JP2011022786A - Template writing device, biometric authentication device, method of writing template, method of providing template, and program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a template writing device for preventing a template for biometric authentication from being illegally copied, with a simple technique. <P>SOLUTION: The template writing device includes: a template information acquisition part which acquires encrypted template for biometric authentication and time information indicating the creation time of the template; a writing time acquisition part which acquires writing time when the template acquired by the template information acquisition part is written in a memory; a time difference calculation part which calculates the time difference between the creation time indicated by the time information acquired by the template information acquisition part and the writing time acquired by the writing time acquisition part; and a template writing part which writes the template acquired by the template information acquisition part in the memory when the time difference calculated by the time difference calculation part is smaller than a predetermined value. <P>COPYRIGHT: (C)2011,JPO&INPIT

Description

  The present invention relates to a template writing device, a biometric authentication device, a template writing method, a template providing method, and a program.

  In recent years, with the progress of the information society, the value and importance of information held by individuals are rapidly increasing. Under these circumstances, biometric authentication technology (biomatrix technology) has attracted a great deal of attention as a method for realizing robust information management. Biometric authentication is to identify a person or another person using a characteristic part (hereinafter referred to as a biological part) of a human body (biological body). For example, since fingerprints are different between different biometrics, the fingerprints can be used for biometric authentication. Similar to fingerprints, human voiceprints, face shapes, hand shapes, iris patterns, vein patterns, and the like have different characteristics among different living bodies. Therefore, it is possible to specify an individual by using these feature amounts for biometric authentication, and to perform authentication processing, search processing, and the like.

  Thus, in order to specify an individual using biometric authentication, or to perform an authentication process, a search process, or the like, it is necessary to perform a comparison process of feature amounts acquired from a biological part. Therefore, it is acquired in the form of data (for example, image data, audio data, three-dimensional coordinate data, iris code, etc.) that can compare feature quantities (for example, fingerprints, voiceprints, vein patterns, etc.) of living body parts. Next, the “template” registered in advance by the person in this format and the “input data” input during the authentication operation are compared in some manner, and the similarity is measured. Then, identification of individuals, authentication processing, and the like are performed based on the similarity obtained as a result of the comparison.

  Regarding biometric authentication, Patent Document 1 below determines whether a biometric pattern detected by a biometric sensor is a living body or a non-living body before performing personal authentication using a biometric pattern. Techniques to do this are disclosed. In particular, this document discloses a technique for discriminating between a living body and a non-living body by capturing a unique statistical tendency found in a living body pattern. For example, the blood vessel pattern of a living body tends to align in a certain direction. With regard to this tendency, this document discloses a method for discriminating a biological pattern and a non-biological pattern based on the angular distribution and distribution intensity of each line segment forming the blood vessel pattern and eliminating the pseudo blood vessel pattern or the like according to the discrimination result. Has been proposed. Patent Document 2 below discloses a method for efficiently managing information used for biometric authentication such as a template.

JP 2008-102780 A JP 2009-75950 A

  Certainly, by using the biometric authentication method described in the above document 1 or the like, biometric authentication can be performed with higher accuracy. Moreover, the information used for biometric authentication, such as a template, can be efficiently managed by using the management method described in Document 2 above. However, in the biometric authentication system described in the above document, a template is stored in a biometric authentication device used when performing biometric authentication. Therefore, when there are a plurality of biometric authentication devices, the user needs to register biometric information in each biometric authentication device. For example, when there are various services such as financial services and entrance / exit management services, and a biometric authentication device is installed for each service, the user needs to register biometric information in the biometric authentication device of each service.

  In the future, biometric authentication, which is characterized by high safety and high authentication accuracy, is expected to expand its use to various services. In addition to the already exemplified financial services and entry / exit management services, for example, they may be used for user authentication of copiers and vending machines provided as in-house services. However, when a user registers biometric information in each biometric authentication device, the user's labor for the registration becomes enormous and practically difficult to use. As one measure for solving such difficulty, for example, a template is encrypted and stored in a secure device such as an IC card, and biometric authentication is performed using the secure device each time the user uses the service. A method for constructing such a system is possible. However, since the template is taken out of the biometric authentication device, the template may be illegally copied by a malicious third party.

  Therefore, the present invention has been made in view of the above problems, and an object of the present invention is to copy an unlimited number of templates when writing a template to a secure device outside the biometric authentication device. It is an object of the present invention to provide a new and improved template writing apparatus, biometric authentication apparatus, template writing method, template providing method, and program for constructing a system that can be prevented.

  In order to solve the above-described problem, according to an aspect of the present invention, an encrypted biometric authentication template, a template information acquisition unit that acquires time information indicating a generation time of the template, and the template information acquisition Write time acquisition unit that acquires a write time when the template acquired by the unit is written to the memory, a generation time indicated by the time information acquired by the template information acquisition unit, and a write time acquired by the write time acquisition unit A time difference calculation unit that calculates a time difference between and a template writing unit that writes the template acquired by the template information acquisition unit to the memory when the time difference calculated by the time difference calculation unit is smaller than a predetermined value; A template writing device is provided.

  In addition to the template and the time information, the template information acquisition unit may be configured to acquire an electronic signature generated based on the template and the time information. In this case, the template writing apparatus further includes a signature verification unit that verifies the electronic signature using the template and time information acquired by the template information acquisition unit. Further, the template writing unit writes the template into the memory when the time difference calculated by the time difference calculating unit is smaller than a predetermined value and the verification by the signature verification unit is successful.

  The template writing apparatus may further include a communication unit capable of communicating with a secure device equipped with a tamper-resistant memory. In this case, the template writing unit writes the template into the memory of the secure device through the communication unit.

  The template writing unit may be configured to write the template in a memory mounted on the device.

  In order to solve the above problem, according to another aspect of the present invention, a template generation unit that generates an encrypted biometric authentication template, and a time when the template is generated by the template generation unit are acquired. And a template writing device capable of acquiring a template generated by the template generation unit and writing it to a memory for a predetermined period based on the time acquired by the time acquisition unit. And a template information providing unit that provides time information, a biometric authentication device is provided.

  In addition, a signature generation unit that generates an electronic signature based on the template generated by the template generation unit and the time information acquired by the time acquisition unit may be further provided.

  Further, the template generation unit irradiates a predetermined biological part with near infrared light and receives a scattered light scattered inside the biological part, and performs predetermined image processing and processing on a vein pattern image obtained. The encrypted biometric authentication template may be generated by performing an encryption process.

  In order to solve the above problem, according to another aspect of the present invention, an encrypted biometric authentication template, and a template information acquisition step for acquiring time information indicating a generation time of the template, It is acquired in the writing time acquisition step for acquiring the writing time when the template acquired in the template information acquisition step is written to the memory, the generation time indicated by the time information acquired in the template information acquisition step, and the writing time acquisition step. A time difference calculating step for calculating a time difference between the writing time and a template writing for writing the template acquired in the template information acquiring step into the memory when the time difference calculated in the time difference calculating step is smaller than a predetermined value. Steps including Rate writing method is provided.

  In order to solve the above problem, according to another aspect of the present invention, a template generation step for generating an encrypted biometric authentication template and a time at which the template is generated in the template generation step are acquired. The template acquisition apparatus capable of acquiring the template generated in the template generation step and writing it in the memory only for a predetermined period based on the time acquired in the time acquisition step. And a template information providing step for providing time information, a template providing method is provided.

  In order to solve the above problem, according to another aspect of the present invention, an encrypted biometric authentication template and a template information acquisition function for acquiring time information indicating a generation time of the template, A write time acquisition function for acquiring a write time at which a template acquired by the template information acquisition function is written to the memory, a generation time indicated by the time information acquired by the template information acquisition function, and the write time acquisition function A time difference calculating function for calculating a time difference between the writing time and a template writing for writing the template acquired by the template information acquiring function to the memory when the time difference calculated by the time difference calculating function is smaller than a predetermined value. Functions and programs for realizing the functions on a computer are provided It is.

  In order to solve the above problem, according to another aspect of the present invention, a template generation function for generating an encrypted biometric authentication template and a time at which the template is generated by the template generation function are acquired. The template acquisition apparatus capable of acquiring the template generated by the template generation function and writing it to the memory only for a predetermined period based on the time acquired by the time acquisition function. Also provided is a program for causing a computer to realize a template information providing function for providing time information.

  In order to solve the above problem, according to another aspect of the present invention, a computer-readable recording medium on which the above-described program is recorded is provided.

  As described above, according to the present invention, it is possible to prevent unlimited copying of a template when writing the template to a secure device outside the biometric authentication apparatus.

It is explanatory drawing which shows the system configuration example of the template writing system which concerns on one Embodiment of this invention. It is explanatory drawing which shows the flow of the writing process of the template in the template writing system which concerns on this embodiment. It is explanatory drawing which shows an example of a function structure of the template production | generation apparatus which concerns on this embodiment. It is explanatory drawing which shows an example of a function structure of the template writing apparatus which concerns on this embodiment. It is explanatory drawing which shows the frame structural example of the transmission frame used at the time of template transmission in the template writing system which concerns on this embodiment. It is explanatory drawing which shows the hardware structural example of the template production | generation apparatus and template writing apparatus which concern on this embodiment.

  Exemplary embodiments of the present invention will be described below in detail with reference to the accompanying drawings. In addition, in this specification and drawing, about the component which has the substantially same function structure, duplication description is abbreviate | omitted by attaching | subjecting the same code | symbol.

[About the flow of explanation]
Here, the flow of explanation regarding the embodiment of the present invention described below will be briefly described. First, an overall system configuration of the template writing system according to the present embodiment will be described with reference to FIG. Next, a flow of template writing processing in the template writing system according to the present embodiment will be described with reference to FIG. Next, the functional configuration of the template generation apparatus according to the present embodiment will be described with reference to FIG. Next, the functional configuration of the template writing apparatus according to the present embodiment will be described with reference to FIG.

  Next, a frame configuration of a transmission frame used at the time of template transmission in the template writing system according to the present embodiment will be described with reference to FIG. Next, a hardware configuration example of an information processing apparatus capable of realizing the functions of the template generation apparatus and the template writing apparatus according to the present embodiment will be described with reference to FIG. Finally, the technical idea of the present embodiment will be summarized and the effects obtained from the technical idea will be briefly described.

(Description item)
1: Embodiment 1-1: Overall Configuration of Template Writing System 1-2: Overall Process Flow (Template Writing Method)
1-3: Functional configuration of template generation apparatus 1-4: Functional configuration of template writing apparatus 1-5: Configuration of frame used for template transmission 2: Hardware configuration example 3: Summary

<1: Embodiment>
An embodiment of the present invention will be described. This embodiment proposes a technique capable of preventing a template from being illegally copied in a system configuration that allows a template to be written to a secure device outside the biometric authentication apparatus. Further, when this technique is used, it is possible to prevent a template stored in an external secure device from being inadvertently written in a regular template storage location. As a result, it is possible to suppress attacks on the biometric authentication system using an easy technique.

[1-1: Overall configuration of template writing system]
First, the overall configuration of the template writing system 10 according to the present embodiment will be described with reference to FIG. FIG. 1 is an explanatory diagram showing an overall configuration of a template writing system 10 according to the present embodiment.

  As shown in FIG. 1, the template writing system 10 mainly includes a template generation device 100, a template writing device 200 (for example, a PC), and a recording medium 300 (for example, a non-contact IC card). Note that PC is an abbreviation for Personal Computer. IC is an abbreviation for Integrated Circuit.

  The template generation device 100 is an example of a biometric authentication device. The template generation apparatus 100 is a means for acquiring a user biometric pattern and generating a biometric authentication template. Further, the template generation device 100 and the template writing device 200 are connected via a data transmission path, and are configured so that predetermined data can be transmitted from the template generation device 100 to the template writing device 200. When the template is generated by the template generation device 100, the generated template is transmitted to the template writing device 200 through the data transmission path.

  The template writing device 200 is means for writing a template on the recording medium 300. The template writing apparatus 200 is configured to establish a communication path with the recording medium 300 and write data through the communication path. For example, when the recording medium 300 is a non-contact IC card, the template writing apparatus 200 is connected to a reader / writer (R / W) for reading / writing data from / to the non-contact IC card. Data is written. However, the recording medium 300 is not limited to a non-contact IC card, and for example, a recording medium incorporated in the template writing device 200 as the recording medium 300 or a wired or wirelessly connected external device recording medium can be used. is there.

  As described above, in the template writing system 10 according to the present embodiment, the template generated by the template generation device 100 is written to the recording medium 300 via the template writing device 200. As described above, when the template is written and managed in the recording medium 300 outside the template generation apparatus 100, it is not necessary to hold the template with the secure device of the biometric authentication apparatus installed in each place.

  That is, each biometric authentication device can perform biometric authentication by reading a template from the recording medium 300 and collating it with a biometric pattern acquired from the user's biometric part. As a result, it is not necessary for the user to register a template for biometric authentication devices installed in various places, and the convenience of the biometric authentication service can be improved. However, simply allowing the template to be written on the recording medium 300 may cause the malicious third party to illegally read and copy the template from the template writing device 200 or the recording medium 300.

  Therefore, the template writing system 10 is provided with a mechanism for setting a template writable period and writing the template only during the writable period. Hereinafter, this mechanism will be described. First, the template generation device 100 acquires a time when a template is generated (hereinafter referred to as template generation time). At this time, the template generation apparatus 100 acquires a template generation time from, for example, an RTC (Real Time Clock) of a built-in chip. The template generation time obtained in this way is transmitted to the template writing apparatus 200 together with the template.

  In the template writing apparatus 200, a time when the template is written to the recording medium 300 (hereinafter referred to as a template writing time) is acquired, and a time difference from the template generation time is calculated. Then, the template writing apparatus 200 determines whether or not the calculated time difference is smaller than a predetermined value (hereinafter referred to as an expiration date). If the time difference is smaller, the writing process to the recording medium 300 proceeds, and if larger, an error is output. Then, the writing process is finished. With such a configuration, it is possible to limit the template writing period, and to suppress unauthorized duplication of the template. For example, even if an attempt is made to write a template written on the recording medium 300 to another external device, if the expiration date is set appropriately, the expiration date will be exceeded at the time of writing to another external device, and the template will be transferred to another external device. Is prevented from being duplicated.

  The template writing system 10 is also provided with a mechanism for preventing falsification of the template generation time transmitted with the template. Hereinafter, this mechanism will be described. First, the template generation device 100 generates an electronic signature based on the template and the template generation time. When the template and template generation time data are transmitted to the template writing apparatus 200, an electronic signature is transmitted together with these data.

  When the template and the template generation time data are acquired, the template writing apparatus 200 verifies the template and the template generation time data using the electronic signature acquired together with the template and the template generation time data. When the signature verification is successful and the template writing time is within the expiration date, the template writing device 200 writes the template into the recording medium 300. By providing such a mechanism, it is possible to detect falsification of the template generation time, and it is possible to prevent the template from being written illegally.

  The overall configuration of the template writing system 10 according to the present embodiment has been described above.

[1-2: Overall Process Flow (Template Writing Method)]
Next, a template writing method according to the present embodiment will be described with reference to FIG. FIG. 2 is an explanatory diagram showing the overall flow of the template writing process executed in the template writing system 10 according to the present embodiment. In FIG. 2, the processing content by the template writing device 200 and the processing content by the template generation device 100 are described in a distinguishable form.

As shown in FIG. 2, first, a template (T) is generated by the template generation apparatus 100 (S102). Next, the template generation device 100 encrypts the generated template and generates an encrypted template (T _enc ) (S104). Next, a template generation time (t ₀ ) is acquired by the template generation device 100 (S106). Next, the template generation apparatus 100 generates an electronic signature (sign) based on the combined data [T _enc , t ₀ ] obtained by concatenating the encrypted template T _enc and the template generation time t ₀ (S108). . Next, the combined data [[T _enc , t ₀ ], sign] obtained by concatenating the combined data [T _enc , t ₀ ] and the electronic signature sign by the template generation apparatus 100 is _{sent to} the template writing apparatus 200 as a write command. It is transmitted (S110).

When receiving the write command, the template writing apparatus 200 starts a writing process (S112). First, the template writing device 200 acquires the template writing time (t1) (S114). Next, the template writing device 200 calculates a time difference (| t ₁ −t ₀ |) between the received template generation time t ₀ and the template writing time t ₁ acquired in step S114, and the time difference | t ₁ −t _0. | Is compared with the expiration date (Δt) (S116). If | t ₁ −t ₀ | <Δt, the template writing apparatus 200 proceeds to the process of step S118. On the other hand, if | t ₁ −t ₀ | ≧ Δt, the template writing apparatus 200 outputs an error and ends the series of writing processes.

When the process proceeds to step S118, the template write device 200 performs signature verification of the encrypted template _{T enc} and template generation time _{t 0} using the received digital signature sign (S118). If the signature verification is successful, the template writing apparatus 200 proceeds to the process of step S120. On the other hand, if the signature verification fails, the template writing apparatus 200 outputs an error and ends the series of writing processes. When the process proceeds to step S120, the template writing apparatus 200 writes the encrypted template _Tenc to the recording medium 300, transmits a write completion notification to the template generation apparatus 100, and ends a series of writing processes (S120). In addition, when the writing completion notification is received, the template generation device 100 also ends a series of writing processing (S122).

  The template writing method according to the present embodiment has been described above. As described above, in the present embodiment, setting of a writable time limit and signature verification using an electronic signature are used in combination. By providing such a mechanism, it is possible to suppress illegal duplication of a template by an easy method.

[1-3: Functional configuration of template generation apparatus]
Next, a functional configuration of the template generation apparatus 100 according to the present embodiment capable of realizing the template writing method will be described with reference to FIG. FIG. 3 is an explanatory diagram illustrating a functional configuration example of the template generation device 100 according to the present embodiment.

  As shown in FIG. 3, the template generation apparatus 100 mainly includes a biometric pattern acquisition unit 102, a template encryption unit 104, a time acquisition unit 106, a signature generation unit 108, a time measurement unit 110, and a combined data transmission. Part 112. The template generation device 100 is an example of a biometric authentication device. The biometric pattern acquisition unit 102 and the template encryption unit 104 are examples of a template generation unit. Furthermore, the combined data transmission unit 112 is an example of a template information providing unit.

  The biometric pattern acquisition unit 102 is a means for generating a biometric authentication template by acquiring a biometric pattern from a user's biological site. For example, the biological pattern acquisition unit 102 irradiates a predetermined biological part with near infrared light and receives scattered light scattered inside the biological part to perform predetermined image processing on an image of the biological pattern obtained. To generate a biometric authentication template. For example, a finger, a palm, a wrist, or the like is used as the predetermined living body part. Further, as the biological pattern, for example, a vein pattern or the like is used. Further, as the predetermined image processing, binarization processing, compression encoding processing, or the like is used.

  The template generated by the biometric pattern acquisition unit 102 is input to the template encryption unit 104. The template encryption unit 104 is a unit that encrypts a template using a template encryption key stored in a tamper-resistant memory provided in the template generation apparatus 100. When a template is input from the biometric pattern acquisition unit 102, the template encryption unit 104 generates an encrypted template by encrypting the input template using the template encryption key. The encrypted template generated by the template encryption unit 104 is input to the signature generation unit 108 and the combined data transmission unit 112.

  When the encryption template is generated by the template encryption unit 104 as described above, the time acquisition unit 106 refers to the time measuring unit 110 and acquires the time when the encryption template was generated. However, the timing unit 110 is a real time clock (Real Time Clock) of a chip provided in the template generation device 100. The template generation time acquired by the time acquisition unit 106 is input to the signature generation unit 108 and the combined data transmission unit 112. At this stage, the signature generation unit 108 and the combined data transmission unit 112 are input with the encryption template and the template generation time.

  When the encryption template and the template generation time are input, the signature generation unit 108 generates an electronic signature based on the encryption template and the template generation time. For example, the signature generation unit 108 connects the encrypted template and the template generation time, and generates an electronic signature using the combined data. The electronic signature generated by the signature generation unit 108 in this manner is input to the combined data transmission unit 112. When the electronic signature is input, the combined data transmission unit 112 generates combined data by connecting the combined data of the encryption template and the template encryption key and the electronic signature. Then, the combined data transmission unit 112 transmits the generated combined data to the template writing device 200.

  In this way, the template generation apparatus 100 generates the encrypted template, the template generation time, and the electronic signature, and transmits them to the template writing apparatus 200.

[1-4: Functional configuration of template writing apparatus]
Next, a functional configuration of the template writing apparatus 200 according to the present embodiment capable of realizing the template writing method will be described with reference to FIG. FIG. 4 is an explanatory diagram showing a functional configuration example of the template writing apparatus 200 according to the present embodiment.

  As shown in FIG. 4, the template writing apparatus 200 mainly includes a combined data receiving unit 202, a time difference calculation unit 204, a time acquisition unit 206, a time measuring unit 208, a time difference determination unit 210, and a signature verification unit 212. And a template writing unit 214. The combined data reception unit 202 is an example of a template information acquisition unit. The time acquisition unit 206 is an example of a writing time acquisition unit. Furthermore, the time difference calculation unit 204 is an example of a time difference calculation unit. The template writing unit 214 and R / W are examples of a communication unit. Further, the template writing device 200 may be equipped with a tamper-resistant memory (not shown).

  The combined data receiving unit 202 is means for receiving combined data transmitted by the template generation device 100. As described above, the template generation apparatus 100 causes the combined data transmission unit 112 to transmit combined data including the encrypted template, the template generation time, and the electronic signature. The combined data reception unit 202 receives the combined data transmitted from the template generation device 100 and inputs the combined data to the time difference calculation unit 204, the signature verification unit 212, and the template writing unit 214. However, the time difference calculation unit 204 receives the template generation time. The signature verification unit 212 and the template writing unit 214 are input with the encryption template, the template generation time, and the electronic signature.

  When the template generation time is input, the time difference calculation unit 204 calculates a time difference between the template writing time and the template generation time. However, the template writing time is acquired by the time acquisition unit 206. When the combined data is received by the combined data receiving unit 202 and the template writing process is started, the time acquisition unit 206 refers to the time measuring unit 208 and acquires the time (template writing time). The timekeeping unit 208 is an RTC or the like provided in the internal chip of the template writing apparatus 200. The template writing time acquired by the time acquisition unit 206 is input to the time difference calculation unit 204. Then, the time difference calculation unit 204 calculates the time difference between the two times.

  The time difference calculated by the time difference calculation unit 204 is input to the time difference determination unit 210. The time difference determination unit 210 compares the input time difference with a predetermined time difference, and determines whether or not the input time difference is smaller than the predetermined time difference. When the input time difference is smaller than the predetermined time difference, the time difference determination unit 210 inputs a notification signal indicating that the writing process should be continued to the signature verification unit 212. On the other hand, when the input time difference is larger than the predetermined time difference, the time difference determination unit 210 outputs an error and ends the series of writing processes.

  When a notification signal indicating that the writing process should be continued is input, the signature verification unit 212 verifies the validity of the encryption template and the template generation time using the electronic signature input from the combined data reception unit 202. . As a result of the signature verification, when the validity of the encrypted template and the template generation time is confirmed, the signature verification unit 212 inputs a notification signal indicating that the writing process should be continued to the template writing unit 214. On the other hand, if the validity of the encryption template and the template generation time is not confirmed as a result of the signature verification, the signature verification unit 212 outputs an error and ends the series of writing processes.

  When a notification signal indicating that the writing process should be continued is input, the template writing unit 214 writes the encrypted template input from the combined data receiving unit 202 to the recording medium 300. At this time, the template writing unit 214 writes the template generation time and the electronic signature to the recording medium 300 together with the encrypted template. With such a configuration, when the encrypted template written in the recording medium 300 is copied to another recording medium, it is possible to check the writing deadline based on the template generation time. In addition, it is possible to confirm the validity of the encryption template read from the recording medium 300 and the template generation time.

  Heretofore, the functional configuration of the template writing apparatus 200 according to the present embodiment has been described. As described above, it is possible to prevent the template from being illegally copied by an easy method by providing a restriction on the writing period based on the generation time of the template. It is also possible to detect falsification of the template generation time by the electronic signature. When the template generation time and the electronic signature are not added to the combined data acquired from the template generation apparatus 100, the template writing apparatus 200 outputs an error and ends the series of writing processes.

[1-5: Frame configuration used for template transmission]
Next, a configuration of a transmission frame used when transmitting combined data from the template generation device 100 will be briefly described with reference to FIG. FIG. 5 is an explanatory diagram illustrating a configuration example of a transmission frame used when transmitting combined data from the template generation device 100.

  As shown in FIG. 5, the configuration of a transmission frame used when transmitting combined data will be briefly described. In FIG. 5, the transmission frame used when transmitting the combined data from the template generation device 100 is composed of a header portion and a data portion. In many cases, the header part is transmitted in clear text. The data portion including the encryption template is transmitted in the form of ciphertext. The template generation time may be transmitted in the form of being included in the encrypted data part together with the encryption template, or may be transmitted in the form of being included in the header part as plain text.

  As shown in FIG. 5, this transmission frame is provided with a header falsification detection code for detecting falsification of the header portion and a data falsification detection code for detecting falsification of the data portion. The header falsification detection code is provided at the beginning of the data portion. The data alteration detection code is provided in a frame element that follows the data portion. By adopting such a frame configuration, even if the template generation time is included in the header part, it becomes possible to detect falsification using the header falsification detection code. In addition, it is possible to detect falsification using the data falsification detection code for the encryption template included in the data portion. As a result, resistance to data tampering is improved.

<2: Hardware configuration example>
The functions of the template generation device 100 and the template writing device 200 can be realized using, for example, the hardware configuration of the information processing device shown in FIG. That is, this function is realized by controlling the hardware shown in FIG. 6 using a computer program. The form of the hardware is arbitrary, and includes, for example, a personal computer, a mobile phone, a portable information terminal such as a PHS, a PDA, a game machine, or various information appliances. However, the above PHS is an abbreviation of Personal Handy-phone System. The PDA is an abbreviation for Personal Digital Assistant.

  As shown in FIG. 6, this hardware mainly includes a CPU 902, a ROM 904, a RAM 906, a host bus 908, and a bridge 910. Further, this hardware includes an external bus 912, an interface 914, an input unit 916, an output unit 918, a storage unit 920, a drive 922, a connection port 924, and a communication unit 926. However, the CPU is an abbreviation for Central Processing Unit. The ROM is an abbreviation for Read Only Memory. The RAM is an abbreviation for Random Access Memory.

  The CPU 902 functions as, for example, an arithmetic processing unit or a control unit, and controls the overall operation of each component or a part thereof based on various programs recorded in the ROM 904, the RAM 906, the storage unit 920, or the removable recording medium 928. . The ROM 904 is a means for storing a program read by the CPU 902, data used for calculation, and the like. In the RAM 906, for example, a program read by the CPU 902, various parameters that change as appropriate when the program is executed, and the like are temporarily or permanently stored.

  These components are connected to each other via, for example, a host bus 908 capable of high-speed data transmission. On the other hand, the host bus 908 is connected to an external bus 912 having a relatively low data transmission speed via a bridge 910, for example. As the input unit 916, for example, a mouse, a keyboard, a touch panel, a button, a switch, a lever, or the like is used. Further, as the input unit 916, a remote controller (hereinafter referred to as a remote controller) capable of transmitting a control signal using infrared rays or other radio waves may be used.

  As the output unit 918, for example, a display device such as a CRT, LCD, PDP, or ELD, an audio output device such as a speaker or a headphone, a printer, a mobile phone, or a facsimile, etc. Or it is an apparatus which can notify audibly. However, the above CRT is an abbreviation for Cathode Ray Tube. The LCD is an abbreviation for Liquid Crystal Display. The PDP is an abbreviation for Plasma Display Panel. Furthermore, the ELD is an abbreviation for Electro-Luminescence Display.

  The storage unit 920 is a device for storing various data. As the storage unit 920, for example, a magnetic storage device such as a hard disk drive (HDD), a semiconductor storage device, an optical storage device, a magneto-optical storage device, or the like is used. However, the HDD is an abbreviation for Hard Disk Drive.

  The drive 922 is a device that reads information recorded on a removable recording medium 928 such as a magnetic disk, an optical disk, a magneto-optical disk, or a semiconductor memory, or writes information to the removable recording medium 928. The removable recording medium 928 is, for example, a DVD medium, a Blu-ray medium, an HD DVD medium, or various semiconductor storage media. Of course, the removable recording medium 928 may be, for example, an IC card on which a non-contact type IC chip is mounted, an electronic device, or the like. However, the above IC is an abbreviation for Integrated Circuit.

  The connection port 924 is a port for connecting an external connection device 930 such as a USB port, an IEEE 1394 port, a SCSI, an RS-232C port, or an optical audio terminal. The external connection device 930 is, for example, a printer, a portable music player, a digital camera, a digital video camera, or an IC recorder. However, the above USB is an abbreviation for Universal Serial Bus. The SCSI is an abbreviation for Small Computer System Interface.

  The communication unit 926 is a communication device for connecting to the network 932. For example, a wired or wireless LAN, Bluetooth (registered trademark), or a WUSB communication card, an optical communication router, an ADSL router, or various types It is a modem for communication. The network 932 connected to the communication unit 926 is configured by a wired or wireless network, such as the Internet, home LAN, infrared communication, visible light communication, broadcast, or satellite communication. However, the above LAN is an abbreviation for Local Area Network. The WUSB is an abbreviation for Wireless USB. The above ADSL is an abbreviation for Asymmetric Digital Subscriber Line.

<3: Summary>
Finally, the functional configuration of the template writing device and the biometric authentication device according to the present embodiment and the effects obtained by the functional configuration will be briefly summarized.

(A: Template writing device)
The functional configuration of the template writing apparatus according to the present embodiment can be expressed as follows. The template writing apparatus includes a template information acquisition unit, a writing time acquisition unit, a time difference calculation unit, and a template writing unit each having the following functions. The template information acquisition unit acquires the encrypted biometric authentication template and time information indicating the generation time of the template. In this way, the template writing apparatus acquires, together with the template to be written, time information indicating the generation time of the template by the template information acquisition unit. The generation time of the template is acquired from, for example, an internal clock (for example, RTL; Real Time Clock) of a secure device mounted on the template generation apparatus (biometric authentication apparatus) that generated the template.

  The writing time acquisition unit acquires a writing time at which the template acquired by the template information acquisition unit is written to the memory. The writing time is acquired from, for example, a system clock provided in the template generation apparatus, a predetermined NTP (Network Time Protocol) server, or the like, or is acquired from the template generation apparatus. The time difference calculation unit calculates a time difference between the generation time indicated by the time information acquired by the template information acquisition unit and the writing time acquired by the writing time acquisition unit. The template writing unit is configured to write the template acquired by the template information acquisition unit to the memory when the time difference calculated by the time difference calculation unit is smaller than a predetermined value.

  As described above, the template writing apparatus according to the present embodiment has a function of managing a writable period based on the generation time of the template to be written. By having such a function, template writing beyond a writable period is prohibited, and a template can be prevented from being copied inexhaustibly by a malicious third party.

  In addition to the template and the time information, the template information acquisition unit may be configured to acquire an electronic signature generated based on the template and the time information. Furthermore, the template writing apparatus may further include a signature verification unit that verifies the electronic signature using the template and time information acquired by the template information acquisition unit. The template writing unit is configured to write the template to the memory when the time difference calculated by the time difference calculating unit is smaller than a predetermined value and the verification by the signature verification unit is successful. Also good.

  As described above, an electronic signature is generated based on the template and the time information, and the validity of the template and the time information can be confirmed by the electronic signature, so that it is possible to detect falsification of the time information. As a result, it is possible to prevent an attack that falsifies the time information and illegally changes the writing period.

  The template writing apparatus may further include a communication unit capable of communicating with a secure device equipped with a tamper-resistant memory. The template writing unit may be configured to write the template into the memory of the secure device through the communication unit. Thus, the template writing apparatus of this embodiment can be used as an apparatus for writing a template on a non-contact IC card or the like equipped with a tamper resistant memory. However, the template writing unit may be configured to write the template into a memory mounted on the device itself.

(B: Biometric authentication device)
The functional configuration of the biometric authentication apparatus according to the present embodiment can be expressed as follows. The biometric authentication apparatus includes a template generation unit, a time acquisition unit, and a template information provision unit each having the following functions. The template generation unit generates an encrypted biometric authentication template. The template generation unit generates a biometric authentication template by performing predetermined image processing and encryption processing on image data obtained by photographing a biological pattern such as a finger vein using an optical technique, for example.

  Moreover, said time acquisition part acquires the time when the template was produced | generated in the said template production | generation part. The time acquisition unit refers to, for example, an internal clock (for example, RTL; Real Time Clock) of a secure device mounted on the biometric authentication device, and acquires the time when the template is generated. Further, the template information providing unit described above is a template writing device capable of acquiring the template generated by the template generating unit and writing it to the memory only for a predetermined period based on the time acquired by the time acquiring unit. On the other hand, the template and time information are provided.

  As described above, the biometric authentication apparatus according to the present embodiment has a function of providing the generated template together with time information to the external template writing apparatus by the template providing unit. By providing the time information together with the template, the template writing device can limit the writing period based on the template generation time. As a result, even if a template can be written to a secure device outside the biometric authentication device, a malicious third party can be prevented from illegally controlling the template writing device and copying the template indefinitely.

  In addition, a signature generation unit that generates an electronic signature based on the template generated by the template generation unit and the time information acquired by the time acquisition unit may be further provided. As described above, an electronic signature is generated based on the template and the time information, and the validity of the template and the time information can be confirmed by the electronic signature, so that it is possible to detect falsification of the time information. As a result, it is possible to prevent an attack that falsifies the time information and illegally changes the writing period.

  Further, the template generation unit irradiates a predetermined biological part with near infrared light and receives a scattered light scattered inside the biological part, and performs predetermined image processing and processing on a vein pattern image obtained. The encrypted biometric authentication template may be generated by performing an encryption process. In this way, a biometric authentication system with high personal authentication accuracy is constructed by detecting reflected light of near-infrared light irradiated on a living body, acquiring a vein pattern image, and generating a template based on the image. It becomes possible.

  As mentioned above, although preferred embodiment of this invention was described referring an accompanying drawing, it cannot be overemphasized that this invention is not limited to the example which concerns. It will be apparent to those skilled in the art that various changes and modifications can be made within the scope of the claims, and these are naturally within the technical scope of the present invention. Understood.

  For example, although a non-contact IC card is assumed to be used as the recording medium 300, a tamper-resistant memory mounted on a mobile phone, a portable information terminal, a notebook PC, or the like can be used as the recording medium 300.

DESCRIPTION OF SYMBOLS 100 Template production | generation apparatus 102 Biometric pattern acquisition part 104 Template encryption part 106 Time acquisition part 108 Signature production | generation part 110 Timing part 112 Combined data transmission part 200 Template writing apparatus 202 Combined data reception part 204 Time difference calculation part 206 Time acquisition part 208 Time acquisition part 210 Time difference determination unit 212 Signature verification unit 214 Template writing unit 300 Recording medium

Claims (11)

A template information acquisition unit for acquiring an encrypted template for biometric authentication and time information indicating a generation time of the template;
A writing time acquisition unit that acquires a writing time at which the template acquired by the template information acquisition unit is written to the memory;
A time difference calculation unit that calculates a time difference between the generation time indicated by the time information acquired by the template information acquisition unit and the writing time acquired by the writing time acquisition unit;
A template writing unit that writes the template acquired by the template information acquisition unit to the memory when the time difference calculated by the time difference calculation unit is smaller than a predetermined value;
A template writing apparatus comprising: The template information acquisition unit acquires an electronic signature generated based on the template and the time information in addition to the template and the time information,
The template writing device further includes a signature verification unit that verifies the electronic signature using the template and time information acquired by the template information acquisition unit,
The template according to claim 1, wherein the template writing unit writes the template into the memory when the time difference calculated by the time difference calculating unit is smaller than a predetermined value and the verification by the signature verification unit is successful. Writing device. The template writing apparatus further includes a communication unit capable of communicating with a secure device equipped with a tamper-resistant memory,
The template writing apparatus according to claim 2, wherein the template writing unit writes the template into a memory of the secure device through the communication unit.   The template writing device according to claim 2, wherein the template writing unit writes the template into a memory mounted on the device. A template generation unit for generating an encrypted biometric authentication template;
A time acquisition unit for acquiring a time when the template is generated by the template generation unit;
Provide the template and time information to a template writing device that can acquire the template generated by the template generation unit and write it to the memory for a predetermined period based on the time acquired by the time acquisition unit. A template information providing unit,
A biometric authentication device.   The biometric authentication device according to claim 5, further comprising a signature generation unit that generates an electronic signature based on the template generated by the template generation unit and the time information acquired by the time acquisition unit.   The template generation unit irradiates a predetermined biological part with near infrared light, and receives a scattered light scattered inside the biological part, and performs predetermined image processing and encryption on a vein pattern image obtained. The biometric authentication apparatus according to claim 6, wherein the biometric authentication template is generated by performing processing. A template information acquisition step of acquiring an encrypted biometric authentication template and time information indicating a generation time of the template;
A writing time acquisition step of acquiring a writing time at which the template acquired in the template information acquisition step is written into a memory;
A time difference calculating step of calculating a time difference between the generation time indicated by the time information acquired in the template information acquisition step and the writing time acquired in the writing time acquisition step;
A template writing step of writing the template acquired in the template information acquisition step into the memory when the time difference calculated in the time difference calculation step is smaller than a predetermined value;
Including template writing method. A template generation step for generating an encrypted biometric template;
A time acquisition step of acquiring the time when the template is generated in the template generation step;
Provide the template and time information to the template writing device that can acquire the template generated in the template generation step and write it to the memory for a predetermined period based on the time acquired in the time acquisition step. A template information providing step,
Including a template providing method. A template information acquisition function for acquiring an encrypted template for biometric authentication and time information indicating a generation time of the template;
A writing time acquisition function for acquiring a writing time at which a template acquired by the template information acquisition function is written to a memory;
A time difference calculation function for calculating a time difference between a generation time indicated by the time information acquired by the template information acquisition function and a writing time acquired by the writing time acquisition function;
A template writing function for writing the template acquired by the template information acquisition function to the memory when the time difference calculated by the time difference calculation function is smaller than a predetermined value;
A program to make a computer realize. A template generation function for generating an encrypted biometric template;
A time acquisition function for acquiring the time when the template is generated by the template generation function;
Providing the template and time information to the template writing device that can acquire the template generated by the template generation function and write it to the memory for a predetermined period based on the time acquired by the time acquisition function. A template information providing function,
A program to make a computer realize.

Images