JP2010275778A - Key management device and key management system using biometric authentication - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To solve the problem wherein a keeper has to go to an installation place of a key management device together with a user for using the key in need of authentication of both the user and keeper in the key management device. <P>SOLUTION: A key management system includes: the key management device with a built-in biometric authentication device; a biometric authentication device for the keeper connected to the key management device through a network and used when the keeper gives an approval to the use of the key; and a management server for recording the necessity/nonnecessity of the keeper's approval on each key. When the user uses the key in need of the keeper's approval, the key management device notifies the keeper of an approval request through the management server after the termination of biometric authentication of the user. The keeper who receives the notification of the approval request, undergoes biometric authentication through the biometric authentication device for the keeper. After the termination of the keeper's authentication, the user is in a state that the key can be used. <P>COPYRIGHT: (C)2011,JPO&INPIT

Description

  The present invention relates to a key management apparatus that requires an administrator's approval when a key is used, and more particularly to an apparatus that can be approved by an administrator through a network.

  From the viewpoint of preventing leakage of confidential information, personal information, etc., or from the viewpoint of crime prevention, strict management is required for keys of archives that store important documents and customer information or keys of safes that manage money. It is done. In the above situation, keys that require strict management are managed using a key management device.

  As an example of the key management device, Patent Document 1 describes a key management device that requires authentication of a plurality of other predetermined users when a user desires to use a key. The key management apparatus can change the number of users required for authentication for each key to one / multiple.

Japanese Patent Laid-Open No. 10-212848

  Of the keys managed by the key management device, a key that requires particularly strict management (such as a key of a safe) is required not only to authenticate the user itself but also to authenticate a plurality of persons for security. In this regard, the key management device described in Patent Document 1 has a configuration that can require authentication of a plurality of users. However, in the configuration of Patent Document 1, all the persons who perform authentication must go to the installation location of the key management device when authenticating a key for which authentication of a plurality of persons is desired. Therefore, when the user needs to approve the manager who manages the key when using the key, the key management device is installed even if the administrator is away from the key management device. The problem arises in that you have to go to the place.

  In order to achieve the above object, a key management system according to the present invention is connected to a key management device having a user authentication unit for authenticating a user's biometric information, and the key management device via a network. A biometric authentication device (hereinafter referred to as an administrator authentication device) used when approving the use of a key and a management server that records the necessity / unnecessity of the approval of the administrator for each key are provided.

  When using a key that requires administrator approval, the key management device first performs biometric authentication of the user. After the user's biometric authentication is completed, the key management device notifies the administrator of the user's approval request. The administrator who receives the notification of the approval request performs biometric authentication using the administrator authentication device. After the administrator's biometric authentication is completed, the user can use the key.

  According to the present invention, when the user uses a key that requires the approval of the administrator, the administrator can approve the use of the user via the network. Therefore, the administrator does not need to go to the installation location of the key management device every time the user desires to use the key, and the convenience of the administrator is improved.

1 is a system configuration diagram in Embodiment 1. FIG. FIG. 2 is a detailed view of the system configuration shown in FIG. 1. It is an external view of a key management device. It is a figure which shows an administrator approval necessity database. It is a figure which shows the usage history database recorded on the memory of a key management apparatus. It is a figure which shows the usable key number management database. It is a figure which shows the usage history database recorded on a server recording part. It is a figure which shows an administrator database. It is a figure which shows the database recorded on an administrator authentication apparatus. 3 is a flowchart illustrating an operation in the first embodiment. FIG. 10 is a system configuration diagram according to the second embodiment. FIG. 12 is a detailed diagram of the system configuration shown in FIG. 11. It is a figure which shows an administrator approval necessity database. It is a figure which shows the usage history database recorded on the memory of a key management apparatus. It is a figure which shows the usable key number management database. It is a figure which shows the usage history database recorded on a server recording part. It is a figure which shows an administrator database. 10 is a flowchart illustrating an operation in the second embodiment. FIG. 9 is a system configuration diagram according to a third embodiment. FIG. 20 is a detailed view of the system configuration shown in FIG. 19. It is a figure which shows an administrator approval necessity database. It is a figure which shows the usage history database recorded on the memory of a key management apparatus. It is a figure which shows the usable key number management database. It is a figure which shows the usage history database recorded on a server recording part. It is a figure which shows an administrator database. It is a figure which shows a user database. 10 is a flowchart illustrating an operation in the third embodiment. It is a figure which shows the usage history database recorded on a server recording part. It is a figure which shows an administrator database. It is a figure which shows a user database. 10 is a flowchart illustrating an operation in the fourth embodiment. 10 is a flowchart illustrating an operation in the fourth embodiment.

  Hereinafter, Example 1 is demonstrated with reference to FIGS.

FIG. 1 is a system configuration diagram according to the first embodiment. A key management apparatus and a key management system using a biometric authentication apparatus according to the first embodiment includes key management apparatuses 100a to 100c, a router 101, a management server 200, a management PC 300, and an administrator authentication apparatus 400. Are connected via a network 500.
Each of the key management devices 100a to 100c, the management server 200, and the management PC 300 is assigned a device name (such as an IP address). In this embodiment, the local IP address “192.168.x.y (x, y: arbitrary)” is used as an example of the device name. The IP address of the key management apparatus 100 is “192.168.100.z (z: arbitrary)”, the IP address of the management server 200 is “192.168.0.0”, and the IP address of the administrator PC 300 Is “192.168.1.0”.

  FIG. 2 is a detailed view of the system configuration shown in FIG. Here, for convenience of explanation, only one key management device 100 is shown, and the router 101 is omitted. The key management device 100 is installed in an office, a sales office, an unmanned store, an external warehouse, etc., and a management device control unit 110 that controls the entire key management device, a memory 120 that records a usage history of the key management device, and the like. Data of the operation unit 130 that receives user input, the user authentication unit 140 that authenticates the user, the key use / return unit 150 that stores the key 1, the management server 200, and the management PC 300. And a management device transmission / reception unit 160 that performs transmission / reception.

  FIG. 3 is an external view of the key management device 100. The key use / return unit 150 locks and releases the key. When the use of the key is permitted, the user can take out the key by unlocking the key use / return unit 150 corresponding to the key.

  FIG. 4 is an administrator approval necessity database recorded in the memory 120 and shows whether or not the administrator's approval is required when the key 1 is used. Each key 1 to be managed is assigned a key number 121 and recorded in association with the manager approval necessity 122.

  When the manager approval necessity 122 is “◯”, the biometric authentication of the manager is required when the user uses the key. On the other hand, when the manager approval necessity 122 is “x”, the biometric authentication of the manager is not required when the user uses the key. FIG. 4 shows, as an example, a case where 20 keys are managed, and the key number 121 is given a number from 1 to 20.

  FIG. 5 is a diagram showing a use history database similarly recorded in the memory 120. In the usage history, the user ID 123 of the user, the key number 124 being used (or used) by the user, the usage start time 125a, and the usage end time 125b are recorded. Examples of the user ID 123 include a member number and an employee number. In this embodiment, a 4-digit number such as “0041” and “0012” is used.

  FIG. 6 is a diagram showing an available key number management database recorded in the user authentication unit 140. In the database, the user ID 141 of the user, the biometric information 142 of the user, and the key number 143 usable by the user are recorded. In FIG. 6, one type of biological information 142 is recorded for each user ID 141, but a plurality of biological information 142 may be recorded.

  Returning to FIG. 2, the management server 200 includes a server control unit 210 that controls the entire server, a server recording unit 220 that records user and administrator information, and data of the key management device 100 and the management PC 300. And a server transmission / reception unit 230 that performs transmission / reception.

  FIG. 7 is a diagram showing a use history database recorded in the server recording unit 220. In the use history, the device name 221, the user ID 222 of the user, the key number 223 being used (or used) by the user, the use start time 224a and the use end time 224b are recorded.

  FIG. 8 is a diagram showing an administrator database recorded in the server recording unit 220. In the manager database, the manager ID 225 of the manager and the mail address 226 of the manager are recorded.

  Returning to FIG. 2, the management PC 300 includes a PC transmission / reception unit 310 and a PC control unit 320 that controls the entire PC. The PC transmission / reception unit 320 transmits / receives data to / from the key management device 100, the management server 200, and the administrator authentication device 400.

  The administrator authentication device 400 performs biometric authentication of the administrator when the user uses a key that requires the administrator's approval. Note that the administrator authentication device 400 may be directly connected to the network 500 instead of being connected to the management PC 300 as shown in FIG.

  FIG. 9 is a diagram showing an administrator biometric information database recorded in the administrator authentication apparatus 400. In the database, the manager ID 401 of the manager and the biological information 402 of the manager are recorded.

  FIG. 10 is a flowchart illustrating the operation in the first embodiment.

  When the user uses the key 1 managed by the key management device 100, the key management device 100 waits for the user ID input by the user (step 201). After the user inputs the user ID with the operation unit 130, the user authentication unit 140 authenticates the user's biometric information (step 202). When the user ID and the user's biometric information match the combination of the user's user ID 141 and the user's biometric information 142 recorded in the user authentication unit 140 (read by the user authentication unit 140) As for the biometric information, when the degree of coincidence with the biometric information 142 of the user is equal to or greater than a predetermined value, the user is successfully authenticated (step 203). On the other hand, if the user ID and the biometric information do not match the combination of the user ID 141 of the user and the biometric information 142 of the user, the user authentication has failed and the flow ends (step 204).

  After successful authentication of the user (step 203), the key management apparatus 100 waits for input of the key number that the user plans to use (step 205). After the user inputs the key number with the operation unit 130, the memory 120 is referred to and it is confirmed whether the key corresponding to the key number requires the approval of the administrator (step 206). When the manager approval necessity 122 corresponding to the input key number is “◯”, the management apparatus transmission / reception unit 160 transmits an approval request to the management server 200 (step 207). The approval request includes the key number and the device name of the key management device. On the other hand, when the manager approval necessity 122 corresponding to the input key number is “×”, the key use / return unit 150 unlocks the key taken out corresponding to the input key number, The user can use key 1 (step 208).

  When the approval request is transmitted in step 207, the server transmission / reception unit 230 notifies the administrator's mail address 226 in the administrator database that the approval request has been made (step 209). Note that the notification to the administrator in the present embodiment may be a notification by an alarm connected to the management PC 300, a contact to the telephone number of the administrator recorded in the server recording unit 220, or the like.

  The administrator who has received the notification that the approval request has been issued performs biometric authentication with the administrator authentication apparatus 400 (step 210). If the administrator's biometric information matches the biometric information 402 recorded in the database in the administrator authentication device 400, the PC transmission / reception unit 320 transmits permission to use the key 1 to the management device 100 (step 211). The use permission includes the same key number and device name as the key number and device name recorded in the approval request. After the management device transmission / reception unit 160 receives the permission, the user can use the key 1 by unlocking the key extraction / removal unit 150 corresponding to the input key number. On the other hand, when the biometric information of the administrator does not match the biometric information 402 recorded in the database in the administrator authentication apparatus 400, the PC transmission / reception unit 320 transmits to the management apparatus 100 that the administrator could not be authenticated. The flow ends (step 212).

  As described above, according to the present embodiment, when a user uses a key that requires the approval of the administrator, the administrator can approve the use of the user via the network. Therefore, the administrator does not need to go to the installation location of the key management device every time the user desires to use the key, and the convenience of the administrator is improved. When the administrator approval necessity 122 is “◯”, the administrator may perform biometric authentication with the user authentication unit 140 instead of performing biometric authentication with the administrator authentication device 400. In that case, it is assumed that the biometric information of the administrator is recorded in the user authentication unit 140.

  In the first embodiment, it is assumed that there is only one administrator, but it may be more convenient for a plurality of managers to exist, such as when the manager is absent and authentication is not possible. In the second embodiment, it is assumed that there are a plurality of such administrators, and the administrator who approves the use of the key can be changed according to the user.

  As in the first embodiment, it is assumed that the user uses only the key management device in which the biometric information is registered, and the biometric information is transmitted only to the registered key management device.

  Hereinafter, the second embodiment will be described with reference to FIG. 9 and FIGS.

  FIG. 11 is a system configuration diagram according to the second embodiment. A key management device and a key management system using a biometric authentication device according to the second embodiment include key management devices 100a to 100b, a router 101, a management server 200, management PCs 300a to 300b, a router 301, and an administrator. The authentication devices 400 a to 400 c are connected to each other via the network 500.

  As in the first embodiment, device names are assigned to the key management devices 100a to 100b, the management server 200, and the management PCs 300a to 300b, respectively. Hereinafter, the local IP address is used as an example of the device name as in the first embodiment, but the first embodiment is that the IP address of the administrator PC 300 is “192.168.1.w (w: arbitrary)”. Different from

  FIG. 12 is a detailed view of the system configuration shown in FIG. Here, for convenience of explanation, only one key management device 100 is shown, and the router 101 is omitted. Since each part of the key management device 100, the server device 200, and the management PC 300 has the same configuration as that of the first embodiment, detailed description thereof is omitted.

  13 to 15 are diagrams illustrating databases recorded in the key management apparatus 100 in the second embodiment. FIGS. 13 to 15 correspond to FIGS. 4 to 6 in the first embodiment, respectively, but the use of the key is approved in the usable key number management database recorded in the user authentication unit 140 shown in FIG. This is different from the first embodiment in that the manager ID 144 of the manager to be recorded is recorded for each user ID 141. Note that a plurality of administrator IDs 144 may be recorded in association with each user ID 141.

  16 and 17 are diagrams illustrating a use history database recorded in the server recording unit 220 in the second embodiment. FIGS. 16 and 17 correspond to FIGS. 7 and 8 in the first embodiment, respectively, but the administrator ID 227 of the administrator who approves the use of the key is recorded in the use history database shown in FIG. This is different from the first embodiment.

  The administrator biometric information database recorded in the administrator authentication apparatus 400 is the same as that in the first embodiment shown in FIG.

  FIG. 18 is a flowchart illustrating the operation in the second embodiment.

  When the user uses the key 1 managed by the key management apparatus 100, the key management apparatus 100 waits for the user ID input by the user (step 301). After the user inputs the user ID with the operation unit 130, the user authentication unit 140 authenticates the user's biometric information (step 302). When the user ID and the user's biometric information match the combination of the user's user ID 141 and the user's biometric information 142 recorded in the user authentication unit 140, the user has been successfully authenticated. (Step 303). On the other hand, if the user ID and the biometric information do not match the combination of the user ID 141 of the user and the biometric information 142 of the user, the user authentication has failed and the flow ends (step 304).

  After successful authentication of the user (step 303), the key management apparatus 100 waits for input of the key number that the user plans to use (step 305). After the user inputs the key number with the operation unit 130, the key use / return unit 110 is referred to, and it is confirmed whether the key corresponding to the key number needs to be approved by the administrator ( Step 306). When the manager approval necessity 122 corresponding to the input key number is “◯”, the key use / return unit 110 refers to the manager ID 144 recorded in association with the user ID 141 of the user (step 307). ). Thereafter, the management device transmission / reception unit 160 transmits an approval request including the administrator ID 144 to the management server 200 (step 308). The approval request includes the key number, the device name of the key management device, and the management PC 300 that is the transmission destination. On the other hand, when the manager approval necessity 122 corresponding to the input key number is “×”, the key use / return unit 150 unlocks the key taken out corresponding to the input key number, The user can use the key 1 (step 309).

  When the approval request is transmitted in step 308, the server transmission / reception unit 230 searches for the administrator ID included in the approval request from the administrator ID 225 in the administrator database (step 310). Thereafter, the manager's mail address 226 recorded in association with the manager ID 225 is notified of the approval request (step 311).

  The administrator who has received the notification that the approval request has been issued performs biometric authentication with the administrator authentication device 400 (step 312). If the administrator's biometric information matches the biometric information 402 recorded in the database in the administrator authentication device 400, the PC transmission / reception unit 320 transmits permission to use the key 1 to the management device 100 (step 313). The use permission includes the same key number and device name as the key number and device name recorded in the approval request. After the management device transmission / reception unit 160 receives the permission, the user can use the key 1 by unlocking the key extraction / removal unit 150 corresponding to the input key number. On the other hand, when the biometric information of the administrator does not match the biometric information 402 recorded in the database in the administrator authentication apparatus 400, the PC transmission / reception unit 320 transmits to the management apparatus 100 that the administrator could not be authenticated. The flow ends (step 314).

  As described above, according to this embodiment, even when there are a plurality of managers, each manager can perform an approval operation by remote operation. Therefore, it is possible to change the administrator for each purpose of use of the key management device. In addition, when the configuration is such that a plurality of administrator IDs are recorded in association with each user ID, a higher administrator who can approve all users and a lower administrator who can only approve some users are set. Is possible.

  If the user of the key management device is a temporary employee or a short-term worker and the period for using the key management device is limited, the biometric information of those who do not use the key management device is deleted for security reasons. Is desirable. In the third embodiment, in order to manage the biometric information of the user in the administrator server 200, the biometric information of the user, the transmission time of the biometric information, and the time at which the biometric information is deleted from the key management device are stored in the server. It was set as the structure recorded on. The deletion of biometric information in this embodiment includes not only deleting biometric information from the key management device but also making it impossible to use biometric information recorded in the key management device during biometric authentication. .

  In this embodiment, when the user uses a plurality of key management devices and the usage time of each key management device is determined in advance, the biometric information of the user registered in advance is transmitted. Assumes that. As an example, maintenance personnel such as an unmanned store, an external warehouse, and a nighttime safe may use a key management device and have a predetermined work time.

  Hereinafter, Example 3 will be described with reference to FIG. 9 and FIGS. 19 to 27. In the following description, there is one administrator as in the first embodiment, but there may be a plurality of managers as in the second embodiment.

  FIG. 19 is a system configuration diagram according to the third embodiment. The key management apparatus and key management system using the biometric authentication apparatus according to the present embodiment include key management apparatuses 100a to 100c, a router 101, a management server 200, a management PC 300, an administrator authentication apparatus 400, and a biometrics. The information registration apparatus 410 is connected to each other via the network 500. Each of the key management devices 100a to 100c, the management server 200, and the management PC 300 is assigned a device name (such as an IP address). In this embodiment, the local IP address “192.168.x.y (x, y: arbitrary)” is used as an example of the device name. The IP address of the key management apparatus 100 is “192.168.100.z (z: arbitrary)”, the IP address of the management server 200 is “192.168.0.0”, and the IP address of the administrator PC 300 Is “192.168.1.0”.

  20 is a detailed view of the system configuration shown in FIG. The difference from the first embodiment and the second embodiment is that a biometric information registration device 410 is connected to the management PC 300. This assumes that the user registers biometric information in advance with the management PC 300, but the biometric information registration device 410 may be the same device as the administrator authentication device 400. The user's biometric information may be registered by the user authentication unit of the key management apparatus 100, but the block diagram in this case is the same as FIG.

  FIGS. 21 to 23 are diagrams illustrating databases recorded in the key management apparatus 100 in the third embodiment. 21 to FIG. 23 correspond to FIG. 4 to FIG. 6 in the first embodiment, respectively, but in the usable key number management database recorded in the user authentication unit 140 shown in FIG. It differs from the first and second embodiments in that the time 145a and the usable end time 145b are recorded.

  24 to 26 are diagrams illustrating a use history database recorded in the server recording unit 220 in the third embodiment. 24 and 25 correspond to FIGS. 7 and 8 in the first embodiment, respectively. FIG. 26 is a diagram showing a user database recorded in the server recording unit 220. In the user database, the user ID 241 of the user, the biometric information 242 of the user, the device name 243 scheduled to transmit the biometric information, the key number 244 usable by the user, and the key management device by the user A usable start time 245a and a usable end time 245b indicating the usable time are recorded.

  The database recorded in the administrator authentication apparatus 400 is the same as that in the first embodiment shown in FIG.

  FIG. 27 is a flowchart illustrating the operation in the third embodiment.

  The PC control unit 320 waits for input of a new user ID scheduled to be registered (step 401). After inputting the new user ID, the biometric information registration device 410 collects the biometric information of the user (step 402). Further, the PC control unit 320 waits for input of the device name of the key management device 100 that can be used by the user, the usable start time, and the usable end time (step 403). After the device name and the like are input by the administrator, the PC transmission / reception unit 310 transmits the user ID, the biological information, the device name, the usable start time, and the usable end time to the management server 200 (step 404). ).

  The server transmission / reception unit 230 receives the user data transmitted from the administrator PC 300 (step 405). Thereafter, the server control unit 210 records the received data in the server recording unit 220 (step 406).

  The user data recorded in the server recording unit 220 is transmitted to the key management device 100 recorded in the device name 243 scheduled to be transmitted at the time recorded in the usable start time 225a (step 407). Step 408).

  The management device transmission / reception unit 140 receives the user data transmitted from the management server 200 (step 409). Thereafter, it is recorded in a database in the user authentication unit 140 (step 410).

  In step 410, the user can use the key 1 managed by the key management apparatus 100 (step 411). Since the flow when the key 1 is used is the same as that shown in the first embodiment, detailed description thereof is omitted.

  The user data recorded in the user authentication unit 140 is deleted from the data recorded in the user authentication unit 140 at the time recorded in the usable end time 145b (step 412) (step 413).

  As described above, according to this embodiment, when a user uses a plurality of key management devices and the time for using each key management device has already been determined, the user's biometric information is stored in the key management device. Can be temporarily recorded. Furthermore, since the biometric information of the user does not exist in the key management device except when working at an unmanned store, an external warehouse, a night safe, etc., it can be prevented from being used for purposes other than work.

  In the first embodiment, when the user uses a key that requires the approval of the administrator, the administrator can approve the use of the user via the network. However, even when a key that requires the approval of the administrator is used, there is a possibility that the emergency cannot be handled if the key cannot be used without the approval of the administrator in an emergency. In the fourth embodiment, a key that needs to be approved by the administrator is configured so that the emergency response can be speeded up by making the approval of the administrator unnecessary in an emergency or the like.

  Hereinafter, Example 4 will be described with reference to FIGS. 1 to 6, FIG. 9, and FIGS. 28 to 32. In the following description, the configuration is adapted to the first embodiment, but the configuration may be adapted to the second or third embodiment.

  28 to 30 are diagrams illustrating an administrator approval necessity database recorded in the server recording unit 220 in the fourth embodiment. 28 and 29 correspond to FIGS. 7 and 8 in the first embodiment, respectively. FIG. 30 is a diagram showing administrator approval necessity data recorded in the server recording unit 220. In the manager approval necessity data, the device name 251 of the key management apparatus, the key number 252 of each key management apparatus, and the manager approval necessity 253 of each key are recorded.

  31 and 32 are flowcharts showing the operation in the fourth embodiment.

  When an emergency situation occurs in the key management apparatus 100, the management apparatus transmission / reception unit 160 of the key management apparatus 100 transmits an emergency situation notification to the management server 200 (step 501). The emergency occurrence notification includes the device name and key number of the key management device 100.

  After receiving the emergency occurrence notification (step 502), the server transmission / reception unit 230 notifies the administrator's mail address 226 in the administrator database that the emergency occurrence notification has been received (step 503). Note that the notification method to the administrator in the fourth embodiment may be alarm notification, telephone communication, or the like, as in the first embodiment.

  The administrator who has received the notification that there has been an emergency occurrence notification performs biometric authentication with the administrator authentication device 400 (step 504). When the administrator's biometric information matches the biometric information 402 recorded in the database in the administrator authentication device 400, the PC transmission / reception unit 320 transmits permission to the management server 200 to change the setting for whether or not the administrator is approved. (Step 505). On the other hand, when the biometric information of the administrator does not match the biometric information 402 recorded in the database in the administrator authentication apparatus 400, the PC transmission / reception unit 320 transmits to the management apparatus 100 that the administrator could not be authenticated. The flow ends (step 506).

  After the server transmission / reception unit 230 receives the setting change permission, the server control unit 210 updates the record of the manager approval necessity 253 from “◯” to “×” (step 507).

  Thereafter, when the emergency situation ends in the key management device 100, the management device transmission / reception unit 140 of the key management device 100 transmits an emergency situation end notification to the management server 200 (step 508). After the server transmission / reception unit 230 receives the emergency end notification (step 509), the server control unit 210 updates the record of the manager approval necessity 253 from “×” to “◯” (step 510).

  As described above, according to the present embodiment, it is possible to speed up the emergency response by making the key that needs the administrator's approval unnecessary in the event of an emergency. In the above flow, the necessity of manager approval is updated from “X” to “O” after the end of the emergency (step 510), but the administrator needs to be authenticated before the update. good.

100: Key management device, 101: Router, 110: Management device control unit, 120: Memory, 121: Key number, 122: Necessity of manager approval, 123: User ID, 124: Key number, 125: Usage start time, 126: usage end time, 130: operation unit, 140: user authentication unit, 141: user ID, 142: biometric information, 143: usable key number, 144: administrator ID, 145a: usable start time, 145b : Usable end time, 150: key use / return unit, 160: management device transmission / reception unit, 200: management server, 210: server control unit, 220: server recording unit, 221: device name, 222: user ID, 223 : Key number, 224a: use start time, 224b: use end time, 225: administrator ID, 226: administrator mail address, 230: server transmission / reception unit, 41: User ID, 242: Biometric information, 243: Device name to be transmitted, 244: Usable key number, 245a: Usable start time, 245b: Usable end time, 251: Device name, 252: Key number, 253: Necessity of approval of administrator, 300: PC for management, 301: Router, 310: PC transmission / reception unit, 320: PC control unit, 400: Administrator authentication device, 410: Biometric information registration device, 500: Network

Claims (10)

A key management device connected to a computer used for the approval of the first user and storing a key used by the second user,
The key management device includes a user authentication unit that performs biometric authentication of the second user, an operation unit that specifies a key used by the second user, a lock for taking out the key, and a release of the lock A storage unit that performs the control, and a control unit that controls each unit,
In response to the result of biometric authentication of the second user in the user authentication unit, an approval request for use of the key specified in the operation unit is transmitted to the computer,
A key management device, wherein after receiving permission to use the key from the computer, the storage unit corresponding to the key is unlocked. The key management device according to claim 1,
A recording unit for recording whether or not the first user's approval is required when using each key;
The control unit refers to the recording unit, and transmits the approval request to the computer when the key specified by the operation unit requires the approval of the first user. Management device. A key management device according to claim 1 or claim 2, wherein
From the server connected to the key management device, receive the biological information of the second user and the time to delete the biological information of the second user,
Recording the biometric information of the second user and the time of deleting the biometric information of the second user in the recording unit;
A key management apparatus, wherein the biometric information of the user of the second user is deleted from the recording unit at a time when the biometric information of the second user is deleted. A key management device that is connected to a computer used for the approval of the first user and a server in which the biometric information of the second user is recorded and stores a key used by the second user,
The key management device includes a user authentication unit that performs biometric authentication of the second user, an operation unit that specifies a key used by the second user, a lock for taking out the key, and a release of the lock A storage unit that performs recording, a recording unit that records whether the first user needs to be approved when each key is used, and a control unit that controls each unit,
From the server, receiving the biological information of the second user and the time of deleting the biological information of the second user,
In accordance with the result of biometric authentication of the second user in the user authentication unit and the recorded content of the recording unit, an approval request for use of the key specified in the operation unit is transmitted to the server,
After receiving usage permission for the key from the computer, unlock the storage unit corresponding to the key,
A key management apparatus, wherein the second user's biometric information is deleted from the recording unit at a time when the second user's biometric information is deleted. A key management device recorded in any one of claims 2 to 4,
The recording unit corresponds to a number unique to each storage unit and whether or not an administrator approves whether the first user needs to be approved when using the key stored in each storage unit. A key management device characterized by being attached and recorded. A key management device recorded in any one of claims 2 to 5,
The recording unit includes a user ID unique to the second user, a number unique to each storage unit, a key usage start time by the second user, and a second user A key management device, wherein the key use end time is recorded in association with each other. A key management system using biometric authentication,
A computer used for the approval of the first user, an authentication device connected to the computer for performing biometric authentication of the first user, a user authentication unit for performing biometric authentication of the second user, and a key A key management device having a take-out lock and a storage unit for releasing the lock, and
When the control unit of the key management device succeeds in biometric authentication of the second user in the user authentication unit, the control unit transmits an approval request for use of the key specified in the operation unit to the computer,
After receiving the approval request from the key management device, the control unit of the computer performs biometric authentication of the first user via the authentication device and succeeds in biometric authentication of the first user. If so, the key use permission is transmitted to the key management device,
The control unit of the key management device releases the lock of the storage unit corresponding to the key after receiving the use permission from the computer. The key management system according to claim 7,
The key management device includes a recording unit that records whether or not an administrator approves whether or not the first user needs to be approved when each key is used,
The control unit of the key management device refers to the recording unit, and transmits the approval request to the server when the key specified by the operation unit requires the approval of the first user. Key management system featuring. A key management system according to claim 7 or claim 8, wherein
A server for recording the second user information and the usage history of the key management device;
The server includes the second user's biometric information, the first time when the second user's biometric information is transmitted to the key management device, and the second user's biometric information. A second time to be deleted from the key management device is recorded,
The control unit of the server transmits the biometric information of the second user and the second time to the key management device at the first time,
The control unit of the key management device records the second user's biometric information and the second time received from the server in the memory, and at the second time, the second user The biometric information is deleted from the recording unit. A key management system according to claim 7 to claim 9,
The server records whether or not an administrator approves whether or not the first user's approval is required when using a key in each key management device,
The control unit of the server transmits the approval / disapproval of the manager to the computer,
The key management system according to claim 1, wherein the control unit of the computer transmits update data indicating whether or not the manager is approved.

Images