JP2013250999A - On-vehicle device and data transmission processing method - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide an on-vehicle device capable of controlling a transmission destination of data while increasing user friendliness and security.SOLUTION: A connection status monitoring unit 107 receives ID information from an information terminal device 121 and determines whether the ID information has been authenticated. When the connection status monitoring unit 107 determines that the ID information is not authenticated, an authentication unit 106 receives the ID information from the connection status monitoring unit 107 and determines whether the ID information is registered in an authentication ID database storage unit 105, and notifies the determination result to the connection status monitoring unit 107 as an authentication result. A communication control unit 103 determines whether the data should be output to the information terminal device 121 using the authentication result of the connection status monitoring unit 107.

Description

  The present invention relates to an in-vehicle device that transmits / receives signals to / from an information terminal device having functions such as navigation and AV content reproduction, and also transmits / receives signals to / from an ETC (registered trademark) in-vehicle device installed in a vehicle.

Currently, car navigation devices that are installed and used in vehicle interiors are widespread. This device calculates the current position of the vehicle using information obtained from GPS (Global Positioning System) and gyro sensors and map information, searches for a route to a set destination, and provides guidance based on the search result. It has the function. As media for storing map data, optical disc media such as CD (Compact Discs) and DVD (Digital Versatile Disc), HDD (Hard)
Although those using Disk Drive) have been the mainstream, in recent years, those using flash memory have also been commercialized. The use of flash memory makes it possible to reduce the size of the housing, and portable navigation devices that take advantage of these features have also become widespread.

  In addition, ETC in-vehicle devices that are compatible with a type of intelligent road traffic system called ETC (Electronic Toll Collection System) have become widespread. ETC uses a radio communication system called DSRC (Dedicated Short Range Communication) and uses an ETC credit card inserted into a dedicated device to enable toll collection without stopping at the toll booth when using toll roads It is called a non-stop automatic fee payment system. Recently, not only tolls for toll roads, but also various ways of using such as collecting tolls for parking lots and providing traffic information via the Internet are being studied.

  In the mobile guidance system described in Patent Document 1, in a system having both a car navigation device and an on-board device (ETC in-vehicle device) for an automatic toll collection system, a navigation method with improved convenience for users using ETC Has proposed. Specifically, when ETC in-vehicle devices are connected in navigation, we propose a technology that realizes a function to display voices and screens that guide ETC lanes, and to notify charged fee data. ing.

  In the information processing system described in Patent Document 2, if an information transfer device (portable device or the like) authenticates with a reference device mounted on the vehicle A and the authentication is successful (recognized as a legitimate information transfer device) ) Receives setting data regarding the vehicle A from the reference device. Also, by specifying an individual using biometric authentication, it is possible to receive data set for each individual such as steering and seat position. Then, the information transfer device authenticates with the set device mounted on the vehicle B, and if the authentication is successful, transmits it to the set data set device received from the reference device, and the set device sets the vehicle based on the data. Make various settings. In this way, a method has been proposed in which data set in the vehicle A is easily reflected in other vehicles.

Japanese Patent No. 3767285 JP 2007-226734 A

  Here, when the information terminal device is brought into the car, it is considered to realize navigation linked with the ETC in-vehicle device.

  This can be realized by using the technique proposed in the moving body guidance system described in Patent Document 1. However, for example, when the owners of the navigation device and the ETC in-vehicle device are different, handling of personal information such as browsing of ETC history information becomes a problem. In the case of a portable navigation device, it can be used not only in its own vehicle but also in another person's vehicle such as a friend's vehicle. At this time, the ETC in-vehicle device is expected to be owned by another person, and the owner of the vehicle (ETC in-vehicle device) can view the ETC history information, that is, the personal information, by the owner of the portable navigation device. It is not preferable.

  Further, it is assumed that the authentication technique proposed in the information processing system described in Patent Document 2 is used. If the authentication process is performed between the portable device and the ETC in-vehicle device, and if the authentication is successful, navigation in conjunction with the ETC in-vehicle device is enabled. Further, if the user authentication is a specific user (for example, the portable device and the ETC in-vehicle device are the same) When the owner is specified), it is possible to permit the handling of personal information such as browsing of ETC history information.

  However, the information processing system described in Patent Document 2 requires two authentication means, that is, a means for authenticating an apparatus and a means for authenticating an individual. In addition, the data handled is only vehicle setting data, that is, static data that does not change with time. Basically, it is mentioned that it is used only when the device is started, and dynamic data that changes every moment. The handling of is not considered. Furthermore, the setting data is used at a fixed timing when the reference device is activated (used to set the vehicle A) or when there is a request from the information transfer device (sent for other vehicles). The control when used at an arbitrary timing is not considered. That is, it is not suitable for communication with an ETC in-vehicle device whose data content and transmission timing fluctuate every moment.

  The present invention has been made to solve the conventional problems, and enables the use of linked functions such as ETC lane guidance even when the ETC in-vehicle device and the information terminal device have different owners. The function of handling personal information such as browsing is intended to provide an in-vehicle device that achieves both convenience and security by performing appropriate authentication processing and transmission control.

  In order to achieve the above object, the present invention comprises communication means for communicating with an external device, storage means for storing a database of authenticated ID information for the external device, and a microcomputer, Depending on whether the ID information of the external device received via the communication means matches all or part of the authenticated ID information stored in the storage means, the data to be transmitted to the external device It has a configuration to change the type.

  INDUSTRIAL APPLICABILITY The present invention performs an authentication process with an in-vehicle device to which an information terminal device is connected, can control the data transmission destination according to the authentication result, and has an effect of improving user convenience and security. An in-vehicle device and a data transmission processing method can be provided.

The block diagram of the information terminal system in Embodiment 1 of this invention The flowchart for operation | movement description of the authentication process in Embodiment 1 of this invention The figure showing the authentication ID database in Embodiment 1 of this invention The flowchart for operation | movement description of ID authentication processing in Embodiment 1 of this invention The flowchart for operation | movement description of the ETC data transmission process 1 in Embodiment 1 of this invention. The figure showing the ETC data classification list in Embodiment 1 of this invention Flow chart for explaining the operation of ETC data transmission processing 2 in Embodiment 1 of the present invention The block diagram of the information terminal system in Embodiment 2 of this invention The flowchart for operation | movement description of the vehicle data transmission process 1 in Embodiment 2 of this invention. The figure showing the vehicle data classification list in Embodiment 2 of the present invention The flowchart for operation | movement description of the vehicle data transmission process 2 in Embodiment 2 of this invention. The block diagram of the information terminal system in Embodiment 3 of this invention Flow chart for explaining the operation of the data transmission processing 1a according to the third embodiment of the present invention. Flow chart for explaining the operation of the data transmission processing 1b according to the third embodiment of the present invention. Flow chart for explaining the operation of the data transmission processing 2a according to the third embodiment of the present invention. Flow chart for explaining operation of data transmission processing 2b in Embodiment 3 of the present invention The figure showing the data classification list which the in-vehicle device in Embodiment 3 of the present invention preserves The figure showing the data classification list which the information terminal device in Embodiment 3 of this invention has preserve | saved

Hereinafter, an information terminal system according to an embodiment of the present invention will be described with reference to the drawings. In the embodiment of the present invention, an information terminal system that performs an authentication process with an in-vehicle device to which an information terminal device is connected and controls a data transmission destination according to the result of the authentication will be described.
(Embodiment 1)
FIG. 1 is a block diagram of the information terminal system according to the first embodiment. The information terminal system according to the first embodiment of the present invention includes an in-vehicle device 101 and an information terminal device 121.

  The in-vehicle device 101 includes a communication unit a102, a communication control unit 103, a control unit 104, an authentication ID database storage unit 105, an authentication unit 106, a connection status monitoring unit 107, an ETC information storage unit 108, an ETC information processing unit a109, and a display unit a110. The ETC in-vehicle device 111 and the input means 112 are further connected.

  The communication unit a102 communicates with an external device. The communication method corresponds to, for example, a wireless LAN (IEEE802.11a, 11b, 11g, 11n). Although not shown in FIG. 1, it is assumed that an antenna for performing wireless communication is connected to the communication means a102.

  One antenna can be configured as long as it corresponds to a wide band or a plurality of bands, but may be configured from a plurality of antennas. Moreover, even if it is the structure which uses a transmitting antenna and a receiving antenna in common, the structure which each uses an individual antenna may be sufficient.

  The communication control unit 103 outputs the ID information of the external device acquired through the communication unit a102 to the connection status monitoring unit 107. Further, ETC data output from the control unit 104 according to the authentication result obtained from the connection status monitoring unit 107 is output to the communication unit a102 or the ETC information processing unit a109. At this time, whether or not ETC data can be transmitted is controlled as necessary.

  The control unit 104 outputs ETC data output from the ETC in-vehicle device 111 to the communication control unit 103 or the ETC information storage unit 108. Further, the authentication ID obtained from the input unit 112 is output to the authentication ID database storage unit 105.

  The authentication ID database storage unit 105 stores the authentication ID information output from the control unit 104 as an authentication ID database. The authentication ID database storage unit 105 is, for example, a nonvolatile memory. This authentication ID database is used for ID authentication processing executed by the authentication means 106.

  The authentication unit 106 performs ID authentication processing using the ID information of the external device obtained from the connection status monitoring unit 107 and the authentication ID database stored in the authentication ID database storage unit 105. The connection status monitoring unit 107 monitors the connection status and authentication status with external devices.

  The ETC information storage means 108 stores ETC history information created from ETC data obtained from the ETC in-vehicle device 111. The ETC information storage means 108 is, for example, a nonvolatile memory. In addition, you may comprise using the same device as the authentication ID database memory | storage means 105 mentioned above.

  The ETC information processing unit a109 performs processing for notifying the user of ETC data such as ETC billing information. Here, the notification method to the user is, for example, displayed as a message on the display means a110 or output as voice guidance from a speaker.

  The display unit a110 is, for example, a liquid crystal monitor that displays data output from the ETC information processing unit a109. The display means a110 is also used to display a radio or audio menu screen.

  The display unit a110 may be configured to be connected to the outside without being built in the in-vehicle device 101. Further, the display means a110 may be configured to output sound as a speaker.

  The ETC in-vehicle device 111 detects the presence or absence of an ETC credit card, and communicates with the ETC dedicated device installed at the toll gate using the DSRC method.

  At this time, the ETC credit card number, vehicle information, entrance tollgate information, exit tollgate information, and ETC billing information are exchanged with each other. The DSRS communication antenna may be a type built in the ETC in-vehicle device 111 or a type in which only the antenna portion is separated. In FIG. 1, the ETC in-vehicle device 111 is connected to the in-vehicle device 101, but may be configured to be built in the in-vehicle device 101.

  The input unit 112 is, for example, a remote controller that transmits an operation command input by the user. In Embodiment 1 of the present invention, it is assumed that the user inputs an authentication ID for registration in the authentication ID database stored in the authentication ID database storage unit 105 from the input unit 112 control unit 104.

  The input unit 112 and the display unit a110 may be combined to form a touch panel monitor. In addition, input by voice recognition may be possible together with a microphone. Further, the input unit 112 may be built in the in-vehicle device 101.

  The information terminal device 121 includes a communication unit b122, an ID storage unit 123, an ETC information processing unit b124, a navigation processing unit 125, and a display unit b126. Although not shown, the information terminal device 121 includes a built-in battery and input means, and can be used as a portable terminal.

  The communication unit b122 communicates with an external device in the same manner as the communication unit a102. The communication method corresponds to, for example, a wireless LAN (IEEE802.11a, 11b, 11g, 11n). Although not shown in FIG. 1, it is assumed that an antenna for performing wireless communication is connected to the communication unit b122.

  One antenna can be configured as long as it corresponds to a wide band or a plurality of bands, but may be configured from a plurality of antennas. Moreover, even if it is the structure which uses a transmitting antenna and a receiving antenna in common, the structure which each uses an individual antenna may be sufficient.

In Embodiment 1 of the present invention, it is assumed that the communication unit a102 and the communication unit b122 communicate in an ad hoc mode in IEEE802.11b / g of a wireless LAN.
Note that this can also be realized in an infrastructure mode in which devices communicate with each other via a wireless access point.

  Further, although the wireless LAN is set to IEEE802.11b / g, other wireless LAN systems such as IEEE802.11a and IEEE802.11n may be used. Alternatively, a wireless communication system other than the wireless LAN may be used. Further, wired communication may be used instead of wireless communication.

  The ID storage unit 123 stores ID information unique to the information terminal device 121. The ID storage unit 123 is, for example, a nonvolatile memory, but is a ROM (Read Only Memory) that cannot be rewritten by the user.

  The ETC information processing unit b124 performs processing for notifying the user of ETC data, similar to the ETC information processing unit a109. The ETC information processing means b124 performs processing so that it can be used by the navigation processing means 125.

  The navigation processing means 125 performs processing related to navigation. GPS (Global Positioning System) and gyro sensor signals and current position information calculated using, for example, map information stored in a semiconductor memory are displayed on the display means b126, or a route to a set destination is searched. Then, route guidance is performed using a map or guidance voice. Further, the navigation processing means 125 obtains the output of the ETC information processing means b124 and realizes navigation in conjunction with the ETC.

The display unit b126 is, for example, a liquid crystal monitor that displays information related to navigation executed by the navigation processing unit 125. The display means b126 is also used to display a radio or audio menu screen.
The display unit b126 may be configured to be connected to the outside without being incorporated in the information terminal device 121.

FIG. 2 is a flowchart of the authentication process performed by the in-vehicle device 101. Hereinafter, details of the operation of the authentication process will be described with reference to the flowchart of FIG.

  First, it is determined whether or not ID information for authentication processing is received from an object to be authenticated (step S201).

  In the first embodiment of the present invention, the authentication target is the information terminal device 121. The ID information for authentication processing is unique ID information of the information terminal device 121 stored in the ID storage means 123 of the information terminal device 121, and is composed of, for example, a 16-digit number. To do. The ID information transmitted from the information terminal device 121 is received by the connection status monitoring unit 107 via the communication unit a102 and the communication control unit 103.

  The determination in step S201 is performed by the connection status monitoring unit 107. If ID information is received, that is, if “YES” is determined in the step S201, the process proceeds to a step S202. If the ID information has not been received, that is, if “NO” in the step S201, the process proceeds to a step S204.

  If “YES” is determined in the step S201, it is determined whether or not the ID information is authenticated (step S202). This determination is made by the connection status monitoring means 107. As will be described later, it is assumed that the connection status monitoring unit 107 is notified and stored the authenticated ID information together with the authentication result from the authentication unit 106.

  The storage location of the authenticated ID information is, for example, a rewritable memory such as a RAM (Random Access Memory). If the received ID information is not authenticated ID information, that is, if “NO” is determined in the step S202, the process proceeds to a step S203. If the received ID information is authenticated ID information, that is, if “YES” is determined in the step S202, the process proceeds to a step S207.

  If “NO” is determined in the step S202, an ID authentication process is performed (step S203), and the process proceeds to the step S206. This ID authentication processing is performed when the authentication unit 106 receives ID information from the connection status monitoring unit 107.

  The authentication unit 106 outputs, for example, one of three types of authentication results, “all function permission”, “function restriction permission”, and “function use non-permission” by performing the ID authentication process. Details of this ID authentication processing will be described later.

  If "NO" is determined in the step S201, it is confirmed whether or not the timer has reached a threshold value (step S204). It is assumed that the processing in step S204 is executed by the connection status monitoring unit 107. For example, the timer measures 60 seconds. If the timer value is less than 60 seconds, the determination in step S204 is “YES” and the process returns to step S201 to repeat the above processing.

  If the timer value is 60 seconds or more, the determination in step S204 is “NO”, and the process proceeds to step S205. The time measured by this timer is not limited to 60 seconds, and an arbitrary value may be set.

  In addition, a similar system can be realized with a counter that counts up according to an operation clock instead of measuring time with a timer. In this case, a counter value used for condition determination may be set according to the frequency of the operation clock.

If “NO” is determined in the step S204, it is determined that the external device, that is, the information terminal device 121 as the authentication target is not connected (step S205), and the process proceeds to the step S206. It is assumed that the process in step S205 is executed by the connection status monitoring unit 107.

  When the timer in step S204 reaches 60 seconds, it is determined in step S205 that the information terminal device 121 is not connected. That is, in order to maintain the connection state, the information terminal device 121 must periodically transmit ID information at intervals shorter than the time measured by this timer.

  After the process of step S203 or step S205, the authentication result is saved (step S206). Here, storing the authentication result means the result of the ID authentication process executed in step S203 (“all function permission”, “function restriction permission”, “function use not permitted”) and the ID information used for authentication. The authentication unit 106 notifies the connection state monitoring unit 107, and the connection state monitoring unit 107 stores the information in the above-described RAM.

  If it is determined in step S205 that the external device is not connected, the connection status monitoring unit 107 stores it in the RAM as “no connected device”.

  If the authentication result is stored in step S206, or if “YES” is determined in step S202, the authentication result is transmitted to the information terminal device 121, which is the authentication target (step S207).

  The authentication result is transmitted from the connection status monitoring unit 107 to the communication control unit 103, and transmitted to the information terminal device 121 via the communication unit a102. If the authentication result stored in step S206 is “no connected device”, step S207 is omitted and the process proceeds to step S208.

  After step S207, it is determined whether or not to end the authentication process. If not finished, the process returns to step S201 and the above-described processing is repeated. Authentication is performed when the power of the in-vehicle device 101 is turned off or when the ETC in-vehicle device 111 becomes unavailable (when the power of the ETC in-vehicle device 111 is turned off or the ETC credit card is not inserted). Assuming that the processing end request has been received, the determination in step S208 is “YES”, and the authentication processing ends.

  As described above, the in-vehicle device 101 performs the authentication process. With this process, the authentication result of the information terminal device 121 can be constantly monitored in the external device, that is, in the first embodiment of the present invention.

  For example, when the information terminal device 121 is brought into the vehicle and connected to the in-vehicle device 101, the information terminal device 121 is immediately reflected in the authentication result even when the information terminal device 121 cannot be used due to battery exhaustion or the like. be able to.

  FIG. 3 shows an example of the authentication ID database stored in the authentication ID database storage unit 105. The authentication ID database 301 is classified into group 1 and group 2, and a registration ID and an authentication result are recorded, respectively.

  As the registration ID of group 1, ID information whose authentication result is “all functions permitted” is registered. The registration ID of group 1 can be entered by the user from the input means 112 and registered in the authentication ID database storage means 105 via the control means 104.

  The registration ID of this group 1 is, for example, a vehicle in which the in-vehicle device 101 is installed, such as the information terminal device 121 possessed by the owner of the in-vehicle device 101 or the information terminal device 121 possessed by the family of the owner of the in-vehicle device 101. ID information of the information terminal device 121 of the user who uses frequently is registered.

  That is, it is only necessary to register the ID information of the information terminal device 121 of the user who may permit all the use of the application linked with the ETC in-vehicle device 111 including the use of personal information such as browsing of ETC history information.

  The registration of the group 1 ID information is performed by direct input by the user. However, the registration may be automatically performed by executing the ID registration processing application while the information terminal device 121 is connected. . However, in order to prevent any user from registering ID information in the group 1, it is desirable to execute password registration for executing the ID registration processing application.

  As the registration ID of group 2, ID information whose authentication result is “permission with function restriction” is registered. The last 8 digits of the registration ID of group 2 in the authentication ID database 301 are “xxxx xxx”. This means that the last 8 digits can be any number. That is, for example, the model and software version of the information terminal device 121 that can be linked to the in-vehicle device 101 can be identified by the upper eight digits of the ID, and the connected information terminal device 121 can be linked to the in-vehicle device 101. It is possible to determine whether or not.

  It is assumed that the registration ID of this group 2 is registered from the beginning, and is added when, for example, software for upgrading the in-vehicle device 101 provided by the manufacturer of the in-vehicle device 101 is installed. That is, the user cannot arbitrarily register.

  Alternatively, the ID registration information of the group 2 may be held in the information terminal device 121 so that registration can be performed when connected to the in-vehicle device 101. However, whether or not unauthorized equipment can be automatically registered using encrypted communication common between the in-vehicle device 101 and the information terminal device 121, or whether registration of ID information is permitted on the in-vehicle device 101 side. It is desirable to let the user select such as.

  FIG. 4 is a flowchart of the ID authentication process executed in step S203 of FIG. Hereinafter, details of the operation of the ID authentication processing will be described using the flowchart of FIG.

  First, the authentication unit 106 receives the ID information of the information terminal device 121 from the connection status monitoring unit 107 (step S401). Note that the ID authentication processing may be started by receiving an ID authentication processing instruction from the connection status monitoring unit 107 before or after receiving the ID information.

  Next, the authentication ID database 301 is read from the authentication ID database storage unit 105 (step S402). The process of step S402 may be performed only during the first ID authentication process performed after the vehicle-mounted device 101 is activated. If the information of the authentication ID database 301 read by the authentication unit 106 is temporarily stored in a RAM or the like, It can be omitted in the second and subsequent ID authentication processes after startup.

Next, it is determined whether or not the ID information received in step S401 is ID information belonging to group 1 in the authentication ID database 301 (step S403). The ID information belongs to group 1 in the authentication ID database 301, that is, “Y” in step S403.
If “ES” is determined, the result of the ID authentication process is set to “all functions permitted” (step S404), and the ID authentication process is terminated.ID information does not belong to the group 1 in the authentication ID database 301. If “NO” is determined in the step S403, the process proceeds to a step S405.

  In step S405, it is determined whether or not the ID information received in step S401 is ID information belonging to group 2 in the authentication ID database 301. As described in the authentication ID database 301, the last 8 digits of the registration ID of the group 2 may be an arbitrary number, so that the actual determination is based on the upper 8 digits.

  If the ID information belongs to the group 2 in the authentication ID database 301, that is, if “YES” is determined in the step S405, the result of the ID authentication process is set to “permission with function restriction” (step S406), and the ID The authentication process ends. If the ID does not belong to the group 2 in the authentication ID database 301, that is, if “NO” is determined in the step S405, the result of the ID authentication processing is set to “function use not permitted” (step S407), and the ID authentication is performed. The process ends.

  As described above with reference to the flowchart of FIG. 4, the ID authentication process is performed by the authentication unit 106, and a plurality of functions such as “all function permission”, “function restriction permission”, and “function use disapproval” are provided. Either of the level authentication results can be obtained.

  Next, details of the operation of the ETC data transmission process 1 in the in-vehicle device 101 will be described using the flowchart of FIG. The ETC data transmission process 1 is a process when a data transmission request is made from the ETC in-vehicle device 111, such as when notifying the user of ETC charging information received from the ETC dedicated device of the ETC gate when passing through the ETC lane.

  First, the communication control means 103 receives a data transmission request (step S501). This data transmission request is received from the ETC in-vehicle device 111 via the control means 104.

Next, the type of ETC data to be transmitted is confirmed (step S502). Then, the conditions for transmission to the external device are confirmed according to the data type.
The data type and conditions for transmission to the external device will be described with reference to FIG. In FIG. 6, reference numeral 601 denotes an ETC data type list to be transmitted.

  As shown in the ETC data type list 601, authentication conditions required for transmission to an external device (the information terminal device 121 in the first embodiment of the present invention) differ depending on the data. For example, when the transmission data is “ETC in-vehicle device connection notification”, “ETC billing information”, “ETC guidance information”, the authentication result is “all functions permitted” or “functional restriction” for transmission to an external device. The condition is “permission”. Further, when the transmission data is “ETC history information”, the authentication result is “all functions permitted” in order to transmit to the external device.

  The ETC data type list 601 is an example, and other data output from the ETC in-vehicle device 111 to the in-vehicle device 101 may be included, or some data may not be on the list. In addition, the authentication condition necessary for transmission to the external device may include other conditions such as “non-transmission to the external device”.

In this way, the ETC data output from the ETC in-vehicle device 111 to the in-vehicle device 101 has authentication conditions necessary for transmitting to the external device by the ETC data type list 601, and the communication control means 103 determines the ETC data type. By referring to the list 601, it is possible to check the data type and the authentication condition for transmission to the external device. The ETC data type list 601 is stored in a storage medium that cannot be written by the user, such as a ROM, and is read by the communication control unit 103 as necessary.

  Returning to the description of the ETC data transmission process 1 in FIG. If the type of data to be transmitted and the conditions for transmission to the external device are confirmed in step S502, the authentication result is confirmed to determine whether transmission to the external device is possible (S503).

  This is determined according to the authentication result received by the communication control means 103 as an answer to the connection status monitoring means 107. The authentication result stored in the connection status monitoring unit 107 is one of “permit all functions”, “permit with function restriction”, “unusable function”, and “no connected device”.

  Here, for example, when the transmission data is “ETC charging information”, the authentication result must be “all function permission” or “function restriction permission” in order to transmit to the external device. If the transmission data is “ETC history information”, the authentication result must be “all functions permitted” in order to transmit to the external device.

  If the authentication result received from the connection status monitoring unit 107 satisfies the transmission condition to the external device according to the data type, the determination in step S503 is “YES” and the process proceeds to step S504. If the authentication result does not satisfy the transmission condition to the external device according to the data type, the determination in step S503 is “NO” and the process proceeds to step S505.

  If “YES” is determined in the step S503, the ETC data is transmitted to the external device, that is, the information terminal device 121 in the first embodiment of the present invention (step S504), and the ETC data transmission process 1 is terminated. This process is executed by the communication control means 103 notifying the communication means a102 of a transmission instruction and outputting ETC data.

  If “NO” is determined in the step S503, it is determined whether or not an external device is connected (step S505). If the authentication result received from the connection status monitoring unit 107 is “permit with function restriction” or “unusable function”, the determination in step S505 is “YES” and the ETC data transmission process 1 is terminated.

  If the authentication result is “no connected device”, the determination in step S505 is “NO”, the ETC data is transmitted to the ETC information processing means a109 (step S506), and the ETC data transmission process 1 is terminated.

  As described above, the ETC data transmission process 1 is performed by the communication control unit 103 as described with reference to the flowchart of FIG. When a data transmission request is received from the ETC in-vehicle device 111, the transmission destination of ETC data can be appropriately controlled according to the authentication result.

  According to the ETC data transmission process 1, when a data transmission request is received from the ETC in-vehicle device 111, if the ETC data can be transmitted to the external device, that is, the information terminal device 121 in the first embodiment of the present invention, the ETC data is The information is always transmitted to the information terminal device 121. When the information terminal device 121 is connected to the in-vehicle device 101, it is assumed that the user uses the navigation function of the information terminal device 121, and the display means a110 of the in-vehicle device 101 and the display means b126 of the information terminal device 121 are used. In comparison, the opportunity for the user to visually observe is mostly in the case of the display means b126 of the information terminal device 121.

Therefore, when the ETC data requested to be transmitted from the ETC in-vehicle device 111 can be transmitted to the information terminal device 121 by the ETC data transmission process 1, the ETC data is transmitted to the information terminal device 121, so that the information of the ETC data is transmitted to the user. Can communicate properly.

  Further, according to the ETC data transmission process 1, when transmission of ETC data is not permitted in a state where the information terminal device 121 is connected, the ETC data is not transmitted to any device.

  In the ETC data type list 601, this may occur when the ETC data requested to be transmitted is ETC history information, that is, when the authentication result of the ID information of the information terminal device 121 does not permit all functions.

  This means that the ID information of the information terminal device 121 is not registered in the group 1 of the authentication ID database 301, that is, the owner of the in-vehicle device 101 does not register the ID information in the group 1 of the authentication ID database 301. To do.

  In other words, the user A who is the owner of the in-vehicle device 101 does not want the user B who is the owner of the information terminal device 121 to disclose the ETC history information that is personal information. Therefore, ETC history information should not be presented to user B.

  The fact that the authentication result is not permission for all functions but the information terminal device 121 is connected means that the owner B of the information terminal device 121 is in the vehicle, so that the display means a110 of the in-vehicle device 101 also has ETC history information. Should not be displayed. If user A permits user B to disclose ETC history information, the ID information of user B's information terminal device 121 may be registered in group 1 of authentication ID database 301.

  Therefore, the ETC data requested to be transmitted from the ETC in-vehicle device 111 by the ETC data transmission process 1 can be disclosed only to the user intended by the user A who is the owner of the in-vehicle device 101 according to the data type.

  Next, details of the operation of the ETC data transmission process 2 in the in-vehicle device 101 will be described using the flowchart of FIG. The ETC data transmission process 2 is a data request from a device (Embodiment 1 of the present invention, the in-vehicle device 101 or the information terminal device 121) that uses ETC data such as ETC history information that the user browses at an arbitrary timing. It is assumed that the process is performed. It should be noted that the process includes a case where ETC data is automatically requested by an application without requiring a user operation.

  First, the communication control means 103 receives a data transmission request (step S701). This data transmission request is output from the external device, that is, the information terminal device 121 in the first embodiment of the present invention and received via the communication means a102, and is received from the control means 104 via the input means 112 by a user operation. There is.

  Further, when the data transmission request is automatically made by the application in the in-vehicle device 101, the data transmission request may be received from the ETC information processing means a109.

  Next, the type of data to be transmitted is confirmed (step S702). And the conditions for transmitting to the external device according to the data type are confirmed. The operation in step S702 is the same as the process in step S502 of the ETC data transmission process 1 described in the flowchart of FIG.

Next, it is determined whether or not the transmission destination of the ETC data is an external device, that is, the information terminal device 121 in the first embodiment of the present invention (step S703). If the data transmission request received in step S701 is received from the information terminal device 121 via the communication means a102, the determination in step S703 is “YES”, and the process proceeds to step S704. If the data transmission request received in step S701 is received from the control unit 104 or the ETC information processing unit a109, the determination in step S703 is “NO”, and the ETC data is transmitted to the ETC information processing unit a109. (Step S705), the ETC data transmission process 2 is terminated.

  Even if the data transmission request received in step S701 is received from the control means 104 or the data transmission request received from the ETC information processing means a109, the requested ETC data is used by the ETC information processing means. Since it is a109, the transmission destination of the ETC data in step S705 is the ETC information processing means a109.

  If “YES” is determined in the step S703, it is determined whether or not the authentication result received from the connection status monitoring unit 107 satisfies the transmission condition to the external device according to the data type (step S704).

  If the authentication result satisfies the transmission condition to the external device according to the data type in step S704, the determination in step S704 is “YES” and the external device, that is, the information terminal device 121 in the first embodiment, is set to the ETC. Data is transmitted (step S706), and the ETC data transmission process 2 is terminated.

  In step S704, if the authentication result does not satisfy the transmission condition to the external device according to the data type, the determination in step S704 is “NO”, and the external device, that is, the information terminal device 121 in the first embodiment, is determined. The fact that ETC data cannot be transmitted is transmitted as a data transmission impossible notification (step S707), and the ETC data transmission process 2 is terminated.

  In the information terminal device 121 that has received the data transmission impossibility notification, for example, a message such as “not permitted to receive ETC data” may be displayed on the display means b 126 to notify the user.

  Further, a message for prompting registration of the ID information of the information terminal device 121 in the authentication ID database 301 may be displayed in order to satisfy the ETC data transmission condition.

  As described above, the ETC data transmission process 2 is performed by the communication control means 103 as described with reference to the flowchart of FIG. When a data transmission request is received from a device that uses ETC data, it is possible to control whether to permit transmission of the requested ETC data according to the authentication result.

  According to the ETC data transmission process 2, when a data request is received from the control unit 104 or the ETC information processing unit a109, transmission of ETC data is permitted regardless of the authentication result.

  When the information terminal device 121 is connected to the in-vehicle device 101, it is assumed that the user uses the navigation function of the information terminal device 121, that is, the information terminal device 121 is operated by the user.

  That is, it is considered that there is a data request from the control unit 104 or the ETC information processing unit a 109 only when the information terminal device 121 is not connected.

The fact that the information terminal device 121 is not connected means that, for example, the user A who is the owner of the in-vehicle device 101 requests the use of ETC data, so that personal information such as ETC history information can also be handled. Is appropriate.

  Here, how each piece of data in the ETC data type list 601 in FIG. 6 is used in the information terminal device 121, that is, navigation processing in conjunction with ETC performed by the navigation processing means 125 will be described. .

  First, the ETC in-vehicle device connection notification will be described. This data notifies that the ETC in-vehicle device 111 is in a usable state. That is, not only the ETC in-vehicle device 111 is connected but also an ETC credit card is inserted and the ETC service can be used. The ETC information processing means b124 that has received this data notifies the navigation processing means 125.

The navigation processing means 125 executes functions such as route guidance and the like that the ETC service can be used at the entrance and exit of the toll road, and further displays and guides the lane with the ETC gate on the display means b126. Convenience can be improved.
The ETC in-vehicle device connection notification may be periodically transmitted from the ETC in-vehicle device 111 or may be periodically transmitted from the in-vehicle device 101 to which the ETC in-vehicle device 111 is physically connected. Good.

If the ETC information processing means b124 does not receive this data for a certain period of time, it is determined that the ETC in-vehicle device 111 cannot be used and notifies the navigation processing means 125. The navigation processing means 125 is configured not to execute the above function.
Alternatively, the ETC in-vehicle device connection notification is transmitted only once after the initial authentication process, and the navigation processing means 125 can be used by the ETC in-vehicle device 111 until the connection between the in-vehicle device 101 and the information terminal device 121 is cut off. The above function may be executed.

  Next, ETC charging information will be described. This data is, for example, information received from an ETC dedicated device when a vehicle passes through an ETC gate at a toll gate on a toll road, and is data for notifying a user of a toll road usage fee.

  When the ETC information processing means b124 receives this data, it creates a message for notifying the user and displays the message on the display means b126 via the navigation processing means 125. Alternatively, a guidance voice for notifying the user is created, and the guidance voice is output from the speaker via the navigation processing means 125. The user can immediately know the usage fee of the toll road, and there is no need to confirm it later.

  Next, ETC guidance information will be described. This data is, for example, data received from an ETC dedicated device installed in a toll road or on a general road near the entrance of the toll road, and is information for notifying the user of ETC gate information and discount service guidance.

  Since some information may be information of the nearest ETC gate, the user must be notified immediately. Similarly to the ETC billing information, the ETC information processing unit b124 can notify the user reliably by displaying a message on the display unit b126 via the navigation processing unit 125 or outputting a guidance voice from the speaker. .

  Next, ETC history information will be described. This data is, for example, information on past ETC service usage, and is stored in the ETC information storage unit 108. And when using the ETC service, it is updated as needed.

  Details of the information include use date and time, use place (if it is a toll road, entrance tollgate information and exit tollgate information), use fee, and the like. The ETC history information is requested by a user operation from input means (not shown in FIG. 1) via the ETC information processing means b124.

  Upon receiving the ETC history information, the ETC information processing means b124 lists the details of the ETC history information so as to be easily understood by the user, and displays it on the display means b126 via the navigation processing means 125. Since this data relates to personal information, it is desirable that the authentication result is “permitted for all functions”.

  In addition, although how each data in the ETC data type list 601 is used in the information terminal device 121 has been described, the user is similarly notified when the ETC information processing unit a109 receives ETC data. Shall.

  However, since the in-vehicle device 101 does not have a navigation function, guidance using map data is not possible. Therefore, the user is notified by displaying a message on the display means a110 or outputting a guidance voice from the speaker.

  As described above, in the information terminal system according to the first embodiment of the present invention, an information terminal system that performs authentication processing on the connected information terminal device 121 by the in-vehicle device 101 and controls data to be transmitted and a transmission destination according to the authentication result. Can be realized.

  According to the authentication result, the ETC data that can be transmitted to the external device is limited, and the security is taken into consideration such as protection of personal information, and the convenience can be further improved. Further, according to the authentication result, the transmission destination of the ETC data can be appropriately selected, and an effect of improving the convenience for the user can be obtained.

  In addition, although the structure of the information terminal system was shown in FIG. 1, it is not restricted to this. In each of the in-vehicle device 101 and the information terminal device 121, it can be realized even if each block is configured to be bus-connected. Further, although the configuration in each block is shown in FIG. 1, since it can be realized by software processing or the like in practice, the hardware may be configured to handle a plurality of blocks by a microcomputer or the like.

  Further, although the in-vehicle device 101 has been described as having no navigation function, the present invention is not limited to this. The in-vehicle device 101 may have a navigation processing means and a navigation function may be used. In this case, both the in-vehicle device 101 and the information terminal device 121 have a navigation function. For example, when the map information of the information terminal device 121 is newer than the map information of the in-vehicle device 101, the user can use the information terminal device 121. When the navigation function is used, the effect in the information terminal system described in Embodiment 1 of the present invention can be obtained similarly.

  The ID information of the information terminal device 121 and the registered ID in the authentication ID database 301 are 16-digit numbers, but are not limited thereto. This is possible even when the number of digits differs. Furthermore, it may be a character string instead of a number.

  In addition, if the ID information is ID information registered in the group 1 of the authentication ID database 301 in the ID authentication process, “all functions are permitted”, ID information registered in the group 2, that is, an ID whose upper 8 digits match. The information is “permission with function restriction”, but is not limited to this. A similar system can be realized as long as the authentication method can obtain a plurality of levels of authentication results.

  In addition, the information terminal apparatus 121 periodically transmits ID information in order to maintain the connection state, but the present invention is not limited to this. For example, a similar system can be realized even if ID information is periodically requested from the in-vehicle device 101 and ID information is transmitted as a response.

  Further, the relationship between the data types in the ETC data type list 601 and the conditions for transmission to the external device is an example, and is not limited to this. The conditions for transmitting to the external device in each data type may be other conditions.

  Further, the ETC data type list 601 is held by the in-vehicle device 101 and is read by the communication control unit 103 as necessary, but is not limited thereto. For example, when the ETC in-vehicle device 111 outputs ETC data, a condition for transmitting to the external device is added to the header information or the like, and the in-vehicle device 101 transmits the information from the header to the external device. Even if conditions are obtained, a similar system can be realized.

  In addition, transmission of data in the ETC data type list 601 to an external device can improve security by adding encryption processing. Further, when transmitting ETC data whose condition is “Allow all functions” in accordance with the conditions for transmission to an external device, the encryption used when transmitting ETC data whose condition is “Allow with function restriction” The security can be further improved by changing the strength of the encryption by using an encryption processing that is more robust than the encryption processing.

(Embodiment 2)
FIG. 8 is a block diagram of the information terminal system according to the second embodiment. The information terminal system according to the second embodiment of the present invention includes an in-vehicle device 801 and an information terminal device 821.

  The in-vehicle device 801 includes a communication unit a102, a communication control unit 103, a control unit 104, an authentication ID database storage unit 105, an authentication unit 106, a connection status monitoring unit 107, a display unit a110, and a vehicle information processing unit a802. Vehicle information management means 803 and input means 112 are connected.

  Communication means a102, communication control means 103, control means 104, authentication ID database storage means 105, authentication means 106, connection status monitoring means 107, display means a110, and input means 112 are the same as those described in the first embodiment of the present invention. Therefore, the explanation is omitted here.

  The vehicle information processing unit a802 performs a process for displaying the vehicle data output from the vehicle information management unit 803 on the display unit a110.

  The vehicle information management means 803 manages various vehicle information. Details of the vehicle information will be described later.

  The information terminal device 821 includes a communication unit b122, an ID storage unit 123, a display unit b126, and a vehicle information processing unit b822. Although not shown, the information terminal device 821 includes a built-in battery and input means as in the first embodiment of the present invention, and can be used as a portable terminal.

  Since the communication unit b122, the ID storage unit 123, and the display unit b126 are the same as those described in the first embodiment of the present invention, description thereof is omitted here.

The vehicle information processing means b822 displays the vehicle data received from the in-vehicle device 801 as the display means b1.
It is assumed that processing for displaying on the screen 26 is performed.

  In the in-vehicle device 801, the authentication process described in the first embodiment of the present invention is similarly performed. The ID authentication process performed by the authentication unit 106 is the same. I will omit the explanation here.

  Next, details of the operation of the vehicle data transmission process 1 in the in-vehicle device 801 will be described with reference to the flowchart of FIG. The vehicle data transmission process 1 is a process performed when data transmission is requested from the vehicle information management unit 803.

  First, the communication control means 103 receives a data transmission request (step S901). This data transmission request is received from the vehicle information management means 803 via the control means 104.

  Next, the type of vehicle data to be transmitted is confirmed (step S902). Then, the conditions for transmission to the external device are confirmed according to the data type.

  The data type and conditions for transmission to an external device will be described with reference to FIG. In FIG. 10, reference numeral 1001 denotes a transmitted vehicle data type list. As shown in the vehicle data type list 1001, authentication conditions required for transmission to an external device (information terminal device 821 in the second embodiment of the present invention) differ depending on the data.

  For example, if the transmission data is “Vehicle Gasoline Information”, “Vehicle Air Pressure Information”, “Vehicle Temperature / Humidity Information”, or “Vehicle Speed Information”, the authentication result is “Allow all functions” to send to external equipment. Alternatively, the condition is “permission with function restriction”. Further, when the transmission data is “vehicle maintenance guide information” and “vehicle maintenance history information”, in order to transmit to the external device, the authentication result is “permitted for all functions”.

  The vehicle data type list 1001 is an example, and other data output from the vehicle information management unit 803 to the in-vehicle device 801 may be included, or some data may not be on the list. . In addition, the authentication condition necessary for transmission to the external device may include other conditions such as “non-transmission to the external device”.

  As described above, the vehicle data output from the vehicle information management unit 803 to the in-vehicle device 801 has authentication conditions necessary for transmitting to the external device by the vehicle data type list 1001, and the communication control unit 103 determines the vehicle data. By referring to the type list 1001, it is possible to check the data type and the authentication condition for transmission to the external device.

  The vehicle data type list 1001 is stored in a storage medium that cannot be written by the user, such as a ROM, and is read by the communication control unit 103 as necessary.

  Returning to the description of the vehicle data transmission process 1 of FIG. In step S902, when the type of data to be transmitted and the conditions for transmission to the external device are confirmed, the authentication result is confirmed to determine whether transmission to the external device is possible (S903).

  This is determined according to the authentication result received by the communication control means 103 as an answer to the connection status monitoring means 107. The authentication result stored in the connection status monitoring unit 107 is one of “permit all functions”, “permit with function restriction”, “unusable function”, and “no connected device”.

Here, for example, when the transmission data is “vehicle gasoline information”, the authentication result must be “all function permission” or “function restriction permission” in order to transmit to the external device. When the transmission data is “vehicle maintenance guide information”, the authentication result must be “permitted for all functions” in order to transmit to the external device.

  If the authentication result received from the connection status monitoring unit 107 satisfies the transmission condition to the external device according to the data type, the determination in step S903 is “YES” and the process proceeds to step S904. If the authentication result does not satisfy the transmission condition to the external device according to the data type, the determination in step S903 is “NO”, and the process proceeds to step S905.

  If “YES” is determined in the step S903, the vehicle data is transmitted to the external device, that is, the information terminal device 821 in the second embodiment of the present invention (step S904), and the vehicle data transmission process 1 is ended. This process is executed by the communication control means 103 notifying the communication means a102 of a transmission instruction and outputting the vehicle data.

  If “NO” is determined in the step S903, it is determined whether or not an external device is connected (step S905). If the authentication result received from the connection status monitoring unit 107 is “permission with function restriction” or “function not available”, the determination in step S905 is “YES” and the vehicle data transmission process 1 is terminated.

  If the authentication result is “no connected device”, the determination in step S905 is “NO”, vehicle data is transmitted to the vehicle information processing means a802 (step S906), and the vehicle data transmission process 1 is terminated.

  As described above, the vehicle data transmission process 1 is performed by the communication control unit 103 as described with reference to the flowchart of FIG. 9. When a data transmission request is received from the vehicle information management unit 803, the transmission destination of the vehicle data can be appropriately controlled according to the authentication result.

  According to the vehicle data transmission process 1, when a data transmission request is received from the vehicle information management means 803, vehicle data can be transmitted to an external device, that is, in the second embodiment of the present invention, if vehicle data can be transmitted to the information terminal device 821. Is always transmitted to the information terminal device 821. When the information terminal device 821 is connected to the in-vehicle device 801, it is considered that the user has many opportunities to view the display means b126 of the information terminal device 821.

  Therefore, when the vehicle data that is requested to be transmitted from the vehicle information management means 803 by the vehicle data transmission process 1 can be transmitted to the information terminal device 821, the vehicle data is transmitted to the information terminal device 821, thereby providing the user with information on the vehicle data. Can be properly communicated.

  Further, according to the vehicle data transmission process 1, when transmission of vehicle data is not permitted with the information terminal device 821 connected, the vehicle data is not transmitted to any device. The vehicle data requested to be transmitted from the means 803 can be disclosed only to the user intended by the user A who is the owner of the in-vehicle device 801 according to the data type.

  Next, details of the operation of the vehicle data transmission process 2 in the in-vehicle device 801 will be described with reference to the flowchart of FIG. The vehicle data transmission process 2 is data from a device (vehicle device 801 or information terminal device 821 in the second embodiment of the present invention) that uses vehicle data such as vehicle maintenance guidance information that the user browses at an arbitrary timing. Processing when required. In addition, the process when a user operation is not required and the vehicle data is automatically requested by the application is included.

  First, the communication control means 103 receives a data transmission request (step S1101). This data transmission request is output from the external device, that is, the information terminal device 821 in the second embodiment of the present invention and received via the communication means a102, and is received from the control means 104 via the input means 112 by a user operation. There is.

  Next, the type of data to be transmitted is confirmed (step S1102). And the conditions for transmitting to the external device according to the data type are confirmed. The operation in step S1102 is the same as the process in step S902 of the vehicle data transmission process 1 described in the flowchart of FIG.

  Next, it is determined whether or not the transmission destination of the vehicle data is an external device, that is, the information terminal device 821 in the second embodiment of the present invention (step S1103). If the data transmission request received in step S1101 is received from the information terminal device 821 via the communication means a102, the determination in step S1103 is “YES”, and the flow proceeds to step S1104. If the data transmission request received in step S1101 is received from the control means 104, the determination in step S1103 is “NO”, vehicle data is transmitted to the vehicle information processing means a802 (step S1105), and vehicle data transmission is performed. Processing 2 ends.

If “YES” is determined in the step S1103, it is determined whether or not the authentication result received from the connection status monitoring unit 107 satisfies the transmission condition to the external device according to the data type (step S1104).
In step S1104, if the authentication result satisfies the transmission condition to the external device according to the data type, the determination in step S1104 is “YES”, and the external device, that is, the information terminal device 821 in the second embodiment is connected to the vehicle. Data is transmitted (step S1106), and the vehicle data transmission process 2 is terminated.

  In step S1104, when the authentication result does not satisfy the transmission condition to the external device according to the data type, the determination in step S1104 is “NO”, and the external device, that is, the information terminal device 821 in the second embodiment is used. The fact that vehicle data cannot be transmitted is transmitted as a data transmission impossibility notification (step S1107), and the vehicle data transmission process 2 is terminated. In the information terminal device 821 that has received the data transmission impossibility notification, for example, a message such as “not permitted to receive vehicle data” may be displayed on the display means b 126 to notify the user.

  Further, a message for prompting registration of the ID information of the information terminal device 821 in the authentication ID database 301 may be displayed in order to satisfy the vehicle data transmission condition.

  As described above, the vehicle data transmission process 2 is performed by the communication control means 103 as described with reference to the flowchart of FIG. When a data transmission request is received from a device that uses vehicle data, it is possible to control whether or not transmission of the requested vehicle data is permitted according to the authentication result.

  According to the vehicle data transmission process 2, when a data request is received from the control means 104, transmission of vehicle data is permitted regardless of the authentication result. When the information terminal device 821 is connected to the in-vehicle device 801, it is assumed that the user uses the information terminal device 821, that is, the information terminal device 821 is operated by the user. That is, it is considered that there is a data request from the control means 104 only when the information terminal device 821 is not connected.

The fact that the information terminal device 821 is not connected means that, for example, the user A who is the owner of the in-vehicle device 801 requests use of vehicle data, and personal information such as vehicle maintenance guide information can also be handled. It is appropriate to do so.

  Here, how each of the data in the vehicle data type list 1001 in FIG. 10 is used in the in-vehicle device 801 or the information terminal device 821 will be described.

  First, vehicle gasoline information will be described. This is information on the current gasoline of the vehicle, such as the remaining amount of gasoline and the fuel consumption from the previous refueling to the present. The vehicle information processing means a 802 or the vehicle information processing means b 822 gives the user a comfortable message by issuing a warning message to the user when the remaining amount of gasoline becomes low from the received vehicle gasoline information or when the fuel efficiency is poor. Convenience can be improved so that driving can be performed.

  Next, vehicle air pressure information will be described. This is information relating to tire air pressure. The vehicle information processing means a 802 or the vehicle information processing means b 822 gives a warning message to the user when the air pressure is lowered from the received vehicle air pressure information so that the user can drive safely and comfortably. Convenience can be improved.

  Next, vehicle temperature / humidity information will be described. This is information relating to the temperature / humidity inside and outside the vehicle interior and the set temperature of the air conditioner. The vehicle information processing means a 802 or the vehicle information processing means b 822 gives a warning message to the user when the setting of the air conditioner is not appropriate from the current temperature / humidity inside and outside the vehicle from the received vehicle temperature / humidity information, Convenience can be improved so that the user can drive comfortably.

  Next, vehicle speed information will be described. This is a numerical value of the speed of the vehicle. The vehicle information processing unit a802 or the vehicle information processing unit b822 issues a warning message to the user in response to a sudden transmission or a sudden stop when the speed changes suddenly. Furthermore, when a navigation function is provided, a warning message is issued to the user when the speed is exceeded according to the road on which the vehicle is traveling, thereby improving the convenience for the user to drive safely. be able to.

  Next, vehicle maintenance guidance information will be described. This is information on the time of maintenance such as a vehicle inspection that the vehicle receives next at a car dealer or the like. When the next maintenance time approaches from the received vehicle maintenance guidance information, the vehicle information processing means a 802 or the vehicle information processing means b 822 indicates that the “maintenance time is approaching (time limit: ○ month × day)” For example, it is possible to improve convenience so that the user can drive comfortably by notifying the user with a message. Since this data relates to personal information, it is desirable that the authentication result is “permitted for all functions”.

  Next, vehicle maintenance history information will be described. This is information on maintenance services received in the past by car dealers and the like. For example, the vehicle information processing unit a 802 or the vehicle information processing unit b 822 lists the details of the history information from the received vehicle maintenance history information so that it can be easily understood by the user, such as when the tire is changed and when the engine oil is changed. , Display on display means a110 or display means b126. Since this data relates to personal information, it is desirable that the authentication result is “permitted for all functions”.

  As described above, in the information terminal system according to the second embodiment of the present invention, an information terminal system that performs authentication processing on the connected information terminal device 821 by the in-vehicle device 801 and controls data to be transmitted and a transmission destination according to the authentication result. Can be realized.

  According to the authentication result, the vehicle data that can be transmitted to the external device is restricted, and the effect of further improving convenience can be obtained in consideration of security such as protection of personal information. Moreover, according to an authentication result, the transmission destination of vehicle data can be selected appropriately and the effect which improves a user's convenience can be acquired.

  In addition, although the structure of the information terminal system was shown in FIG. 8, it is not restricted to this. In each of the in-vehicle device 801 and the information terminal device 821, it can be realized even if each block is configured to be connected by a bus. Further, although the configuration in each block is shown in FIG. 8, since it can be realized by software processing or the like in practice, the hardware may be configured so that processing of a plurality of blocks is performed by a microcomputer or the like.

  Moreover, although the vehicle information management means 803 manages various vehicle information, it is not restricted to this. For example, the management means may be different depending on individual vehicle data in the vehicle data type list 1001. Or even if vehicle data is acquired from various sensors installed in the vehicle and managed by the in-vehicle device 801, a similar system can be realized.

  Further, the relationship between the data types in the vehicle data type list 1001 and the conditions for transmission to the external device is an example, and is not limited to this. The conditions for transmitting to the external device in each data type may be other conditions.

  In addition, the vehicle data type list 1001 is held by the in-vehicle device 801 and is read by the communication control unit 103 as necessary. However, the present invention is not limited to this. For example, when the vehicle information management unit 803 outputs vehicle data, a condition for transmitting to the external device is added to the header information or the like, and the in-vehicle device 801 transmits the information in the header to the external device. Even if the above condition is obtained, a similar system can be realized.

Further, the transmission of data in the vehicle data type list 1001 to an external device can be improved in security by adding an encryption process. In addition, when transmitting vehicle data that requires “allow all functions” in accordance with the conditions for transmission to an external device, the encryption used when transmitting vehicle data that requires “allowed with function restrictions” The security can be further improved by changing the strength of the encryption by using an encryption processing that is more robust than the encryption processing.
(Embodiment 3)
FIG. 12 is a block diagram of the information terminal system according to the third embodiment. The information terminal system according to the third embodiment of the present invention includes an in-vehicle device 1201 and an information terminal device 1221.

  The in-vehicle device 1201 includes a communication unit a102, a communication control unit a1202, a control unit a1203, an authentication ID database storage unit a1204, an authentication unit a1205, a connection status monitoring unit a1206, a display unit a110, an information processing unit a1207, and an ID storage unit a1208. In addition, an information output device 1209 and an input unit a1210 are connected.

  Since the communication unit a102 and the display unit a110 are the same as those described in the first embodiment of the present invention, description thereof is omitted here.

  The communication control unit a1202, the control unit a1203, the authentication ID database storage unit a1204, the authentication unit a1205, and the connection status monitoring unit a1206 are the communication control unit 103, the control unit 104, and the authentication ID database storage described in the first embodiment of the present invention. Since it is the same as the means 105, the authentication means 106, and the connection status monitoring means 107, description is omitted here.

  The information processing unit a1207 performs processing for displaying the data output from the information output device 1209 on the display unit a110.

  The ID storage unit a1208 is the same as the ID storage unit 123 of the information terminal device 121 according to Embodiment 1 of the present invention, and ID information unique to the in-vehicle device 1201 is stored. The ID storage unit a1208 is, for example, a nonvolatile memory, but is a ROM (Read Only Memory) that cannot be rewritten by the user.

  The information output device 1209 is a device that outputs data to be used in the information processing unit a1207 or the information processing unit b1227. There are various types of data, and they are displayed on the display means a110 and the display means b126 as necessary. The information output device 1209 is connected to the in-vehicle device 1201, but may be configured to be built in the in-vehicle device 1201.

  The information terminal device 1221 includes a communication unit b122, a communication control unit b1222, a control unit b1223, an authentication ID database storage unit b1224, an authentication unit b1225, a connection status monitoring unit b1226, a display unit b126, an information processing unit b1227, an ID storage unit b1228, It comprises information output means 1229 and input means b1230.

  Although not shown, the information terminal device 1221 also includes a built-in battery as in the first embodiment of the present invention, and can be used as a portable terminal. The input unit b1230 may be configured not to be built in the information terminal device 1221 but connected from the outside.

  Since the communication unit b122 and the display unit b126 are the same as those described in the first embodiment of the present invention, description thereof is omitted here.

  Further, the ID storage unit b1228 is the same as the ID storage unit 123 according to the first embodiment of the present invention, so the description is omitted here.

  Communication control means b1222, control means b1223, authentication ID database storage means b1224, authentication means b1225, connection status monitoring means b1226, information processing means b1227 are communication control means a1202, control means a1203, authentication ID database storage means a1204, Since the same processing as that of the authentication unit a1205, the connection status monitoring unit a1206, and the information processing unit a1207 is performed, the description is omitted here.

  The information output unit 1229 is a device that outputs data to be used in the information processing unit a1207 or the information processing unit b1227. There are various types of data, and they are displayed on the display means a110 and the display means b126 as necessary.

  It is assumed that the in-vehicle device 1201 performs the authentication process described in the first embodiment of the present invention, and the ID authentication process is similarly performed by the authentication unit a1205.

  It is assumed that the authentication process described in the first embodiment of the present invention is also performed in the information terminal device 1221 and the ID authentication process is similarly performed in the authentication unit b1225. This ID authentication processing is performed using unique ID information of the in-vehicle device 1201 stored in the ID storage unit a1208. The ID information of the in-vehicle device 1201 is also composed of 16-digit numbers.

By doing in this way, also in the information terminal device 1221, the information terminal system which controls the data and transmission destination which are transmitted according to the authentication result is realizable.

  Next, details of the operation of the data transmission process 1a in the in-vehicle device 1201 will be described with reference to the flowchart of FIG. The data transmission process 1a is a process when a data transmission request is made from the information output device 1209.

  First, the communication control unit a1202 receives a data transmission request (step S1301). This data transmission request is received from the information output device 1209 via the control means a1203.

  Next, the type of data to be transmitted is confirmed (step S1302). Then, the conditions for transmission to the external device are confirmed according to the data type. Here, it is assumed that the transmission data is listed as an ETC data type list 601 and a vehicle data type list 1001, and conditions for transmitting to the external device are determined for each data type. The communication control unit a1202 confirms the data type and the conditions for transmission to the external device by referring to the data type list.

  In step S1302, when the type of data to be transmitted and the conditions for transmission to the external device are confirmed, the authentication result is confirmed to determine whether transmission to the external device is possible (S1303). This is determined by the communication control means a1202 inquiring of the connection status monitoring means a1206 and receiving the authentication result as a response. The authentication result stored in the connection status monitoring unit a 1206 is one of “permit all functions”, “permit with function restriction”, “unusable function”, and “no connected device”.

  If the authentication result received from the connection status monitoring unit a1206 satisfies the transmission condition to the external device according to the data type, the determination in step S1303 is “YES” and the process proceeds to step S1304. If the authentication result does not satisfy the transmission condition to the external device according to the data type, the determination in step S1303 is “NO” and the process proceeds to step S1305.

  If “YES” is determined in the step S1303, the data is transmitted to the external device, that is, the information terminal device 1221 in the third embodiment of the present invention (step S1304), and the data transmission process 1a is ended. This process is executed when the communication control unit a1202 notifies the communication unit a102 of a transmission instruction and outputs transmission data.

  If “NO” is determined in the step S1303, it is determined whether or not an external device is connected (step S1305). If the authentication result received from the connection status monitoring unit a1206 is “permitted with function restriction” or “function not available”, the determination in step S1305 is “YES”, and the data transmission process 1a is terminated. If the authentication result is “no connected device”, the determination in step S1305 is “NO”, data is transmitted to the information processing means a1207 (step S1306), and the data transmission processing 1a is terminated.

  As described above, as described with reference to the flowchart of FIG. 13, the data transmission process 1a is performed by the communication control unit a1202. When a data transmission request is received from the information output device 1209, the data transmission destination can be appropriately controlled according to the authentication result.

  Next, details of the operation of the data transmission processing 1b in the information terminal device 1221 will be described with reference to the flowchart of FIG. The data transmission process 1b is a process when a data transmission request is issued from the information output unit 1229.

  First, the communication control unit b1222 receives a data transmission request (step S1401). This data transmission request is received from the information output means 1229 via the control means b1223.

  Next, the type of data to be transmitted is confirmed (step S1402). Then, the conditions for transmission to the external device are confirmed according to the data type. Here, it is assumed that the transmission data is listed as an ETC data type list 601 and a vehicle data type list 1001, and conditions for transmitting to the external device are determined for each data type. The communication control unit b1222 confirms the data type and the conditions for transmission to the external device by referring to the data type list.

  In step S1402, if the type of data to be transmitted and the conditions for transmission to the external device are confirmed, the authentication result is confirmed to determine whether transmission to the external device is possible (S1403). The communication control unit b1222 inquires of the connection status monitoring unit b1226 and makes a determination according to the authentication result received as a response. The authentication result stored in the connection status monitoring unit b 1226 is one of “permit all functions”, “permit with function restriction”, “unusable function”, and “no connected device”.

  When the authentication result received from the connection status monitoring unit b 1226 satisfies the transmission condition to the external device according to the data type, the determination in step S1403 is “YES” and the process proceeds to step S1404. If the authentication result does not satisfy the transmission condition to the external device according to the data type, the determination in step S1403 is “NO”, and the process proceeds to step S1405.

  If “YES” is determined in the step S1403, the data is transmitted to the external device, that is, the in-vehicle device 1201 in the third embodiment of the present invention (step S1404), and the data transmission process 1b is ended. This process is executed when the communication control unit b1222 notifies the communication unit b122 of a transmission instruction and outputs transmission data.

  If “NO” is determined in the step S1403, it is determined whether or not an external device is connected (step S1405). If the authentication result received from the connection status monitoring unit b 1226 is “permit with function restriction” or “unusable function”, the determination in step S1405 is “YES” and the data transmission process 1b is terminated. If the authentication result is “no connected device”, the determination in step S1405 is “NO”, data is transmitted to the information processing means b1227 (step S1406), and the data transmission processing 1b is terminated.

  As described above, the data transmission process 1b is performed by the communication control unit b1222 as described with reference to the flowchart of FIG. When a data transmission request is received from the information output unit 1229, the data transmission destination can be appropriately controlled according to the authentication result.

  Next, details of the operation of the data transmission process 2a in the in-vehicle device 1201 will be described using the flowchart of FIG. The data transmission process 2a is a process performed when data is requested from a device that uses data through a user operation (the in-vehicle device 1201 or the information terminal device 1221 in the third embodiment of the present invention). In addition, the process when a user operation is not required and the vehicle data is automatically requested by the application is included.

  First, the communication control unit a1202 receives a data transmission request (step S1501). This data transmission request is output from the external device, that is, the information terminal device 1221 in the third embodiment of the present invention and received via the communication means a102, and is received from the control means a1203 via the input means a1210 by a user operation. There is.

Next, the type of data to be transmitted is confirmed (step S1502). And the conditions for transmitting to the external device according to the data type are confirmed. The operation in step S1502 is the same as the process in step S1302 of the data transmission process 1a described with reference to the flowchart of FIG.

  Next, it is determined whether or not the data transmission destination is an external device, that is, the information terminal device 1221 in the third embodiment of the present invention (step S1503). If the data transmission request received in step S1501 is received from the information terminal device 1221 via the communication means a102, the determination in step S1503 is “YES”, and the flow advances to step S1504. If the data transmission request received in step S1501 is received from the control unit a1203, the determination in step S1503 is “NO”, vehicle data is transmitted to the information processing unit a1207 (step S1505), and data transmission processing 2a is performed. Exit.

If “YES” is determined in the step S1503, it is determined whether or not the authentication result received from the connection status monitoring unit a1206 satisfies the transmission condition to the external device according to the data type (step S1504).
In step S1504, if the authentication result satisfies the transmission condition to the external device according to the data type, “YES” is determined in step S1504, and the data is transmitted to the external device, that is, the information terminal device 1221 in the third embodiment. Is transmitted (step S1506), and the data transmission process 2a is terminated.

  In step S1504, if the authentication result does not satisfy the transmission condition to the external device according to the data type, the determination in step S1504 is “NO”, and the external device, that is, the information terminal device 1221 in the third embodiment is used. The fact that data transmission is not possible is transmitted as a data transmission impossibility notification (step S1507), and the data transmission process 2a is terminated.

  In the information terminal device 1221 that has received the data transmission impossibility notification, for example, a message such as “data reception is not permitted” may be displayed on the display means b 126 to notify the user. Further, in order to satisfy the conditions for data transmission, a message that prompts the user to register the ID information of the information terminal device 1221 in the authentication ID database may be displayed.

  As described above, as described with reference to the flowchart of FIG. 15, the data transmission process 2a is performed by the communication control unit a1202. When a data transmission request is received from a device that uses data, it is possible to control whether or not transmission of the requested data is permitted according to the authentication result.

  Next, details of the operation of the data transmission processing 2b in the information terminal device 1221 will be described with reference to the flowchart of FIG. The data transmission process 2b is a process performed when data is requested from a device that uses data through a user operation (in-vehicle device 1201 or information terminal device 1221 in the third embodiment of the present invention). In addition, the process when a user operation is not required and the vehicle data is automatically requested by the application is included.

  First, the communication control unit b1222 receives a data transmission request (step S1601). This data transmission request may be received from an external device, that is, the in-vehicle device 1201 in the third embodiment of the present invention and received via the communication unit b122, or may be received from the control unit b1223 via the input unit b1230 by a user operation. is there.

  Next, the type of data to be transmitted is confirmed (step S1602). And the conditions for transmitting to the external device according to the data type are confirmed. The operation in step S1602 is the same as the process in step S1402 of the data transmission process 1b described with reference to the flowchart of FIG.

Next, the data transmission destination is an external device, that is, the in-vehicle device 120 in the third embodiment of the present invention.
It is determined whether or not 1 (step S1603). If the data transmission request received in step S1601 is received from the in-vehicle device 1201 via the communication unit b122, the determination in step S1603 is “YES”, and the process proceeds to step S1604.

  If the data transmission request received in step S1601 is received from the control unit b1223, the determination in step S1603 is “NO”, the vehicle data is transmitted to the information processing unit b1227 (step S1605), and the data transmission process 2b. Exit.

  If “YES” is determined in the step S1603, it is determined whether or not the authentication result received from the connection status monitoring unit b1226 satisfies the transmission condition to the external device according to the data type (step S1604).

  If it is determined in step S1604 that the authentication result satisfies the transmission condition to the external device according to the data type, the determination in step S1604 is “YES”, and data is stored in the external device, that is, in-vehicle device 1201 in the third embodiment. Then, the data transmission process 2b is terminated.

  In step S1604, when the authentication result does not satisfy the transmission condition to the external device according to the data type, the determination in step S1604 is “NO”, and the data is stored in the external device, that is, in-vehicle device 1201 in the third embodiment. The fact that transmission is impossible is transmitted as a data transmission impossibility notification (step S1607), and the data transmission processing 2b is terminated. In the in-vehicle device 1201 that has received the data transmission impossibility notification, for example, a message such as “data reception is not permitted” may be displayed on the display means a110 to notify the user. Furthermore, a message for prompting registration of the ID information of the in-vehicle device 1201 in the authentication ID database in order to satisfy the data transmission condition may be displayed.

  As described above, as described with reference to the flowchart of FIG. 16, the data transmission process 2b is performed by the communication control unit b1222. When a data transmission request is received from a device that uses data, it is possible to control whether or not transmission of the requested data is permitted according to the authentication result.

  FIG. 17 is an example of a data type list stored in the in-vehicle device 1201. How each data in the data type list 1701 is used by the in-vehicle device 1201 or the information terminal device 1221 will be described.

  First, digital television broadcast data will be described. This is a terrestrial digital broadcast television signal or data broadcast signal. For example, when the information output device 1209 is capable of receiving terrestrial digital broadcasting, the information processing unit a1207 or the information processing unit b1227 can view the terrestrial digital broadcast in the vehicle interior by playing back the received digital television broadcast data. Will be able to.

  Next, the drive recorder day record will be described. The drive recorder captures a moving image with a camera (not shown in FIG. 12) installed in the vehicle, detects the impact when the vehicle is in an accident, and detects a non-volatile memory, etc. The video from several seconds before the accident is recorded. Even if an accident does not occur, the drive recorder always keeps recording the camera video in a volatile memory such as RAM, and can store the camera video at any time in the non-volatile memory according to the user's request. Is possible.

The drive recorder day record is a camera image of the day, and is further provided with information such as operation date and time. For example, when the information output device 1209 has a drive recorder function, the information processing unit a1207 or the information processing unit b1227 is used.
Allows the user to visually confirm the camera video during the day's driving from the record on the day of the drive recorder, and the convenience can be improved so that the user can drive safely.

  Next, audio data will be described. For example, this is audio data stored in the information output device 1209 provided with a large-capacity recording medium such as an HDD (Hard Disk Drive). The information processing means a 1207 or the information processing means b 1227 can reproduce the received audio data and listen to the audio in the passenger compartment.

  Next, digital TV favorite channel information will be described. This is channel setting information customized to the user's preference when viewing digital terrestrial broadcasting. The information processing unit a1207 or the information processing unit b1227 can use a channel setting suitable for the user's preference by using the received digital television favorite channel information, and can improve convenience. Since this data relates to personal information, it is desirable that the authentication result is “permitted for all functions”.

  Next, digital television data broadcast registration information will be described. This is user information that is registered when data broadcasting of digital terrestrial broadcasting is used. By registering this user information, it is a convenient function such that the weather near the user's address can be displayed immediately without following the menu.

  The information processing unit a1207 or the information processing unit b1227 can use the data broadcast reflecting the user information set by receiving the digital television data broadcast registration information, and can improve the convenience. Since this data relates to personal information, it is desirable that the authentication result is “permitted for all functions”.

  Next, drive recorder history information will be described. This is past data of the drive recorder. The information processing unit a1207 or the information processing unit b1227 receives the drive recorder history information, thereby enabling the user to visually check the camera image during past driving so that the user can drive safely. Convenience can be improved. Since this data relates to personal information, it is desirable that the authentication result is “permitted for all functions”.

  Next, audio playlist information will be described. This is information on a playlist created from a plurality of stored audio data according to the user's preference. When the information processing unit a1207 or the information processing unit b1227 receives the audio playlist information, the audio can be reproduced in the order according to the user's preference. Since this data relates to personal information, it is desirable that the authentication result is “permitted for all functions”.

  As described above, by appropriately using data as in the data type list 1701, an information terminal system that controls data to be transmitted and a transmission destination according to the authentication result can be realized. Moreover, according to an authentication result, the transmission destination of vehicle data can be selected appropriately and the effect which improves a user's convenience can be acquired.

  FIG. 18 is an example of a data type list stored in the information terminal device 1221. How each data in the data type list 1801 is used by the in-vehicle device 1201 or the information terminal device 1221 will be described.

First, digital television broadcast data will be described. This is a terrestrial digital broadcast television signal or data broadcast signal. For example, when the information output means 1229 is capable of receiving terrestrial digital broadcasts, the information processing means a 1207 or the information processing means b 1227 can view the digital terrestrial broadcasts in the passenger compartment by playing back the received digital television broadcast data. Can do.

  Next, audio data will be described. This is, for example, audio data stored in the information output unit 1229 provided with a large capacity recording medium such as an HDD (Hard Disk Drive). The information processing means a 1207 or the information processing means b 1227 can reproduce the received audio data and listen to the audio in the passenger compartment.

  Next, digital TV favorite channel information will be described. This is channel setting information customized to the user's preference when viewing digital terrestrial broadcasting. The information processing unit a1207 or the information processing unit b1227 can use a channel setting suitable for the user's preference by using the received digital television favorite channel information, and can improve convenience. Since this data relates to personal information, it is desirable that the authentication result is “permitted for all functions”.

  Next, digital television data broadcast registration information will be described. This is user information that is registered when data broadcasting of digital terrestrial broadcasting is used. By registering this user information, it is a convenient function such that the weather near the user's address can be displayed immediately without following the menu.

  The information processing unit a1207 or the information processing unit b1227 can use the data broadcast reflecting the user information set by receiving the digital television data broadcast registration information, and can improve the convenience. Since this data relates to personal information, it is desirable that the authentication result is “permitted for all functions”.

  Next, audio playlist information will be described. This is information on a playlist created from a plurality of stored audio data according to the user's preference. When the information processing unit a1207 or the information processing unit b1227 receives the audio playlist information, the audio can be reproduced in the order according to the user's preference. Since this data relates to personal information, it is desirable that the authentication result is “permitted for all functions”.

  As described above, by appropriately using data as in the data type list 1801, an information terminal system that controls data to be transmitted and a transmission destination according to the authentication result can be realized. Moreover, according to an authentication result, the transmission destination of vehicle data can be selected appropriately and the effect which improves a user's convenience can be acquired.

  As described above, in the information terminal system according to the third embodiment of the present invention, the in-vehicle device 1201 performs the authentication process on the connected information terminal device 1221 and controls the data to be transmitted and the transmission destination according to the authentication result. Further, the information terminal device 1221 performs an authentication process on the connected in-vehicle device 1201 and controls data to be transmitted and a transmission destination according to the authentication result.

  The in-vehicle device 1201 restricts data that can be transmitted to the information terminal device 1221 according to the authentication result, and the information terminal device 1221 restricts data that can be transmitted to the in-vehicle device 1201 according to the authentication result, thereby protecting personal information, etc. Considering security, it is possible to obtain the effect of further improving convenience. Further, in each of the in-vehicle device 1201 and the information terminal device 1221, a data transmission destination can be appropriately selected according to the authentication result, and an effect of improving user convenience can be obtained.

  In addition, although the structure of the information terminal system was shown in FIG. 12, it is not restricted to this. In each of the in-vehicle device 1201 and the information terminal device 1221, it can be realized even if each block is configured to be connected by a bus. In FIG. 12, the configuration of each block is shown. However, since it can be realized by software processing or the like, the hardware may be configured to handle a plurality of blocks by a microcomputer or the like.

  In addition, although the authentication process is performed in each of the in-vehicle device 1201 and the information terminal device 1221, the present invention is not limited to this. Even if both authentication processes are combined and implemented as a mutual authentication process, a similar system can be realized.

  In addition, the relationship between the data types in the data type list 1701 and the data type list 1801 and the conditions for transmission to the external device is an example, and is not limited to this. Other data may be included as long as the information output device 1209 or the information output unit 1229 is compatible. Further, if the information output device 1209 or the information output unit 1229 is not compatible, some data may not exist. In addition, the conditions for transmitting to the external device in each data type may be other conditions.

  As described above, the vehicle device according to the present invention is useful as an in-vehicle device that can perform authentication processing and control the data transmission destination according to the result of authentication, improving the convenience and security of the user. is there.

101, 801, 1201 In-vehicle device 103 Communication control means 104 Control means 105 Authentication ID database storage means 106 Authentication means 107 Connection status monitoring means 109 ETC information processing means a
111 ETC in-vehicle equipment 112 Input means 121, 821, 1221 Information terminal device 123 ID storage means 124 ETC information processing means b
125 Navigation processing means 301 Authentication ID database 601 ETC data type list 1001 Vehicle data type list 1202 Communication control means a
1203 Control means a
1204 Authentication ID database storage means a
1205 Authentication means a
1206 Connection status monitoring means a
1207 Information processing means a
1208 ID storage means a
1209 Information output device 1210 Input means a
1222 Communication control means b
1223 Control means b
1224 Authentication ID database storage means b
1225 Authentication means b
1226 Connection status monitoring means b
1227 Information processing means b
1228 ID storage means b
1229 Information output means 1230 Input means b
1701, 1801 Data type list

Claims (3)

A communication means for communicating with an external device, a storage means for storing a database of authenticated ID information for the external device, and a microcomputer,
The microcomputer determines whether the external device ID information received via the communication means matches all or part of the authenticated ID information stored in the storage means. A vehicle-mounted device that changes the type of data to be sent to the device. A connection status monitoring unit that receives ID information from the information terminal device and determines whether the ID information is authenticated; an authentication ID database storage unit that stores authentication ID information as an authentication ID database; and the connection ID information of the external device obtained from the situation monitoring means, authentication means for performing ID authentication processing using an authentication ID database stored in the authentication ID database storage means, and data stored in the own device as the information terminal Communication control means for transmitting to the device,
If the connection status monitoring unit determines that the ID information is not authenticated, the authentication unit receives the ID information from the connection status monitoring unit and determines whether the ID information is registered in the authentication ID database storage unit. A determination result is notified to the connection status monitoring unit as an authentication result, and whether the communication control unit matches all or a part of the authenticated ID information as an authentication result of the connection status monitoring unit A vehicle-mounted device that changes the type of data to be transmitted to the information terminal accordingly. In a system consisting of multiple devices,
In the microcomputer,
The type of data to be transmitted to the external device depending on whether the ID information transmitted from one device to the other device matches all or part of the authenticated ID stored in the storage means Data transmission processing method to change