JP2017141561A - Vehicle authentication system - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a vehicle authentication system capable of using a portable display apparatus as a substitution for an electronic key while suppressing reduction in security.SOLUTION: A vehicle authentication system 2 comprises: an on-vehicle apparatus 3 that authenticates an electronic key 4 and performs predetermined processing on the basis of establishment of authentication; and a smart phone 5. The smart phone 5 comprises: an encryption unit that encrypts a character string for authentication using an encryption key to generate a cryptogram; an optical code generation unit that generates an optical code in which the cryptogram is stored; and a display 53 that displays the optical code as an authentication optical code for making the on-vehicle apparatus authenticate a portable display apparatus. The on-vehicle apparatus comprises: a cryptogram reading unit that reads a cryptogram from an authentication optical code imaged by an outside-vehicle camera 34 for successively imaging the outside of a vehicle; a decryption unit that decrypts the read cryptogram by using the encryption key to generate a character string for authentication; and an authentication unit that on the basis of the character string for authentication obtained by the decryption unit's decryption, determines whether or not authentication is established.SELECTED DRAWING: Figure 1

Description

  The present invention relates to a vehicle authentication system that authenticates a user using a portable display device possessed by the user as a substitute for an electronic key.

  In Patent Document 1, an optical code storing a command for instructing control on the vehicle, such as unlocking a door lock, is read by an optical code reading unit, so that control according to the command stored in the optical code is performed on the vehicle. A vehicle control apparatus that performs the operation is disclosed.

JP 2006-151266 A

  Consider using the technique disclosed in Patent Document 1 to display an optical code on a portable display device and authenticate with this optical code instead of an electronic key. If the character string stored in the optical code is not a ciphertext, if a malicious third party steals the optical code, the character string stored in the optical code that can be authenticated can be easily known. . Therefore, when authentication is established with an optical code displayed on a portable display device as a substitute for an electronic key using the technique of Patent Document 1, there is a risk that security may be reduced.

  The present invention has been made based on this situation, and an object of the present invention is to provide a vehicle that can use a portable display device as a substitute for an electronic key while suppressing a decrease in security. It is to provide an authentication system.

  The above object is achieved by a combination of the features described in the independent claims, and the subclaims define further advantageous embodiments of the invention. Reference numerals in parentheses described in the claims indicate a correspondence relationship with specific means described in the embodiments described later as one aspect, and do not limit the technical scope of the present invention. .

  In order to achieve the above object, the present invention is mounted on a vehicle (1), authenticates an electronic key based on wireless communication with the electronic key (4), and performs predetermined processing based on the establishment of the authentication. A vehicle authentication system (2) comprising an on-vehicle device (3) to be performed and a mobile display device (5), wherein the mobile display device encrypts an authentication character string with a preset encryption key and encrypts the text. An on-board device for authenticating a portable display device with an encryption unit that generates an optical code, an optical code generation unit that generates an optical code storing a ciphertext generated by the encryption unit, and an optical code generated by the optical code generation unit The on-vehicle device includes a display (53) that displays as an authentication optical code, and the vehicle-mounted device sequentially captures the outside of the vehicle, and an encryption that reads the ciphertext from the authentication optical code captured by the camera outside the vehicle. Sentence reading part A decryption unit that decrypts the ciphertext read by the ciphertext reading unit with an encryption key and generates an authentication character string, and determines whether authentication is established based on the authentication character string decrypted by the decryption unit And an authenticating unit (S35).

  According to the above configuration, when the user can use the electronic key, a predetermined process is performed according to the establishment of the electronic key authentication. The predetermined process is, for example, a process of transmitting an authentication establishment signal to the body ECU, and the body ECU receives the authentication establishment signal when the door is locked, and is a touch sensor provided on the door handle. When it is detected that the user touches the door lock, the door lock is unlocked.

  If the authentication optical code is displayed on the display of the portable display device and the authentication based on the pre-encryption character string generated from the authentication optical code captured by the camera outside the vehicle is established, the authentication of the electronic key is established. As in the case, a predetermined process is performed. Therefore, even if the user uses a portable display device instead of the electronic key, the user can use the function provided only during the electronic key authentication.

  Furthermore, since the data stored in the authentication optical code displayed by the portable display device is a ciphertext, it is difficult to illegally generate the authentication optical code. Therefore, it is possible to suppress a decrease in security.

It is a figure showing the utilization condition of the authentication system 2 for vehicles which concerns on embodiment of this invention. It is a figure showing the structure of the smart phone 5 which concerns on embodiment. It is the flowchart which showed the action | operation of the onboard equipment control part 31 at the time of displaying QR Code for registration. It is the flowchart which showed the action | operation of the calculating part 51 at the time of registering onboard equipment ID. It is the flowchart which showed the action | operation of the calculating part 51 at the time of displaying QR Code 6 for authentication. It is the flowchart which showed the action | operation of the onboard equipment control part 31 at the time of authenticating the smart phone 5. FIG.

  Hereinafter, a vehicle authentication system 2 as an embodiment of the present invention will be described with reference to the drawings. An example of the usage status of the vehicle authentication system 2 will be described with reference to FIG.

  The vehicle 1 includes a body ECU and an engine ECU (not shown) that perform various controls of the vehicle according to the authentication result transmitted by the vehicle-mounted device 3 included in the vehicle authentication system 2. These body ECUs and engine ECUs correspond to control units in the claims, and perform control such as control of a door lock mechanism provided in the vehicle 1 and engine start according to the authentication result.

  The vehicle authentication system 2 includes an on-vehicle device 3 mounted on the vehicle 1, an electronic key 4 that performs wireless communication with the on-vehicle device 3, and a smartphone 5.

  The on-vehicle device 3 includes an on-vehicle device control unit 31, a transmission unit 32, a reception unit 33, a camera outside the vehicle 34, an on-vehicle device display 35, an on-vehicle device operation unit 36, and an in-vehicle camera 37. Is done. The vehicle-mounted device 3 authenticates the electronic key 4 in accordance with wireless communication with the electronic key 4 and authenticates the smartphone 5 in accordance with the QR code 6 for authentication displayed on the smartphone 5 (QR code is a registered trademark). This authentication QR code 6 corresponds to the authentication optical code in the claims.

  The in-vehicle device control unit 31 is mainly configured by a microcomputer including a CPU, a ROM, a RAM, and the like. The CPU uses a temporary storage function of the RAM, and a non-transitional tangible recording medium (non By executing a program stored in the -transitory tangible storage medium), predetermined processing such as the processing shown in FIGS. 3 and 4 is executed. When the CPU executes the program, a method corresponding to the program is executed. Note that some or all of the functions executed by the vehicle-mounted device control unit 31 may be configured in hardware by one or a plurality of ICs.

  The on-vehicle device control unit 31 includes an on-vehicle device storage unit 31a. The in-vehicle device storage unit 31a may be the above-described ROM. The in-vehicle device storage unit 31a stores an in-vehicle device ID that identifies the in-vehicle device 3 in advance. Moreover, the onboard equipment memory | storage part 31a memorize | stores the image outside the vehicle which the camera 34 outside the vehicle imaged. The image memorize | stored in the onboard equipment memory | storage part 31a is displayed on the onboard equipment display 35 by a user's display operation.

  The transmission unit 32 performs modulation and wireless transmission of a request signal for the electronic key 4 generated by the vehicle-mounted device control unit 31. The frequency used for transmission is a long wave or ultra long wave frequency band, for example, a 135 kHz band.

  The receiving unit 33 receives and demodulates the response signal transmitted by the electronic key 4 when receiving the request signal, and outputs the response signal to the vehicle-mounted device control unit 31.

  The vehicle outside camera 34 is a camera that sequentially captures the outside of the vehicle while the vehicle 1 is stopped and the vehicle door is locked, and outputs an image signal representing the captured image to the vehicle-mounted device control unit 31. To do. The camera outside the vehicle 34 is used for imaging the QR code 6 for authentication. However, the camera outside the vehicle 34 may sequentially capture images even when the vehicle 1 is traveling. In FIG. 1, one transmission unit 32 and one outside camera 34 are provided in the vehicle 1, but the transmission unit 32 and one outside camera 34 may be provided in a plurality of locations of the vehicle 1.

  The on-vehicle device display 35 displays a QR code for registration that stores the on-vehicle device ID that identifies the on-vehicle device 3 generated by the on-vehicle device control unit 31. The vehicle-mounted device display 35 corresponds to the vehicle-mounted display unit in the claims. The registration QR code is a QR code for registering the vehicle-mounted device ID, which is information necessary for generating the authentication QR code 6, in the smartphone 5. The QR code for authentication 6 is a QR code that stores the vehicle-mounted device ID and the expiration date of the QR code for authentication 6. Therefore, the registration QR code is different from the authentication QR code 6.

  Since the QR code for registration is different from the QR code 6 for authentication, even if a third party images the QR code for registration when the QR code for registration is displayed on the vehicle-mounted device display 35, the QR code for registration is displayed. The code does not authenticate. Thereby, security is improved. This registration QR code corresponds to the ID registration optical code in the claims.

  The on-vehicle device operation unit 36 is an input device such as a button, and the user performs various operations on the on-vehicle device operation unit 36. The operation that the user performs with respect to the on-vehicle device operation unit 36 is, for example, a registration QR code display operation. Based on the registration QR code display operation being performed, the on-vehicle device control unit 31 controls Display the QR code for registration. The vehicle interior camera 37 is installed on a dashboard, for example, and includes the vehicle interior in the imaging range.

  The electronic key 4 performs wireless communication with the vehicle-mounted device 3. Specifically, the request signal transmitted by the vehicle-mounted device 3 is received. Further, a response signal including an electronic key ID for specifying the electronic key 4 is transmitted as a response to the request signal.

  The smartphone 5 corresponds to the mobile display device of the claims, and for example, an authentication application is introduced by distribution from a server, and registration of the vehicle-mounted device 3 and display of the QR code 6 for authentication are performed.

  The configuration of the smartphone 5 will be described with reference to FIG. The smartphone 5 includes a calculation unit 51, a camera 52, a display 53, and an operation unit 54.

  The calculation unit 51 is configured mainly with a microcomputer including a CPU, a ROM, a RAM, and the like. The CPU executes a program stored in a non-transitional physical recording medium such as a ROM while using a temporary storage function of the RAM. Thereby, the operation unit 51 acquires the vehicle-mounted device ID stored in the registration QR code, generates the authentication QR code 6, and displays the authentication QR code 6 on the display 53. Further, when the CPU executes these programs, a method corresponding to the programs is executed. Note that some or all of the functions executed by the calculation unit 51 may be configured in hardware by one or a plurality of ICs. The calculation unit 51 includes a storage unit 51a. The storage unit 51a may be the above-described ROM.

  The camera 52 images the registration QR code displayed on the vehicle-mounted device display 35 and outputs the image to the calculation unit 51. The camera 52 corresponds to the portable camera in the claims. The display 53 displays the QR code for authentication 6 generated by the calculation unit 51. The operation unit 54 is an input device such as a touch panel integrated with buttons or the display 53, and the user performs various operations on the operation unit 54. The operation that the user performs on the operation unit 54 is, for example, an image acquisition operation. When this image acquisition operation is performed, the calculation unit 51 instructs the camera 52 to image the QR code for registration.

  A procedure for registering the in-vehicle device ID necessary for displaying the QR code 6 for authentication on the display 53 on the smartphone 5 will be described with reference to FIGS. 3 and 4. Hereinafter, this procedure is called a registration procedure.

  When the user performs a QR code display operation for registration, the in-vehicle device control unit 31 of the on-vehicle device 3 executes processing of each step from step S1 (hereinafter, step is omitted) of the flowchart shown in FIG.

  In S <b> 1, the user inputs a password and determines whether or not user authentication is established. The password is set in advance by a user's previous setting operation and stored in the storage unit 51a. If it is determined that the password entered by the user matches the password stored in the storage unit 51a, it is determined that user authentication has been established, and the process proceeds to S2. If it is determined that the password does not match, user authentication is performed. The process shown in FIG. 3 is terminated by determining that it has not been established.

  In S <b> 2, an onboard device ID that identifies the onboard device 3 is acquired from the onboard device storage unit 31 a and encrypted using a preset encryption key to generate an encryption ID. In the present embodiment, this encryption key can also be set in advance by the user, and a password may be used as the encryption key. This process corresponds to the ID encryption unit in the claims.

  In S3, a registration QR code, which is a QR code storing the encryption ID generated in S2, is generated. This process corresponds to a registration code generation unit.

  In S4, after displaying the QR code for registration produced | generated by S3 on the onboard equipment display 35, the process shown in FIG. 3 is complete | finished. The period for displaying the registration QR code on the in-vehicle device display 35 may be a fixed time such as displaying for 10 seconds, or until the user operates the on-vehicle device operation unit 36 to end the display. . In addition to the registration QR code, it is also preferable to display a message that alerts the other person not to shoot the QR code for authentication or the QR code for authentication 6 generated from the QR code for registration.

  When the camera 52 acquires the registration QR code displayed on the vehicle-mounted device display 35 by the user performing an image acquisition operation, the calculation unit 51 performs the processing of each step from S11 of the flowchart illustrated in FIG. Run.

  In S11, the acquired QR code is decrypted, and the stored encryption ID is extracted. This process corresponds to an ID reading unit in claims.

  In S12, the encryption ID acquired in S11 is decrypted using the encryption key, and the vehicle-mounted device ID is extracted. As described above, in this embodiment, since the user also sets the encryption key, the user knows the encryption key. Based on the input operation of the user, the calculation unit 51 acquires the encryption key when executing this S12 or in advance. This process corresponds to the ID acquisition unit in the claims.

  In S13, the vehicle-mounted device ID extracted in S12 is stored in the storage unit 51a, and the process illustrated in FIG. With the above processing, the registration procedure for registering the vehicle-mounted device ID in the smartphone 5 is completed.

  Next, a procedure for authenticating the smartphone 5 to the vehicle-mounted device 3 will be described with reference to FIGS. 5 and 6. Hereinafter, this procedure is called an authentication procedure.

  When the user operates the operation unit 54 to request the display of the authentication QR code 6, the calculation unit 51 of the smartphone 5 executes the processing of each step from S 21 in the flowchart illustrated in FIG. 5 to generate the authentication QR code 6. And display.

  In S21, it is determined whether or not a correct encryption key has been acquired. This determination is made based on whether or not the vehicle-mounted device ID has been decoded in S12. If it is determined that the correct encryption key has been acquired, the process proceeds to S22. If it is determined that the correct encryption key has not been acquired, the process illustrated in FIG. 5 ends.

  In S22, the in-vehicle device ID stored in the storage unit 51a in the registration procedure of FIG. 4 and the expiration date calculated based on the generation time are encrypted using an encryption key to generate a ciphertext. The expiration date may be, for example, 30 minutes from the generation time, or may be during the day of generation. The vehicle-mounted device ID and the expiration date correspond to the authentication character string in the claims. This process corresponds to an encryption unit in the claims. Note that the expiration date corresponds to the expiration date data in the claims, and is data that changes depending on the time of generation, and thus is also time change data.

  In S23, the authentication QR code 6 storing the ciphertext generated in S22 is generated. This process corresponds to the optical code generation unit in the claims.

  In S24, the QR code for authentication generated in S23 is displayed on the display 53, and the process shown in FIG.

  When the door lock of the vehicle 1 is in the locked state, the vehicle-mounted device control unit 31 sequentially determines whether or not the authentication of the electronic key 4 is established, and executes the processing of each step from S11 of the flowchart shown in FIG. To do.

  In S <b> 31, it is determined whether the QR code is included in the image acquired from the vehicle outside camera 34. If it is determined that it is included, the process proceeds to S32. If it is determined that it is not included, the process returns to S11 again.

  In S32, the stored ciphertext is read from the QR code included in the image acquired from the camera 34 outside the vehicle. This process corresponds to the ciphertext reading unit in the claims.

  In S33, the ciphertext acquired in S32 is decrypted using the encryption key, and the vehicle-mounted device ID and the expiration date are acquired. This process corresponds to a decoding unit in claims.

  In S34, the onboard equipment ID memorize | stored in the onboard equipment memory | storage part 31a and the time at the time of performing the process of S34 are acquired.

  In S35, it is determined whether the QR code for authentication is an authentication target of the vehicle-mounted device 3. Specifically, it is determined whether or not the vehicle-mounted device ID acquired in S33 matches the vehicle-mounted device ID acquired by decryption and the time acquired in S33 is within the acquired expiration date. When it is determined that the vehicle-mounted device IDs match and are within the expiration date, the process proceeds to S36, and when it is determined that either one does not match, the process returns to S31 again.

  In S36, the fact that the authentication of the smartphone 5 has been established is transmitted as an authentication establishment signal to the body ECU provided in the vehicle 1, and the processing shown in FIG. This process corresponds to the authentication unit in the claims. The authentication establishment signal is the same as the signal transmitted when it is determined that the authentication of the electronic key 4 is established. Therefore, when the authentication establishment signal is transmitted to the body ECU, the door lock can be unlocked. In this state, the body ECU makes the door lock unlocked by performing an unlocking operation in which the user touches a touch sensor provided on the door handle within a certain period. That is, it is assumed that the authentication establishment state continues for a certain period. For a certain period in the present embodiment, the user who has displayed the QR code 6 for authentication on the display 53 and has captured the QR code 6 for authentication with the camera 34 outside the vehicle operates the touch sensor provided on the door handle. It is determined based on the time required until. Specifically, the fixed period in this embodiment is about 10 seconds, for example.

  As described above, according to the embodiment described above, when the door lock of the vehicle 1 is in the locked state, the vehicle-mounted device control unit 31 sequentially acquires images outside the vehicle captured by the vehicle outside camera 34, and S31 in FIG. Through this process, it is determined whether or not a QR code is included in the image. When the user operates the operation unit 54 of the smartphone 5 to display the QR code 6 for authentication on the display 53 and holds the QR code 6 for authentication over the range captured by the camera 34 outside the vehicle, the determination in S31 is YES. , S32 and subsequent processes are performed. In S32, the QR code 6 for authentication displayed on the display 53 is read and the ciphertext is extracted. In S33, the ciphertext is decrypted and the vehicle-mounted device ID and the expiration date are extracted. The expiry date when the vehicle-mounted device ID stored in the QR code for authentication 6 matches the vehicle-mounted device ID stored in the vehicle-mounted device storage unit 31a, and the time acquired in S34 is stored in the QR code for authentication 6 If YES, the determination in S35 is YES. And the process of S36 is performed and authentication of the smart phone 5 is materialized. Even when the authentication of the smartphone 5 is established, the same processing as the predetermined processing performed when the authentication of the electronic key 4 is established is performed. Therefore, even when the user cannot use the electronic key 4, it is possible to use the same function as that provided only during the authentication of the electronic key 4, such as the door lock unlocking operation, using the smartphone 5. It becomes.

  Further, the vehicle-mounted device ID and the expiration date are encrypted and stored in the registration QR code and the authentication QR code 6. This makes it difficult to illegally generate the registration QR code and the authentication QR code 6. In S35, the authentication is established based on the fact that the time acquired in S34 is within the expiration date stored in the QR code 6 for authentication. Therefore, even if the QR code for authentication 6 is illegally acquired by voyeuring or the like, the authentication QR code 6 cannot be authenticated after the expiration date. Therefore, it is possible to reduce the possibility that a malicious third party illegally uses the function provided when the authentication of the electronic key 4 is established.

  The vehicle outside camera 34 sequentially captures the outside of the vehicle, and the vehicle-mounted device storage unit 31 a stores images outside the vehicle sequentially captured by the vehicle outside camera 34. Since this image can be displayed on the vehicle-mounted device display 35, the outside-vehicle camera 34 also functions as a surveillance camera.

  As mentioned above, although embodiment of this invention was described, this invention is not limited to the above-mentioned embodiment, The following modification is also contained in the technical scope of this invention, Furthermore, the summary other than the following is also included. Various modifications can be made without departing from the scope. In the following description, elements having the same reference numerals as those used so far are the same as the elements having the same reference numerals in the previous embodiments unless otherwise specified. Further, when only a part of the configuration is described, the above-described embodiment can be applied to the other parts of the configuration.

<Modification 1>
In the embodiment, in the registration procedure, the on-board device ID is stored in the smartphone 5 by capturing the registration QR code displayed on the on-vehicle device display 35 included in the on-vehicle device 3 with the camera 52 included in the smartphone 5. The registration procedure is not limited to this. For example, the vehicle-mounted device ID may be displayed on the vehicle-mounted device display 35, and the vehicle-mounted device ID displayed by the user may be input by operating the operation unit 54 of the smartphone 5 and stored in the smartphone 5.

<Modification 2>
In the embodiment, in the registration procedure, the vehicle-mounted device ID is stored in the smartphone 5, but the vehicle-mounted device ID may be stored in the server. For example, onboard equipment ID may be memorize | stored in a server with the information which can identify the smart phones 5, such as a mac address. In this case, what is necessary is just to request | require vehicle equipment ID from the smart phone 5 to a server in an authentication procedure. For example, the smartphone 5 may transmit a mac address to the server, and the server may transmit the vehicle-mounted device ID corresponding to the mac address transmitted from the smartphone 5 to the smartphone 5.

  In addition, if it is information which can specify the smart phone 5, it will not be restricted to a mac address. For example, in the registration procedure, the smartphone ID generated and stored by the server may be stored in the smartphone 5, and in the authentication procedure, the smartphone ID stored by the smartphone 5 may be transmitted to the server.

  Further, instead of specifying the smartphone 5 by the server, or in addition to the specification, the user may be specified. For example, in the registration procedure, the password generated and stored by the server may be distributed to the user, and in the authentication procedure, the password input by the user operating the operation unit 54 included in the smartphone 5 may be transmitted to the server.

  Further, in the authentication procedure, the server transmits the vehicle-mounted device ID, but the server generates the authentication QR code 6 using the vehicle-mounted device ID and the time, and transmits the generated authentication QR code 6 to the smartphone 5. Also good. In this case, the smartphone 5 may display the received authentication QR code 6 on the display.

<Modification 3>
In the embodiment, the vehicle-mounted device 3 includes the vehicle outside camera 34 that images the outside of the vehicle. However, authentication may be established even when the QR code in the image captured by the vehicle interior camera 37 matches the QR code 6 for authentication. In this case, the operation when authentication is established may be changed by the camera that has acquired the QR code. For example, when the QR code 6 for authentication is acquired from an image captured by the camera 34 outside the vehicle and authentication is established, the door lock is unlocked. On the other hand, when the authentication QR code 6 is acquired from the image captured by the vehicle interior camera 37 and the authentication is established, the vehicle 1 may be controlled such that the vehicle 1 can be driven.

<Modification 4>
In the embodiment, the determination as to whether or not the authentication QR code 6 is to be authenticated is made using stored data. However, the stored QR code 6 is used as an image without retrieving the stored data. It may be used for judgment.

<Modification 5>
In the embodiment, the QR code is used as the optical code, but other optical codes such as a bar code may be used.

  Also, an optical code storing confidential data such as SQRC (registered trademark) may be used.

<Modification 6>
In the embodiment, the smartphone 5 is used as the portable display device, but a portable display device other than the smartphone 5 may be used. If a display capable of displaying the QR code for authentication 6 is provided and an application for displaying the QR code 6 for authentication can be introduced on the display, a mobile phone or a portable music player having a numeric keypad is used as a portable display device. May be.

<Modification 7>
In the embodiment, the door lock can be unlocked according to the establishment of the authentication of the electronic key 4 or the smartphone 5, but the process when the authentication is established is not limited thereto.

  For example, when authentication is established based on an image captured by the camera 34 outside the vehicle, the door is switched between the locked state and the unlocked state as in the case where the lock / unlock button included in the electronic key 4 is operated. It is good. In order to do this, if the in-vehicle device control unit 31 determines that the authentication has been established, the vehicle-mounted device control unit 31 transmits an instruction to switch the door locking state and the unlocking state to the body ECU corresponding to the door lock control unit. Good.

<Modification 8>
In the above-described embodiment, the authentication is established for a certain period after the authentication is established, but the present invention is not limited to this. The period from when the authentication is established to when a predetermined authentication end operation is performed may be a state where the authentication of the electronic key 4 is established. The authentication end operation is, for example, that a start button for starting a driving force source has been pressed. In this case, since the authentication is established even when the user touches the touch sensor provided on the door handle after the authentication is established by the image captured by the camera 34 outside the vehicle in a state where the door is locked, The body ECU places the door in an unlocked state. Then, after the user opens the door and sits in the driver's seat, the authentication is established even when the start button is pressed, so that the authentication QR code 6 is displayed again on the display 53 of the smartphone 5 and the authentication is performed. There is no need to cause the vehicle interior camera 37 to capture the QR code 6.

  Alternatively, the authentication end operation may be performed by closing a door and pressing a door lock button provided on a door handle. In this case, there is no need to display the QR code for authentication 6 on the display 53 of the smartphone 5 and cause the camera outside the vehicle to image the QR code 6 for authentication even when locking when getting off the vehicle.

<Modification 9>
Further, the authentication end operation may be that the authentication QR code 6 to be authenticated is imaged by the outside camera 34 in a state where the authentication is established. In this way, when the user gets off the vehicle, the authentication QR code 6 is displayed on the smartphone 5, and the authentication QR code 6 can be captured by the camera outside the vehicle 34, so that the authentication state can be terminated. . If the authentication state is terminated, then a third party cannot perform an operation requiring authentication on the vehicle 1. After the QR code for authentication 6 is imaged by the camera outside the vehicle 34 in order to allow the operation of pressing the door lock button provided on the door handle after the QR code 6 for authentication is imaged by the camera outside the vehicle 34. Further, the authentication state may be continued for a certain period.

<Modification 10>
In the above-described embodiment, the authentication establishment state is continued for a certain period. During this certain period, the user who has taken the QR code for authentication 6 with the camera outside the vehicle 34 operates the touch sensor provided on the door handle. It was determined based on the time required. However, the present invention is not limited to this, and it may be determined based on the time from when the user who has taken the QR code for authentication 6 to the outside camera 34 opens the door, sits in the driver's seat, and presses the start button.

<Modification 11>
In the above-described embodiment, the QR code for registration is a code that stores the vehicle-mounted device ID, while the QR code for authentication 6 is a QR code that stores the generation time in addition to the vehicle-mounted device ID. The code and the QR code for authentication 6 are different codes. However, the mode of making the registration QR code different from the authentication QR code 6 is not limited to this.

  For example, both the vehicle-mounted device 3 and the smartphone 5 store a conversion rule for converting data stored in the QR code for registration into data stored in the QR code 6 for authentication, so that the QR code for registration and the QR code for authentication are stored. The code 6 may be different. For this conversion rule, for example, a hash function can be used.

1: Vehicle 2: Vehicle authentication system 3: Vehicle-mounted device 4: Electronic key 5: Smartphone 6: QR code for authentication 31: Vehicle-mounted device control unit 32: Transmitter unit 33: Receiver unit 34: Camera outside vehicle 35: Vehicle-mounted device display 36: On-vehicle device operation unit 37: In-vehicle camera 51: Calculation unit 52: Camera 53: Display 54: Operation unit

Claims (10)

An on-vehicle device (3) mounted on the vehicle (1), authenticating the electronic key based on wireless communication with the electronic key (4), and performing predetermined processing based on the establishment of the authentication;
A vehicle authentication system (2) comprising a portable display device (5),
The portable display device is
An encryption unit (S22) for generating a ciphertext by encrypting the authentication character string with a preset encryption key;
An optical code generation unit (S23) for generating an optical code storing the ciphertext generated by the encryption unit;
A display (53) for displaying the optical code generated by the optical code generation unit as an authentication optical code for authenticating the portable display device on the vehicle-mounted device;
The in-vehicle device is
A vehicle outside camera (34) for sequentially imaging the outside of the vehicle;
A ciphertext reading unit (S23) that reads the ciphertext from the authentication optical code imaged by the camera outside the vehicle;
A decryption unit (S33) for decrypting the ciphertext read by the ciphertext reading unit with the encryption key to generate the authentication character string;
A vehicle authentication system comprising: an authentication unit (S35) that determines whether or not the authentication is established based on the authentication character string decrypted by the decryption unit. In claim 1,
The encryption unit generates the ciphertext using the vehicle-mounted device ID that identifies the vehicle-mounted device and the time-varying data that varies depending on the time when generating the authentication optical code as the authentication character string. Authentication system. In claim 2,
The vehicle authentication system, wherein the time change data is expiration date data indicating an expiration date of the authentication optical code. In claim 2 or 3,
The in-vehicle device is
An ID encryption unit (S2) that acquires the encryption key set by a user operation, encrypts the vehicle-mounted device ID using the encryption key, and generates an encryption ID;
A registration code generator (S2) for generating an ID registration optical code which is an optical code storing the encrypted ID;
An in-vehicle display unit (35) for displaying the ID registration optical code,
The portable display device is
A portable camera (52) that images the optical code for ID registration displayed on the in-vehicle display unit;
An ID reading unit (S11) that reads the encrypted ID from the ID registration optical code imaged by the portable camera;
A vehicle including an ID acquisition unit (S12) that acquires the encryption key set by a user operation and acquires the vehicle-mounted device ID from the encrypted ID read by the ID reading unit using the encryption key. Authentication system. In any one of Claims 1-4,
The in-vehicle device is
A vehicle interior camera (37) including the vehicle interior of the vehicle in the imaging range,
The ciphertext reading unit is a vehicle authentication system that reads the ciphertext from the authentication optical code even when the authentication optical code is captured by the vehicle interior camera. In any one of Claims 1-5,
The in-vehicle device is
An authentication system for vehicles provided with a storage part (31a) which memorizes a picture imaged one by one by the camera outside the vehicle. In any one of Claims 1-6,
The authentication unit for vehicles, wherein the authentication unit is in a state where the authentication is established for a certain period from the time when it is determined that the authentication is established. In any one of Claims 1-6,
The authentication unit for a vehicle in which the authentication unit is in a state in which the authentication is established from the time when it is determined that the authentication is established until a predetermined authentication end operation is performed. In any one of Claims 1-8,
The authentication unit determines that the authentication has been established, and sends an authentication establishment signal indicating that the authentication has been established to a control unit that performs control based on the operation when a predetermined operation is performed by a user. Vehicle authentication system to send. In any one of Claims 1-6,
When the authentication unit determines that the authentication has been established, the authentication unit instructs the door lock control unit that controls a lock mechanism that locks and unlocks the door of the vehicle to switch between the locked state and the unlocked state of the door. Vehicle authentication system to send.

Images