JP2011204062A - Entrance/exit management system and entrance/exit management device - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide an entrance/exit management system capable of preventing entry or stay of an improper user.SOLUTION: The entrance/exit management system includes: a gate unit which permits and prohibits the user's passing through a gate; a card reader which acquires an identifier that identifies a user trying to pass through the gate; a storage unit for storing the identifier of the user whose entry is restricted; a sensor which senses the state of the user; an input/output unit which writes the acquired identifier in the storage means if abnormality is sensed by the sensor; and an authentication determination unit which controls the gate unit to restrict the user or to urge the user to exit by comparing the acquired identifier with the identifier stored in the storage unit.

Description

  The present invention relates to an entrance / exit management technology for controlling door locking / unlocking based on personal authentication.

Conventionally, in an entrance / exit management system for managing entry / exit of a user, personal authentication is performed based on the biometric information such as the card ID number and fingerprint of the user, and it is determined whether or not the user can enter or exit. Controls locking and unlocking doors such as locks and flapper gates.
According to Patent Document 1, in order to prevent unauthorized entry / exit of a non-regular person passing through a gate together with a regular passerby, that is, so-called “joint”, the entry / exit of a passerby is managed. In the management area, a mat sensor that detects pressure and outputs a signal, an authentication area in which only one passer can cut out a part of the mat sensor, an ID card reader, and an infrared sensor It is disclosed that the entrance / exit person stands in the authentication area and is authenticated by the ID card reader. Only when the reading information of the ID card by the ID card reader is legitimate and there is no person on the mat sensor at the time of reading the ID card, it is determined that the person is a legitimate passer and the passage of the management area is permitted. .

JP 2006-195881 A

  According to the technique disclosed in Patent Document 1, it is possible to prevent a fraud that unauthorized persons pass through the gate together, but it is not possible to prevent other unauthorized entry. For example, if the user has a high fever due to influenza or possesses metal such as a blade, there is a problem that such user entry cannot be prevented. is there.

  The present invention ensures that the user is allowed to enter, such as when the user has a high fever due to influenza, or when the user possesses a metal such as a knife. An object of the present invention is to provide an entrance / exit management system and an entrance / exit management device that can prevent such users from entering and staying.

  In order to achieve the above object, the present invention is an entrance / exit management system for managing entrance / exit of a user to / from an area, which permits and prohibits the passage of a user's gate, and passes the gate. An acquisition means for acquiring an identifier for identifying a user, a storage means for storing an identifier of a user whose entry is restricted, a sensor for detecting the state of the user, and an abnormality detected by the sensor If it is, the writing means for writing the acquired identifier to the storage means and the acquired identifier and the identifier stored in the storage means are compared to restrict entry or prompt the user to leave. As described above, the apparatus includes an authentication determination unit that controls the gate unit.

Here, when the acquired identifier and the identifier stored in the storage unit match, the authentication judgment unit prohibits the user from passing through the gate when the user enters, and the user exits. Sometimes, the gate means may be controlled to allow the user to pass through the gate.
Here, the entrance / exit management system further includes acquisition means for acquiring a release identifier for identifying a user whose entrance restriction is released, and the authentication determination means is further stored in the storage means. It may be determined whether the identifier and the acquired release identifier match, and the writing unit may further delete the identifier stored in the storage unit when it is determined that they match.

  The present invention also relates to an entrance / exit management device for managing entry / exit of users to / from an area, the storage means for storing an identifier of a user whose entry is restricted, and the state of the user. An input terminal to which the sensor to be detachably connected and an identifier for identifying the user who is going to pass through the gate when an abnormality is notified from the sensor via the input terminal are written to the storage means The user is allowed to pass through the gate to compare the identifier for identifying the user with the identifier stored in the storage means, and to restrict the entry of the user or encourage the user to leave. And an authentication determining means for controlling the gate means.

  According to the above configuration, until the user is allowed to enter or stay, such as when the user has a high fever due to influenza or possesses metal such as a knife. Thus, it is possible to reliably prevent such a user from entering or staying.

1 is a block diagram showing a configuration of an entire entrance / exit management system 10. FIG. It is a perspective view which shows the entrance hall of a building. An example of the data structure of the registration user database 104a is shown. An example of the data structure of the restriction | limiting user database 105a is shown. 2 is a block diagram showing a configuration of an integrated center device 200. FIG. It is a flowchart which shows operation | movement of the entrance / exit management subsystem 30a at the time of entrance. It is a flowchart which shows operation | movement of the entrance / exit management subsystem 30a at the time of leaving. 4 is a flowchart showing an operation when distributing restricted user information in the entire entrance / exit management system 10. It is a block diagram which shows the structure of the entrance / exit management subsystem 30a as a modification. It is a part of floor plan of the building to which the entrance / exit management subsystem 30a as a modification is applied. It is a flowchart which shows operation | movement of the entrance / exit management subsystem 30a as a modification. It is a flowchart which shows the operation | movement at the time of deletion of the restriction | limiting user information in the entrance / exit management overall system 10 as a modification. An example of another data structure of a restriction user database is shown.

1. Embodiment The entire entrance / exit management system 10 as one embodiment according to the present invention will be described.
1.1 Overall system for entering / leaving management 10
As shown in FIG. 1, the entire entrance / exit management system 10 includes an integrated center device 200 and entrance / exit management subsystems 30a, 30b, 30c, 30d, 30e,. The integrated center device 200 and the entry / exit management subsystems 30a, 30b, 30c, 30d, 30e,... Are connected to each other via the network 20. In addition, entrance / exit may be called entrance / exit.

  The entire entrance / exit management system 10 is installed in one building, and this building is divided into a public area and a restricted area (in other words, a non-public area). There is no limit to entry to the public area, and anyone can enter. Admission to the restricted area is limited to specific users permitted to enter. An example of an open area is a building entrance hall. Sections other than the entrance hall of this building are restricted areas. The entire section that is a restricted area other than the entrance hall is called a large restricted area. The large restriction area is divided into a plurality of medium restriction areas. Each middle restriction area is further divided into a plurality of small restriction areas. The user is further limited for admission to each medium restriction area and each small restriction area. As described above, the restriction areas are hierarchically configured.

A gate is provided between the open area and the large restricted area. Further, in the large restriction area, gates are provided between the medium restriction area and the medium restriction area, between the medium restriction area and the small restriction area, and between the small restriction area and the small restriction area, respectively. ing. Each gate is provided with an entrance / exit management subsystem.
As shown in FIG. 2, a plurality of flapper gates are provided between the public area as the entrance hall and the large restricted area, and an entrance / exit management subsystem 30a,... Is installed in each flapper gate. ing. Also, in the large restriction area, entrance / exit management is provided at each gate between the middle restriction area and the middle restriction area, between the middle restriction area and the small restriction area, and between the small restriction area and the small restriction area. Subsystems 30b,... Are installed.

The entrance / exit management subsystem 30a controls the flapper gate installed at the gate, and the entrance / exit management subsystem 30b differs in controlling the electric lock installed at the gate door. The other points are the same.
Note that admission (sometimes referred to as entry) refers to moving from a public area to a large restricted area, moving from a large restricted area to a medium restricted area, and moving from a medium restricted area to another medium restricted area. That is, moving from the medium restriction area to the small restriction area, or moving from the small restriction area to the small restriction area. Also, leaving (sometimes referred to as leaving) refers to moving from a large restricted area to a public area, moving from a medium restricted area to a large restricted area, or moving from a small restricted area to a medium restricted area. Say that.

  FIG. 2 shows a perspective view of the interior of the entrance hall of the building. As shown in this figure, a plurality of flapper gates are provided between the entrance hall and the large restricted area. A user who visits a building and wants to move from the entrance hall to the large restricted area brings his own card close to the card reader of any flapper gate. The card reader reads a user ID that is an identifier for identifying the user from the card. The thermography provided in the flapper gate detects the user's body temperature. The entrance / exit management subsystem authenticates the user by using the read user ID and the detected body temperature information, and determines whether or not to allow entry into the large restricted area. Close the flapper gate if you decide to allow admission. If it is determined that admission is not permitted, a warning is displayed to the user and the flapper gate door is opened.

When the flapper gate door is closed, the user can move into the large restricted area. When the flapper gate door opens, the user is prohibited from moving into the large restricted area.
A user who wants to move from the large restricted area to the entrance hall brings his own card close to the card reader of any flapper gate. As described above, the card reader reads a user ID that is an identifier for identifying the user from the card. The thermography provided in the flapper gate detects the user's body temperature. The entrance / exit management subsystem uses the read user ID and the detected body temperature information to authenticate the user and determine whether or not to allow entry to the entrance hall. If you decide that you are allowed to leave, close the flapper gate. In this way, you are prompted to leave. If it is determined that the exit cannot be permitted, a warning for the user is displayed and the flapper gate door is opened.

When the flapper gate door is closed, the user can move to the entrance hall. When the flapper gate door opens, the user is prohibited from moving to the entrance hall.
1.2 Entrance / exit management subsystem 30a
Each of the entrance / exit management subsystems 30a, 30b, 30c, 30d, 30e,... Has a similar configuration. Here, the entrance / exit management subsystem 30a provided at the gate between the entrance hall and the large restricted area will be described.

  As shown in FIG. 1, the entrance / exit management subsystem 30a includes a gate unit 100a, a gate part 112a, thermography 106a, 114a, and card readers 108a, 113a. The gate unit 100a includes an authentication determination unit 101a, a communication unit 102a, and a storage unit 103a. The gate unit 112a includes a control unit 107a and a flapper gate 109a.

A user who wants to pass the gate from the entrance hall to the large restricted area brings his / her card 300 close to the card reader 108a. In addition, a user who wants to pass the gate from the large restricted area to the entrance hall brings his / her card 300 close to the card reader 113a.
(1) Card 300
The card 300 performs non-contact communication with the card reader 108a or 113a for exchanging data using radio waves as a medium. The card 300 is a CPU that controls the operation of the card, a ROM that stores a program, a non-volatile memory that stores a user ID for identifying a user, a battery, and data input / output with a card reader. An input / output control circuit for controlling the transmission / reception, a transmission / reception unit for transmitting / receiving data, an antenna, and the like.

The card 300 receives the instruction from the card reader 108a or 113a, reads the user ID stored therein according to the received instruction, and outputs the read user ID to the card reader 108a.
(2) Gate portion 122a
As described above, the gate portion 122a is composed of the flapper gate 109a and the control portion 107a.

  As shown in the external view in FIG. 2, the flapper gate 109a is provided with two doors 109aa and 109ab that are openable and closable to permit or prohibit the passage of the user. Under the control of the control unit 107a, the two doors 109aa and 109ab are opened and closed. The opening of the two doors 109aa and 109ab restricts the passage of the user. Further, the two doors 109aa and 109ab are closed to allow the user to pass therethrough.

The control unit 107a receives an instruction to open / close the door from the authentication determination unit 101a, and controls the opening / closing of the two doors 109aa and 109ab of the flapper gate 109a according to the instruction.
(3) Card readers 108a and 113a
The card reader 108a exchanges data with the card 300 using radio waves as a medium. The card reader 108a includes an input / output control circuit that controls input / output of data to / from the card 300, a transmission / reception unit that transmits / receives data, an antenna, and the like.

When the card reader 108a detects the proximity of the card 300, the card reader 108a outputs an instruction indicating that the user ID is read out to the card 300. Next, the user ID is received from the card 300, and the received user ID is output to the authentication determination unit 101a.
The card reader 113a has the same configuration as the card reader 108a.
The card reader 108a is provided on the entrance hall side at the gate between the entrance hall and the large restricted area. The card reader 113a is provided on the large restriction area side at the gate between the entrance hall and the large restriction area.

(4) Thermography 106a and 114a
The thermography 106a is connected to the input terminal 111a of the authentication determination unit 101a via the signal line 110a. The thermography 114a is connected to the input terminal 115a of the authentication determination unit 101a via the signal line 116a.
Each of the thermography 106a and the thermography 114a detects infrared radiation energy emitted from the user, converts the detected infrared radiation energy into temperature, and generates a temperature distribution on the surface of the user's body. Next, the user's body temperature is calculated from the generated temperature distribution. In this case, in particular, the temperature distribution in the portion corresponding to the user's face is used. This is because, since the face is usually exposed, the temperature distribution of the portion corresponding to the face is considered to indicate the body temperature of the user relatively faithfully. Next, it is determined whether the calculated body temperature is equal to or higher than a predetermined value. Here, the predetermined value is 38 degrees as an example. If the calculated body temperature is equal to or higher than a predetermined value, for example, 38 degrees or higher, an abnormal body temperature signal indicating that the body temperature is equal to or higher than the predetermined value is output to the authentication determination unit 101a via the signal line 110a or 116a. If the calculated body temperature is less than the predetermined value, no abnormal body temperature signal is output.

The thermography 106a is provided on the entrance hall side at the gate between the entrance hall and the large restricted area. The thermography 114a is provided on the large regulation area side at the gate between the entrance hall and the large regulation area.
(5) Storage unit 103a
As an example, the storage unit 103a includes a non-volatile memory, and includes a registered user database 104a and a restricted user database 105a.

The registered user database 104a includes an area for storing a plurality of registered user information, as shown in FIG. Each registered user information includes a user ID and one or more permitted area IDs. The user ID is identification information for identifying the user. The permitted area ID is identification information for identifying an area where the user is permitted to enter.
When the permitted area ID indicates a large restricted area, entry into the large restricted area is permitted. In other words, entry into any medium or small restriction area within the large restriction area is permitted. When the permitted area ID indicates a middle restricted area, entry into the middle restricted area is permitted. In other words, admission to any small restricted area inside the medium restricted area is permitted. When the permission area ID indicates a small restriction area, entry into the small restriction area is permitted. When there are a plurality of permission area IDs corresponding to the user ID, entry into a plurality of areas respectively identified by the plurality of permission area IDs is permitted.

3 and 4, “ALL” as an example of an area ID indicates a large restriction area, “A” and “B” indicate medium restriction areas, and “A-01” and “A-02”. "B-01" indicates a small restriction area.
As shown in FIG. 4, the restricted user database 105a includes an area for storing a plurality of restricted user information. Each restricted user information includes a user ID and one or more restricted area IDs. The user ID is identification information for identifying the user. The restricted area ID is identification information for identifying an area where entry by the user is prohibited.

When the restricted area ID indicates a large restricted area, entry into the large restricted area is prohibited. When there are a plurality of restricted area IDs corresponding to the user IDs, entry into a plurality of areas respectively identified by the plurality of restricted area IDs is prohibited.
Further, when the restricted area ID indicates a middle restricted area, entry into the middle restricted area is prohibited. When the restricted area ID indicates a small restriction area, entry into the small restriction area is prohibited. However, if the user has a high fever, the user may be infected with influenza, and to prevent the spread of influenza in the building, the user is prohibited from entering. There are few cases where entry to only one medium restricted area or entry to only one small restricted area is set.

When registrations in the registered user database 104a and the restricted user database 105a overlap, the restricted user information registered in the restricted user database 105a is registered user registered in the registered user database 104a. Applied in preference to information.
For example, when the user ID “1000” and the permitted area ID “A” are registered in the registered user database 104a, and the user ID “1000” and the restricted area ID “ALL” are registered in the restricted user database 105a. The user identified by the user ID “1000” is prohibited from entering the large restricted area and is not permitted to enter the area identified by the permitted area ID “A”.

(6) Authentication judgment unit 101a
The authentication determination unit 101a determines whether or not the user to be authenticated is permitted to enter or leave the predetermined area as described below.
The authentication judgment unit 101a receives a user ID for identifying a user from the card readers 108a and 113a.

  The authentication judgment unit 101a has input terminals 111a and 115a for detachably connecting the signal lines 110a and 116a from the thermographs 106a and 114a. The authentication determination unit 101a receives abnormal body temperature signals from the thermography 106a and 114a via the signal line 110a and the input terminal 111a, and via the signal line 116a and the input terminal 115a, respectively. For example, the abnormal body temperature signal is received within a predetermined period from 100 milliseconds before the reception of the user ID to 100 milliseconds after the reception. That is, the predetermined period is 200 milliseconds. If an abnormal body temperature signal is received within this predetermined period, it is regarded as a signal related to the user's body temperature. If an abnormal body temperature signal is received outside this predetermined period, the received abnormal body temperature signal is discarded, assuming that it is not a signal related to the user's body temperature.

The authentication judgment unit 101a has an input / output unit (not shown) that reads data from the storage unit 103a or writes data to the storage unit 103a. The authentication determination unit 101a is specifically a computer system that includes a microprocessor, a ROM, a RAM, and the like. A computer program is stored in the ROM. The authentication determination unit 101a achieves its function by the microprocessor operating according to the computer program.
(Operation when moving from the entrance hall to a large restricted area)
(A) Upon receipt of the user ID, the authentication judgment unit 101a searches the registered user database 104a for registered user information including the same user ID as the received user ID, and the received user ID and It is determined whether or not registered user information including the same user ID exists in the registered user database 104a. That is, the registered user ID is compared with the received user ID to determine whether there is a matching user ID.

  (B) When the registered user information including the same user ID as the received user ID does not exist in the registered user database 104a, the authentication judgment unit 101a opens the door of the flapper gate 109a to the control unit 107a. Instructs to open 109aa and 109ab. That is, it instructs to lock (lock) the flapper gate 109a. In this case, the user is prohibited from passing through the gate.

  (C) When the registered user information including the same user ID as the received user ID exists in the registered user database 104a, the authentication judgment unit 101a receives the received user ID in the restricted user database 105a. The restricted user information including the same user ID is searched, and it is determined whether or not the restricted user information including the same user ID as the received user ID exists in the restricted user database 105a. That is, the registered user ID is compared with the received user ID to determine whether there is a matching user ID.

  (D) Registered user information including the same user ID as the received user ID exists in the registered user database 104a, and restricted user information including the same user ID as the received user ID is used for limited use. If it exists in the user database 105a, the authentication judgment unit 101a instructs the control unit 107a to open the doors 109aa and 109ab of the flapper gate 109a. That is, it instructs to lock (lock) the flapper gate 109a. In this case, the user is prohibited from passing through the gate.

  (E) The registered user information including the same user ID as the received user ID exists in the registered user database 104a, and the restricted user information including the same user ID as the received user ID is restricted use. When the authentication determination unit 101a receives an abnormal body temperature signal from the thermography 106a via the input terminal when the authentication determination unit 101a does not exist in the person database 105a, the authentication determination unit 101a generates a restricted area ID indicating the large restricted area of the building Then, the restricted user information composed of the received user ID and the generated restricted area ID is newly written into the restricted user database 105a by the input / output unit. In addition, the controller 107a is instructed to open the doors 109aa and 109ab of the flapper gate 109a. That is, it instructs to lock (lock) the flapper gate 109a. In this case, the user is prohibited from passing through the gate.

(F) Registered user information including the same user ID as the received user ID exists in the registered user database 104a, and restricted user information including the same user ID as the received user ID is used for limited use. When the authentication determination unit 101a does not receive an abnormal body temperature signal from the thermography 106a via the input terminal, the doors 109aa and 109ab of the flapper gate 109a are closed with respect to the control unit 107a. To instruct. That is, it instructs to unlock (unlock) the flapper gate 109a. In this case, the user is allowed to pass through the gate.
(Operation when moving from a large restricted area to the entrance hall)
(A) Upon receipt of the user ID, the authentication judgment unit 101a searches the registered user database 104a for registered user information including the same user ID as the received user ID, and the received user ID and It is determined whether or not registered user information including the same user ID exists in the registered user database 104a. That is, the registered user ID is compared with the received user ID to determine whether there is a matching user ID.

  (B) When the registered user information including the same user ID as the received user ID does not exist in the registered user database 104a, the authentication judgment unit 101a opens the door of the flapper gate 109a to the control unit 107a. To open. That is, it instructs to lock (lock) the flapper gate 109a. In this case, the passage of the user is prohibited. It should be noted that there is usually no case where the registered user information including the same user ID as the received user ID does not exist in the registered user database 104a. This is because it is confirmed that registered user information including the same user ID as the received user ID exists in the registered user database 104a at the time of admission. Therefore, this case may occur when an abnormality such as a failure of the registered user database 104a occurs.

  (C) When the registered user information including the same user ID as the received user ID exists in the registered user database 104a, the authentication determining unit 101b receives the received user ID in the restricted user database 105a. The restricted user information including the same user ID is searched, and it is determined whether or not the restricted user information including the same user ID as the received user ID exists in the restricted user database 105a. That is, the registered user ID is compared with the received user ID to determine whether there is a matching user ID.

  (C-1) Registered user information including the same user ID as the received user ID exists in the registered user database 104a, and restricted user information including the same user ID as the received user ID is present. If it exists in the restricted user database 105a, the authentication judgment unit 101a instructs the control unit 107a to close the door of the flapper gate 109a. That is, it instructs to unlock (unlock) the flapper gate 109a. In this case, the user is allowed to pass through the gate. In this case, the reason for instructing the user to close the door of the flapper gate 109a is to prompt the user to leave. Thus, the authentication judgment unit 101a controls the gate unit 112a so as to prompt the user to leave.

  (C-2) Registered user information including the same user ID as the received user ID exists in the registered user database 104a, and restricted user information including the same user ID as the received user ID is present. When the authentication determining unit 101a does not exist in the restricted user database 105a and the authentication determining unit 101a receives an abnormal body temperature signal from the thermography 114b via the input terminal 115a, the authentication determining unit 101a displays the restricted area ID indicating the large restricted area of the building. The restricted user information composed of the received user ID and the generated restricted area ID is newly written into the restricted user database 105a by the input / output unit. In addition, the controller 107a is instructed to close the door of the flapper gate 109a. That is, it instructs to unlock (unlock) the flapper gate 109a. In this case, the user is allowed to pass through the gate. In this case, for example, the user has been infected with influenza before entering the area, and had no fever before entering the area, but is considered to have fever for the first time in the entered area. Here, the reason for instructing the user to close the door of the flapper gate 109a is to prompt the user to leave. Thus, the authentication judgment unit 101a controls the gate unit 112a so as to prompt the user to leave. Since the authentication judgment unit 101a newly writes the restricted user information to the restricted user database 105a by the input / output unit, the next time the user tries to enter the area, the authentication judgment unit 101a Admission can be prohibited.

  (C-3) Registered user information including the same user ID as the received user ID exists in the registered user database 104a, and restricted user information including the same user ID as the received user ID is present. If the authentication determination unit 101a does not exist in the restricted user database 105a and does not receive an abnormal body temperature signal from the thermography 114a via the input terminal 115b, the control unit 107a is closed with the door of the flapper gate 109a. To instruct. That is, it instructs to unlock (unlock) the flapper gate 109a. In this case, the user is allowed to pass through the gate.

(7) Communication unit 102a
The communication unit 102a is connected to the network 20, and transmits and receives data between the integrated center device 200 and the authentication determination unit 101a under the control of the authentication determination unit 101a.
1.3 Integrated Center Device 200
As shown in FIG. 5, the integrated center device 200 includes a control unit 201, a communication unit 202, a storage unit 203, an input unit 204, and a display unit 205.

  Specifically, the integrated center device 200 is a computer system including a microprocessor, ROM, RAM, a hard disk unit, a display unit, a keyboard, a mouse, and the like. A computer program is stored in the RAM or the hard disk unit. The integrated center device 200 achieves its functions by the microprocessor operating according to the computer program.

(1) Storage unit 203
The storage unit 203 includes a hard disk unit and the like.
The storage unit 203 has a registered user database 206 and a restricted user database 207. The registered user database 206 and the restricted user database 207 have the same data structures as the registered user database 104a and the restricted user database 105a, respectively, included in the storage unit 103a of the gate unit 100a.

(2) Control unit 201
The control unit 201 receives restricted user information from the authentication determination unit 101a of the gate unit 100a via the communication unit 102a, the network 20, and the communication unit 202. When the restricted user information is received, the received restricted user information is newly written in the restricted user database 207 of the storage unit 203. Next, the control unit 201 transmits the received restricted user information to all other entrance / exit management subsystems via the communication unit 202 and the network 20.

The authentication judgment unit of all other entrance / exit management subsystems receives the restricted user information via the communication unit, and the received restricted user information is input to the restricted user database in the storage unit by the input / output unit. Write.
(3) Communication unit 202, input unit 204, and display unit 205
The communication unit 202 transmits and receives data between the control unit 201 and the authentication determination unit of the entrance / exit management subsystem.

The input unit 204 receives an input from an operator of the integrated center device 200 and outputs the received input to the control unit 201.
The display unit 205 displays information under the control of the control unit 201.
1.4 Operation of Entrance / Exit Management System 10 Regarding the operation of the entrance / exit management system 10, the operations on the entrance side and exit side in the entrance / exit management subsystem 30 a will be described first, and then the entrance / exit management system overall. The operation at the time of distribution of restricted user information in FIG.

(1) Operation of Entrance Side Entrance / Exit Management Subsystem 30a The operation of the entrance side entrance / exit management subsystem 30a will be described with reference to the flowchart shown in FIG.
The card reader 108a acquires the user ID from the user's card 300 to be authenticated (step S101).

  Next, the authentication judgment unit 101a searches the registered user database 104a for registered user information including the same user ID as the user ID acquired from the card 300 (step S102), and the usage acquired from the card 300. If the registered user information including the same user ID as the user ID does not exist in the registered user database 104a (step S103), the control unit 107a is instructed to open the door of the flapper gate 109a, and the control is performed. The part 107a controls the flapper gate 109a to open the door, and the flapper gate 109a opens the door (step S109). Thus, the process ends. At this time, the passage of the user's gate is prohibited.

  When registered user information including the same user ID as the user ID acquired from the card 300 exists in the registered user database 104a (step S103), the authentication judging unit 101a uses the card in the restricted user database 105a. The restricted user information including the same user ID as the user ID acquired from 300 is searched (step S104), and the limited user information including the same user ID as the user ID acquired from the card 300 is used for limited use. If it exists in the user database 105a (step S105), the control unit 107a is instructed to open the door of the flapper gate 109a, and the control unit 107a controls the flapper gate 109a to open the door. The flapper gate 109a opens the door (step S109). Thus, the process ends. At this time, the passage of the user's gate is prohibited.

  When the restricted user information including the same user ID as the user ID acquired from the card 300 does not exist in the restricted user database 105a (step S105), the authentication determination unit 101a transmits the thermography 106a via the input terminal 111a. When an abnormal body temperature signal is received as an external input from the card (step S106), the authentication determining unit 101a generates a restricted area ID indicating the large restricted area of the building, and the user ID obtained from the card 300 and the created restricted area. The restricted user information composed of the ID is newly written into the restricted user database 105a by the input / output unit (step S108), and the control unit 107a is instructed to open the door of the flapper gate 109a. The control unit 107a controls the flapper gate 109a to open the door. And, flapper gate 109a opens the door (step S109). Thus, the process ends. At this time, the passage of the user's gate is prohibited.

  When the restricted user information including the same user ID as the user ID acquired from the card 300 does not exist in the restricted user database 105a (step S105), the authentication determination unit 101a transmits the thermography 106a via the input terminal 111a. If the abnormal body temperature signal is not received as an external input (step S106), the controller 107a is instructed to close the door of the flapper gate 109a, and the controller 107a opens the door to the flapper gate 109a. The flapper gate 109a is controlled to close, and the door is closed (step S107). Thus, the process ends. At this time, the user is permitted to pass through the gate.

In this way, if the user has a high fever, the user may be infected with influenza, for example, and the restriction is lifted to prevent the spread of influenza in the building. Until that time, the user can be banned.
(2) Operation of Entrance / Exit Management Subsystem 30a on Exit Side The operation of the entrance / exit management subsystem 30a on the exit side will be described with reference to the flowchart shown in FIG.

The card reader 113a acquires a user ID from the user's card 300 to be authenticated (step S101a).
Next, the authentication judgment unit 101a searches the registered user database 104a for registered user information including the same user ID as the user ID acquired from the card 300 (step S102a), and the usage acquired from the card 300. If the registered user information including the same user ID as the user ID does not exist in the registered user database 104a (step S103a), the control unit 107a is instructed to open the door of the flapper gate 109a, and the control is performed. The unit 107a controls the flapper gate 109a to open the door, and the flapper gate 109a opens the door (step S109a). Thus, the process ends. At this time, the passage of the user's gate is prohibited.

  When registered user information including the same user ID as the user ID acquired from the card 300 exists in the registered user database 104a (step S103a), the authentication judgment unit 101a uses the card in the restricted user database 105a. The restricted user information including the same user ID as the user ID acquired from 300 is searched (step S104a), and the limited user information including the same user ID as the user ID acquired from the card 300 is used for restriction. If it exists in the user database 105a (step S105a), the control unit 107a is instructed to close the door of the flapper gate 109a, and the control unit 107a controls the flapper gate 109a to close the door. The flapper gate 109a closes the door (step S107a). Thus, the process ends. In such a case, the passage of the gate is permitted to encourage the user to leave.

  When the restricted user information including the same user ID as the user ID acquired from the card 300 does not exist in the restricted user database 105a (step S105a), the authentication determining unit 101a transmits the thermography 114b via the input terminal 115a. When receiving an abnormal body temperature signal as an external input (step S106a), the authentication determination unit 101b generates a restricted area ID indicating the large restricted area of the building, and the user ID obtained from the card 300 and the created restricted area The restricted user information composed of the ID is newly written into the restricted user database 105a by the input / output unit (step S108a), and instructs the control unit 107a to close the door of the flapper gate 109a. The control unit 107a closes the door with respect to the flapper gate 109a. Controlled to, flapper gate 109a closes the door (step S107a). Thus, the process ends. In such a case, the passage of the gate is permitted to encourage the user to leave.

  When the restricted user information including the same user ID as the user ID acquired from the card 300 does not exist in the restricted user database 105a (step S105a), the authentication determining unit 101a transmits the thermography 114b via the input terminal 115a. When the abnormal body temperature signal is not received as an external input (step S106a), the authentication determination unit 101a instructs the control unit 107a to close the door of the flapper gate 109a, and the control unit 107a 109a is controlled to close the door, and the flapper gate 109a closes the door (step S107a). Thus, the process ends. At this time, the user is permitted to pass through the gate.

In this way, if the user has a high fever, the user may be infected with influenza, for example, and the restriction is lifted to prevent the spread of influenza in the building. Until the user can leave.
(3) Operation at the time of distribution of restricted user information in the entire entry / exit management system 10 The operation at the time of distribution of restricted user information in the overall entry / exit management system 10 will be described using the flowchart shown in FIG.

  The authentication judgment unit 101a of the gate unit 100a generates a restricted area ID indicating the entire building, and the restricted user information including the user ID acquired from the card 300 and the generated restricted area ID is received by the input / output unit. When newly written in the restricted user database 105a (step S108 (or step S108a)), the authentication determining unit 101a communicates restricted user information including the user ID and restricted area ID acquired from the card 300. The data is transmitted to the integrated center device 200 via the unit 102a and the network 20 (step S111).

  The control unit 201 of the integrated center apparatus 200 receives the restricted user information from the authentication judgment unit 101a of the gate unit 100a via the communication unit 102a, the network 20, and the communication unit 202 (step S111). New person information is written in the restricted user database 207 of the storage unit 203 (step S112). Next, the control unit 201 transmits the restricted user information to all other entrance / exit management subsystems via the communication unit 202 and the network 20 (step S113).

  The authentication judgment unit 101b of the gate unit 100b of the entrance / exit management subsystem 30b receives the restricted user information from the integrated center device 200 via the network 20 and the communication unit 102b (step S113), and is input / output by the input / output unit. Then, the received restricted user information is written into the restricted user database 105b of the storage unit 103b (step S114).

Other entrance / exit management subsystems operate in the same manner as the entrance / exit management subsystem 30b.
Thereafter, in all entrance / exit management subsystems, the passage of each gate by the user is controlled according to the restricted user information recorded in the restricted user database.
2. Modification A modification of the entrance / exit management subsystem 30a of the above embodiment will be described.
(1) Configuration of Entrance / Exit Management Subsystem 30a as a Modified Example In an entrance / exit management subsystem 30a as a modified example, as shown in FIG. 9, a card reader 108c is further connected to the gate unit 100a. .

The card reader 108c is installed in the health care room 40 as shown in FIG. The health care room 40 exists in the public area of the building. There is no restriction on entering and leaving the health care room 40.
When a user who has a fever is diagnosed in the health care room 40 and is diagnosed as not infected with influenza, when the user's fever falls, the incubation period of the influenza virus has passed, and it has been diagnosed that it has recovered When it is diagnosed that it is not a contagious disease, the admission restriction should be lifted for this user.

The user brings his / her card 400 close to the card reader 108c according to the judgment of the diagnostician in the health care room 40.
The card reader 108c acquires a user ID from the card 400, and outputs the acquired user ID to the authentication determination unit 101a. This user ID is an identifier for releasing the entrance restriction.

  Upon receiving the user ID from the card reader 108c, the authentication judgment unit 101a searches the registered user database 104a for registered user information including the same user ID as the received user ID, and receives the received user ID. It is determined whether registered user information including the same user ID exists. That is, the registered user ID is compared with the received user ID.

  When the registered user information exists in the registered user database 104a, the authentication judgment unit 101a searches the restricted user database 105a for restricted user information including the same user ID as the received user ID. Then, it is determined whether or not there is restricted user information including the same user ID as the received user ID. When the restricted user information exists, the authentication judgment unit 101a deletes the restricted user information in the restricted user database 105a by the input / output unit.

In this way, if the user has a high fever, the user may be infected with influenza, for example, and the restriction is lifted to prevent the spread of influenza in the building. Until that time, the user is prohibited from entering, but after the user has recovered, admission is permitted.
(2) Operation of Entrance / Exit Management Subsystem 30a as a Modification An operation of the entrance / exit management subsystem 30a as a modification will be described with reference to the flowchart shown in FIG.

The card reader 108c acquires a user ID from the card 400 (step S201).
Next, the authentication determination unit 101a searches the registered user database 104a for registered user information including the same user ID as the user ID acquired from the card 400 (step S202), and the usage acquired from the card 300. It is determined whether registered user information including the same user ID as the user ID exists. If the registered user information does not exist (step S203), the process ends.

  When the registered user information exists (step S203), the authentication judgment unit 101a searches the restricted user database 105a for restricted user information including the same user ID as the user ID acquired from the card 400. (Step S204), it is determined whether or not there is restricted user information including the same user ID as the user ID acquired from the card 400. If there is no restricted user information (step S205), the process is terminated.

When the restricted user information exists (step S205), the authentication judgment unit 101a deletes the restricted user information in the restricted user database 105a (step S206).
(3) Operation at the time of deletion of restricted user information in the entire entry / exit management system 10 as a modification Example of the operation at the time of deletion of restricted user information in the entry / exit management system 10 as a modification is a flowchart shown in FIG. Will be described.

  When the authentication judgment unit 101a of the gate unit 100a deletes the restricted user information in the restricted user database 105a by the input / output unit (step S206), the authentication judgment unit 101a uses the user ID and restriction obtained from the card 300. The restricted user information composed of the area ID and an instruction to delete the restricted user information are transmitted to the integrated center device 200 via the communication unit 102a and the network 20 (step S211).

  The control unit 201 of the integrated center apparatus 200 receives the restricted user information and the deletion instruction from the authentication determination unit 101a of the gate unit 100a via the communication unit 102a, the network 20, and the communication unit 202 (step S211). The received restricted user information is deleted from the restricted user database 207 of the storage unit 203 (step S212). Next, the control unit 201 transmits the restricted user information and the deletion instruction to all other entrance / exit management subsystems via the communication unit 202 and the network 20 (step S213).

  The authentication determination unit 101b of the gate unit 100b of the entrance / exit management subsystem 30b receives the restricted user information and the deletion instruction from the integrated center device 200 via the network 20 and the communication unit 102b (step S213). The received restricted user information is deleted from the restricted user database 105b of the storage unit 103b (step S214).

Other entrance / exit management subsystems operate in the same manner as the entrance / exit management subsystem 30b.
Thereafter, in all entrance / exit management subsystems, the passage of each gate by the user is controlled according to the restricted user information recorded in the restricted user database.
3. Other Modifications Although the present invention has been described based on the above-described embodiment, it is needless to say that the present invention is not limited to the above-described embodiment. The following cases are also included in the present invention.

(1) Each entry / exit management subsystem may include a metal sensor instead of the thermography. The metal sensor is connected to the input terminal of the authentication determination unit via a signal line.
When a user wears a metallic knife such as a knife or knife, the metal sensor detects such a metal having a predetermined size or more, and if detected, detects a metal having a predetermined size or more. An abnormal signal indicating detection is output to the authentication determination unit via the signal line.

The metal sensor includes a detection coil that generates a high-frequency magnetic field. When a metal comes close to this magnetic field, an eddy current flows through the metal due to electromagnetic induction. As a result, the impedance of the detection coil changes. Thus, the proximity of the metal can be detected.
When receiving the abnormal signal, the authentication determining unit operates in the same manner as when receiving the abnormal body temperature signal described in the above embodiment.

Thus, by providing a metal sensor and detecting a metal such as a blade, it is possible to prevent a person wearing the blade from entering the building. In addition, the intrusion of this person can be prevented continuously.
Each entry / exit management subsystem may include both a thermography and a metal sensor. The authentication determination unit operates in the same manner as when the abnormal body temperature signal described in the above embodiment is received when the abnormal signal is received or when the abnormal body temperature signal is received.

(2) The thermography provided in each entry / exit management subsystem calculates the body temperature of the user, and outputs an abnormal body temperature signal when the calculated body temperature is equal to or higher than a predetermined value. However, it is not limited to this.
The thermography provided in each entry / exit management subsystem may measure the body temperature of the user and output the measured body temperature to the authentication determination unit. The authentication determination unit receives the user's body temperature from the thermography, determines whether the received body temperature is equal to or higher than a predetermined value, and generates an abnormal body temperature signal when determining that the received temperature is equal to or higher than the predetermined value.

  Moreover, the thermography with which each entrance / exit management subsystem is provided may measure a user's body temperature whenever a user passes a gate, and may output the measured body temperature to an authentication judgment part. The authentication determination unit receives the body temperature of the user from the thermography, and writes the received body temperature information in the storage unit in association with the user ID. The storage unit stores a plurality of body temperature information in association with the user ID. The plurality of body temperature information stored in the storage unit is measured in the past. The authentication determination unit calculates an average value from a plurality of body temperature information stored corresponding to the user ID written in the storage unit, compares the calculated average value with the body temperature received this time, for example, When the body temperature received this time is higher than the average value by 2 degrees or more, an abnormal body temperature signal is generated.

(3) Each entrance / exit management subsystem may include a biological information reader that reads biological information instead of the card reader. For example, the biometric information reader reads a user's fingerprint, reads an iris, reads the shape of a finger vein, or reads the shape of a hand vein, and uses these biometric information to identify an individual. Also good.
(4) The restricted user database included in the storage unit of each entry / exit management subsystem may have the data structure shown in FIG.

The restricted user database 105d illustrated in FIG. 13 includes an area for storing a plurality of restricted user information, and each restricted user information includes a user ID, a restricted area ID, a restriction start date and time, and a restriction release date and time. .
The authentication judgment unit 101a of the entrance / exit management subsystem 30a has registered user information including the same user ID as the received user ID in the registered user database 104a, and the same user as the received user ID. Restricted user information including ID does not exist in the restricted user database 105a, and when the authentication determination unit 101a receives an abnormal body temperature signal from the thermography 106a via the input terminal, a restricted area indicating a large restricted area of the building ID is generated, and today's date and time is set as the restriction start date and time. After a predetermined period from today, for example, the date and time after two weeks is set as the restriction release date and time, and is composed of the user ID, restricted area ID, restriction start date and time, and restriction release date and time. The restricted user information may be newly written into the restricted user database 105a by the input / output unit. Here, the above two weeks are, for example, a general period from infection with an influenza virus until recovery.

Next, when the user tries to pass through the gate and the date and time is within the range from the restriction start date and time to the restriction release date and time, the authentication judgment unit 101a prohibits the user from passing through the gate. . If the date and time is later than the restriction release date and time, the user is allowed to pass through the gate.
Here, a date and time indicating infinity may be set as the restriction release date and time. In this case, the entry prohibition of the user is not permanently removed.
(5) The exit side of each gate may be provided with neither a thermography nor a metal sensor. For example, in the entrance / exit management subsystem installed at the gate between the public area and the large restricted area, the large restricted area side may not include either the thermography or the metal sensor. In other words, body temperature and metal may not be detected when the gate passes from the large restriction area to the public area.

  Further, only the entrance / exit management subsystem installed at the gate between the open area and the large restricted area may include a thermography, a metal sensor, or a thermography and a metal sensor. In other words, the gate between the large restriction area and the medium restriction area, the gate between the medium restriction area and the medium restriction area, the gate between the medium restriction area and the small restriction area, and between the small restriction area and the small restriction area. The entrance / exit management subsystem installed at the gate may not include either the thermography or the metal sensor.

(6) The entire entry / exit management system may include only the following one entry / exit management subsystem.
In other words, the entrance / exit management subsystem is composed of one gate unit, one thermography, one gate unit, and one card reader. The gate unit is composed of an authentication judgment unit and a storage unit, and the gate unit is controlled. It may be composed of a part and a flapper gate.

This input / output management subsystem is provided at the gate between the public area and the restricted area. This gate only regulates entry from the public area to the restricted area. There is no restriction on leaving the restricted area to the public area. The thermography and the card reader are provided on the open area side of the gate.
Such an entire entrance / exit management system is suitable as a small entrance / exit management system.

(7) In the above embodiment, the entire entrance / exit management system 10 is installed in one building, but the present invention is not limited to this. The entire entrance / exit management system 10 may be installed in a plurality of buildings. The plurality of buildings may be close to each other or remote from each other.
Further, the above entrance / exit regulation is not limited to the inside of a building, that is, a room partitioned by a ceiling or a wall. For example, a theme park or the like may be divided into several areas as a whole, and entry / exit to these areas may be regulated in the same manner as in the above embodiment.

  (8) The present invention may be a method used by the system and apparatus described above. Further, the present invention may be a computer program that realizes these methods by a computer, or may be a digital signal composed of the computer program. Here, the computer program is configured by combining a plurality of instruction codes indicating instructions for the computer in order to achieve a predetermined function.

  The present invention also provides a computer-readable recording medium such as a flexible disk, hard disk, CD-ROM, MO, DVD, DVD-ROM, DVD-RAM, BD (Blu-ray Disc). ), Recorded in a semiconductor memory or the like. Further, the present invention may be the computer program or the digital signal recorded on these recording media.

Further, the present invention may transmit the computer program or the digital signal via an electric communication line, a wireless or wired communication line, a network represented by the Internet, a data broadcast, or the like.
The present invention may be a computer system including a microprocessor and a memory, wherein the memory stores the computer program, and the microprocessor operates according to the computer program.

In addition, the program or the digital signal is recorded on the recording medium and transferred, or the program or the digital signal is transferred via the network or the like, and is executed by another independent computer system. It is good.
(9) The above embodiment and the above modifications may be combined.

DESCRIPTION OF SYMBOLS 10 Entrance / exit management whole system 20 Network 30a, 30b, 30c, 30d, 30e Entrance / exit management subsystem 100a, 100b Gate unit 101a, 101b Authentication judgment part 102a, 102b Communication part 103a, 103b Storage part 104a, 104b Registered user database 105a, 105b Restricted user database 106a, 106b, 114a, 114b Thermography 107a, 107b Control unit 108a, 108b, 108c, 113a, 113b, Card reader 109a Flapper gate 109b Electric lock 200 Integrated center device 201 Control unit 202 Communication unit 203 Storage Section 204 Input section 205 Display section 206 Registered user database 207 Restricted user database 300, 400 Card

Claims (4)

An entrance / exit management system for managing entry / exit of users to / from an area,
Gate means for allowing and prohibiting the passage of the user's gate;
Obtaining means for obtaining an identifier for identifying a user who attempts to pass through the gate;
Storage means for storing identifiers of users whose entry is restricted;
A sensor for sensing the state of the user;
A writing means for writing the obtained identifier to the storage means when an abnormality is detected by the sensor;
Authentication judgment means for controlling the gate means so as to compare the acquired identifier and the identifier stored in the storage means to restrict entry or prompt exit of the user. Entrance / exit management system. When the acquired identifier coincides with the identifier stored in the storage unit, the authentication judgment unit prohibits the user from passing through the gate when entering, and uses the user when the user leaves. The entrance / exit management system according to claim 1, wherein the gate means is controlled to allow a person to pass through the gate. The entrance / exit management system further includes:
An acquisition means for acquiring a release identifier for identifying a user whose entrance restriction is released;
The authentication determination means further determines whether or not the identifier stored in the storage means matches the acquired release identifier,
The entrance / exit management system according to claim 1, wherein the writing unit further deletes the identifier stored in the storage unit when it is determined that they match. An entrance / exit management device for managing entry / exit of users to / from an area,
Storage means for storing identifiers of users whose entry is restricted;
An input terminal to which a sensor for detecting the state of the user is detachably connected;
A writing means for writing an identifier for identifying a user who intends to pass through a gate to the storage means when an abnormality is notified from the sensor via the input terminal;
Gate means for permitting and prohibiting the passage of the user's gate so as to limit an entry of the user or to prompt an exit by comparing an identifier for identifying the user with an identifier stored in the storage means Authentication judgment means for controlling
An entrance / exit management device comprising:

Images