JP2016029514A - Authentication support device, terminal devices, authentication system, and storage medium - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide an authentication support device, terminal devices, an authentication system, and a storage medium which can integrate storage media used for personal authentication in a plurality of facilities.SOLUTION: A device for supporting personal authentication which can identify a person and uses a storage medium storing personal ID information common to a plurality of facilities, comprises: a first storage unit for storing personal identification information which is associated with personal ID information and includes personal face image information; a first reception unit which receives personal ID information that is stored in the storage medium, from a terminal device installed in each facility; an extraction unit which extracts personal identification information associated with the received personal ID information from the first storage unit; and a first transmission unit which transmits the extracted personal identification information to the terminal device.SELECTED DRAWING: Figure 1

Description

  The present invention relates to an authentication assistance device for assisting personal authentication in a facility, a terminal device capable of communicating with the device, an authentication system using them, and a storage medium used for these.

  Conventionally, there is a case where the owner is authenticated in response to an inquiry from the facility that issued the point card or the credit card, or the owner of these cards. For example, Patent Literature 1 proposes a system that acquires information for an authentication center to perform authentication when a customer makes an inquiry. In this system, the authentication center searches a database and obtains customer data and an answer to an authentication question associated with the customer data. Thereafter, the authentication center compares the answer received from the customer with the acquired answer to determine whether or not the customer has been authenticated.

US Patent Publication No. 2009/0198587

  By the way, the facilities as described above generally issue cards (storage media) used for personal authentication individually. For this reason, a user who uses a plurality of facilities needs to possess a plurality of cards, and there is a problem that the management of the cards becomes complicated.

  Therefore, an object of the present invention is to provide an authentication assistant device, a terminal device, an authentication system, and a storage medium that can integrate a plurality of storage media used for personal authentication in a plurality of facilities. .

  The present invention is for solving the above-described problems, and is an apparatus for assisting personal authentication performed using a storage medium that can identify an individual and stores personal ID information common to a plurality of facilities. A personal information stored in a storage medium from a first storage unit that stores personal identification information that is associated with personal ID information and includes personal face image information, and a terminal device installed in each facility. A first receiving unit for receiving the ID information, an extracting unit for extracting the personal identification information corresponding to the received personal ID information from the first storage unit, and a first for transmitting the extracted personal identification information to the terminal device A transmission unit.

  The authentication assistant device stores personal identification information associated with personal ID information common to a plurality of facilities, and transmits the personal identification information to each facility in response to an inquiry from each facility. By sharing the personal ID information in this way, it is possible to integrate storage media for personal authentication in a plurality of facilities. Moreover, the said authentication apparatus transmits face image information to the terminal device of each facility. If this face image information is displayed on the terminal device, the employee of the facility can visually compare the face represented by the face image information with the face of the user who presented the storage medium, and input a password. It is possible to easily authenticate the user without performing troublesome work such as.

  In the authentication assistant device, the personal ID information and the face image information are used in the terminal device to make the storage medium function so as to fulfill a predetermined purpose. “Making a storage medium function so as to fulfill a predetermined purpose” is not particularly limited. For example, it can function as a point card that can be used at a store that sells products, or can be rented at a library. It can be used as a card or as a medical card that can be used in a hospital.

  In the authentication assistant device, the personal identification information may further include personal name information.

  The authentication assistant device may further include a first determination unit that determines whether the storage medium is valid or invalid. In this case, the first storage unit includes storage medium ID information for identifying the storage medium, and valid / invalid information indicating whether the storage medium associated with the storage medium ID information is valid or invalid, Is further memorized. The first receiving unit further receives storage medium ID information stored in the storage medium from the terminal device, and the extraction unit receives valid / invalid information corresponding to the received storage medium ID information from the first storage unit. The first determination unit extracts and determines whether the storage medium corresponding to the received storage medium ID information is valid or invalid based on the extracted valid / invalid information. Then, when the first determination unit determines that the storage medium corresponding to the received storage medium ID information is invalid, the first transmission unit transmits information indicating that the storage medium is invalid to the terminal device. To do. According to such a configuration, it is possible to prevent a third party from illegally using a storage medium invalidated due to loss or the like.

  The authentication assistant device may further include a generation unit that generates first one-time password information. In this case, the first storage unit further stores the first one-time password information generated by the generation unit. The first reception unit receives the second one-time password information stored in the storage medium from the terminal device, and the first transmission unit receives the first one-time password stored in the first storage unit. If the information does not match the received second one-time password information, information indicating that there is a possibility of an unauthorized storage medium is transmitted to the terminal device. Thereby, the employee of the facility can determine that there is a possibility that the presented storage medium is an unauthorized storage medium.

  The authentication assistant device may further include a decryption unit that decrypts arbitrary information encrypted using its own public key, using a secret key corresponding to the public key. In this case, the first receiving unit received information encrypted by the storage medium using the public key from the terminal device, and the extracting unit was able to decrypt the information encrypted by the storage medium by the decrypting unit. Only in such a case is the personal identification information extracted from the first storage unit. According to this configuration, it is possible to prevent a third party who does not have the secret key of the authentication assistant device from intervening between the authentication assistant device and the terminal device.

  The authentication assistant device determines whether or not to provide personal identification information to the facility when the first receiving unit receives facility ID information for identifying the facility from the terminal device. The determination unit may be further provided. In this case, the second determination unit indicates that the provision of personal identification information to the facility is approved when the number of communication between the facility corresponding to the facility ID information and the authentication assistant device is equal to or less than the predetermined number. Is transmitted to the extraction unit, and the extraction unit extracts the personal identification information from the first storage unit only when the approval signal is received.

  The authentication assistant device may further include an acquisition unit that acquires advertisement information associated with the facility ID information when the first reception unit receives the facility ID information for identifying the facility from the terminal device. You may have. In this case, the first transmission unit further transmits the acquired advertisement information to the terminal device.

  The present invention is to solve the above-described problem, and is a terminal device that communicates with the authentication assistant device and reads personal ID information from a storage medium, and transmits the read personal ID information to the authentication assistant device. And a second receiving unit that receives personal identification information from the authentication assistant device.

  The terminal device may further include a display unit that displays personal identification information received from the authentication assistant device.

  Or the said terminal device can further be provided with the display part which displays the advertisement information received from the authentication auxiliary | assistance apparatus.

  An authentication system according to the present invention is for solving the above-described problem, and includes the authentication auxiliary device and the terminal device.

  The present invention is to solve the above-described problem, and is a storage medium that is commonly used for personal authentication in a plurality of facilities in which terminal devices capable of communicating with the authentication assistant device are installed. The second storage unit stores the communication unit for communicating with the apparatus, the second storage unit that can identify an individual and stores personal ID information common to a plurality of facilities, and the communication unit. A control unit that causes the terminal device to read personal ID information.

  In the storage medium, the second storage unit preferably further stores storage medium ID information for identifying the storage medium.

  Further, in the above storage medium, the second storage unit further stores one-time password information, and the control unit receives the second one-time password information from the terminal device via the communication unit. The one-time password information stored in the storage unit may be updated with the received new one-time password information.

  In the storage medium, the second storage unit further stores the public key of the authentication assistant device, and the control unit can be configured to encrypt any information using the public key.

  According to the present invention, cards used for personal authentication in a plurality of facilities can be integrated.

It is a functional block diagram of the authentication system which concerns on 1st-4th embodiment of this invention. It is a figure which shows an example of the personal identification information which an authentication auxiliary | assistance apparatus memorize | stores in 1st Embodiment of this invention. In each embodiment of this invention, it is a figure which shows an example of the information which a terminal device memorize | stores. It is a functional block diagram of an IC card concerning each embodiment of the present invention. It is the front view and back view of an IC card concerning each embodiment of the present invention. It is a sequence diagram which shows the process of the authentication system which concerns on 1st Embodiment of this invention. In 2nd Embodiment of this invention, it is a figure which shows an example of the personal identification information which an authentication auxiliary | assistance apparatus memorize | stores. It is a sequence diagram which shows the process of the authentication system which concerns on 2nd Embodiment of this invention. It is a figure which shows an example of the personal identification information which an authentication auxiliary | assistance apparatus memorize | stores in 3rd Embodiment of this invention. It is a sequence diagram which shows the process of the authentication system which concerns on 3rd Embodiment of this invention. It is a flowchart which shows a part of process of the authentication system which concerns on 3rd Embodiment of this invention. It is a sequence diagram which shows the process of the authentication system which concerns on 4th Embodiment of this invention. It is a functional block diagram of the authentication auxiliary | assistance apparatus which concerns on 5th Embodiment of this invention. In 5th Embodiment of this invention, it is a figure which shows an example of the communication remaining frequency information which an authentication auxiliary | assistance apparatus memorize | stores. It is a sequence diagram which shows the process of the authentication system which concerns on 5th Embodiment of this invention. It is a flowchart which shows a part of process of the authentication system which concerns on 5th Embodiment of this invention. It is a functional block diagram of the authentication auxiliary | assistance apparatus which concerns on 6th Embodiment of this invention. In 6th Embodiment of this invention, it is a figure which shows an example of the user information which an authentication auxiliary | assistance apparatus memorize | stores. It is a sequence diagram which shows the process of the authentication system which concerns on 6th Embodiment of this invention. It is a flowchart which shows a part of process of the authentication system which concerns on 6th Embodiment of this invention.

{First embodiment}
Hereinafter, a first embodiment of the present invention will be described with reference to the drawings.

  As shown in FIG. 1, the authentication system 100 according to the first embodiment includes an authentication auxiliary device 1 and a terminal device 2 that is installed in a facility and can communicate with the authentication auxiliary device 1 via a network. Yes. Examples of the facility include a store, a library, and a hospital, but are not particularly limited as long as personal authentication is performed using a card. Further, for convenience of explanation, one facility is shown in FIG. 1, but usually there are a plurality of facilities having the terminal device 2 that can communicate with the authentication assistant device 1.

  As shown in FIG. 1, the authentication assistant device 1 includes a server 11 and a database 12. The server 11 includes a reception unit 11a, a control unit 11b, and a transmission unit 11c. The control unit 11b includes the “extraction unit” of the present invention.

  The receiving unit 11a receives personal ID information, which will be described later, from the terminal device 2, and delivers this personal ID information to the control unit 11b. The control unit 11b extracts personal identification information from the database 12 based on the personal ID information, and delivers it to the transmission unit 11c. The transmission unit 11 c transmits the received personal identification information to the terminal device 2. The processing of the authentication assistant device 1 will be described later in detail.

  The server 11 physically includes a CPU and a memory (not shown). In the server 11, the functions of the reception unit 11a, the control unit 11b, and the transmission unit 11c may be realized by a program. In this case, programs that realize the functions of the reception unit 11a, the control unit 11b, and the transmission unit 11c are stored in the memory and executed by the CPU.

  The database 12 stores personal identification information including face image information and name information. Specifically, as shown in FIG. 2, the database 12 stores a personal identification table T1, and the personal identification table T1 includes personal ID information d11 for uniquely identifying an individual, and personal ID information d11. The face image information d12 and the name information d13 associated with are stored. The database 12 corresponds to the “storage unit” of the present invention.

  As shown in FIG. 1, the terminal device 2 is connected to a card reader 4 that reads personal ID information of an IC card 3 to be described later, and includes a transmission unit 2a, a reception unit 2b, a display unit 2c, and a control unit 2d. And. In the terminal device 2, the transmission unit 2a, the reception unit 2b, and the display unit 2c are controlled by the control unit 2d. Further, the control unit 2d is configured to be able to access the individual database 5 managed individually by each facility.

  The terminal device 2 physically includes a CPU and a memory (not shown). In the terminal device 2, the functions of the transmission unit 2a, the reception unit 2b, the display unit 2c, and the control unit 2d may be realized by a program. In this case, programs that realize the functions of the transmission unit 2a, the reception unit 2b, the display unit 2c, and the control unit 2d are stored in the memory and executed by the CPU.

  As shown in FIG. 1, when the personal ID information of the IC card 3 is read into the terminal device 2 via the card reader 4, the control unit 2d acquires the personal ID information and delivers it to the transmission unit 2a. The transmission unit 2a transmits the personal ID information to the authentication assistant device 1 via the network. The receiving unit 2b receives the personal identification information described above from the authentication assistant device 1 and delivers it to the control unit 2d. The control unit 2d displays the personal identification information on the display unit 2c. In addition, the control unit 2d performs a predetermined process based on an operation of a facility employee or the like. The processing of the terminal device 2 will be described in detail later.

  The individual database 5 stores user information including personal ID information as shown in FIG. Specifically, the individual database 5 stores a user table T2, and the user table T2 is associated with the same personal ID information d11 and personal ID information d11 as the personal identification table T1 (FIG. 2). Attribute information d22 to be stored is stored. In the example of FIG. 3, last usage date information d22a is stored as the attribute information d22. The personal ID information d11 is commonly used in a plurality of facilities and is stored in the individual database 5 of each facility.

  The IC card 3 is commonly used in a plurality of facilities for personal authentication. As shown in FIG. 4, a communication unit 31 for communicating with the terminal device 2 via the card reader 4 and a storage unit 32 and a control unit 33. The storage unit 32 stores personal ID information of the owner of the IC card 3 and card ID information for identifying the IC card 3. The control unit 33 causes the terminal device 2 to read out such information via the communication unit 31. The personal ID information stored in the storage unit 32 is also stored as personal ID information d11 in the personal identification table T1 (FIG. 2) and the user table T2 (FIG. 3). The IC card 3 corresponds to “storage medium” in the present invention, and the card ID information corresponds to “storage medium ID information” in the present invention.

  The IC card 3 may be used only for personal authentication, but may function to fulfill a predetermined purpose of the card used in each facility. For example, if the facility is a store that sells products, the IC card 3 can function as a point card or a credit card. If the facility is a library, the IC card 3 functions as a rental card. Can do. Furthermore, when the facility is a hospital, the IC card 3 may function as a diagnosis card.

  Further, as shown in FIG. 5, the IC card 3 preferably has the owner's name 3Fa and the photograph 3Fb displayed on the front surface 3F and the personal ID 3Ba displayed on the back surface 3B. The personal ID 3Ba displayed on the back surface 3B may be a part of the character string indicating the personal ID or may be the whole.

  Next, the flow of processing performed by the authentication system 100 configured as described above will be described with reference to FIGS. 1 and 6.

  First, when the card reader 4 reads the IC card 3 presented by the user at the facility, the personal ID information stored in the IC card 3 is read into the terminal device 2, and the control unit 2d acquires the personal ID information. (Step S11).

  The control unit 2d delivers the acquired personal ID information to the transmission unit 2a, and the transmission unit 2a transmits the personal ID information to the authentication assistant device 1 via the network (step S12a).

  In the authentication assistant device 1, the receiving unit 11a receives the personal ID information transmitted by the terminal device 2 and delivers it to the control unit 11b (step S12b). The control unit 11b searches the database 12 using this personal ID information as a search condition, and extracts personal identification information associated with the personal ID information from the database 12 (step S13). Specifically, the control unit 11b searches the personal identification table T1 (FIG. 2) and extracts data associated with the personal ID information d11 that matches the personal ID information received from the terminal device 2. This data includes face image information d12. For example, when the personal ID information transmitted from the terminal device 2 is “pID123”, the personal identification table T1 in FIG. 2 includes a record whose personal ID information d11 is “pID123”. Data including d12 is extracted. The extracted data may further include name information d13.

  The control unit 11b delivers the extracted personal identification information to the transmission unit 11c, and the transmission unit 11c transmits the personal identification information to the terminal device 2 via the network (step S14a).

  In the terminal device 2, the receiving unit 2b receives the personal identification information and delivers it to the control unit 2d (step S14b). The control unit 2d displays the face image information included in the personal identification information on the display unit 2c (step S15). When name information is included in the personal identification information received from the authentication assistant device 1, the name information may be displayed on the display unit 2c together with the face image information.

  The employee of the facility authenticates the user who presented the IC card 3 based on the face image information displayed on the display unit 2c (step S16). Specifically, the employee of the facility visually checks whether the face represented by the face image information displayed on the display unit 2c matches the face of the user who presented the IC card 3, and If yes, the user of the IC card 3 is authenticated as a legitimate user. Thereafter, for example, when an employee of the facility presses a confirmation button displayed on the display unit 2c, the control unit 2d acquires information indicating that the user has been authenticated.

  When the IC card 3 functions to fulfill a predetermined purpose of a card used in each facility, the control unit 2d performs a process for executing the function (step S17).

  For example, when the facility is a store that sells products and the IC card 3 functions as a point card, points according to the amount of the product purchased by the user who presented the IC card 3 are given. At this time, the controller 2d updates point information (not shown) stored in the individual database 5 and associated with the personal ID information of the IC card 3 presented. When the IC card 3 functions as a credit card that can be used in the store, the control unit 2d passes the personal ID information, the purchase amount, etc. to the transmission unit 2a, and the transmission unit 2a transmits these information via the network. The data is transmitted to a credit card issuing company server (not shown). A credit card issuer server or the like performs processing such as settlement approval using the received personal ID information and purchase amount.

  Further, for example, when the facility is a library and the IC card 3 functions as a loan card, the control unit 2d stores the loan stored in the individual database 5 and associated with the personal ID information of the IC card 3 presented. Update information (not shown).

  Further, for example, when the facility is a hospital and the IC card 3 functions as a diagnosis card, the control unit 2d stores the reservation stored in the individual database 5 and associated with the personal ID information of the IC card 3 presented. Information (not shown) is displayed on the display unit 2c.

  As described above, in the terminal device 2, when the personal ID information is read from the IC card 3 and the face image information is acquired from the authentication assistant device 1, a predetermined function of the IC card 3 is realized. Therefore, it can be said that the personal ID information and the face image information are information for realizing a predetermined function of the IC card 3.

  If no record that matches the search condition exists in the personal identification table T1 in step S13, the authentication assistant device 1 does not need to transmit anything to the terminal device 2, and the personal identification information is not stored. Information indicating that it does not exist may be transmitted. In this case, since the face image information is not displayed on the display unit 2c of the terminal device 2, the employee of the facility determines that the user of the presented IC card 3 cannot be authenticated.

  Each step described above may be realized by a program stored in each memory of the terminal device 2 and the server 11. In this case, a program for realizing Step S11, Step S12a, Step S14b, Step S15, and Step S17 is stored in the memory of the terminal device 2 and is executed by the CPU of the terminal device 2. In addition, a program that realizes Step S12b, Step S13, and Step S14a is stored in the memory of the server 11 and is executed by the CPU of the server 11.

  As described above, in the authentication system 100 according to the first embodiment, personal ID information used in a plurality of facilities is shared. Since the same face image information is transmitted from the authentication assistant device 1 to the terminal device 2 regardless of which facility the IC card 3 is read into the terminal device 2, personal authentication in a plurality of facilities is performed with one IC card 3. And the cards used for personal authentication can be integrated. In addition, since the face image information is displayed on the terminal device 2, a facility employee or the like can visually check whether the face represented by the face image information matches the face of the user who presented the IC card 3. It can be confirmed, and the user can be easily authenticated without troublesome operations such as inputting a password.

  In the first embodiment, the terminal device 2 obtains the personal ID information of the IC card 3 and the face image information from the authentication assistant device 1, that is, the user who presented the IC card 3 is properly used. When the user can be authenticated, the IC card 3 can be configured to realize a predetermined function. For this reason, it is possible to prevent an unauthorized use of a predetermined function of the IC card 3 by a third party who is not an authorized user.

{Second Embodiment}
Hereinafter, a second embodiment of the present invention will be described with reference to FIGS. In addition, about the structure already demonstrated, the same code | symbol is attached | subjected and description is abbreviate | omitted.

  The second embodiment is different from the first embodiment in that the authentication system 100 has a configuration for determining whether the IC card 3 is valid or invalid.

  In the authentication assistant device 1 shown in FIG. 1, the control unit 11b is configured to determine whether the IC card 3 is valid or invalid. That is, the control unit 11b further includes a “first determination unit” of the present invention.

  In the authentication assistant device 1 shown in FIG. 1, the personal identification information stored in the database 12 includes card ID information for uniquely identifying the IC card 3 and whether the IC card 3 is valid or invalid. Indicates valid / invalid information. Specifically, as shown in FIG. 7, the database 12 stores a personal identification table T1A. The personal identification table T1A includes card ID information d14 associated with the personal ID information d11, and card ID information. Valid / invalid information d15 associated with d14 is further stored. The valid / invalid information d15 indicates whether the IC card 3 specified by the card ID information d14 is valid or invalid. The valid / invalid information d15 contains information indicating that the IC card 3 is valid as an initial value. For example, the valid owner of the IC card 3 has lost the IC card 3. When the administrator of the authentication system 100 is notified, the information is updated to information indicating that the IC card 3 is invalid.

  Next, the flow of processing by the authentication system according to the second embodiment will be described with reference to FIGS.

  First, in the terminal device 2, the personal ID information and the card ID information stored in the IC card 3 are read, and the personal ID information and the card ID information are acquired by the control unit 2d (step S21).

  The control unit 2d delivers the acquired personal ID information and card ID information to the transmission unit 2a, and the transmission unit 2a transmits the personal ID information and card ID information to the authentication assistant device 1 via the network (step S22a). ).

  In the authentication assistant device 1, the receiving unit 11a receives the personal ID information and the card ID information transmitted by the terminal device 2, and delivers them to the control unit 11b (step S22b). The controller 11b extracts valid / invalid information corresponding to the card ID information from the database 12 using the card ID information as a search condition. Specifically, the control unit 11b searches the personal identification table T1A (FIG. 7), and when the card ID information d14 matches the card ID information received from the terminal device 2, the valid / invalid corresponding to the card ID information d14. Data including the information d15 is extracted, and it is determined whether the corresponding card is valid or invalid (step S23). For example, when the card ID information received from the terminal device 2 is “cID123”, since the valid / invalid information d15 is “invalid” in the example illustrated in FIG. 7, the control unit 11b corresponds to this card ID information. It is determined that the IC card 3 is invalid. For example, when the card ID information received from the terminal device 2 is “cID456”, the valid / invalid information d15 is “valid” in the example shown in FIG. It is determined that the corresponding IC card 3 is valid.

  When the IC card 3 specified by the card ID information received from the terminal device 2 is valid, the control unit 11b uses the personal ID information as a search condition from the database 12 as in step S13 of the first embodiment. Personal identification information is extracted (step S24). On the other hand, when the IC card 3 specified by the card ID information received from the terminal device 2 is invalid, the control unit 11b does not extract personal identification information.

  When the personal identification information is extracted, the control unit 11b delivers the personal identification information to the transmission unit 11c, and when the personal identification information is not extracted, the control unit 11b delivers warning information indicating that the IC card 3 is invalid. The transmitter 11c transmits this information to the terminal device 2 via the network (step S25a).

  In the terminal device 2, when the receiving unit 2b receives the personal identification information (step S25b), the control unit 2d displays the face image information on the display unit 2c as in step S15 of the first embodiment (step S26). ). Thereafter, Steps S27 and S28 similar to Steps S16 and S17 of the first embodiment are executed. On the other hand, when the receiving unit 2b receives warning information indicating that the card is invalid (step S25b), the control unit 2d displays this information on the display unit 2c (step S26). In this case, the employee of the facility determines that the presented IC card 3 is invalid.

  Each step described above may be realized by a program stored in each memory of the terminal device 2 and the server 11. In this case, the program for realizing Step S21, Step S22a, Step S25b, Step S26, and Step S28 is stored in the memory of the terminal device 2, and is executed by the CPU of the terminal device 2. Further, a program that realizes Step S22b, Step S23, Step S24, and Step S25a is stored in the memory of the server 11, and is executed by the CPU of the server 11.

  Thus, in the second embodiment, for example, when the authorized owner of the IC card 3 notifies the administrator of the authentication system 100 that the IC card 3 has been lost, and the IC card 3 is invalidated, In the terminal device 2, warning information indicating that the IC card 3 is invalid is displayed. For this reason, the employees of the facility may recognize that the presented IC card 3 is invalid and that the presenter of the IC card 3 may be attempting to use the IC card 3 illegally. it can. As a result, unauthorized use of the IC card 3 can be prevented.

  In the second embodiment, when the control unit 11b determines that the IC card 3 corresponding to the card ID information transmitted from the terminal device 2 to the authentication assistant device 1 is invalid, the control unit 11b extracts the personal identification information. However, the personal identification information may be extracted. In this case, the transmission unit 11c transmits warning information and personal identification information indicating that the IC card 3 is invalid to the terminal device 2 via the network.

{Third embodiment}
Hereinafter, a third embodiment of the present invention will be described with reference to FIGS. 9 to 11.

  The third embodiment is different from the first embodiment in that the authentication system 100 has a configuration for detecting a copy of the IC card 3.

  In the authentication assistant device 1 shown in FIG. 1, the control unit 11b is configured to generate one-time password information. That is, the control unit 11b further includes the “generation unit” of the present invention.

  In the third embodiment, the personal identification information stored in the database 12 includes face image information, name information, and one-time password information. Specifically, as shown in FIG. 9, the database 12 stores a personal identification table T1B. In the personal identification table T1B, face image information d12, name information d13, and one-time password information d16 are personal IDs. It is stored in association with the information d11.

  The storage unit 32 (FIG. 4) of the IC card 3 stores one-time password information in addition to personal ID information and card ID information.

  Next, the flow of processing by the authentication system according to the third embodiment will be described with reference to FIGS. 1 and 10.

  First, the terminal device 2 reads the personal ID information and the one-time password information stored in the IC card 3, and the control unit 2d acquires the personal ID information and the one-time password information (step S31).

  The control unit 2d delivers the acquired personal ID information and one-time password information to the transmission unit 2a, and the transmission unit 2a transmits the personal ID information and the one-time password information to the authentication assistant device 1 via the network ( Step S32a).

  In the authentication assistant device 1, the receiving unit 11a receives the personal ID information and the one-time password information transmitted from the terminal device 2, and delivers them to the control unit 11b (step S32b). The control unit 11b extracts personal identification information from the database 12 using the personal ID information as a search condition, similarly to step S13 (FIG. 6) of the first embodiment (step S33). Specifically, the control unit 11b searches the personal identification table T1B (FIG. 9) and extracts data associated with the personal ID information d11 that matches the personal ID information received from the terminal device 2. However, the extracted data includes the one-time password information d16.

  The control unit 11b compares the one-time password information transmitted from the terminal device 2 with the one-time password information d16 of the extracted record, and generates new one-time password information as necessary (step S34).

  Here, the comparison and generation process of the one-time password information (step S34) will be described with reference to FIG.

  First, the control unit 11b acquires the one-time password information transmitted from the terminal device 2 and the extracted one-time password information d16 (step S341), and determines whether or not they match (step S342). If the two do not match, the control unit 11b generates warning information indicating that the IC card 3 may be an unauthorized card (step S343). On the other hand, if the two match, the control unit 11b generates new one-time password information, and updates the one-time password information d16 in the personal identification table T1B (FIG. 9) with the generated one-time password information (step S344). ). Further, the control unit 11b generates information indicating that the IC card 3 is a legitimate card (step S345).

  Returning to FIG. When the warning information is generated in step S343, the control unit 11b passes the warning information to the transmission unit 11c. Otherwise, the control unit 11b passes the extracted personal identification information and the generated one-time password information to the transmission unit 11c. The transmission unit 11c transmits the received warning information or personal identification information and one-time password information to the terminal device 2 via the network (step S35a).

  In the terminal device 2, when the receiving unit 2b receives the warning information, the control unit 2d displays the warning information on the display unit 2c (steps S35b and S36). When the receiving unit 2b receives the personal identification information and the one-time password information, the control unit 2d displays the face image information on the display unit 2c as in step S15 (FIG. 6) described in the first embodiment ( Step S35b and Step S36). The control unit 2d transmits the received one-time password information to the IC card 3 via the card reader 4 (step S37), and the IC card 3 uses the one-time password information to store the existing one-time password information. Update (step S38). In the third embodiment, the card reader 4 is configured to be able to write to the IC card 3 as well. Moreover, step S37 and step S38 may be performed after step S39 mentioned later.

  Thereafter, in the same manner as in step S16 and step S17 (FIG. 6) of the first embodiment, authentication of the user who presented the IC card 3 (step S39) and execution of a predetermined function of the card used in each facility (Step S40) is performed.

  Each step described above may be realized by a program stored in each memory of the terminal device 2 and the server 11 and the storage unit 32 (FIG. 4) of the IC card 3. In this case, the program for realizing Step S31, Step S32a, Step S35b, Step S36, Step S37, and Step S40 is stored in the memory of the terminal device 2 and is executed by the CPU of the terminal device 2. A program that realizes Step S32b, Step S33, Step S34 (Step S341 to Step S345), and Step S35a is stored in the memory of the server 11, and is executed by the CPU of the server 11. A program for realizing step S38 is stored in the storage unit 32 of the IC card 3 and is executed by the control unit 33.

  As described above, in the third embodiment, when the one-time password information is generated by the authentication assistant device 1, the one-time password information is normally written to the IC card 3. And the one-time password information of the authentication assistant device 1 should match. However, when the IC card 3 is copied and either the copied illegal IC card or the legitimate IC card 3 is used in the facility, the one-time password information of one IC card is the one of the authentication assistant device 1. It will not match the time password information. When an IC card whose one-time password information does not match that of the authentication assistant device 1 is used, the authentication assistant device 1 transmits warning information indicating that the IC card 3 is an illegal card. Since the information is displayed, the employee or the like of the facility can recognize that the IC card is duplicated or there is another duplicated IC card.

  In the third embodiment, the case where the one-time password information of the IC card 3 and the authentication assistant device 1 is updated each time communication is performed has been described. However, the IC card 3 and the authentication assistant device 1 are used every plurality of times of communication. The one-time password information may be updated.

  In the third embodiment, when the one-time password information transmitted from the terminal device 2 and the one-time password information extracted from the database 12 do not match, the control unit 11b determines that the IC card 3 is an unauthorized card. Only the warning information to the effect is delivered to the transmission unit 11c, but the personal identification information extracted from the database 12 may be delivered to the transmission unit 11c together with the warning information. In this case, the transmission unit 11c transmits the warning information and the personal identification information to the terminal device 2 via the network.

{Fourth embodiment}
Hereinafter, a fourth embodiment of the present invention will be described with reference to FIGS.

  The fourth embodiment is different from the first to third embodiments in that the authentication system 100 has a configuration for preventing the third party from intervening.

  In the authentication assistant device 1 shown in FIG. 1, the control unit 11 b is configured to be able to decrypt any information encrypted with its own public key with a secret key. That is, the control unit 11b further includes the “decoding unit” of the present invention in addition to the “extraction unit” described in the first embodiment. Note that the control unit 11b may include at least one of the “first determination unit” described in the second embodiment and the “generation unit” described in the third embodiment as necessary.

  In addition to personal ID information and card ID information, the storage unit 32 of the IC card 3 stores a public key of the authentication assistant device 1 and an encryption program for encrypting arbitrary information using the public key. Yes. In the IC card 3, this encryption program is executed by the control unit 33. When the control unit 11b of the authentication assistant device 1 includes a “generation unit” as in the third embodiment, the one-time password information is stored in the storage unit 32 of the IC card 3.

  Next, the flow of processing by the authentication system according to the fourth embodiment will be described with reference to FIGS. 1 and 12.

  First, the IC card 3 encrypts arbitrary information using the public key of the authentication assistant device 1 (step S41), and this encrypted information is read into the terminal device 2 via the card reader 4 (step S42).

  In the terminal device 2, the control unit 2d acquires the encrypted information and passes this encrypted information to the transmitting unit 2a. The transmission unit 2a transmits the encrypted information to the authentication assistant device 1 via the network (step S43a).

  In the authentication assistant device 1, the receiving unit 11a receives the encrypted information transmitted by the terminal device 2 and delivers it to the control unit 11b (step S43b). The controller 11b decrypts the encrypted information using the secret key of the authentication assistant device 1 (step S44).

  When the encrypted information can be decrypted, the control unit 11b delivers the decrypted information to the transmission unit 11c. The transmission unit 11c transmits the decoding information to the terminal device 2 via the network (step S45a).

  In the terminal device 2, when the reception unit 2b receives the decryption information, the control unit 2d writes the decryption information to the IC card 3 via the card reader 4 (steps S45b and S46). In the fourth embodiment, the card reader 4 is configured to be able to write to the IC card 3 as well.

  The IC card 3 compares and verifies the written decryption information and the pre-encryption information, and if they match, the card reader 4 is allowed to read the personal ID information (step S47).

  The subsequent processing is the same as that in the first to third embodiments. That is, personal ID information is read from the IC card 3 to the terminal device 2, personal authentication is performed according to the procedure shown in FIG. 6, FIG. 8, or FIG. 10, and the function of the card used in each facility is executed. The

  Each step described above may be realized by a program stored in each memory of the storage unit 32 (FIG. 4) of the IC card 3 and the terminal device 2 and the server 11. In this case, the program that realizes step S41 and step S47 is stored in the storage unit 32 of the IC card 3 and is executed by the control unit 33. Programs that realize Step S42, Step S43a, Step S45b, and Step S46 are stored in the memory of the terminal device 2 and are executed by the CPU of the terminal device 2. A program that realizes Step S43b, Step S44, and Step S45a is stored in the memory of the server 11, and is executed by the CPU of the server 11.

  Thus, in the fourth embodiment, reading of personal ID information from the IC card 3 is permitted only when the authentication assistant device 1 can decrypt the information encrypted by the IC card 3. For this reason, a third party who does not have the secret key of the authentication assistant device 1 is interposed between the terminal device 2 and the authentication assistant device 1, and this third person acquires the personal ID information of the IC card 3. Can be prevented.

{Fifth embodiment}
Hereinafter, a fifth embodiment of the present invention will be described with reference to FIGS. 13 to 16.

  The fifth embodiment is different from the first to fourth embodiments in that the number of communication between the facility and the authentication assistant device 1A is limited.

  As shown in FIG. 13, the authentication assistant device 1 </ b> A includes a server 13 in addition to the server 11 and the database 12. The server 13 stores the remaining communication count information for each facility. Specifically, as shown in FIG. 14, the server 13 stores a remaining communication count table T3. The remaining communication count table T3 includes facility ID information d31 for uniquely identifying a facility, and a facility ID. The remaining number of times information d32 associated with the information d31 is stored. The remaining number information d32 is information indicating how many times the corresponding facility can communicate with the authentication assistant device 1A, and the value is set according to the purchase amount of the number of communication. That is, the facility is charged for each communication between the facility and the authentication assistant device 1A. The server 13 may physically include a memory in which each program is stored and a CPU (not shown) that executes the program. The server 13 corresponds to a “second determination unit” of the present invention.

  The terminal device 2 stores the facility ID information of the facility in which the terminal device 2 is installed, and is the same as the above embodiments except that the transmission unit 2a transmits the facility ID information together with the personal ID information to the authentication assistant device 1A. It is configured.

  Next, the flow of processing by the authentication system according to the fifth embodiment will be described with reference to FIGS. 13 and 15.

  As in step S11 (FIG. 6) of the first embodiment, first, in the facility, the personal ID information of the IC card 3 presented by the user is read into the terminal device 2, and the control unit 2d acquires the personal ID information. (Step S51). The transmission unit 2a transmits the personal ID information received from the control unit 2d and the facility ID information corresponding to the terminal device 2 to the authentication assistant device 1A via the network (step S52a).

  In the authentication assistant device 1A, the receiving unit 11a receives the personal ID information and the facility ID information, and delivers the personal ID information and the facility ID information to the control unit 11b (step S52b). The control unit 11b transmits the facility ID information to the server 13 via the transmission unit 11c, and determines whether or not communication with the terminal device 2 is possible based on the result returned from the server 13 (step). S53).

  Here, the processing in the server 13 will be described with reference to FIG. The server 13 searches the remaining communication count table T3 (FIG. 14) using the facility ID received from the server 11 as a search condition, and acquires the remaining count information d32 (step S531). The server 13 determines whether or not the remaining number information d32 is greater than 0 (step S532). If the remaining number information d3 is 0, information indicating that communication is not possible is returned to the receiving unit 11a (step S532). S533). On the other hand, when the remaining number information d32 is larger than 0, the server 13 updates the remaining number information d32 in the remaining communication number table T3 with a value obtained by subtracting 1 from the current value (step S534). Taking FIG. 14 as an example, when the facility ID received from the transmission unit 11c is “sID123”, the remaining number information d32 in the remaining communication number table T3 is obtained by subtracting 1 from the current value “30” “ 29 ”. In addition, the server 13 returns information indicating that communication is possible to the reception unit 11a (step S535).

  Returning to FIG. 15, the description will be continued. When receiving information indicating that communication is possible from the server 13 via the receiving unit 11a, the control unit 11b extracts personal identification information corresponding to the personal ID information from the database 12 and delivers it to the transmission unit 11c. The subsequent processing from step S54 to step S58 is the same as that from step S13 to step S17 (FIG. 6) of the first embodiment, and a description thereof will be omitted.

  Each step described above may be realized by a program stored in each memory of the terminal device 2, the server 11, and the server 13. In this case, the program for realizing Step S51, Step S52a, Step S55b, Step S56, and Step S58 is stored in the memory of the terminal device 2 and is executed by the CPU of the terminal device 2. A program for realizing Step S52b, Step S54, and Step S55a is stored in the memory of the server 11, and is executed by the CPU of the server 11. A program for realizing step S53 (steps S531 to S535) is stored in the memory of the server 13 and is executed by the CPU of the server 13.

  As described above, in the fifth embodiment, the remaining number of communications is determined for each facility according to the purchase amount of the number of communications, and the terminal device 2 installed in each facility is authenticated based on this remaining number of times. It can be determined whether 1A is accessible.

{Sixth embodiment}
Hereinafter, a sixth embodiment of the present invention will be described with reference to FIGS.

  The sixth embodiment is different from the first to fifth embodiments in that the authentication assistant device 1B transmits advertisement information to the terminal device 2.

  As illustrated in FIG. 17, the authentication assistant device 1 </ b> B includes a server 14 in addition to the server 11 and the database 12. The server 14 stores advertisement information for each facility. Specifically, as shown in FIG. 18, the server 14 stores an advertisement table T4. The advertisement table T4 corresponds to facility ID information d41 for uniquely identifying a facility and facility ID information d41. The attached advertisement information d42 is stored. Note that the server 14 physically includes a memory in which each program is stored and a CPU (not shown) that executes the program. The server 14 corresponds to the “acquisition unit” of the present invention. In FIG. 17, the server 13 described in the fifth embodiment is not shown, but the authentication assistant device 1 </ b> B may further include the server 13.

  Next, the flow of processing by the authentication system according to the sixth embodiment will be described with reference to FIGS. 17 and 19.

  In the terminal device 2, the transmission unit 2a transmits the personal ID information and the facility ID information corresponding to the terminal device 2 to the authentication assistant device 1B via the network (step S61a). Although not particularly limited, the transmission unit 2a preferably transmits the facility ID information to the authentication assistant device 1B at a timing different from the transmission of the personal ID information described in the first to fifth embodiments.

  In the authentication assistant device 1B, the receiving unit 11a receives the facility ID information and delivers the facility ID information to the control unit 11b (step S61b). The control unit 11b transmits facility ID information to the server 14 via the transmission unit 11c, and acquires advertisement information corresponding to the facility ID information from the server 14 (step S62).

  Here, the processing in the server 14 will be described with reference to FIG. The server 14 searches the advertisement table T4 (FIG. 18) using the facility ID information received from the server 11 as a search condition, and if there is a target record, acquires the advertisement information d42 (step S621). For example, taking FIG. 18 as an example, if the facility ID received from the receiving unit 11a is “sID123”, the advertisement information d42 of “xxxx bow” is acquired. When the advertisement information d42 can be acquired from the advertisement table T4, the server 14 returns the acquired advertisement information d42 to the server 11 (step S622 and step S623). When the target record does not exist in the advertisement table T4, the server 14 returns information indicating that the advertisement information d42 does not exist to the server 11 (steps S622 and S624).

  Returning to FIG. 19, the description will be continued. In the server 11, the receiving unit 11a receives advertisement information or information indicating that the advertisement information does not exist from the server 14, and delivers this information to the control unit 11b. When the server 11 receives the advertisement information, the control unit 11b passes the advertisement information to the transmission unit 11c, and the transmission unit 11c transmits the information to the terminal device 2 via the network (step S63a). When the server 11 receives information indicating that the advertisement information does not exist, the transmission unit 11 c does not transmit information to the terminal device 2.

  In the terminal device 2, when the receiving unit 2b receives the advertising information, the control unit 2d displays the advertising information on the display unit 2c (steps S63b and S64).

  Each step described above may be realized by a program stored in each memory of the terminal device 2, the server 11, and the server 14. In this case, the program that realizes step S61a, step S63b, and step S64 is stored in the memory of the terminal device 2 and is executed by the CPU of the terminal device 2. A program for realizing Steps S61b and S63a is stored in the memory of the server 11 and is executed by the CPU of the server 11. A program for realizing Step S62 (Steps S621 to S624) is stored in the memory of the server 14, and is executed by the CPU of the server 14.

  Thus, in 6th Embodiment, since the authentication auxiliary | assistance apparatus 1B transmits the advertisement information according to facility ID information to the terminal device 2, the terminal device 2 can display the advertisement information suitable for each facility. it can.

  While the embodiments of the present invention have been described above, the present invention is not limited to the above-described embodiments, and various modifications can be made without departing from the spirit of the present invention.

  For example, in each of the embodiments described above, the authentication assistant devices 1, 1 </ b> A, and 1 </ b> B include the database 12 outside the server 11, but the database 12 may be provided in the server 11.

  Further, in the fifth and sixth embodiments, the authentication assistant devices 1A and 1B include the servers 13 and 14 different from the server 11, but the functions of the servers 11, 13, and 14 are combined into one server. It may be realized by.

  In the above embodiments, the face image information received from the authentication assistant devices 1, 1 </ b> A, and 1 </ b> B is displayed on the terminal device 2, but the face image information may not be displayed on the terminal device 2. That is, the terminal device 2 may authenticate that the user who presented the IC card 3 is a legitimate user only by receiving the face image information.

  Moreover, in each said embodiment, each program performed in the server 11, the server 13, the server 14, and the terminal device 2 is memorize | stored in each memory of the server 11, the server 13, the server 14, and the terminal device 2. However, it can be stored in a storage medium external to the server 11, the server 13, the server 14, and the terminal device 2. In this case, each program is read into each memory by each CPU of the server 11, the server 13, the server 14, and the terminal device 2 when using the authentication system. Therefore, the external storage medium storing each program is a storage medium readable by a computer (CPU).

  In each of the above embodiments, the storage medium commonly used in a plurality of facilities is the IC card 3. However, the storage medium is not particularly limited as long as the storage medium can store personal ID information. It may be a card or a mobile terminal that functions as an IC card.

  Further, in each of the above embodiments, the IC card 3 is read into the terminal device 2 by the card reader 4, but is not particularly limited thereto. For example, when the terminal device 2 is a mobile terminal such as a smartphone or a mobile phone, the IC card 3 can be read by incorporating a predetermined application in the terminal device 2 and holding the IC card 3 over the terminal device 2. .

100 Authentication System 1, 1A, 1B Authentication Auxiliary Device 11a First Reception Unit 11b Control Unit (Extraction Unit, First Determination Unit, Generation Unit, Decoding Unit)
11c 1st transmission part 12 database (1st memory | storage part)
13 server (second determination unit)
14 server (acquisition part)
2 Terminal device 2a Second transmission unit 2b Second reception unit 2c Display unit 3 IC card (storage medium)
31 communication unit 32 second storage unit 33 control unit

Claims (16)

An apparatus for assisting personal authentication performed using a storage medium capable of identifying an individual and storing personal ID information common to a plurality of facilities,
A first storage unit that stores personal identification information associated with the personal ID information and including the face image information of the individual;
A first receiving unit that receives personal ID information stored in the storage medium from a terminal device installed in each facility;
An extraction unit for extracting personal identification information corresponding to the received personal ID information from the first storage unit;
A first transmitter that transmits the extracted personal identification information to the terminal device;
An authentication auxiliary device comprising:   The authentication assistant device according to claim 1, wherein the personal ID information and the face image information are used for causing the storage medium to function so as to achieve a predetermined purpose in the terminal device.   The authentication assistant device according to claim 1, wherein the personal identification information further includes name information of the individual. A first determination unit that determines whether the storage medium is valid or invalid;
The first storage unit includes storage medium ID information for identifying the storage medium, and valid / invalid information indicating whether the storage medium associated with the storage medium ID information is valid or invalid, Is further remembered,
The first receiving unit further receives storage medium ID information stored in the storage medium from the terminal device,
The extraction unit extracts valid / invalid information corresponding to the received storage medium ID information from the first storage unit;
The first determination unit determines whether the storage medium corresponding to the received storage medium ID information is valid or invalid based on the extracted valid / invalid information,
When the first determination unit determines that the storage medium corresponding to the received storage medium ID information is invalid, the first transmission unit transmits information indicating that the storage medium is invalid The authentication auxiliary device according to any one of claims 1 to 3, wherein the authentication auxiliary device is transmitted to the device. A generator for generating first one-time password information;
The first storage unit further stores first one-time password information generated by the generation unit;
The first receiving unit receives second one-time password information stored in the storage medium from the terminal device;
When the first one-time password information stored in the first storage unit does not match the received second one-time password information, the first transmission unit is an unauthorized storage medium. The authentication auxiliary | assistance apparatus of any one of Claim 1 to 4 which transmits the information which shows that there is a possibility of being to the said terminal device. A decrypting unit that decrypts any information encrypted using the public key of the authentication assistant device, using a secret key corresponding to the public key;
The first receiving unit receives information encrypted by the storage medium using the public key from the terminal device,
The extraction unit extracts the personal identification information from the first storage unit only when the decryption unit can decrypt the information encrypted by the storage medium. The authentication auxiliary device according to claim 1. A second determination unit that determines whether or not to provide the personal identification information to the facility when the first reception unit receives facility ID information for identifying the facility from the terminal device. Further comprising
An approval indicating that the second determination unit approves the provision of the personal identification information to the facility when the number of communication between the facility corresponding to the facility ID information and the authentication assistant device is a predetermined number or less. Send a signal to the extractor,
The authentication assistant device according to any one of claims 1 to 6, wherein the extraction unit extracts the personal identification information from the first storage unit only when the approval signal is received. An acquisition unit that acquires advertisement information associated with the facility ID information when the first reception unit receives facility ID information for identifying the facility from the terminal device;
The authentication auxiliary device according to claim 1, wherein the first transmission unit further transmits the acquired advertisement information to the terminal device. A terminal device that communicates with the authentication assistant device according to any one of claims 1 to 8 and reads the personal ID information from the storage medium,
A second transmission unit for transmitting the read personal ID information to the authentication assistant device;
A second receiving unit for receiving the personal identification information from the authentication assistant device;
A terminal device.   The terminal device according to claim 9, further comprising a display unit that displays personal identification information received from the authentication assistant device.   The terminal device according to claim 9, further comprising a display unit that displays advertisement information received from the authentication assistant device. An authentication assistant device according to any one of claims 1 to 8,
The terminal device according to any one of claims 9 to 11,
An authentication system comprising: A storage medium commonly used for personal authentication in a plurality of facilities where terminal devices capable of communicating with the authentication assistant device according to any one of claims 1 to 8 are installed,
A communication unit for communicating with the terminal device;
A second storage unit capable of identifying an individual and storing personal ID information common to the plurality of facilities;
A control unit that causes the terminal device to read personal ID information stored in the second storage unit via the communication unit;
A storage medium comprising:   The storage medium according to claim 13, wherein the second storage unit further stores storage medium ID information for identifying the storage medium. The second storage unit further stores one-time password information,
When the control unit receives new one-time password information from the terminal device via the communication unit, the control unit receives the one-time password information stored in the second storage unit. The storage medium according to claim 13 or 14, which is updated with information. The second storage unit further stores a public key of the authentication assistant device,
The storage medium according to claim 13, wherein the control unit encrypts arbitrary information using the public key.

Images