JP2009093372A - Living body collating device, living body collating system, and information management method of living body collating device - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To make it possible to secure security in processing such as registration processing of face registration information or modification processing of default setting, and to prevent face registration information from fraudulently being registered or default setting changed by a malicious third party. <P>SOLUTION: In a living body collating device 1 which authenticates a person by biological information, authorized authentication information is manager's authentication information input by an input section 13, and an operating mode of a face collating device 1 is made to shift to a manager mode, only when the operation under the manager mode of the face collating device 1 is set as an authorized state. <P>COPYRIGHT: (C)2009,JPO&INPIT

Description

  The present invention relates to a biometric matching apparatus, a biometric matching system, and an information management method for a biometric matching apparatus that authenticate a person based on the biometric information of the person such as a face image photographed by a camera or the like.

  Conventionally, in a biometric matching device that authenticates a person using biometric information such as a face image, the biometric information of the person to be authenticated is acquired, the acquired biometric information is collated with the biometric information of a registrant registered in advance in a database, An authentication process for determining whether or not the person to be authenticated is a registrant based on the collation result is performed. Therefore, in the biometric matching device as described above, it is necessary to register the biometric information of the registrant in the database in advance before performing at least the authentication process. Further, as an example of the operation mode of the biometric collation apparatus as described above, there is a traffic control system that controls opening / closing of a door or a gate depending on whether or not an authentication target person is a registrant. Many biometric matching devices used in such an operation form are registered by a biometric matching device provided in front of a door or a gate.

Conventionally, there are many biometric matching devices that are generally configured to shift to a registration processing mode in which processing for registering biometric information of a registrant is performed by specifying an administrator ID and password (for example, Patent Document 1). In such a biometric matching device, the management of the administrator ID and password as described above is important in order to ensure security. For example, if the ID and password for the manager are known to a malicious third party, there is a possibility that biometric information of the person (suspicious person) is illegally registered.
However, in the operation mode such as the above-described traffic control system, it is assumed that the biometric matching device is installed in a passage where a general person always passes. In such an installation environment, when an administrator inputs an ID and a password, the ID and password input by the administrator may be seen by a third party. That is, in a general operation mode, there is a problem in that it is often difficult to ensure a complete security state during registration processing of biometric information (for example, a face image).
JP 2000-99731 A

  According to one aspect of the present invention, there is provided a biometric matching device, a biometric matching system, and a biometric matching device information management method capable of ensuring security with respect to management of information for biometric authentication processing using biometric information. Objective.

  The biometric collation apparatus as one aspect of the present invention compares the biometric information of the person to be authenticated with the biometric information of the registrant registered in the database in advance to determine whether or not the authentication target person is a registrant. In the determination, the input means for the administrator to input authentication information for shifting the operation mode to the administrator mode in which various settings can be made, and the authentication information input by the input means and the authorized administrator A determination unit that determines whether or not the authentication information matches, and if the determination unit determines that the authentication information input by the input unit is the authentication information of a valid administrator, set by an external device Confirmation means for confirming whether or not the operation in the administrator mode is permitted based on the information indicating whether or not the operation in the administrator mode is permitted, and the confirmation means If it operates in serial administrator mode is permitted state is confirmed, and a shifting unit which shifts to the administrator mode.

  The biometric matching system as one aspect of the present invention checks whether or not the authentication target person is a registrant by checking biometric information of the authentication target person with biometric information of the registrant registered in the database in advance. In a system having a biometric matching device to be determined and a monitoring terminal that monitors processing contents in the biometric matching device, the monitoring terminal permits the biometric matching device to operate in an administrator mode in which various settings are possible. Setting means for setting information indicating whether or not the biometric matching device has an input means for the administrator to input authentication information for shifting the operation mode to the administrator mode, and the input means Determining means for determining whether or not the authentication information inputted by the right and the authentication information of a legitimate administrator match, and authentication information inputted by the input means by the judging means When it is determined that the authentication information is valid, the operation in the administrator mode is performed based on information indicating whether or not the operation in the administrator mode set by the monitoring terminal is permitted. Confirmation means for confirming whether or not is in a permitted state, and transition means for shifting to the administrator mode when the confirmation means confirms that the operation in the administrator mode is permitted.

  According to one aspect of the present invention, there is provided an information management method for a biometric collation apparatus, wherein the authentication target person is a registrant by collating biometric information of the authentication target person with biometric information of a registrant registered in a database in advance. In the method used for the biometric matching device for determining whether or not the authentication information for shifting the operation mode of the biometric matching device to the administrator mode in which various settings can be made is input Is determined by the external device if it is determined that the input authentication information is the authentication information of the valid administrator. On the basis of the information indicating whether or not to permit the operation in the administrator mode, whether or not the operation in the administrator mode is in a permitted state. If it is confirmed work is in the grant state, it shifts the operation mode of the biometric identification system to the administrator mode.

  According to one aspect of the present invention, it is possible to provide a biometric matching device, a biometric matching system, and a biometric matching device information management method capable of ensuring security with respect to management of information for biometric authentication processing using biometric information. .

The best mode for carrying out the present invention will be described below with reference to the drawings.
FIG. 1 is a diagram illustrating an example of an operation mode of a traffic control system (biometric matching system) including a face matching device 1 (1A,..., 1N,...) As a biological matching device as an embodiment. FIG. 2 is a diagram illustrating an installation example of the face matching device 1.
As shown in FIG. 1, the traffic control system includes a face matching device 1 (1A,..., 1N,...), A camera 2 (2A,... 2N,...), A door / gate 3 (3A,. ), The monitoring terminal device 4, the database 5, the LAN 6, and the like.

As shown in FIG. 2, the face matching device 1 includes a main control unit (control device) 11, a display unit (display device) 12, an input unit (input device) 13, and the like.
The main control unit 11 is a unit for executing collation processing based on face images (biological information), registration processing of face images (biological information), and the like. A configuration example in the main control unit 11 will be described in detail later.

  The display unit 12 is configured by a liquid crystal display device or the like, and is a device that displays operation guidance or the like for an authentication target person or an administrator. For example, in the collation processing mode to be described later, the display unit 12 displays a result of face collation (biometric collation) by the face collation apparatus 1 or information indicating whether or not traffic is permitted based on the face collation result.

  The input unit 13 is a device that accepts input from an authentication target person or an administrator. The input unit 13 performs an operation for switching the operation mode in each face matching device, or inputs identification information for specifying an individual in the registration processing of face registration information. The input unit 13 is configured by input keys such as a numeric keypad, a keyboard, or a touch panel. The input keys of the input unit 13 may be configured by hard keys or may be configured by touch keys displayed on the display unit 12. The input unit 13 can be installed in the vicinity of the camera 2 or the display unit 12, or can be formed integrally with the camera 2 or the display unit 12. For example, the display unit 12 and the input unit 13 may be configured by a liquid crystal display device with a built-in touch panel.

  The camera 2 is a photographing device for photographing an image including the face of the person to be authenticated. As shown in FIG. 2, each camera 2 is installed so as to capture image data including the face of a pedestrian (person to be authenticated) M who is walking toward each door 3. The camera 2 is composed of a television camera using an image sensor such as a CCD sensor and provided with an A / D converter. Each camera 2 is connected to the main control unit 11 of each face matching device 1. Thereby, the image photographed by each camera 2 is supplied to the main control unit 11 of the corresponding face collation apparatus 1.

The door / gate 3 is opened and closed based on the person authentication result by the face collation apparatus 1. The door / gate 3 is for permitting registrants to pass or blocking unregistered persons from passing. For example, the door / gate 3 is installed as a door for entering a security area where only registrants are allowed to enter from a passage through which a general person can pass.
In the monitoring terminal device 4, each face matching device 1 and the database 5 are connected via a LAN 6. The monitoring terminal device 4 is a device for the monitoring person to monitor the processing result by each face matching device 1 in an integrated manner. For example, the monitoring terminal device 4 displays the processing results (face images taken with a camera, authentication results, etc.) by each face matching device 1. Here, it is assumed that the monitoring terminal device 4 is provided in a monitoring room in which predetermined security is ensured.

  The database 5 stores face registration information such as a registrant's face image. As the face registration information, the face image or face feature information of the registrant is stored in the database 5 in association with the identification information given to the registrant. For example, a face image or face feature information obtained from an image captured by the camera 2 is associated with identification information input by the input unit 13 in the database 5 by a registration process described later in the face matching device 1. Information on the registrant (face registration information) is stored. Further, in the authentication process in the face matching device 1, the face registration information stored in the database 5 is referred to as a dictionary pattern.

  The database 5 also stores various setting information. The setting information is referred to by each face matching device 1 that can communicate via the LAN 6. The information stored in the database 5 can be updated under a predetermined condition. For example, each face matching device 1 can update setting values that can be set by the administrator among the setting information stored in the database 5 when the operation mode is an administrator mode to be described later. . Further, as will be described later, the monitoring terminal device 4 is information indicating whether or not each face matching device 1 is allowed to operate in the manager mode in accordance with the operation of the supervisor or manager (hereinafter, referred to as “below”). , Which is also referred to as manager mode permission information) is written in the database 5. It should be noted that various setting information such as information indicating whether or not the administrator mode is available is not limited to the database 5 as long as security is ensured, but from each face matching device 1 and the monitoring terminal device 4 via the LAN 6. It should be stored in an accessible location. For example, information on whether or not the manager mode is available may be stored in a storage unit in the monitoring terminal device 4 or the like.

Next, the configuration of the face matching device 1 will be described.
FIG. 3 is a diagram illustrating a configuration example of the face matching device 1.
As shown in FIG. 2, the face collation apparatus 1 includes a main control unit 11, a display unit 12, and an input unit 13. As shown in FIG. 3, the main control unit 11 of the face collation apparatus 1 includes an authentication control unit 21, an image acquisition unit 22, a face detection unit 23, a face feature extraction unit 24, a face collation unit 25, a traffic control unit 26, and communication. The interface (I / F) unit 7 is configured. The main control unit 11 includes, for example, a CPU, RAM, ROM, nonvolatile memory, various interfaces, and the like. For example, the authentication control unit 21, the face detection unit 23, the face feature extraction unit 24, the face collation unit 25, and the like are realized by a control program stored in a non-illustrated non-volatile memory by a not-illustrated CPU. It is a function.

  The image acquisition unit 22 is an interface that acquires an image captured by the camera 2. That is, the image acquisition unit 22 collects image data including the face of a walking person (pedestrian) M photographed by the camera 2. The image acquisition unit 22 outputs image data collected from the camera 2 to the face detection unit 23.

  The face detection unit 23 performs a process of detecting a candidate region (face region) where a face exists from the image acquired by the image acquisition unit 22. In addition, the face detection unit 23 outputs information indicating the detected face area to the face feature extraction unit 24. In the face detection unit 23, various methods can be applied as a method for detecting a face region. For example, the face detection unit 23 is described in Document 1 (Mita. Kaneko. Hori. “Proposal of spatial difference probability template suitable for authentication of images including minute differences”, Proceedings of the 9th Meeting of Image Sensing Symposium. SSII 3.2003. ) Is applicable. In the method of the above-mentioned document 1, a dictionary pattern for detection is created in advance from a face learning pattern, and a pattern having a high similarity with the dictionary pattern is searched from the input image as a face area.

  The face feature extraction unit 24 extracts face feature information as a face feature amount from the face area detected by the face detection unit 23. That is, the face feature extraction unit 24 extracts face feature information from the image of the face area detected by the face detection unit 23 among the images acquired by the image acquisition unit 22. For example, the face feature extraction unit 24 cuts out a face region image into a certain size and shape based on the face feature points, and uses the shading information as feature amounts (face feature information). The face feature extraction unit 24 outputs the calculated face feature information to the authentication control unit 21.

  Here, the gray value of an area of m pixels × n pixels is used as information as it is, and information of m × n dimensions is used as a feature vector. A subspace is calculated by obtaining a correlation matrix of these feature vectors and obtaining an orthonormal vector by KL expansion. The subspace is calculated by obtaining a correlation matrix (or covariance matrix) of feature vectors and obtaining an orthonormal vector (eigenvector) by KL expansion. Here, in the subspace, k eigenvectors corresponding to eigenvalues are selected in descending order of eigenvalues and expressed using the eigenvector set.

  The face feature extraction unit 24 obtains the correlation matrix Cd from the feature vector and diagonalizes the correlation matrix Cd = ΦdΛdΦdT to obtain the eigenvector matrix Φ. This partial space is used as face feature information for collating face images. The registrant's facial feature information may be acquired from the registrant in advance and registered as a dictionary. Further, the partial space itself may be used as face feature information for identification.

  The face collating unit 25 performs collation processing between the face image of the pedestrian M who is the authentication target and the face image of the registrant. Here, the face matching unit 25 calculates the similarity between the pedestrian's face feature information and the registrant's face feature information, and outputs the calculation result to the authentication control unit 21. Although various methods can be applied to the face matching process of the face matching unit 25, the face registration information recorded in the database 5 is used as a dictionary pattern, and the similarity to the face feature information of the pedestrian M as a recognition target person. The degree shall be calculated. Such a technique is described in, for example, Reference 2 (Yamaguchi, Fukui, Maeda. “Face recognition system using moving images”, IEICE Technical Report PRMU 97-50, pp. 17-23, 1997-06). This is possible by using the mutual subspace method.

  The authentication control unit 21 controls the entire face collating apparatus 1 and has a function of performing various processes. For example, the authentication control unit 21 has a function of determining (authenticating) whether or not a pedestrian is a registrant based on the similarity obtained by the collation process by the face collation unit 25 in the collation process using the face image. In the registration process of information, in the function of registering the face feature information extracted by the face area image detected by the face detection unit 23 or the face feature information extracted by the face feature extraction unit 24 as face registration information, and the setting value changing process, It has a function of changing various setting values stored in the database 5 to values designated by the administrator. Further, the authentication control unit 21 has a function of switching the operation mode of the face matching device 1, a display control function of the display unit 12, a function of outputting a door 3 opening / closing instruction signal to the traffic control unit 26, or a traffic I / F A communication processing function with the monitoring terminal device 4 or the database 5 by the unit 27 is also provided.

The traffic control unit 26 opens and closes the door / gate 3 based on a control signal notified by the authentication control unit 21. For example, when the control signal indicating opening of the door is given from the authentication control unit 21, the traffic control unit 26 opens the door / gate 3, and the control signal indicating closing of the door is given from the authentication control unit 21. If the door / gate 3 is closed, the door / gate 3 is closed.
The communication interface (I / F) unit 27 is an interface for communicating with the monitoring terminal device 4 or the database 5 via the LAN 6.

Next, the configuration of the monitoring terminal device 4 will be described.
FIG. 4 is a diagram illustrating a configuration example of the monitoring terminal device 4.
As shown in FIG. 4, the monitoring terminal device 4 includes a control unit 41, a display unit 42, an input unit 43, a speaker 44, and a communication interface (I / F) unit 45.
The control unit 41 controls the entire monitoring terminal device 4 and includes a CPU, a RAM, a ROM, a nonvolatile memory, and the like. The control unit 41 realizes various functions by executing a control program stored in a ROM or a nonvolatile memory.

  The display unit 42 includes a display device that displays various information. The display unit 42 displays, for example, the processing content (for example, the installation location of the face matching device, the detected face image, the authentication result, etc.) in each face matching device 1. The processing content in each face matching device 1 is, for example, displayed in a list format for each matching processing by each face matching device, or detailed processing content (for example, high similarity) for a specific matching process. (Registrant information from the order to the predetermined order) is displayed. Thereby, the monitor can monitor the processing content in each face collation apparatus 1 based on the information displayed on the display unit 42.

The input unit 43 is configured by an input device such as a keyboard and a pointing device such as a mouse, and various operation instructions are input by a monitor. For example, in the input unit 43, an instruction to change the display content by the display unit 42 or instructions to change various settings is input.
The speaker 44 generates a warning sound or the like. For example, when the processing result received from each face matching device 1 is a content to be warned, the control unit 41 generates a warning sound by the speaker 44.
The communication interface unit 45 is an interface for communicating with each face matching device 1 or the database 5 via the LAN 6. For example, information indicating the processing content in each face matching device 1 is received via the communication I / F unit 46. In addition, the control unit 41 is configured to execute writing (updating) of information on the database 5 via the communication I / F unit 46.

Next, the operation mode of the face matching device 1 will be described.
For example, the face collation apparatus 1 may be configured to collate the facial feature information of the pedestrian M with the face registration information recorded in the database 5 as an operation mode, and for the administrator to make various setting changes or face registration information. And an administrator mode for performing the registration process. The operation modes of these face matching devices 1 are switched by the authentication control unit 21 in accordance with an operation by an administrator.

  The verification processing mode is an operation mode in a normal operation state. In the matching processing mode, the authentication control unit 21 of the face matching device 1 outputs the face feature information of the pedestrian M obtained by the face feature extracting unit 24 to the face matching unit 25, and the face matching unit 25 sends the face feature of the pedestrian M to the face matching unit 25. The feature information is collated with each face registration information (dictionary pattern) recorded in the database 5. The authentication control unit 21 acquires the similarity with each dictionary pattern (each registrant) for the face feature information of the pedestrian M as a collation result from the face collation unit 25. The authentication control unit 21 determines whether or not the pedestrian M is a registrant based on the similarity obtained as a result of such verification. For example, if the maximum similarity is equal to or greater than a predetermined threshold, the authentication control unit 21 determines that the pedestrian M is a registrant having the maximum similarity, and if the maximum similarity is equal to or less than the predetermined threshold, walking It is determined that the person M is not a registered person.

  The administrator mode is an operation mode for executing a setting value changing process or a face registration information registration process. For this reason, in order to shift from the collation processing mode to the administrator mode, it is necessary to satisfy the conditions described later when an operation of a predetermined procedure is received from the administrator. When the mode is changed to the administrator mode, a management menu screen for selecting various processes that can be executed by the operation of the administrator is displayed on the display unit 12. When the management menu screen is displayed on the display unit 12, the administrator can select processing such as registration processing of face registration information or processing for changing setting values.

  For example, when the administrator selects registration processing from the management menu screen, the authentication control unit 21 executes registration processing of face registration information. In this registration process (registration process mode), the authentication control unit 21 associates the facial feature information obtained by the facial feature extraction unit 24 with the identification information corresponding to the facial feature information input by the input unit 13. Information is generated and recorded in the database 5. That is, in the registration process, the facial feature information of the registrant is registered (recorded) as a dictionary pattern in the database 5 under the control of the authentication control unit 21. When the administrator selects a setting value changing process from the management menu screen, the authentication control unit 21 executes a setting value changing process. In the setting value changing process (setting changing process mode), the authentication control unit 21 performs a process of changing the setting value designated by the administrator among the setting values stored in the database 5 to the value designated by the administrator. Do.

  As described above, in each face matching device 1, when the operation mode is changed from the matching processing mode to the administrator mode, the registration processing of face registration information or the setting value changing processing that can be executed only by the operation of the administrator is performed. It is possible to do. The transition to the administrator mode is based on the condition that not only the operation of the administrator is correctly executed in a predetermined procedure, but also the operation of the face matching device 1 in the administrator mode is set to the permitted state. Here, in order to shift to the administrator mode, the administrator correctly inputs the authentication information for the administrator, and the face matching device 1 is set to be permitted to operate in the administrator mode. Is a condition.

  The authentication information for the manager is authentication information that only each manager can know. Here, it is assumed that identification information (ID) and a password of each manager are set in advance. The authentication information of each authorized administrator may be stored in a memory (not shown) in the main control unit 11 or stored in the database 5 or the memory in the monitoring terminal device 4. Anyway. Therefore, the authentication control unit 21 can determine whether or not the authentication information input by the input unit 13 matches the authentication information of a valid administrator.

FIG. 5 is a flowchart for explaining an operation example of the administrator mode in the face collating apparatus 1A.
First, when the operation mode of the face matching device 1A is shifted to the administrator mode, the manager or a monitor who receives a request from the manager uses the input unit 43 of the monitoring terminal device 4 to set the face matching device 1A. An operation to set the operation in the administrator mode to the permitted state is performed. Upon receiving such a setting operation, the control unit 41 of the monitoring terminal device 4 accesses the database 5 via the communication I / F unit 46, and determines whether or not the manager mode is permitted for the face collating device 1A. The information is updated to indicate that the operation in the mode is permitted (step S11).

  In this state, the administrator inputs an administrator ID and a password as authentication information of the administrator through the input unit 13 of the face collating apparatus 1A. When an administrator ID and a password are input by the input unit 13 (step S21), the authentication control unit 21 of the face collating apparatus 1A belongs to an authorized administrator with the input administrator ID and password. It is determined whether or not (step S22). In this case, for example, the authentication control unit 21 collates the input administrator ID and password with the administrator ID and password of a legitimate administrator stored in advance in the database 5 or the like, thereby matching the two. It is determined whether or not.

  When it is determined that the administrator ID and password input by the input unit 13 are those of a valid administrator (step S22, YES), the authentication control unit 21 is in the administrator mode of the face matching device 1A. It is confirmed whether or not the operation is permitted (step S23). In this case, the authentication control unit 21 determines whether or not the information on whether or not the administrator mode for the face matching device 1A stored in the database 5 is permitted in the administrator mode. Check.

  When it is confirmed by the above confirmation that the operation in the administrator mode in the face collating apparatus 1A is not permitted, that is, the operation in the administrator mode is not permitted (step S23). , NO), the authentication control unit 21 assumes that the face collation apparatus 1A cannot shift to the administrator mode, and ends the process. At this time, for example, the authentication control unit 21 may display on the display unit 12 that the operation in the administrator mode is set to the non-permitted state.

Further, when it is confirmed that the operation in the administrator mode in the face matching device 1A is permitted (step S23, YES), the authentication control unit 21 sets the operation mode of the face matching device 1A. The mode is changed to the administrator mode, and the management menu screen is displayed on the display unit 12 (step S24). When the management menu screen is displayed on the display unit 12, the administrator recognizes that the face matching apparatus 1A has shifted to the administrator mode, and executes a desired process by the input unit 13 according to the management menu screen. Perform the operation. In response to such an operation, the authentication control unit 21 executes various processes as the administrator mode requested by the administrator (step S25).
For example, it is assumed that face registration information registration processing or setting value change processing can be selected on the management menu screen. Here, the administrator who wants to execute the registration process of the face registration information selects the registration process from the management menu screen. Then, the authentication control unit 21 shifts the operation mode of the face matching device 1A to the registration processing mode. When the registration processing mode is entered, the authentication control unit 21 detects the face image of the registered person photographed by the camera 2, facial feature information extracted from the face image, and identification information of the registered person (for example, an input unit) 13 is registered in the database 5 as face registration information.

  Further, when the setting value changing process is desired, the administrator selects a desired setting value changing process from the management menu screen. When the administrator selects a specific setting value changing process, the authentication control unit 21 performs a process of changing the setting value specified by the administrator to a value specified by the administrator. As the setting value that can be changed in the administrator mode, a threshold value (authentication threshold value) for authenticating whether or not the user is a registrant in the authentication process is assumed. When the administrator selects an authentication threshold change process from the management menu screen, the authentication control unit 21 performs a process of changing the authentication threshold based on a value input by the administrator through the input unit 13.

When the processing in the administrator mode as described above is completed, the administrator instructs the end of the administrator mode through the input unit 13. Thereby, the authentication control part 21 complete | finishes administrator mode, and transfers to collation process mode as normal process mode (step S26).
When the manager mode in the face collating apparatus 1A is terminated, the manager or the monitor who has received the manager mode termination notification uses the input unit 43 of the monitoring terminal apparatus 4 to manage the face collating apparatus 1A. Perform the operation to set the operation in the mode to the disallowed state. In response to such a setting operation, the control unit 41 of the monitoring terminal device 4 accesses the database 5 via the communication I / F unit 46 and manages whether or not the manager mode is permitted for the face collating device 1A. To the information indicating that the operation in the person mode is not permitted (step S31). Note that the operation in step S31 (processing for setting the operation of the face collation apparatus 1A in the administrator mode to the disallowed state) has been instructed by the administrator to end the administrator mode using the input unit 13 of the face collation apparatus 1A. Depending on the above, the authentication control unit 21 or the control unit 41 of the monitoring terminal device 4 may execute the process.

  As described above, in the face matching device 1 according to the present embodiment, the administrator authentication information input by the input unit 13 is valid authentication information, and the administrator mode of the face matching device 1 is used. The operation mode of the face collation apparatus 1 is shifted to the administrator mode only when the operation at is set to the permitted state.

  As a result, security can be ensured in processing such as registration processing of face registration information or change of setting values. Face registration information is illegally registered by a malicious third party, or setting values are illegally changed. Can be prevented.

  In the above-described embodiment, the face collation apparatus and the traffic control system that authenticate whether or not the person to be authenticated is a registrant using a face image have been described. However, in the above embodiment, the face image It is not limited to what performs biometric authentication. For example, the above embodiment can be applied to a biometric verification device and a traffic control system that biometrically authenticate whether a person to be authenticated is a registrant based on biometric information such as a palm shape, vein pattern, fingerprint, iris, and voiceprint. It is.

The figure which shows the structural example of the face collation system which has the face collation apparatus which concerns on embodiment. The figure for demonstrating the operation | use form and installation example of a face collation apparatus. The figure which shows the structural example of a face collation apparatus. The figure which shows the structural example of the terminal device for monitoring. The figure for demonstrating the example of the gradation conversion process applied to a gradation conversion part. The flowchart for demonstrating the operation example in the administrator mode in a face collation apparatus.

Explanation of symbols

  M ... Pedestrian (recognition target person), 1 (1A, ..., 1N, ...) ... Face matching device (biological matching device), 2 (2, ..., 2N, ...) ... Camera, 3 (3A, ..., 3N , ...) ... Door / gate, 4 ... Monitoring terminal device (monitoring terminal), 5 ... Database, 6 ... LAN, 11 ... Main control unit, 12 ... Display unit, 13 ... Input unit, 21 ... Authentication control unit, 22 DESCRIPTION OF SYMBOLS ... Image acquisition part, 23 ... Face detection part, 24 ... Face feature extraction part, 25 ... Face collation part, 26 ... Traffic control part, 27 ... Communication interface part, 41 ... Control part, 42 ... Display part, 43 ... Input part , 44 ... Speaker, 45 ... Communication interface section

Claims (6)

In the biometric verification device that determines whether or not the authentication target person is a registrant by comparing biometric information of the authentication target person and biometric information of the registrant registered in the database in advance,
An input means for an administrator to input authentication information for shifting the operation mode to an administrator mode in which various settings are possible;
A determination unit that determines whether the authentication information input by the input unit and the authentication information of a legitimate administrator match;
If it is determined by this determination means that the authentication information input by the input means is a valid administrator authentication information, whether or not to permit the operation in the administrator mode set by the external device is determined. Confirmation means for confirming whether or not the operation in the administrator mode is permitted based on the information shown;
When the confirmation means confirms that the operation in the administrator mode is permitted, a transition means for shifting to the administrator mode;
A biometric collation apparatus characterized by comprising: The administrator mode is an operation mode for performing a registration process for registering biometric information in the database.
The biometric matching apparatus according to claim 1, wherein The administrator mode is an operation mode for performing processing for changing setting information used for biometric authentication processing for authenticating whether or not the authentication target person is a registrant based on the biometric information of the authentication target person. is there,
The biometric matching apparatus according to claim 1, wherein Information indicating whether or not the operation in the administrator mode is permitted is updated to information indicating that the operation in the administrator mode is not permitted when the operation in the administrator mode ends. To be
The biometric matching device according to any one of claims 1 to 3, wherein A biometric matching apparatus that determines whether or not the authentication target person is a registrant by comparing biometric information of the person to be authenticated with biometric information of a registrant registered in the database in advance, and processing in the biometric matching apparatus In a biometric matching system having a monitoring terminal for monitoring contents,
The monitoring terminal is
Comprising setting means for setting information indicating whether or not the biometric matching device is allowed to operate in an administrator mode in which various settings are possible;
The biometric matching device is:
An input means for an administrator to input authentication information for shifting the operation mode to the administrator mode;
A determination unit that determines whether the authentication information input by the input unit and the authentication information of a legitimate administrator match;
Whether or not to permit the operation in the administrator mode set by the monitoring terminal when it is determined by the determination means that the authentication information input by the input means is a valid administrator authentication information Confirmation means for confirming whether or not the operation in the administrator mode is permitted based on the information indicating
A transition means for transitioning to the administrator mode when the confirmation means confirms that the operation in the administrator mode is permitted;
A biometric matching system characterized by that. In an information management method used for a biometric collation apparatus that determines whether or not the authentication target person is a registrant by comparing biometric information of the authentication target person with biometric information of a registrant registered in advance in a database. ,
Whether or not the input authentication information matches the authentication information of a legitimate administrator when authentication information for shifting the operation mode of the biometric matching device to an administrator mode in which various settings can be made is input And
If it is determined by this determination that the input authentication information is valid administrator authentication information, it is based on information indicating whether or not to permit operation in the administrator mode set by an external device. Confirm whether or not the operation in the administrator mode is permitted,
When it is confirmed by this confirmation that the operation in the administrator mode is in a permitted state, the operation mode of the biometric matching device is shifted to the administrator mode.
An information management method for a biometric matching device, comprising:

Images