JP2012103792A - Authentication device and authentication system - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide an authentication device and an authentication system which can authenticate only users in which a fiduciary relation is established.SOLUTION: A biometric information authentication device 100 comprises biometric information storage means 140, user confirmation means 130, biometric information registration means 150, and authentication means 170. The biometric information storage means 140 stores biometric information extracted from a user in association with user information for identifying the user. The user confirmation means 130 confirms the user by receiving determination whether the biometric information extracted from a user matches the user. Then, when the user is confirmed by the user confirmation means 130, the biometric information registration means 150 stores the biometric information extracted from the user in association with the corresponding user information in the biometric information storage means 140. Further, the authentication means 170 authenticates the user registered by the biometric information registration means 150.

Description

  The present invention relates to an authentication device and an authentication system. In particular, it is a biometric authentication device and a biometric authentication system that are optimal for secure transactions within a specific group, information protection, and the like.

  Currently, authentication techniques using various biological information such as fingerprints, voiceprints, irises and faces have been developed as authentication techniques to replace ID cards. Currently, it is widely used because it is difficult to spoof an ID card due to theft. Furthermore, the authentication technique using the biometric information can be applied to various fields. For example, the following patent document discloses a configuration in which the biometric authentication technology is applied to a biometric authentication device.

  Furthermore, the conventional authentication technique using biometric information can be applied to an authentication technique for a portal site, for example. Here, a portal site is a huge website that serves as the entrance to the Internet. Information services such as news and stock prices, web mail services that can be used from browsers, electronic bulletin boards, with search engines and links as the core. This is a site that provides all the functions that users need on the Internet, such as chat, to increase the number of users and earn income through advertising and electronic commerce brokerage services. By applying the authentication technology to the portal site, it is possible to configure a portal site that can be used only by a specific user.

JP 2010-140499 A

In general, a service that can be used on a portal site such as a bulletin board is used anonymously, so that false information is distributed and information that is annoying to the user is often flooded. In order to solve this problem, it is possible to eliminate the anonymity of the users, select the users, and adopt a configuration in which the users are made public within the portal site.
However, it is expected that the number of users who use the portal site will decrease if all of the user's privates are made public. Furthermore, if there is anonymity in the user selection method, the publicity in the portal site becomes meaningless.

  For example, there is a method that guarantees the publicity in a portal site by invitationality (a method in which a portal site user opens a new portal site by inviting a user who wants to use the portal site). Are known. The above invitation method often invites an anonymous user as a new user, or invites a user who falsifies a fake name or other information as a new user. Therefore, it becomes impossible to ensure the openness in the portal site.

  The present invention has been made under such a background, and an object of the present invention is to provide an authentication technique for providing a secure service in a specific member service such as a portal site that ensures openness in the member service. To do.

  The present invention for achieving the above object is premised on a biometric information authentication apparatus that performs user authentication using biometric information extracted from a user. The biometric information authentication apparatus of the present invention includes biometric information storage means, user confirmation means, biometric information registration means, and authentication means. The biometric information storage means stores biometric information extracted from the user in association with user information for specifying the user. The user confirmation unit receives a determination as to whether or not the biometric information extracted from the user matches the user, and confirms the user. Then, when the user is confirmed by the user confirmation unit, the biometric information registration unit associates the biometric information extracted from the user with the user information of the corresponding user and stores it in the biometric information storage unit. Further, the authentication means authenticates the user registered by the biometric information registration means.

  With the above-described configuration, the biometric information extracted from the user receives a determination as to whether or not the biometric information matches the user, and associates the biometric information of the confirmed user with the corresponding user information of the biometric information. It memorize | stores in a memory | storage means. The authentication unit authenticates the user registered by the biometric information registration unit. It is possible to configure an authentication device in which only the confirmed user is authenticated by determining whether or not the user's biometric information matches.

In the above configuration, the authentication unit authenticates the administrator based on the biometric information extracted from the administrator who authenticates the target user, and the user confirmation unit receives the determination of the administrator authenticated by the authentication unit. It is desirable to adopt a configuration. When the administrator determines user confirmation, it is possible to ensure the authenticity of authentication.
In the above configuration, the biometric information search unit searches for biometric information that matches the biometric information of the user to be authenticated from the biometric information stored in the biometric information storage unit. It is desirable to adopt a configuration in which the authentication means authenticates the user when the biometric information searched by the biometric information search means matches the biometric information of the user to be authenticated and the user information of the user matches. . If it is the said structure, it will become possible to authenticate only the user with which biometric information corresponds, and the user information matches among the users searched by the biometric information search means.

  Further, when the target user performs a deposit / withdrawal operation, when the user confirmation unit receives a determination that the biometric information extracted from the target user matches the user, the authentication unit It is desirable to adopt a configuration for authentication. When depositing / withdrawing, it is possible to configure a safe deposit / withdrawal procedure by determining whether or not the biometric information extracted from the target user matches the user.

The biological information may be in any form as long as it can identify an individual and can be extracted from the person (identification information). It is desirable that the information is a combination of one or more of face information, fingerprint information, palm shape information, retina information, iris information, blood vessel information, audio information, and ear shape information.
In the above configuration, the biometric information is face information, and the biometric information storage unit stores the name information of the user who extracted the biometric information in association with the biometric information. Then, the biometric information search means searches for name information associated with the biometric information, and displays the face corresponding to the biometric information searched by the biometric information search means for the user to be authenticated based on the name information. A configuration that emits sound can be employed.

  Further, the biometric information storage means stores voice information that the user pronounces a keyword designated by each user. And the structure provided with the audio | voice analysis means which compares the audio | voice information with respect to the keyword which the user pronounced, and the audio | voice information memorize | stored in the biometric information storage means, and judges whether the user himself / herself pronounced the keyword is employ | adopted. When the voice analysis unit determines that the user has pronounced the keyword, a configuration in which the authentication unit authenticates the user can be employed.

  Another aspect of the present invention for solving the above-described problems may be a biometric information authentication system that performs user authentication using biometric information extracted from a user. And the biometric information authentication system of this invention is provided with the server which can be connected via the some biometric information authentication apparatus of the said structure and a network. Each biometric information authentication device transmits the biometric information stored in the biometric information storage unit to the server, and the server transmits the received biometric information to the biometric information storage unit provided in the plurality of biometric information authentication devices. It is possible to adopt a configuration to

  In the above configuration, the biometric information authentication device is employed. Accordingly, among the users that match the biometric information stored in the biometric information storage means, only the user who has been judged that the biometric information extracted from the user matches the user is authenticated by the authentication means. Can be configured. The biometric information authentication apparatus of the present invention or the biometric information authentication system of the present invention can be suitably used by betting an authentication apparatus or an authentication system for a membership service providing site.

  The biometric information authentication apparatus and biometric information authentication system of the present invention include a biometric information storage unit, a user confirmation unit, a biometric information registration unit, and an authentication unit. The biometric information storage means stores biometric information extracted from the user in association with user information for specifying the user. The user confirmation unit receives a determination as to whether or not the biometric information extracted from the user matches the user, and confirms the user. Then, when the user is confirmed by the user confirmation unit, the biometric information registration unit associates the biometric information extracted from the user with the user information of the corresponding user and stores it in the biometric information storage unit. Furthermore, the authentication unit authenticates the user registered by the biometric information registration unit.

  A determination is made as to whether or not the biometric information extracted from the user matches the user, and the biometric information of the confirmed user is associated with the user information of the corresponding user and stored in the biometric information storage means. The authentication unit authenticates the user registered by the biometric information registration unit. It is possible to configure an authentication device that determines whether or not a user's biometric information matches that user and authenticates only the confirmed user.

It is a figure which shows the structure of the control system hardware of the biometric information authentication apparatus and biometric information authentication system which concern on embodiment of this invention. It is a functional block diagram of the biometric information authentication apparatus which concerns on embodiment of this invention. It is a flowchart of the user authentication process of this invention. It is a flowchart of the user authentication process of this invention. It is a figure which shows the table memorize | stored in the biometric information storage means which concerns on embodiment of this invention. It is a functional block diagram of the biometric information authentication system which concerns on embodiment of this invention. It is a flowchart of the user authentication process of this invention. It is a flowchart of the user authentication process of this invention.

(Embodiment 1)
<Biometric information authentication device>
With reference to FIG. 1, a biometric information authentication device (hereinafter also referred to as an authentication device) 100 and a biometric information authentication system 200 (a system in which the authentication device 100 and the biometric information acquisition device 300 are connected via a network). The configuration of the control system hardware will be described. FIG. 1 shows a schematic configuration of control system hardware of the biometric information authentication apparatus 100, the biometric information acquisition apparatus 300, and the server 400 that constitute the biometric information authentication system 200. However, details of each part not directly related to the present invention are omitted.

  First, a control circuit of the authentication apparatus 100 includes a CPU (Central Processing Unit) 101, a ROM (Read Only Memory) 102, a RAM (Random Access Memory) 103, a HDD (Hard Disk Drive) 104, and a driver 105 corresponding to each driving unit. The communication interface 107 is connected by an internal bus 106. The CPU 101 uses, for example, the RAM 103 as a work area, executes a program stored in the ROM 102, the HDD 104, and the like, and sends data and instructions from the driver 105 and the biological information acquisition apparatus 300 based on the execution result. Exchanges and controls operation | movement of each drive part (not shown) etc. The server 400 can be connected to the network 108 via the communication interface 107, and the CPU of the server 400 includes the biometric information authentication device 100 and the biometric information acquisition device connected to the network 108 via the communication interface 107. Exchange data with 300.

Similarly to the biometric authentication apparatus 100, the server 400 according to the present invention includes a CPU, a ROM, a RAM, an HDD, a driver corresponding to each drive unit, a communication interface, and the like (not shown). Then, each means (shown in FIGS. 2 and 8) described later is realized by the CPU executing the program.
Similarly to the biometric information authentication apparatus 100, the biometric information acquisition apparatus 300 that can be connected to a network also includes a CPU, a ROM, a RAM, an HDD, a driver corresponding to each drive unit, a communication interface, and the like (not shown). . Each means described later is realized by the CPU executing the program. It should be noted that the present invention is a face recognition system (a computer application for automatically identifying a human face from a digital image. A portion of a photographed image that appears to be a face is extracted, and a facial image HYPERLINK "http: // en.wikipedia.org/wiki/%E3%83%87%E3%83%BC%E3%82%BF%E3%83%99%E3%83%BC%E3%82%B9 "\ o" Database " The biometric information authentication device 100 and the biometric information acquisition device 300 are provided with the equipment capable of recognizing the face, in order to perform user authentication using a system that performs identification by comparing with a database. For example, a camera capable of capturing a user's face image, application software for recognizing a face portion from the face image, and by registering the user's name when recognizing the user, the user's voice including the registered name can be obtained. Needless to say, a speaker capable of making a call is provided.

<User authentication process 1 new registration>
Next, user authentication processing in the authentication apparatus 100 of the present invention will be described with reference to the drawings. FIG. 2 is a functional block diagram of the biometric information authentication apparatus, and FIGS. 3 and 4 are flowcharts showing the user authentication process of the present invention. In addition, the alphabet "S" attached | subjected before the number in a flowchart means a step.

  Hereinafter, a configuration for recognizing facial information (referred to as digital information about a portion recognized as a user's face, hereinafter the same) as biometric information will be described. The present invention includes a biological information acquisition apparatus 300 for acquiring user face information. A plurality of the biological information acquisition devices 300 may be provided, or a configuration in which face information of a plurality of users is acquired by a single biological information acquisition device 300 may be adopted. Hereinafter, a user to be authenticated is referred to as a target user.

  First, a case where the face information of the target user is not registered in the authentication device 100 and the server 400 (the configuration of the server will be described later) (hereinafter referred to as new user registration) will be described. First, the biometric information acquisition apparatus 300 starts extracting the target user's face information and extracts the target user's face information (FIG. 3: START → S101 → S102). For example, a configuration may be adopted in which the biometric information acquisition apparatus 300 includes a start switch for starting face information extraction processing and the face information extraction processing is started when the start switch is pressed by the target user. . The switch can employ a touch panel displayed on the screen of the biological information acquisition apparatus 300.

  A mechanism (for example, the touch panel) for notifying the biometric information acquisition apparatus 300 of the user's determination such as the start of extraction of the face information is referred to as a display receiving unit 310. That is, when the start switch is pressed by the target user, the display receiving unit 310 receives the start of face information acquisition and notifies the biometric information extracting unit 320 that the face information of the target user is extracted. In response to this, the biometric information extracting unit 320 starts extracting the target user's face information. For example, the biometric information extraction unit 320 extracts digital information of a portion that can be recognized as the target user's face by a camera capable of photographing the user's face. It goes without saying that the digital information is information that can uniquely identify the target user.

  As described above, when the biometric information extraction unit 320 extracts the face information of the target user, it is determined whether or not the target user is newly registered. For example, as described above, when a new registration key displayed on the display receiving unit 310 is pressed, it is possible to adopt a configuration in which face information is acquired. And the structure which attach | subjects the flag to the effect of new registration to the acquired face information is employ | adopted. With this configuration, it is possible to determine whether or not the registration is new.

  As described above, when the target user is newly registered (FIG. 3: S103 YES → A), as described above, when the biometric information of the target user is acquired by the biometric information extraction unit 320, the biometric information acquisition apparatus 300 is provided. The display accepting unit 310 employs a configuration that prompts the target user to input user information necessary for new registration. Or you may employ | adopt the structure which asks an object user about the said user information. For example, the display accepting means 310 displays a screen saying “Please enter a name” or outputs a voice asking the name of the target user from a speaker provided in the display accepting means 310, and the administrator described later You may employ | adopt the structure which can input the user information of a target user into the biometric information authentication apparatus 100. FIG.

  When the biometric information is transmitted from the biometric information acquisition apparatus 300, the biometric information sorting unit 120 provided in the biometric information authentication apparatus 100 sorts out newly registered or already registered. In the case of new registration, the biometric information selection unit 120 inquires of the user confirmation unit 130 about whether or not authentication regarding the target user is possible. When the target group can be authenticated, the administrator, which will be described later, notifies the user confirmation unit 130 that the target group can be authenticated. A configuration is adopted in which the target user is prompted to input user information upon confirmation by the user confirmation unit 130. The administrator inputs the user information and confirms the authentication of the target user (FIG. 4: A → S201 YES → S202 → S203 → S204 YES). Here, being authenticable means that the biometric information acquired from the target user can identify the target user. For example, the biometric information acquired from the target user is displayed on display accepting means (not shown) provided in the biometric information authentication device 100 (desirably displayed on the touch panel). Then, when the displayed biometric information (face information) of the target user can identify the target user, the target user can be authenticated.

  In the above case, whether or not the authentication is actually possible is determined by the administrator (the biometric information acquired from the target user determines whether or not the target user can be specified, and the authentication apparatus 100 of the present invention. It is possible to adopt a configuration in which a person who has the authority to determine whether or not to authenticate with a system that uses the system is determined or confirmed. Note that the biometric information of the administrator is stored in the biometric information storage unit 140 (administrator registration), and the registered administrator performs the authentication. That is, the biometric information of the administrator is acquired by, for example, the biometric information acquisition device 300, and the biometric information authentication device 100 authenticates the administrator, so that the authenticated administrator determines authentication for the target user. It will be.

When it is confirmed that the authentication is possible, the user confirmation means 130 is notified that the authentication is possible. The user confirmation unit 130 notifies the biometric information selection unit 120 that the target user can be authenticated.
In the above case, the biometric information selection unit 120 notifies the biometric information registration unit 150 that the target user and the user information (for example, name) of the target user are associated and stored in the biometric information storage unit 140. In response to this, the biometric information registering unit 150 associates the target user with the user information of the target user and stores it in the biometric information storage unit 140, whereby authentication (new registration) succeeds (FIG. 4: S205 → S206). → END). Note that the display receiving means 310 of the biometric information acquisition apparatus 300 utters the user information such as the name registered at this time as a voice. For example, a voice “Mr. A, welcome” may be output.

  The biometric information registration unit 150 stores the face information set with the user information in the data table 500 (see FIG. 5A) of the biometric information storage unit 140. In the data table 500, a user ID 510 that is an identification number of each user and user information 520 that is information such as a name are stored in association with each other. Needless to say, the biometric information storage unit 140 stores face information data corresponding to the user ID 520 (user biometric information 530 acquired from the user). As shown in FIG. 5B, in the administrator data table 550, the biometric information storage unit 140 includes an administrator ID 552 that is an identification number of the administrator and an administrator that is face information data of the administrator. A configuration is adopted in which the biometric information number 554 is stored in association with each other. In this embodiment, the case where each user is newly registered has been described. The case where the target user is already registered will be described in the second embodiment below.

  As shown in FIG. 6, a user authentication system can be configured by providing a plurality of biometric information authentication devices 100 of this embodiment and providing biometric information storage means 140 in each biometric information authentication device 100 and server 400. It becomes possible. That is, the server 400 includes server-side biometric information storage means 450, and the face information of the target user stored in the biometric information storage means 140 on the biometric information authentication apparatus 100 side is stored in the server-side biometric information every time a predetermined period elapses. It is transmitted to the information storage means 450. For example, when a predetermined time elapses, a biometric information acquisition unit (not shown) included in the authentication device 100 refers to the biometric information storage unit 140 on the authentication device 100 side, and the facial information to be transmitted to the server 400 is The data is transmitted to the server 400 via the communication unit 110. A configuration in which the transmission biometric information acquisition unit transmits only update information to the server 400 may be adopted.

The server-side biometric information storage unit 450 includes a server-side biometric information acquisition unit 420 that receives the face information via the communication unit 110, and a server-side biometric information registration that stores the received biometric information in the server-side biometric information storage unit 450. Means 440 are provided. And the structure which the server side transmission biometric information acquisition means 420 transmits the face information memorize | stored in the server side biometric information storage means 450 to the biometric information storage means 140 of each biometric information authentication apparatus 100 can be employ | adopted for every predetermined time progress. . A configuration in which the biometric information authentication device 100 that transmits the face information stored in the server-side biometric information storage unit 450 may be determined in advance. For example, the address information of the facility where the biometric information authentication apparatus 100 is installed is stored in advance, and the facility is installed in an adjacent area of each address (can be determined in units of addresses such as for each prefecture and for each city). The biometric information authentication apparatus 100 may be configured to transmit the face information so that the same information is stored.
(Embodiment 2)
<User authentication process 2 already registered>
Next, processing when the target user is already registered as a user will be described with reference to each of the above drawings and FIGS. 7 and 8 are flowcharts showing the user authentication process of the present invention. Since the processes other than the process when the target user has already been registered are the same as those in the first embodiment, illustration and description thereof are omitted.

  First, the biometric information acquisition apparatus 300 starts acquiring (extracting) the target user's face information, and the target user's face information is searched (FIG. 3: START → S101YES → S102 → S103NO → S104YES). . At this time, the biological information acquisition device 300 acquires facial information that matches the acquired facial information from the biological information storage unit 140. And the user name memorize | stored with the searched face information is uttered as a sound from the speaker with which the display reception means 310 of the biometric information acquisition apparatus 300 was equipped (FIG. 3: S105). For example, it is possible to adopt a configuration in which a sound “Mr. A, welcome” flows from the speaker. If there is no deposit / withdrawal operation, which will be described later, the target user is confirmed and the target user is authenticated by the searched face information and the sound from the speaker (FIG. 3: S106 NO → END).

  On the other hand, if face information matching the face information of the target user cannot be retrieved from the biometric information storage unit 140, the target user determines whether the biometric information extraction unit 320 should re-extract the target user's face information, and The display receiving unit 310 acquires the determination result of the target user (FIG. 3: S104 NO → B1). For example, when the target user desires to re-extract face information, the display receiving unit 310 receives the determination result by pressing a start switch provided in the display receiving unit 310 of the biological information acquisition apparatus 300. Can be adopted. In response to this, the display receiving means 310 acquires whether or not to re-extract face information. In the case of re-extraction, the display reception unit 310 notifies the biometric information extraction unit 320 that face information of the target user is extracted again. Then, in the same manner as the above processing, face information that matches or is similar to the face information is searched. (FIG. 7: B1 → S301 YES → S302 → S303). When face information matching the target user cannot be searched again, the biometric information reacquisition process is repeated (FIG. 7: S303 NO). If the target user does not wish to reacquire biometric information but desires new registration, the new registration procedure described in the first embodiment is performed (FIG. 7: S301 NO → S305 YES → A). .

If biometric information (face information) matching the target user is found as a result of the biometric information reacquisition procedure, authentication in a normal operation ends (FIG. 7: S303 YES → S304 → B2 → S106 NO → END).
Next, it is determined whether or not the target user performs a deposit / withdrawal operation (refers to purchase of goods or payment for services). For example, when the depositing / withdrawing operation of the target user is input to the display accepting unit 310 provided in the biometric information acquisition apparatus 300, the biometric information sorting unit 120 is notified via the communication unit 110. The biometric information selection unit 120 determines whether the process input by the target user is a process that requires a deposit / withdrawal operation. When deposit / withdrawal processing is necessary, the following procedure is performed (FIG. 3: S106 YES → C).

  First, similar to the above-described new registration and biometric information reacquisition processing, the biometric information of the target user is acquired by the biometric information acquisition apparatus 300 (FIG. 8: C → S401). In this case, a flag indicating that it is a deposit / withdrawal process is added to the biometric information. In addition, since the biometric information of the target user is acquired at the time of authentication, the acquired biometric information may be used, but a configuration in which the biometric information is acquired again for security enhancement is adopted.

  When the biometric information is transmitted from the biometric information acquisition apparatus 300 as described above, the biometric information sorting unit 120 provided in the biometric information authentication apparatus 100 sorts the biometric information indicating that there is a deposit / withdrawal process. In the case of deposit / withdrawal processing, the biometric information selection unit 120 searches the biometric information storage unit 140 for biometric information that matches the acquired biometric information (FIG. 8: S402 YES → S403), and confirms whether or not authentication regarding the target user is possible. Query means 130. If the target group can be authenticated, the administrator notifies the user confirmation means 130 that the authentication is possible. . Here, being authenticable means that the biometric information acquired from the target user can identify the target user. For example, the biological information acquired from the target user is displayed on the display receiving means provided in the biological information authentication apparatus 100 (desirably displayed on the touch panel). The displayed biological information (face information) of the target user is the target. If the user can be specified, the target user can be authenticated.

  As in the case of new registration, the administrator determines whether the authentication is actually possible (determines whether the biological information acquired from the target user can identify the target user, and the present invention The person who has the authority to determine whether or not to authenticate with the system using the authentication apparatus 100. For example, the sales-destination employee regarding the deposit and withdrawal is the administrator. Can be adopted. Note that the biometric information of the administrator is stored in the biometric information storage unit 140 (administrator registration), and the registered administrator performs the authentication. That is, the biometric information of the administrator is acquired by the biometric information acquisition device 300, for example, and the biometric information authentication device 100 authenticates the administrator, so that the authenticated administrator determines authentication for the target user. become.

When it is confirmed that the authentication is possible, the user confirmation means 130 is notified that the authentication is possible. The user confirmation unit 130 notifies the authentication unit 170 that the target user can be authenticated. In response to this, the authentication unit 170 authenticates the target user (FIG. 8: S404 YES → S405). Note that the face information of the target user is stored as a deposit / withdrawal record. By configuring as described above, it is possible to clarify the fact that the target user himself / herself performed the deposit / withdrawal process. If biometric information that matches the biometric information acquired from the target user cannot be retrieved from the biometric information storage unit 140, biometric information is reacquired as described above (FIG. 8: S402 NO → S406 YES), and reacquisition is not performed. In this case, authentication is not established for the deposit / withdrawal procedure (FIG. 8: S406 NO → S407).
(Other)
In the present invention, face information is searched based on digital information that can uniquely identify a target user. Therefore, although face information that matches the target user may not be searched, there is little possibility that face information of a user different from the target user will be searched (hereinafter referred to as “search”). However, by adopting the following configuration, it is possible to identify the target user in the case of the erroneous search.

  For example, the voice information of the target user is stored in advance, and when the target user cannot be searched, the voice of the target user is input. Then, it is possible to adopt a configuration in which the input voice of the target user matches the voice information stored in advance, and the voice analysis means confirms that the target user is himself. That is, the voice information that the target user pronounced the keyword specified by the target user is stored in the biological information storage means. Then, the voice analysis means determines whether or not the target user himself / herself has pronounced the keyword by comparing the voice information for the keyword pronounced by the target user with the voice information stored in the biological information storage means. A configuration in which the authentication unit 170 authenticates the target user when the voice analysis unit determines that the target user himself has pronounced the keyword can be employed. It goes without saying that the configuration for specifying the target user by the voice analysis means is also applicable when the target user cannot be searched during the deposit / withdrawal process.

  The biometric information authentication device 100 and the authentication system including the authentication device 100 are optimal for authentication within a group. For example, it is possible to use the authentication system and the authentication device in an authentication system in a specific group that can be trusted, or in a membership service providing site.

  The biometric information authentication device and the biometric information authentication system of the present invention are premised on a biometric information authentication device that performs user authentication using biometric information extracted from a user. The biometric information authentication apparatus of the present invention includes biometric information storage means, user confirmation means, biometric information registration means, and authentication means. The biometric information storage means stores biometric information extracted from the user in association with user information for specifying the user. The user confirmation unit receives a determination as to whether or not the biometric information extracted from the user matches the user, and confirms the user. Then, when the user is confirmed by the user confirmation unit, the biometric information registration unit associates the biometric information extracted from the user with the user information of the corresponding user and stores it in the biometric information storage unit. Further, the authentication means authenticates the user registered by the biometric information registration means. It is possible to configure an authentication device and an authentication system in which only a target user confirmed by the user confirmation unit is authenticated, and its industrial applicability is great.

DESCRIPTION OF SYMBOLS 100 Biometric information authentication apparatus 110 Communication means 120 Biometric information selection means 130 User confirmation means 140 Biometric information storage means 150 Biometric information registration means 160 Biometric information search means 170 Authentication means 200 Biometric information authentication system 300 Biometric information acquisition means 310 Display reception means 320 Biological information extraction means 400 Server 420 Server side biological information acquisition means 430 Server side transmission biological information acquisition means 440 Server side biological information registration means 450 Server side biological information storage means

Claims (9)

In a biometric information authentication device that performs user authentication using biometric information extracted from a user,
Biometric information storage means for storing biometric information extracted from the user and user information for specifying the user in association with each other;
User confirmation means for receiving a determination as to whether or not the biometric information extracted from the user matches the user, and confirming the user;
When the user is confirmed by the user confirmation means, the biological information registration means for associating the biological information extracted from the user with the user information of the corresponding user and storing it in the biological information storage means;
A biometric information authentication apparatus comprising: authentication means for authenticating a user registered by the biometric information registration means. Based on the biometric information extracted from the administrator who authenticates the target user, the authentication means authenticates the administrator,
The biometric information authentication apparatus according to claim 1, wherein the user confirmation unit receives a judgment of the administrator authenticated by the authentication unit. Biometric information search means for searching for biometric information that matches the biometric information of the user to be authenticated from the biometric information stored in the biometric information storage means;
The biometric information searched by the biometric information search means matches the biometric information of the user to be authenticated, and the authentication means authenticates the user when the user information of the user matches. 2. The biometric information authentication device according to 2.   When the target user performs a deposit / withdrawal operation, when the user confirmation unit receives a determination that the biometric information extracted from the target user matches the user, the authentication unit authenticates the user. The biometric information authentication device according to claim 3.   The biological information is information obtained by combining one or more of face information, fingerprint information, palm shape information, retinal information, iris information, blood vessel information, audio information, and ear shape information. 4. The biometric authentication apparatus according to any one of 4 above. The biological information is face information;
The biological information storage means stores the name information of the user who extracted the biological information in association with the biological information,
The biometric information search means searches for name information associated with the biometric information,
The biometric information according to any one of claims 1 to 4, wherein a voice is emitted based on the name information in a state in which a face corresponding to the biometric information searched by the biometric information search unit is displayed to an authentication target user. Authentication device. The biometric information storage means stores voice information produced by the user as a keyword specified by each user,
Voice analysis means for comparing the voice information for the keyword pronounced by the user with the voice information stored in the biological information storage means, and determining whether or not the user has pronounced the keyword;
If the voice analysis means determines that the user has pronounced the keyword,
The biometric information authentication apparatus according to claim 6, wherein the authentication unit authenticates the user. In a biometric information authentication system that performs user authentication using biometric information extracted from a user,
A server connectable with a plurality of biometric information authentication devices according to any one of claims 1 to 7 via a network;
Each of the biometric information authentication devices transmits the biometric information stored in the biometric information storage means to the server,
A biometric information authentication system in which the server transmits each received biometric information to a biometric information storage unit included in the plurality of biometric information authentication devices. A membership service providing site for performing authentication by the biometric information authentication device according to any one of claims 1 to 8, or the biometric information authentication system according to claim 7.

Images