodiment, the “R / W ID” is provided on the store side by the non-contact IC card reader 114 provided in the portable terminal 100. This is done by accessing the non-contact IC card and reading the reader / writer ID stored in the IC. The “store name” and “usable service” may be similarly read. However, the method of acquiring the reader / writer ID of the store in the present invention is not limited to this. For example, when an access point such as a wireless LAN is prepared in a store, information may be acquired by the wireless LAN by providing a wireless LAN communication unit on the mobile terminal side.

  In any case, if the reader / writer 20 on the store side provides such information when accessing the non-contact IC card function unit 113, the non-contact IC card reader 114 on the portable terminal side is unnecessary. .

  FIG. 6 is a flowchart illustrating a processing example of the mobile terminal according to the present embodiment. This process is activated when the non-contact IC card function is about to be used. For this reason, the non-contact IC card function unit 113 (FIG. 2) of the mobile terminal 100 is usually not completely inhibited from functioning, but an external reader / writer has access to the non-contact IC card function unit. The control unit 101 can detect this.

  When this process is started, the control unit 101 first refers to the condition table 500 (FIG. 5) and corresponds to one of the time conditions (day of the week and time zone) in which the current date and time are set. It is checked whether or not to perform (S21).

  If applicable, the store side reader / writer ID and corresponding service information are acquired (S22). If the reader / writer ID matches the registered ID as the cancellation condition (S23, Yes), it is checked whether the acquired corresponding service information matches the service registered as the permission condition (S24). If they match, the authentication by the user operation is omitted and the security lock is automatically released (S29). Thereby, communication with the non-contact IC card function in the portable terminal by the external reader / writer is performed, and as a result, the service is used in the store (S30). Thereafter, the security lock state is restored again (S31).

  If the current date and time does not correspond to the registered time condition in step S21, authentication processing as usual is performed (S25). That is, the user is requested to input a password, and authentication OK is determined on condition that the password matches a preset password (S26). If the authentication is not OK, a predetermined number of authentication retries are permitted (S27). If the authentication is not successful even after the retry, this process is terminated. In that case, it may be notified to the user by display, sound or voice.

  In the case of authentication OK in step S26, information of the reader / writer that performed communication is acquired, and additionally recorded in the service usage history information 300 in the memory 106 as history information about the service usage along with the current date and time (S28). . Then, the process proceeds to step S29, and the security lock is released as described above.

  If the reader / writer ID does not match the registered ID in step S23, and if the corresponding service information does not match the service registered as the permission condition in step S24, the process proceeds to step S25. Authenticating process is performed.

  As described above, the user can use the non-contact IC card service without performing an operation for unlocking the security in the store where the conditions are registered.

  The preferred embodiments of the present invention have been described above, but various modifications and changes other than those mentioned above can be made. For example, a mobile phone terminal has been described as an example of the mobile terminal, but the present invention is not limited to this. For example, any portable electronic device such as a PDA, a small PC, or a game machine may be used.

It is a figure which shows schematic structure of the whole system including the utilization environment of the portable terminal in embodiment of this invention. It is a block diagram which shows the schematic hardware constitutions of the portable terminal which concerns on embodiment of this invention. It is a figure which shows the example of the content of the service utilization log | history information accumulate | stored in a portable terminal, whenever it uses a non-contact IC card function in embodiment of this invention. It is explanatory drawing of an example of the method of setting the authentication permission conditions of embodiment of this invention. FIG. 5 is a diagram showing an example of contents of a condition table storing conditions for automatically releasing a security lock set on the authentication setting screen described in FIG. 4. It is a flowchart which shows the process example of the portable terminal in embodiment of this invention.

Explanation of symbols

DESCRIPTION OF SYMBOLS 20 ... Reader / writer (R / W), 100 ... Portable terminal, 101 ... Control part, 102 ... Antenna, 103 ... Communication part, 104 ... Display part, 105 ... Operation part, 106 ... Memory, 107 ... Calendar / clock part, DESCRIPTION OF SYMBOLS 110 ... Voice processing part, 111 ... Speaker, 112 ... Microphone, 113 ... Non-contact IC card function part, 114 ... Non-contact IC card reader, 120 ... Bus, 200 ... Service use object, 300 ... Service use history information, 410 ... Usage history display screen 420 ... Authentication setting screen 421 ... Store information 422 ... Usage permission service 424 ... Time zone information 433 ... Day of the week information 500 ... Condition table

Claims (6)

A portable terminal capable of using a service based on a contactless IC card function,
Deterrence means for deterring the use of services based on contactless IC card functions;
Registration means for registering a usable time zone for each service usage target providing the service;
When the use of the service based on the non-contact IC card function is in a normally deterred state and the non-contact IC card function is accessed from the outside for the registered service use target, the current date and time is the registered time zone And a control means for automatically canceling the inhibition state when the above condition is satisfied. A means for accumulating service usage history information based on the contactless IC card function;
The mobile terminal according to claim 1, wherein the registration unit performs registration of a usable time zone for each service usage target that provides the service in accordance with a user instruction based on the history information. A means for accumulating service usage history information based on the contactless IC card function;
The portable terminal according to claim 1, wherein the registration unit automatically extracts and registers a usage target and a time zone having a usage frequency equal to or higher than a predetermined level based on the history information according to a predetermined algorithm.   The mobile terminal according to claim 1, further comprising means for canceling the suppression state based on a result of an authentication process according to a user operation.   The registration means registers the usage target identification information and service type of the service usage target, and registers the usage target identification information and service type obtained from the service usage target when using the contactless IC card function. The portable terminal according to claim 1, wherein, in contrast to the use target identification information and the type of service, a match between them is used as a condition for releasing the inhibition state. A control program that operates in a portable terminal that can use a service based on a non-contact IC card function,
Deterring the use of services based on contactless IC card functions;
Registering a usable time zone for each service use target providing the service;
Making the use of the service based on the non-contact IC card function normally inhibited;
A step of automatically releasing the inhibition state when the current date and time falls within the registered time zone when the contactless IC card function is accessed from the outside regarding the registered service usage target; A control program to be executed by the control unit of the terminal.

Images