JP2013258491A - Car sharing system and car sharing provisioning method - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a car sharing system that can authenticate a user even in the environment in which communication with a center is not possible.SOLUTION: A car sharing system comprises a communication terminal for performing communication with a vehicle, and the vehicle. The communication terminal includes: user information storage means for storing user information which is information to identify a user; and user information transmission means for transmitting the user information to the vehicle. The vehicle includes user information acquisition means for acquiring the user information transmitted by the communication terminal; user authentication means for storing verification information which is information to verify the acquired user information, and for authenticate the user by using the verification information and the acquired user information; and vehicle control means for putting the vehicle to an available state if the user has been determined to be valid.

Description

  The present invention relates to a car sharing system and a car sharing providing method.

  In recent years, car sharing in which a vehicle is shared by a plurality of users has become widespread. Many car sharing systems authenticate users before renting a vehicle. Specifically, the user holds the IC card over a card reader provided in the vehicle, communicates with the center, confirms that the vehicle is a reserved regular user, and then unlocks the vehicle.

  Patent Documents 1 and 2 disclose inventions that ease restrictions on realizing a car sharing system. For example, Patent Document 1 describes a car sharing system in which a plurality of users can easily adjust a vehicle use schedule. In the present invention, a website for displaying the reservation status of the vehicle is provided on the Internet, and the vehicle can be reserved or canceled by accessing this website.

  Patent Document 2 describes a technique in which a mobile phone accesses a center to authenticate a user and remotely control a vehicle. As a result, the user can carry out the vehicle lending procedure only by operation with the mobile phone without using the IC card.

JP 2002-342878 A JP 2011-154420 A

  In the conventional car sharing system, it is necessary for the vehicle and the center to communicate at the start of use and at the end of use. For example, at the start of use, it is necessary to confirm that the person who is about to get on the vehicle is an authorized user who has made a reservation. It is necessary to confirm. Therefore, communication always occurs between the vehicle and the center, or between the terminal possessed by the user and the center.

  However, this method has a problem that lending and return processing cannot be performed in a space where radio waves are shielded. For example, since it is impossible to perform reliable communication in a place where radio waves are difficult to enter, such as an underground parking lot in a building, a station cannot be installed even if there is a demand for use. Even if a station is installed, there is a problem that the convenience of the user is greatly reduced due to the occurrence of a communication error.

  This problem does not occur only in places where radio waves are difficult to reach. For example, even in urban areas, when many users use the communication band, there are cases where it takes time to connect to the center or the connection fails. In particular, if the connection to the center fails when renting out, there is a problem that the user must wait in front of the locked vehicle until normal communication is performed, leading to distrust of the system.

  The present invention has been made in consideration of the above problems, and an object thereof is to provide a car sharing system that can authenticate a user even in an environment where communication with a center cannot be performed.

  In order to achieve the above object, the car sharing system according to the present invention authenticates a user by the following means.

The car sharing system according to the present invention is a system including a communication terminal that communicates with a vehicle and the vehicle.
The communication terminal includes user information storage means for storing user information, which is information for identifying a user, and user information transmission means for transmitting the user information to a vehicle. Stores user information acquisition means for acquiring user information transmitted from the communication terminal, and verification information that is information for verifying the acquired user information, and stores the verification information and the acquired User authentication means for authenticating a user using user information, and vehicle control means for making the vehicle usable when the user judges that the user is valid .

  In the car sharing system according to the present invention, when the vehicle is rented, a terminal possessed by the user transmits user information to the vehicle. The vehicle uses the received user information to authenticate whether the user who intends to use the vehicle is valid. As an authentication method, for example, information that the vehicle has in advance and user information may be collated, or the user information may be decoded and verified with a predetermined key. If the user can confirm that it is valid, the door is unlocked, the engine is started, and the vehicle is made available. With this configuration, the communication terminal and the vehicle can get on the user without communicating with the center (hereinafter, management server). The communication terminal is not necessarily a computer, and may be a non-contact IC card or the like as long as user information can be transmitted to the vehicle.

  The car sharing system according to the present invention further includes a management server for storing a secret key, and the user information stored in the user information storage means includes information for identifying the user. The verification information stored by the user authentication means is the same secret key as the secret key, and the user authentication means stores the acquired user information in the secret key. And when the legitimate information is obtained, the user may judge that the legitimate information is legitimate.

  The management server and the vehicle may have the same secret key, and the user information may be encrypted with the secret key. If the decrypted user information received by the vehicle with the secret key is valid, it is understood that the user information is valid issued by the management server.

  The vehicle further includes unauthorized user information storage means for storing unauthorized user information that is information for identifying a user who is not permitted to use the vehicle, and the user authentication means includes the acquired user. The information may be decrypted with the secret key, and when the decryption result is not included in the unauthorized user information, the user may determine that the information is valid.

  Even if the user information is issued by the management server, there are cases where it is desired to stop the user's usage authority due to accident history or non-payment of charges. This can be realized by storing unauthorized user information, a so-called black list on the vehicle side, and permitting the use of the vehicle only when the acquired user information is not included in the list.

In addition, the management server includes an unauthorized user information distribution unit that generates the unauthorized user information and distributes the unauthorized user information to the vehicle, and the unauthorized user information storage unit receives the unauthorized user information from the unauthorized user information distribution unit. It is good also as acquiring user information.

  Unauthorized user information may be generated by the management server and distributed to the vehicle. With this configuration, the vehicle can always hold the latest unauthorized user information.

  The vehicle includes a vehicle application information acquisition means for acquiring vehicle use application information, which is information including a planned return place of the vehicle and a return return time, and a server that transmits the vehicle use application information to a management server. The server communication means may transmit the acquired vehicle use application information to the management server at a timing at which wireless communication with the management server is possible.

  After getting on, the user can apply for the scheduled return time and the planned return location of the vehicle through the communication terminal. Information relating to the application (hereinafter referred to as vehicle application information) is temporarily stored in the vehicle and transmitted at a timing when wireless communication with the management server becomes possible. By doing in this way, even when the station is in the radio wave shielding space, it becomes possible to transmit the vehicle application information to the server.

  The communication terminal further includes a first current position acquisition unit that acquires a current position, and the vehicle further includes a second current position acquisition unit that acquires a current position, and transmits the user information. The means transmits the current position information and current time information of the communication terminal to the vehicle when the user ends the use of the vehicle, and the vehicle transmits the current position information and current time information of the transmitted communication terminal. Further includes vehicle use information acquisition means for generating vehicle use result information that is information about the use result of the vehicle when the current position information and the current time information of the vehicle coincide with each other, and the server communication means The generated vehicle usage record information may be transmitted to the management server at a timing at which wireless communication with the management server is possible.

  When the vehicle return procedure is performed, the return condition can be that the position information and time information acquired from the communication terminal match the position information and time information acquired by the vehicle. Information on the usage record is transmitted to the management server at a timing when the vehicle and the management server can communicate wirelessly. By doing so, even if the return destination station is in the radio wave shielding space, the return process can be performed without performing communication with the management server. At this time, it may be added to the return condition that the planned return location and return time requested by the user in advance and the position information and time information are not deviated.

  In addition, this invention can be specified as a car sharing system containing at least one part of the said means. Moreover, this invention can also be specified as a car sharing provision method including at least one part of the said process. The above processes and means can be freely combined and implemented as long as no technical contradiction occurs.

  According to the present invention, it is possible to provide a car sharing system that can authenticate a user even in an environment where communication with the center cannot be performed.

1 is a system configuration diagram of a car sharing system according to a first embodiment. It is a figure explaining the production | generation method of a user key and unauthorized user information. It is a flowchart figure of the vehicle rental process in 1st embodiment. It is a data flow figure of the vehicle rental process in a first embodiment. It is an example of the screen of the vehicle use application process in 1st embodiment. It is a flowchart figure of the vehicle utilization application process in 1st embodiment. It is a data flow figure of vehicle use application processing in a first embodiment. It is an example of a screen of vehicle return processing in a first embodiment. It is a flowchart figure of the vehicle return process in 1st embodiment. It is a data flow figure of vehicle return processing in a first embodiment. It is a flowchart figure of the server communication process in 1st embodiment. It is a data flow figure of server communication processing in a first embodiment. It is a system configuration figure of a car sharing system concerning a second embodiment.

(First embodiment)
<System configuration>
The car sharing system according to the first embodiment will be described with reference to FIG. 1 which is a system configuration diagram. The car sharing system according to the first embodiment includes a user terminal 10 possessed by a user, a management server 20, and an in-vehicle terminal 30 mounted on a sharing target vehicle. Moreover, the user terminal 10 and the vehicle-mounted terminal 30 can each be comprised from a some terminal.

  The user terminal 10, the management server 20, and the in-vehicle terminal 30 can all be configured as an information processing apparatus including a CPU, a main storage device, and an auxiliary storage device. Each unit shown in FIG. 1 functions by loading a program stored in the auxiliary storage device into the main storage device and executing it by the CPU. Note that all or part of the illustrated functions may be executed using a circuit designed exclusively.

First, the user terminal 10 will be described. The user terminal 10 is a portable computer possessed by a user, and has a function of communicating with the in-vehicle terminal 30. The user terminal 10 may be a mobile phone or a smartphone.
The position information acquisition unit 11 is a means for acquiring the current position of the terminal. The current position (latitude and longitude) and current time of the user terminal can be acquired by a built-in GPS device or the like. The position information acquisition unit 11 is a first current position acquisition unit in the present invention.
The user key storage unit 12 is a means for storing a user key that is a key unique to the user, and is a user information storage means in the present invention. Details of the user key and the generation method will be described later.

The control unit 13 is a unit that controls the entire user terminal 10. Specifically, it is a means for performing a key transmission process at the time of vehicle rental, a generation process of vehicle application information to be transmitted to the management server, and the like. Detailed processing contents will be described later.
The vehicle communication unit 14 is means for communicating with the in-vehicle terminal 30, and is user information transmission means and vehicle application information transmission means in the present invention. Communication with the in-vehicle terminal may be performed by short-range wireless communication such as a wireless LAN or Bluetooth (registered trademark), or may be performed by extremely short-range wireless communication such as RFID (Radio Frequency Identification).
The input / output unit 15 is a means for presenting information to the user and receiving input from the user. It is composed of a liquid crystal display and a keyboard or a touch panel.

Next, the management server 20 will be described. The management server 20 is a server for managing the operational status of a plurality of vehicles under management and the usage status of the vehicle by the user.
The secret key storage unit 21 is means for storing a secret key used in the system. The secret key stored in the secret key storage unit 21 is shared between the management server and all in-vehicle terminals.
The control unit 22 is means for controlling the entire management server 20. Specifically, means for performing processing to check whether the vehicle is rented and returned as requested by the user, processing to generate usage details for billing the user, etc. It is. Detailed processing contents will be described later.

  The vehicle communication part 23 is a communication means for communicating with each vehicle-mounted terminal in a remote place. In this embodiment, communication with an in-vehicle terminal is performed by packet communication using a mobile phone network. If communication can be performed, means other than the mobile phone network such as WiMAX (Worldwide Interoperability for Microwave Access) and wireless LAN, for example. May be used.

Next, the in-vehicle terminal 30 will be described. The in-vehicle terminal 30 is a terminal mounted on a vehicle lent to a user.
The control unit 31 is a unit that controls the entire in-vehicle terminal 30. Specifically, the process of determining whether or not the user is an unauthorized user when boarding, the process of acquiring vehicle application information from the user terminal and transmitting it to the management server, the usage statement after returning the vehicle It is a means for performing the process etc. which produce | generate. The control unit 31 is a vehicle use information generating unit and a vehicle control unit in the present invention. Detailed processing contents will be described later.
The unauthorized user information storage unit 32 is a means for holding a list of users who are not permitted to use the vehicle, and is an unauthorized user information storage means in the present invention. A method for updating and collating unauthorized user information will be described later.

The server communication unit 33 is a communication unit for communicating with the management server 20, and is a server communication unit in the present invention. In the present embodiment, the server communication unit 33 performs communication using a mobile phone network, similarly to the vehicle communication unit 23.
The terminal communication unit 34 is means for communicating with the user terminal 10 and is user information acquisition means and vehicle application information acquisition means in the present invention. The terminal communication unit 34 performs communication by the same means as the vehicle communication unit 14.

The secret key storage unit 35 is a unit that stores the same key as the secret key stored in the secret key storage unit 21. The secret key storage unit 35 and the control unit 31 constitute user authentication means in the present invention. The secret key is a common key for all vehicles managed by the management server.
The position information acquisition unit 36 is a means for acquiring the current position of the in-vehicle terminal and the current time, similarly to the position information acquisition unit 11. The position information acquisition unit 36 is a second current position acquisition unit in the present invention.

<User key and unauthorized user information>
Prior to describing the process of lending a vehicle, the user key stored in the user key storage unit 12 and the unauthorized user information stored in the unauthorized user information storage unit 32 will be described.
The user key is a key unique to the user that is given when the user registers as a user in the car sharing system. A user key generation method will be described with reference to FIG. The user key is obtained by encrypting account information for identifying an individual with a secret key held by the management server 20. The account information is information for identifying the user, such as personal information of the user and driver's license information. The management server and the in-vehicle terminal having the secret key can identify the user by receiving the user key and decrypting it with the secret key. The generated user key is stored in the user key storage unit 12 in advance.

  The unauthorized user information is obtained by encrypting unauthorized user account information with a secret key held in the management server 20. The management server and the in-vehicle terminal having the secret key can receive the user key and decrypt it with the secret key to determine whether or not the owner of the user key is an unauthorized user. Unauthorized user information generated by the management server is stored in the unauthorized user information storage unit 32 of the vehicle. It is preferable that the unauthorized user information is periodically updated during vehicle maintenance.

<Treatment at vehicle rental>
Next, with reference to FIG. 3 which is a processing flowchart of the user terminal and the in-vehicle terminal at the time of vehicle rental and FIG. 4 which is a data flow diagram of vehicle rental, the user gets on the vehicle and starts driving. Processing will be described.
When the user goes to the station where the vehicle is arranged and performs a lending operation on the user terminal 10, the flowchart of FIG. Steps S11 and S12 are processes performed by the user terminal 10, and steps S13 to S17 are processes performed by the in-vehicle terminal 30.

  First, the control unit 13 acquires a user key from the user key storage unit 12 and performs encryption using the time information acquired from the position information acquisition unit 11 (S11). Encrypting using the time information is a process for securely transmitting the user key, so if the safety of communication is ensured, the user key is transmitted as it is without encryption. Also good.

  Next, the control unit 13 transmits the encrypted information to the in-vehicle terminal through the vehicle communication unit 14 (S12). The transmission of information to the in-vehicle terminal can use any method of wireless communication as described above.

  In step S <b> 13, the control unit 31 decodes the information received by the terminal communication unit 34 using the time information acquired from the position information acquisition unit 36. The time information may be treated as if the error of several seconds is the same in consideration of the time difference. With this process, the control unit 31 can obtain the user key transmitted from the user terminal. The acquired user key is temporarily stored by the control unit 31. Next, the control unit 31 decrypts the acquired user key using the secret key stored in the secret key storage unit 35. By this process, account information of the user who is going to get on the vehicle is obtained (S14). Similarly, the user account information is also temporarily stored by the control unit 31.

  Next, the control unit 31 decrypts the information stored in the unauthorized user information storage unit with the secret key. By this processing, the control unit 31 can obtain account information of all unauthorized users (S15). Then, the obtained account information is compared with the account information acquired in step S14 (S16).

  As a result, if the account information acquired in step S14 is included in the account information of the unauthorized user, the user who is about to get on the vehicle is found to be an unauthorized user, so the lending process is interrupted. When the lending process is interrupted, the terminal communication unit 34 may return a negative response to the vehicle communication unit 14 and display a guidance (for example, an inquiry to the service center) on the user terminal.

  If the account information acquired in step S14 is not included in the unauthorized user information, the user who transmitted the user key is known to be a valid user, so the control unit 31 unlocks the vehicle door. (S17). In this embodiment, only the door is unlocked, but the engine may be started or the security device necessary for starting the engine may be released.

  Through the processing described above, the user can start driving the vehicle. In the first embodiment, since the user authentication can be performed only between the user terminal and the vehicle in this way, the lending process can be performed even when the station is in the radio wave shielding space.

In the present embodiment, the acquired user information is decrypted with a secret key, and the user is authenticated by checking with the account information of the unauthorized user. However, the user authentication is performed using the decrypted result. You may go. That is, if the decryption result is different from the assumption, it may be determined that the user is an unauthorized user, and the process may be interrupted. In addition, information for verifying user information may be held, and the user may be authenticated using the information.

<Process when applying for vehicle use>
Next, a process for applying for use of a vehicle after the user has boarded the vehicle will be described. FIG. 5 is an example of an input screen for a vehicle use application performed by the user using the user terminal 10. After getting on the vehicle, the user calls the screen and inputs the application details. On the screen, the use start time (for example, the time when the vehicle is unlocked) is displayed, and the use end time and the planned return place can be input. In the present embodiment, five pieces of information of “boarding place”, “use vehicle”, “use start time”, “scheduled return place”, and “scheduled return time” are referred to as “vehicle application information”.

  FIG. 6 is a process flowchart of the user terminal and the in-vehicle terminal in the vehicle use application process. FIG. 7 is a data flow diagram in the vehicle use application process. The flowchart of FIG. 6 is started when the user calls the vehicle use application screen on the user terminal. Steps S21 to S23 are processes performed by the user terminal 10, and steps S24 to S27 are processes performed by the in-vehicle terminal 30.

First, the control part 13 acquires the vehicle application information input by the user through the input / output part 15 (S21).
Next, the control part 13 acquires a user key from the user key memory | storage part 12, and encrypts the input vehicle application information with a user key (S22). Since the user key has already been transmitted to the in-vehicle terminal, communication with the in-vehicle terminal can be encrypted using the user key.
Next, the control unit 13 transmits the encrypted information to the in-vehicle terminal through the vehicle communication unit 14 (S23). Transmission of information to the in-vehicle terminal is performed by the same communication method as in step S12.

In step S24, the control unit 31 decrypts the information received by the terminal communication unit 34 by using the temporarily stored user key. By this process, the vehicle application information transmitted from the user terminal is obtained.
Next, the control unit 31 encrypts both the acquired vehicle application information and the temporarily stored account information using the secret key stored in the secret key storage unit 35 (S25). This process is a process for securely performing communication between the in-vehicle terminal and the management server.

  Next, the server communication unit 33 checks whether wireless communication with the management server is possible (S26). If communication is not possible due to out-of-service or line congestion, wait until communication is possible. The process of step S26 is preferably retried periodically at regular intervals. When communication is possible, the control part 31 transmits the vehicle application information and account information which were encrypted to the management server 20 through the server communication part 33 (S27).

  In the management server, vehicle application information and user account information can be acquired by decrypting the received information using the secret key stored in the secret key storage unit 21. In the present embodiment, the processing of steps S21 to S23 is performed after the user gets on the vehicle, but the processing may be executed in advance before getting on the vehicle. Moreover, the vehicle-mounted terminal 30 may perform the process of step S21-S23 instead of the user terminal 10. FIG. In this case, an input / output unit may be connected to the in-vehicle terminal 30 and an operation may be received through the input / output unit.

  In addition, it is possible to make it necessary to input a vehicle use application before boarding, and to perform the processing of FIG. 3 and the processing of FIG. In this case, when the vehicle use application is not transmitted to the in-vehicle terminal, the door may not be unlocked in step S17.

<Process when returning the vehicle>
Next, vehicle return processing will be described. FIG. 8 is an example of a return processing screen presented to the user through the input / output unit 15 in the user terminal 10. When the requested end time is near, a screen for returning or extending the reservation is displayed.

  FIG. 9 is a process flowchart of the user terminal and the in-vehicle terminal in the return process. FIG. 10 is a data flow diagram in the return process. The flow chart of FIG. 9 is started when the user performs return processing (pressing the return button) using the user terminal in front of the vehicle to be returned. Steps S31 to S32 are processes performed by the user terminal 10, and steps S33 to S36 are processes performed by the in-vehicle terminal 30.

First, the control unit 13 acquires terminal position information and time information from the position information acquisition unit 11. And a user key is acquired from the user key memory | storage part 12, and the acquired positional information and time information are encrypted with a user key (S31).
Next, the control unit 13 transmits the encrypted information to the in-vehicle terminal through the vehicle communication unit 14 (S32). The transmission of information to the in-vehicle terminal is performed by the same communication method as in steps S12 and S22.

  In step S33, the control unit 31 decrypts the information received by the terminal communication unit 34 using the temporarily stored user key. By this processing, the control unit 31 can obtain the terminal position information and time information transmitted from the user terminal.

Next, the control unit 31 acquires vehicle position information and time information from the position information acquisition unit 36 (S34), and compares the position information and time information acquired from the user terminal (S35). As a result, if the position and time match, the vehicle door is locked (S36). If the position and time do not match, it means that either the information transmitted from the user terminal or the information acquired by the in-vehicle terminal is unreliable, so the processing from step S34 is retried. If they do not match even after retrying the predetermined number of times, a message indicating that the return process cannot be normally performed is transmitted to the user terminal, and the user may be notified that the inquiry is necessary.
If the station is indoors or underground and position information cannot be acquired, the processing of steps S34 to S35 may be performed using only time information, or if there is position information calculated by a sensor, a gyroscope, or the like. The processing may be performed using this.
In step S36, the control part 31 produces | generates the vehicle return information which is the information about the usage record of a vehicle. The vehicle return information is information including “use vehicle”, “use end time”, and “return location”.

  In the first embodiment, since authentication at the time of return can be performed only between the user terminal and the vehicle-mounted terminal in this way, the return process can be performed even when the station is a radio wave shielding space. In addition, although the return process of the vehicle was demonstrated in this example, you may apply for an extended use by performing a vehicle use application process repeatedly.

<Processing after vehicle return>
The in-vehicle terminal 30 tries to transmit vehicle return information to the management server after the vehicle return is completed. FIG. 11 is a process flowchart of the in-vehicle terminal in the vehicle return information transmission process. FIG. 12 is a data flow diagram in the same processing.

First, the control unit 31 encrypts both the vehicle return information and the account information stored temporarily using the secret key stored in the secret key storage unit 35 (S41). When the information to be transmitted to the management server 20 is encrypted, the in-vehicle terminal 30 deletes the user account information and the user key that are temporarily stored.

  Next, the server communication unit 33 checks whether communication with the management server is possible (S42). As a result, when communication is impossible, it waits until communication becomes possible. The process in step S42 is preferably retried periodically at regular intervals, similar to the process in step S26. If communication is possible, the control unit 31 transmits the encrypted information (vehicle return information and account information) to the management server 20 through the server communication unit 33 (S43).

  The management server can acquire the vehicle return information and the user account information by decrypting the received information using the secret key stored in the secret key storage unit 21. Then, the control unit 22 associates the vehicle application information acquired in advance with the acquired vehicle return information with the account information, and creates a usage statement to be sent to the user and charges. If the vehicle return information is different from the content of the vehicle application information, an additional fee may be charged to the user.

  According to the first embodiment, the vehicle authenticates the user, and the information transmission to the management server is performed at any time when communication is possible, thereby eliminating the need for communication at the time of boarding and returning, which was conventionally necessary, There are no restrictions on the location of the station.

  In the present embodiment, the unauthorized user account information encrypted with the secret key is stored as the unauthorized user information. However, the unauthorized user information does not necessarily need to be encrypted. Further, it may be determined that the user is valid when the user information can be normally decrypted with the secret key without storing the unauthorized user information in the in-vehicle terminal. In addition, the in-vehicle terminal may hold information that can determine the legitimacy of the user and collate with the user information.

(Second embodiment)
In the second embodiment, in addition to the first embodiment, the unauthorized user information held by the in-vehicle terminal 30 is updated online. The system configuration of the car sharing system according to the second embodiment is shown in FIG. The same means as those of the first embodiment are denoted by the same reference numerals and description thereof is omitted. The operations other than the steps described below are the same as those in the first embodiment.

  The unauthorized user information storage unit 24 is means for storing unauthorized user information in the management server. As described in the first embodiment, the unauthorized user information is obtained by encrypting unauthorized user account information with a secret key. In the present embodiment, the unauthorized user information storage unit 24 and the control unit 22 constitute unauthorized user information distribution means in the present invention.

  The vehicle-mounted terminal 30 which concerns on 2nd embodiment requests | requires transmission of an unauthorized user information, when transmitting vehicle return information to a management server in step S43. The control unit 22 that has received the request transmits the unauthorized user information stored in the unauthorized user information storage unit 24 to the in-vehicle terminal through the vehicle communication unit 23. Then, the control unit 31 stores the received unauthorized user information in the unauthorized user information storage unit 32. If the received unauthorized user information is the same version as the stored unauthorized user information, the update process may be interrupted.

  By configuring in this way, every time vehicle return information is transmitted, the in-vehicle terminal can update the unauthorized user information, and the unauthorized user information can always be kept up-to-date. It should be noted that the update of the unauthorized user information may be executed at a step other than step S43 as long as it is a timing to communicate with the management server. For example, it may be performed in step S27 or may be performed at completely independent timing.

(Modification)
The description of each embodiment is an exemplification for explaining the present invention, and the present invention can be appropriately modified or combined in a range not departing from the gist of the invention. For example, in the description of the embodiment, the position information and time information acquired by the user terminal and the position information and time information acquired by the vehicle coincide with each other as a condition for returning the vehicle. It is also possible to add a process in the case where they do not match by further collating. For example, if the time has passed the scheduled return time, you may be notified of additional charges to the user, and it is correct if the location where the return process was performed is not the planned return location You may be notified that the return procedure cannot be performed unless you move to the place.

  The in-vehicle terminal 30 may periodically transmit the current position to the management server 20. When the station is in a radio wave shielding space, the management server can only grasp the current position of the vehicle using the vehicle application information, but in this way, the management server can roughly grasp where the vehicle is. Will be able to.

DESCRIPTION OF SYMBOLS 10 User terminal 11,36 Position information acquisition part 12 User key memory | storage part 13,22,31 Control part 14,23 Vehicle communication part 15 Input / output part 20 Management server 21,35 Secret key memory | storage part 30 In-vehicle terminal 32 Unauthorized user information Storage unit 33 Server communication unit 34 Terminal communication unit

Claims (8)

A car sharing system comprising a communication terminal that communicates with a vehicle and a vehicle,
The communication terminal is
User information storage means for storing user information which is information for identifying a user;
User information transmitting means for transmitting the user information to the vehicle,
The vehicle is
User information acquisition means for acquiring user information transmitted from the communication terminal;
Storing verification information, which is information for verifying the acquired user information, the user authentication means for authenticating a user using the verification information and the acquired user information;
Vehicle control means for making the vehicle usable when the user determines that the vehicle is valid;
A car sharing system characterized by comprising: A car sharing system further including a management server for storing a secret key,
The user information stored in the user information storage means is information obtained by encrypting information for identifying a user with a secret key possessed by the management server,
The verification information stored by the user authentication means is the same secret key as the secret key,
The user authentication unit decrypts the acquired user information with the secret key, and determines that the user is valid when valid information is obtained. The described car sharing system. The vehicle is
Further comprising unauthorized user information storage means for storing unauthorized user information that is information for identifying a user who is not permitted to use the vehicle;
The user authentication means decrypts the acquired user information with the secret key, and determines that the user is valid when the decryption result is not included in the unauthorized user information. The car sharing system according to claim 2. The management server includes unauthorized user information distribution means for generating the unauthorized user information and distributing it to the vehicle,
The car sharing system according to claim 3, wherein the unauthorized user information storage unit acquires the unauthorized user information from the unauthorized user information distribution unit. The vehicle is
Vehicle application information acquisition means for acquiring vehicle use application information, which is information including the planned return place of the vehicle and the return time, from the user;
Server communication means for transmitting the vehicle use application information to a management server;
Further comprising
5. The server communication unit according to claim 1, wherein the server communication unit transmits the acquired vehicle use application information to the management server at a timing at which wireless communication with the management server is possible. Car sharing system. The communication terminal further includes first current position acquisition means for acquiring a current position,
The vehicle further includes second current position acquisition means for acquiring a current position,
The user information transmitting means transmits the current position information and current time information of the communication terminal to the vehicle when the user ends the use of the vehicle,
The vehicle is a vehicle usage record information that is information about a vehicle usage record when the current position information and current time information of the transmitted communication terminal match the current position information and current time information of the vehicle. Vehicle usage information generating means for generating
The car sharing system according to claim 5, wherein the server communication unit transmits the generated vehicle usage record information to the management server at a timing at which wireless communication with the management server is possible. User information acquisition means for acquiring user information transmitted from the communication terminal, which is information for identifying the user;
Storing verification information, which is information for verifying the acquired user information, the user authentication means for authenticating a user using the verification information and the acquired user information;
Vehicle control means for setting the vehicle in a usable state when it is determined that the user is valid;
The vehicle characterized by having. A communication terminal for communicating with a vehicle and a car sharing providing method performed by the vehicle,
A communication terminal that stores user information, which is information for identifying a user,
Transmitting the user information to the vehicle,
A vehicle for storing verification information, which is information for verifying the user information,
Obtaining user information transmitted from the communication terminal;
Authenticating a user using the verification information and the acquired user information;
When the user determines that the vehicle is valid, the step of making the vehicle usable;
A method for providing car sharing, comprising:

Images