JP2018106647A - Authentication system and authentication method - Google Patents

Abstract

PROBLEM TO BE SOLVED: To reliably identify a person when opening an account, to prevent so-called spoofing effectively.SOLUTION: An authentication system includes: a digital watt-hour meter (20); a location code generation apparatus (40) having a location code generation unit for generating a unique location code with a predetermined function expression on the basis of unique watt-hour meter identification information allocated to the watt-hour meter, and a communication processing unit for transmitting the location code by means of a predetermined communication method; a first authentication server (80s) which receives the location code from an electronic terminal (60) having received the location code transmitted by the communication processing unit, to authenticate the electronic terminal on the basis of the location code; and a second authentication server (80s) which is integrated with or separated from the first authentication server (80s), has user information associated with the location code, and determines whether the user information coincides with user information received from a bank counter (110) or an external server (110s).SELECTED DRAWING: Figure 1

Description

  The present invention relates to an authentication system using an electronic terminal.

  When opening a new account in a financial institution, it is generally necessary to present an identification card such as a driver's license at the counter to verify the identity. In recent years, with the development of computer and communication network technology, it has become possible to open an account using a portable terminal (see, for example, Patent Document 1).

JP 2014-21765 A

  However, the current situation is that a fraudulent account is opened by forging an identification card such as a driver's license. Since these fraudulent accounts may be used for crimes such as bank transfer fraud, it is desired to confirm the identity at the time of opening an account and prevent the fraudulent account from being opened.

  In view of the above problems, an object of the present invention is to provide an authentication system and an authentication method capable of reliably confirming an identity at the time of opening an account and effectively preventing so-called impersonation in user authentication.

  In order to achieve the above object, in the authentication system of the present invention, a digital watt-hour meter and a specific function location based on a specific function meter identification information assigned to the watt-hour meter are specified. A location code generation unit that generates a code, a location code generation device that includes a communication processing unit that transmits the location code by a predetermined communication method, and an electronic terminal that has received the location code transmitted by the communication processing unit A first authentication server that receives the location code and authenticates the electronic terminal based on the location code, and is integrated with or separate from the first authentication server, and has user information associated with the location code. A second authentication server that determines whether the user information matches the user information received from the bank window or an external server; Characterized in that it comprises.

  In the present invention, the location code generation unit is supplied from the first authentication server and the unique location code generation device identification information assigned to the location code generation unit in addition to the electricity meter identification information. The location code is generated by the function formula based on the salt information.

  In the present invention, the communication processing unit transmits the location code to the electronic terminal by ultrasonic communication.

In the present invention, an alive signal generated by the location code generation device in the state where the watt-hour meter, the location code generation device, and the electronic terminal are activated is the watt-hour meter, the location When the code generator and the electronic terminal are transmitting and receiving between the three parties, the first authentication server transmits salt information to the location code generator when the presence of the alive signal is confirmed. It is characterized by.

  In the present invention, the first authentication server authenticates the electronic terminal based on the alive signal, the user ID and password, the location code, and device identification information unique to the electronic terminal.

  In the present invention, the second authentication server sends the issued PIN code to the user and determines whether or not the PIN code returned from the user matches the issued PIN code. To do.

  In the authentication method of the present invention, a location code generation step of generating a unique location code by a location code generation unit according to a predetermined function formula based on unique watt-hour meter identification information assigned to the digital watt-hour meter; A transmission step of transmitting the location code by a predetermined communication method by a communication processing unit; receiving the location code from an electronic terminal that has received the location code transmitted by the communication processing unit; and based on the location code Whether the authentication step for authenticating the electronic terminal by the first authentication server, the user information associated with the location code, and the user information received from a bank window or an external server match, And determining by a second authentication server that is integral with or separate from the authentication server. .

  In the authentication method of the present invention, the step of sending a PIN code issued by the second authentication server to the user and determining whether or not the PIN code returned from the user matches the issued PIN code. It is characterized by having.

  According to the present invention, identity verification can be performed reliably when an account is opened, and so-called impersonation can be effectively prevented in user authentication.

It is a block diagram which shows the whole structure of the authentication system which concerns on embodiment of this invention (1st aspect). It is a block diagram which shows the other example (1) with respect to the whole structure of the authentication system which concerns on embodiment of this invention. It is a block diagram which shows the other example (2) with respect to the whole structure of the authentication system which concerns on embodiment of this invention. It is a block diagram which shows the structure of the smart meter which concerns on embodiment of this invention. It is a basic diagram which shows the specific information which the smart meter and location code generator which concern on embodiment of this invention have, respectively. It is a block diagram which shows the structure of the location code production | generation apparatus which concerns on embodiment of this invention. It is a basic diagram with which it uses for description of the salt answer information produced | generated by the location code production | generation apparatus which concerns on embodiment of this invention. It is a basic diagram with which it uses for description of the alive signal transmitted / received between the smart meter which concerns on embodiment of this invention, a location code production | generation apparatus, and an electronic terminal. It is a block diagram which shows the structure of the location code authentication and ID password authentication server which concerns on embodiment of this invention. The location code generated by the location code generation device according to the embodiment of the present invention and the location code that the location code authentication and ID password authentication server expects to be generated by the location code generation device will be described. It is a basic diagram. It is a basic diagram which shows the network topology constructed | assembled between the smart meter management server, smart meter, location code production | generation apparatus, electronic terminal, location code authentication, and ID password authentication server which concern on embodiment of this invention. In embodiment of this invention, it is an approximate line figure with which it uses for description of the correspondence of the smart meter linked | related with a user ID and a password and the location code production | generation apparatus which the location code authentication and ID password authentication server recognizes. . In embodiment of this invention, it is an approximate line figure with which it uses for description of the activation process of a location code production | generation apparatus and an electronic terminal. In embodiment of this invention, it is a basic diagram with which it uses for description of the activation process of a location code production | generation apparatus and a smart meter. In embodiment of this invention, it is an approximate line figure with which it uses for description of the activation process of a location code production | generation apparatus and a 2nd electronic terminal. In the embodiment of the present invention, it is a flowchart showing the procedure of the activation process of the location code generation device and the first and second electronic terminals. In embodiment of this invention, it is a flowchart which shows the procedure of the activation process of a location code production | generation apparatus and a smart meter. It is a sequence chart which shows the authentication process and identity verification sequence in the authentication system which concerns on embodiment of this invention (1st aspect). In embodiment of this invention, it is a basic diagram with which it uses for description of a series of flow from the production | generation of an alive signal to the production | generation of salt answer information. In embodiment of this invention, it is a basic diagram with which it uses for description of four elements of an authentication process. In embodiment of this invention, it is a flowchart which shows an authentication process procedure by the location code authentication and ID password authentication server. In embodiment of this invention, when the newest alive signal cannot be acquired, it is an approximate line figure with which it uses for description of the example which does not recognize login authentication. In embodiment of this invention, it is an approximate line figure used for description of the example which does not recognize login authentication when the latest alive signal cannot be acquired and salt answer information does not correspond. In the embodiment of the present invention, a schematic diagram for explaining an example in which login authentication is not allowed when the latest alive signal cannot be acquired, the salt answer information does not match, and the device identification information of the electronic terminal does not match It is. In the embodiment of the present invention, the latest alive signal cannot be acquired, the salt answer information does not match, the device identification information of the electronic terminal does not match, the user ID and the password do not match, and the smart meter FIG. 10 is a schematic diagram for explaining an example in which login authentication is not permitted in the case of theft. It is a block diagram which shows the whole structure of the authentication system which concerns on embodiment of this invention (2nd aspect). It is a sequence chart which shows the authentication process and identity verification sequence in the authentication system which concerns on embodiment of this invention (2nd aspect). It is a block diagram which shows the whole structure of the authentication system which concerns on embodiment of this invention (3rd aspect). It is a sequence chart which shows the authentication process and identity verification sequence in the authentication system which concerns on embodiment of this invention (3rd aspect). In embodiment of this invention, it is a block diagram which shows the whole structure (1) of the authentication system using both A route and B route. In embodiment of this invention, it is a block diagram which shows the whole structure (2) of the authentication system using both A route and B route. In embodiment of this invention, it is a block diagram which shows the whole structure (3) of the authentication system using both A route and B route. In embodiment of this invention, it is an approximate line figure with which it uses for description of the authentication process by the authentication system using both A route and B route.

<Embodiment of the present invention>
Hereinafter, embodiments of the present invention will be described with reference to the drawings.

<Overall configuration of authentication system>
As shown by a broken line in FIG. 1, the authentication system 1 according to the embodiment of the present invention includes a smart meter 20, a smart meter management server 30, a location code generation device 40, an electronic terminal 60, and location code authentication and ID password authentication. The server 80s (the first authentication server and the second authentication server are integrated) is provided. When the user U opens an account at the bank counter 110, in addition to presenting the identification card, the authentication of the user U is performed using the authentication system 1.
First, the authentication system 1 shown in a broken line will be described, and then a method of identity verification will be described.

  The smart meter 20 is wirelessly connected to the smart meter management server 30 via a communication route called a so-called A route, and wirelessly connected to the location code generation device 40 via a communication route called a so-called B route.

  Here, the A route is data corresponding to the power usage measured by the smart meter 20 with respect to the smart meter management server 30 prepared by the electric power company (hereinafter also referred to as “power usage data”). .)) Is a communication path of an access network that directly transmits.

In the connection between the smart meter 20 and the smart meter management server 30 via the A route, a plurality of smart meters 20 transmit data by wireless multi-hop communication to a concentrator (not shown) while performing a so-called bucket relay. The concentrator may be connected to the smart meter management server 30 via a WAN (Wide Area Network) line and a router.

The B route is a connection between a HEMS (Home Energy Management System) terminal in the building and the smart meter 20 by a wireless system using a 920 MHz band (Wi-SUN) as a physical layer, and power consumption of the smart meter 20 is used. It is a communication path of a home communication network that transmits quantity data to the HEMS terminal. Therefore, the smart meter 20 can communicate with the location code generation device 40 via the B route connected to the HEMS terminal in the building.

  As shown in FIG. 2, the smart meters 20A and 20B may be connected to a distribution board 90 connected to a home appliance such as an indoor air conditioner, and the smart meter 20B, The smart meter 20A may be connected in series. In addition, the smart meters 20A and 20B do not necessarily have to be separate from the location code generation device 40, and may have an integrated configuration incorporating the location code generation device 40.

  Furthermore, as shown in FIG. 3, when the distance from the smart meter 20 to the location code generation device 40M (master device) is long, the smart meter 20 includes a first PLC (Power Line Communication) device D1 and a second PLC. It is possible to connect to the location code generation device 40M (master unit) via the PLC device D2.

In this case, the smart meter 20 is wirelessly connected to the location code generation device 40S (slave device), and the location code generation device 40S (slave device) and the first PLC device D1 are connected. The location code generation device 40M (master device) is connected to the second PLC device D2.

  The first PLC device D1 and the second PLC device D2 are connected to the power line via the outlets C1 and C2, and the first PLC device D1 and the second PLC device D2 are connected to the power line communication (for example, Both are connected by G3-PLC). However, the present invention is not limited to this, and the first PLC device D1 and the second PLC device D2 may be connected to each other via the distribution board 90 (FIG. 2). The smart meter 20 may be integrated with the first PLC device D1, or the location code generation device 40 may be integrated with the second PLC device D2.

  In this case, a power supply unit such as an outlet C1 is disposed in the vicinity of the installation location of the smart meter 20, and electric power is supplied from the outlet C1 to the smart meter 20.

<Smart meter>
The smart meter 20 is generally a digital watt-hour meter that is individually attached to each minimum unit of a consumer who pays an electricity bill for each household, each store, and the like. The smart meter 20 has an arithmetic processing function and a communication function for performing communication with the outside. However, for example, a smart meter 20 is provided for each floor and each store such as a building, and the owner owns a plurality of smart meters 20 when the owner of the building is the minimum unit for paying the electricity bill. Sometimes.

  However, as shown in FIG. 2, although the smart meter 20A is owned by a consumer who pays an electric charge like the smart meters 20A and 20B, the smart meter 20B is irrelevant to the payment of the electric charge. In order to construct this authentication system 1, it is also possible to newly provide it personally. That is, the smart meter 20 can be purchased and installed as a private item separately from the electric power company in order to construct the authentication system 1 regardless of the payment of the electricity bill.

  Each of the smart meters 20 is a unique watt hour meter that is different from one another. Accordingly, each of the plurality of smart meters 20 has unique (unique) smart meter identification information (hereinafter also referred to as “SM identification information”). The SM identification information assigned to the smart meter 20 is unique information that cannot be rewritten.

  As shown in FIG. 4, the smart meter 20 includes a power usage metering unit 21, a smart meter storage unit 22, and a communication processing unit 25. The power usage metering unit 21 is a functional unit that measures and holds the power usage when power is used, and is based on measurement values measured by a current sensor that measures current, a voltage sensor that measures voltage, and the like. To calculate the power consumption data.

The power usage metering unit 21 includes, for example, a CPU (Central Processing Unit), a memory, an MCU (Micro Control Unit) including an interface, and the like. The power usage metering unit 21 stores an activation ID and an initial password for activating the location code generation device 40 and the smart meter 20 in the smart meter storage unit 22. Here, “activate” means that devices connected to each other are validated.

The smart meter storage unit 22 is a functional unit that stores unique (unique) SM identification information assigned to the smart meter 20 in a non-rewritable state. The smart meter storage unit 22 includes, for example, a ROM (Read Only Memory). That is, as shown in FIG. 5A, the smart meter 20 has unique SM identification information that is unique and cannot be rewritten.

The communication processing unit 25 is a functional unit that transmits the power usage data supplied from the power usage metering unit 21 to the outside, and is configured by, for example, a wireless LSI (Large-Scale Integration) that supports 920 MHz. The communication processing unit 25 wirelessly transmits the power usage data to the smart meter management server 30, for example, every 30 minutes via the A route. However, the communication processing unit 25 may wire-transmit the power usage data via the A route. Also, the communication processing unit 25 modulates a 920 MHz carrier wave based on the SM identification information of the smart meter 20 stored in the smart meter storage unit 22, for example, and generates a location code using the resulting modulated signal as a radio wave. Wireless transmission to the device 40 via the B route.

<Smart meter management server>
The smart meter management server 30 (FIG. 1) is a server that has a CPU, a large-capacity storage, a network interface, and the like, and manages many smart meters 20.

  The smart meter management server 30 centrally manages the location (address, etc.) where the smart meter 20 is installed, the SM identification information of the smart meter 20, the personal information of the contractor of the smart meter 20, and the like. The smart meter management server 30 is connected to a location code authentication / ID password authentication server 80s, which will be described later, via a network NT such as the Internet.

  The smart meter management server 30 always maintains a communication connection state with the smart meter 20, and if the smart meter 20 breaks down or is removed due to theft, the smart meter management server 30 communicates with the smart meter 20. It can be detected that the connection state is not maintained, and it is possible to determine that the connection state is abnormal. In this case, the smart meter management server 30 can notify the location code authentication and ID password authentication server 80s that the smart meter 20 is in an abnormal state via a network such as the Internet.

<Location code generator>
The location code generation device 40 is wirelessly connected to the smart meter 20 and the electronic terminal 60, and in particular, is connected to the electronic terminal 60 by an ultrasonic communication method. However, the present invention is not limited to this, and an optical communication method with high directivity (straight forward) such as infrared communication and visible light communication, Bluetooth (registered trademark), WLAN (Wireless Local Area Network), etc. May be connected by a short-range wireless communication system.

  As illustrated in FIG. 6, the location code generation device 40 includes a storage unit 41, a control unit 42, and a communication processing unit 43.

  The storage unit 41 is a functional unit that stores unique (unique) identification information (hereinafter, also referred to as “LC identification information”) assigned in advance to the location code generation device 40, and is a rewritable ROM (Read For example, a flash memory. However, since the storage unit 41 has a unique connection relationship between the location code generation device 40 and the smart meter 20, it is possible to store the SM identification information of the smart meter 20 in addition to the LC identification information in advance. In that case, it may be composed of a non-rewritable ROM or the like.

That is, as shown in FIG. 5B, the location code generation device 40 has unique LC identification information in advance. Further, the storage unit 41 does not store the SM identification information in advance, but receives the SM identification information from the smart meter 20 via the communication processing unit 43 and stores the SM identification information together with the LC identification information. Is also possible.

  In addition to the application program for performing ultrasonic communication between the communication processing unit 43 and the electronic terminal 60, a dedicated application program for generating a location code is installed in the storage unit 41 in advance. The communication processing unit 43 performs ultrasonic communication with the electronic terminal 60 based on the application program.

  The control unit 42 includes an MCU including a CPU, a memory, and an interface. The location code generation unit 42a, the activation processing unit 42b, the alive signal generation unit 42c, and the like are obtained by cooperation between the MCU and the application program. Each functional part is built.

  The location code generation unit 42a is a functional unit that generates a code related to the location where the smart meter 20 and the location code generation device 40 are attached (hereinafter also referred to as “location code”). Specifically, the location code generation unit 42 a stores a predetermined salt answer function formula provided in advance from the location code authentication and ID password authentication server 80 s in the storage unit 41.

  That is, the location code generation unit 42a uses the salt information (some arbitrary data) given from the location code authentication and ID password authentication server 80s, the LC identification information stored in the storage unit 41, and the SM identification information to use the salt answer function. A location code serving as salt answer information is generated by the formula.

  Here, the salt answer function expression means that when salt information is given from the location code authentication and ID password authentication server 80s, the salt answer information (encryption of hash values, etc.) is performed by a hash function that performs irreversible processing, for example. Data). The salt information is data serving as an input for calculating the salt answer information based on the salt answer function expression. For example, power usage data can be used as the salt information. However, it is not limited to the power usage data, and it is possible to use various arbitrary data such as a value of a set of prime numbers, a random number value, or the like.

  This salt answer function formula is provided in advance from the location code authentication and ID password authentication server 80s as a unique (unique) function formula that is different for each location code generation device 40. That is, as shown in FIG. 5C, the location code generation device 40 holds a unique (unique) salt answer function expression. The location code authentication / ID password authentication server 80s stores the correspondence between the location code generation device 40 and the salt answer function formula.

  As described above, the location code generation unit 42a stores the unique (unique) salt answer function formula, and uses the salt information, the LC identification information, and the SM identification information, and the location composed of serial data by the salt answer function formula. Generate code as salt answer information.

  However, the location code generation unit 42a does not have to generate the location code by using the salt answer function equation using all of the salt information, the LC identification information, and the SM identification information. The location code may be generated by an answer function expression, or the location code may be generated by arbitrarily combining salt information, LC identification information, and SM identification information.

As shown in FIG. 7, for example, there are two location code generation devices 40a and 40b, and even if the same salt information (for example, [XKH48269PIM]) is provided from the location code authentication and ID password authentication server 80s, The code generators 40a and 40b have different salt answer function expressions, LC identification information (AA-BB-CC) and LC identification information (ZZ-YY-XX), and both SM identification information. Both are different.

  Therefore, even if the salt information is the same, the location code generation unit 42a of the location code generation device 40a generates a unique location code (for example, [POPPNNJRFFSS]) as the salt answer information, and the location code of the location code generation device 40b. The generation unit 42a generates a unique location code (for example, [TPGVELNWPS]) as salt answer information.

  The activation processing unit 42 b is a functional unit that performs activation processing of the location code generation device 40, the electronic terminal 60, and the smart meter 20. The activation processing unit 42b stores therein an activation ID, an initial password, and the like, and activates the location code generation device 40 and the electronic terminal 60 using the activation ID and the initial password, thereby generating the location code generation device. 40 and the smart meter 20 are activated.

  When the alive signal generation unit 42c receives the power usage fee data wirelessly transmitted every 30 minutes via the communication processing unit 25 of the smart meter 20 by the communication processing unit 43 described later, based on the power usage fee data. This is a functional unit that generates an alive signal every predetermined time (for example, every second) and transmits the alive signal to the smart meter 20 again via the communication processing unit 43.

  Here, as shown in FIG. 8, the alive signal AL is the location code generation device in an activated state where the location code generation device 40, the smart meter 20, and the electronic terminal 60 are effectively connected. 40 → smart meter 20 → location code generating device 40 → electronic terminal 60 → location code generating device 40 → smart meter 20 →... The presence of this alive signal AL means that a network topology with three regular parties is established.

  The communication processing unit 43 establishes (activates) wireless communication with the smart meter 20 via the B route in accordance with the application program stored in the storage unit 41, and SM identification information of the location code generation device 40 from the smart meter 20. Can be received. The communication processing unit 43 exchanges the alive signal AL between the smart meter 20 and the electronic terminal 60.

  In addition, the communication processing unit 43 can receive the salt information and the alive signal AL from the location code authentication and ID password authentication server 80s as ultrasonic waves from the electronic terminal 60 by the microphone 46, and the location code generation unit 42a. It is possible to oscillate from the speaker 45 to the electronic terminal 60 using the location code generated by the above as ultrasonic waves.

  As shown in FIG. 6, the communication processing unit 43 includes a radio signal conversion unit 43a, an ultrasonic conversion unit 43b, and an acoustic processing unit 43c. The wireless signal conversion unit 43a has the same configuration as the communication processing unit 25 of the smart meter 20. Therefore, the radio signal conversion unit 43a demodulates the radio wave received from the smart meter 20, restores the SM identification information and the alive signal AL, and performs conversion processing such as modulating the alive signal AL to be wirelessly transmitted to the smart meter 20. Is possible. The wireless signal conversion unit 43 a stores the SM identification information obtained from the smart meter 20 in the storage unit 41.

Note that the wireless signal conversion unit 43a can also transmit the location code generated by the location code generation unit 42a from the smart meter 20 to the smart meter management server 30 by a so-called A route. The carrier wave is modulated on the basis of the signal and wirelessly transmitted to the smart meter 20 as a radio wave.

  When the ultrasonic conversion unit 43b receives the location code or the alive signal AL including the serial data generated by the location code generation unit 42a via the wireless signal conversion unit 43a, the ultrasonic conversion unit 43b outputs the location code from the speaker 45 as an ultrasonic wave. It is a function part which converts into the ultrasonic signal of.

  The acoustic processing unit 43c generates an ultrasonic sound source corresponding to the ultrasonic signal supplied from the ultrasonic conversion unit 43b, outputs the ultrasonic sound source from the speaker 45, and receives the ultrasonic wave output from the speaker of the electronic terminal 60 by the microphone 46. The functional unit outputs the ultrasonic signal to the ultrasonic conversion unit 43b. For example, when the acoustic processing unit 43c receives salt information as ultrasonic waves from the location code authentication and ID password authentication server 80s via the electronic terminal 60 or receives the alive signal AL as ultrasonic waves from the electronic terminal 60, the acoustic processing unit 43c The sound wave signal is output to the location code generator 42a via the ultrasonic wave converter 43b and the radio signal converter 43a.

  Here, the reason why ultrasonic communication is performed between the location code generation device 40 and the electronic terminal 60 is that the location code generation device 40 and the electronic device 40 are connected to the electronic terminal 60 without requiring complicated processing to establish a communication link compared to radio wave communication. This is because it is easy to establish a communication link with the terminal 60 and the confidentiality at the time of data transmission is high. Ultrasonic waves need only be converted into ultrasonic waves from the signal sent to the counterpart device, oscillated from the speaker, and received by the microphone of the counterpart device, and only by software without the need for a special hardware configuration. It is a communication method that can be realized.

  In addition, the transmission speed of ultrasonic waves is as low as 1 / 1,000,000 compared to electricity and light, the reachable range is limited, and the directivity is strong, so the installation interval between the location code generation device 40 and the electronic terminal 60 is shortened. Therefore, the risk of leakage is reduced as compared with the case where the installation interval is long.

<Electronic terminal>
The electronic terminal 60 is wired (or wirelessly connected) to the location code authentication / ID password authentication server 80s via the routers rt1 and rt2. However, the electronic terminal 60 and the location code authentication / ID password authentication server 80s may be connected via the routers rt1 and rt2, or may be wirelessly connected. Here, the electronic terminal 60 is preferably an electronic device including a speaker and a microphone that can transmit and receive at least ultrasonic waves, such as a smartphone, a notebook computer, and a mobile phone.

  The electronic terminal 60 is a computer device having a CPU, ROM, RAM, memory, speaker, microphone, camera, and the like. The electronic terminal 60 used in the authentication system 1 is preinstalled with a dedicated application program for performing ultrasonic communication and various dedicated processes with the location code generating device 40. It is the same as a smartphone.

  When performing electronic communication with the location code generation device 40, the electronic terminal 60 can perform ultrasonic communication via its own speaker and microphone according to the application program. Specifically, the electronic terminal 60 transmits the salt information from the location code authentication and ID password authentication server 80 s to the location code generation device 40, or the location code that is the salt answer information generated by the location code generation device 40. Can be received as ultrasonic waves and transmitted to the location code authentication and ID password authentication server 80s.

The electronic terminal 60 stores the unique device identification information assigned to the electronic device 60 in advance in the memory. When the login authentication request is issued to the location code authentication and ID password authentication server 80s, the electronic terminal 60 also uses the location code for the device identification information. Wireless transmission to the authentication and ID password authentication server 80s. It is assumed that the location code authentication and ID password authentication server 80s also stores device identification information of the electronic terminal 60 in advance.

<Location code authentication and ID password authentication server>
The location code authentication / ID password authentication server 80s is a server having a CPU, a large-capacity storage, a network interface, and the like, and the electronic terminal 60 is a valid user before the electronic terminal 60 accesses, for example, a content server. Is to authenticate.
In this embodiment, the location code authentication and ID password authentication server 80s is a single unit, and has two functions of location code authentication and ID password authentication. The first authentication server and the second authentication server are Although an integrated configuration, the ID password authentication server that is the first authentication server and the location code authentication server that is the second authentication server may be configured separately.

  As shown in FIG. 9, the location code authentication / ID password authentication server 80s includes a communication processing unit 80a including a network interface, a storage unit 80b including a large-capacity storage, and an authentication processing unit 80c including a CPU. Each function of the communication processing unit 80a, the storage unit 80b, and the authentication processing unit 80c of the location code authentication and ID password authentication server 80s cooperates with these hardware resources and a predetermined authentication program stored in the storage unit 80b. Realized by working.

  The communication processing unit 80a is a functional unit that wirelessly transmits and receives data between the location code authentication / ID password authentication server 80s and the electronic terminal 60. The storage unit 80b is a functional unit that stores salt information, a salt answer function formula, SM identification information of the smart meter 20, LC identification information of the location code generation device 40, device identification information of the electronic terminal 60, and the like.

  The authentication processing unit 80c includes salt answer information (location code) received from the location code generation device 40, an alive signal AL received from the electronic terminal 60, SM identification information of the smart meter 20, a user ID from the electronic terminal 60, a password, and , A functional unit that performs login authentication based on device identification information and the like, details of which will be described later.

The location code authentication and ID password authentication server 80 s can transmit salt information to the electronic terminal 60 by the communication processing unit 80 a, and can transmit the salt information to the location code generation device 40 via the electronic terminal 60 as ultrasonic waves. . Further, the location code authentication and ID password authentication server 80s receives the salt answer information (location code) from the location code generation device 40 and the user ID, password, and device identification information from the electronic terminal 60 by the communication processing unit 80a. It can be received.

As shown in FIG. 10, the location code authentication and ID password authentication server 80s includes the salt information ([XKH48269PIM]) transmitted to the location code generation device 40 and the same salt as the location code generation device 40 holds. The answer function formula is stored in the storage unit 80b. For this reason, the location code authentication and ID password authentication server 80s can determine the validity of the salt answer information ([POPPNNJRFFSS]), that is, the location code received from the electronic terminal 60, by the authentication processing unit 80c. The authentication processing unit 80c performs a login authentication process using not only the salt answer information (location code) but also the alive signal AL, the user ID from the electronic terminal 60, the password, device identification information, and the like.

<Relationship between smart meter, location code generator, and electronic terminal>
As shown in FIG. 11, in the authentication system 1, the smart meter 20, the location code generation device 40, and the electronic terminal 60 are each physically unique as devices, and the topology of a single network that connects the three parties respectively. Is also unique. Therefore, in the authentication system 1, in addition to these three parties, the entire network topology including the smart meter management server 30 and the location code authentication and ID password authentication server 80s is also unique. To the location code authentication and ID password authentication server 80s, signals can be transmitted and received. In other words, the path goes through the entire network.

  Therefore, a solid combination of the three components of the smart meter 20, the location code generation device 40, and the electronic terminal 60 that are constructed between the smart meter management server 30 of the authentication system 1 and the location code authentication and ID password authentication server 80s. If even one unit changes, the network topology will also change. For example, the location code authentication and ID password authentication server 80s authenticates with the user ID and password from the electronic terminal 60 when the network topology is activated and data based on the rule is not transmitted / received to the entire topology. It becomes possible to refuse.

  As shown in FIG. 12, the location code authentication and ID password authentication server 80s is a location associated with the user ID and password used when the electronic terminal 60 logs in to the location code authentication and ID password authentication server 80s. The correspondence relationship between the code generation device 40 and the smart meter 20 is recognized in advance. Therefore, since the above-described correspondence cannot be established with other smart meters 20, other location code generation devices 40, and other combinations of user IDs and passwords, the location code authentication and ID password authentication server 80s links three parties. Can not be attached.

  The location code generation device 40 can be activated with the smart meter 20 and the electronic terminal 60, and when activated, the location code generation device 40 may continuously receive data transmitted from the smart meter 20 and the electronic terminal 60. It becomes possible to transmit the location code and the alive signal AL generated by itself to the smart meter 20 and the electronic terminal 60 that are being activated.

  In addition, when the activation with the smart meter 20 is canceled, the location code generation device 40 limits the data (location code) transmitted to the electronic terminal 60 and continues to be restricted until it is activated again.

  The combination of the activated location code generator 40 and the smart meter 20 is unique, and the location code generator 40 is limited to the smart meter 20 once activated with the smart meter 20. Can be reactivated. Therefore, the location code generation device 40 cannot be activated with any smart meter 20 other than the smart meter 20 that was activated first, and the location code generation device 40 cannot be diverted for connection with other smart meters 20. It becomes possible.

  The location code generation device 40 can activate a plurality of activations with the electronic terminal 60, but certain conditions are necessary to activate with the second and subsequent electronic terminals 60. It will be described later.

<Activation of location code generator with smart meter and electronic terminal>
First, before activating the location code generator 40 and the smart meter 20,
It is necessary to activate the location code generation device 40 and the electronic terminal 60. The reason is that the smart meter 20 and the location code generation device 40 may not have an input unit (mouse, keyboard, etc.) and a display unit (liquid crystal screen, etc.) for displaying the input result. This is because there is no way to activate.

  As shown in FIG. 13, when activating the location code generation device 40 and the first electronic terminal 60, the electronic terminal 60 receives an activation ID and an initial password for activating the location code generation device 40. The location code authentication and ID password authentication server 80s is received and stored in advance.

  Specifically, the authorized user of the location code generation device 40 is notified of the activation ID and the initial password from the location code authentication and ID password authentication server 80s to the electronic terminal 60 as being a valid user of the authentication system 1. Therefore, the activation ID and the initial password can be stored in the electronic terminal 60.

  The electronic terminal 60 reads the activation ID and the initial password according to the user's operation, and transmits them to the location code generation device 40 by ultrasonic communication. The activation processing unit 42b of the location code generation device 40 determines whether or not the activation ID and the initial password from the electronic terminal 60 are correct, and when it is determined to be correct, the activation with the first electronic terminal 60 is performed. Execute the process. Note that after the activation is completed, the user can change the initial password to an arbitrary value, but the activation ID cannot be changed because it is a unique ID linked to the location code generation device 40.

  Subsequently, as shown in FIG. 14, when activating the location code generation device 40 and the smart meter 20, the electronic terminal 60 activates the activation ID and the initial password used when activating the location code generation device 40. Is wirelessly transmitted to the smart meter 20 via the location code generation device 40. The power usage metering unit 21 of the smart meter 20 determines whether the activation ID and the initial password are correct, and executes the activation process with the location code generation device 40 when it is determined that the activation ID and the initial password are correct.

  Next, as shown in FIG. 15, a case where the location code generating device 40 and the second electronic terminal 60s are activated will be described. In order to activate the location code generation device 40 with the second electronic terminal 60s, the activation process between the smart meter 20 and the first electronic terminal 60 needs to be completed.

  In this case, if the activation process has been completed between the location code generation device 40 and the first electronic terminal 60, even if the first electronic terminal 60 is currently in an inactive state, two Activation processing can be performed between the electronic terminal 60s of the eye and the location code generation device 40.

  Next, a procedure when the location code generation device 40 performs the activation process as described above between the electronic terminal 60 and the smart meter 20 will be described.

  As shown in the main routine MRT1 of FIG. 16, in step SP1, the control unit 42 of the location code generation device 40 determines whether or not what is received from the electronic terminal 60 via the communication processing unit 43 is an activation request. When the determination is made by the activation processing unit 42b and a negative result is obtained (step SP1: NO), the process proceeds to the next step SP2, and when a positive result is obtained (step SP1: YES), the process proceeds to step SP5.

In step SP2, the activation processing unit 42b of the control unit 42 performs the communication processing unit 43.
The activation processing unit 42b determines whether the activation request from the smart meter 20 is received via the activation meter. Here, since the smart meter 20 does not have an input unit and a display unit, an activation request is made from the smart meter 20 to the location code generation device 40 via the electronic terminal 60.

  If a negative result is obtained in step SP2 (step SP2: NO), this means that the activation request is not from the legitimate electronic terminal 60 and smart meter 20 associated with the location code generation device 40. In this case, the activation processing unit 42b proceeds to the next step SP3. On the other hand, if a positive result is obtained in step SP2 (step SP2: YES), the process proceeds to the next step SP4, and the process proceeds to an activation process with the smart meter 20 as described later.

  In step SP3, since the activation processing unit 42b is not an activation request from the authorized electronic terminal 60 and the authorized smart meter 20, it notifies the electronic terminal 60 of an error and activates the display screen of the electronic terminal 60. A bait error is displayed and the activation process is terminated.

  In step SP5, the activation processing unit 42b determines whether or not the electronic terminal 60 that has received the activation request is the first one. If the location code generation device 40 is in the non-activated state, the electronic terminal 60 is activated. Is the first unit, a positive result is obtained (step SP5: YES), and the routine proceeds to the next step SP6.

  In step SP6, the activation processing unit 42b receives the activation ID for activation and the initial password for activation from the electronic terminal 60, and proceeds to the next step SP7.

  In step SP7, the activation processing unit 42b determines whether both the activation ID received from the electronic terminal 60 and the initial activation password are correct. Here, in the case of the legitimate electronic terminal 60, the activation code and the initial password for activation are received in advance from the location code authentication and ID password authentication server 80s, and the activation of the location code generation device 40 is also received. The processing unit 42b also stores the activation ID assigned to the electronic terminal 60 and the activation initial password.

  If an affirmative result is obtained in step SP7 (step SP7: YES), the activation processing unit 42b activates the activation ID stored in itself, the activation initial password, and the activation received from the electronic terminal 60. Since the ID and the activation initial password match, it can be recognized that the electronic terminal 60 is a legitimate electronic terminal 60 having a valid connection relationship. Therefore, the activation processing unit 42b moves to the next step SP8, performs the activation processing with the electronic terminal 60, and then returns to step SP1 again.

  On the other hand, if a negative result is obtained in step SP7 (step SP7: NO), the activation processing unit 42b does not match the activation ID and the initial password for activation, and has a valid connection relationship. It recognizes that it is not the legitimate electronic terminal 60, moves to the next step SP9, displays an activation error on the electronic terminal 60, and then returns to step SP1 again.

By the way, if a negative result is obtained in step SP5 (step SP5: NO), this means that the electronic terminal 60 that has accepted the activation request is not the first unit but the second unit, In this case, the activation processing unit 42b proceeds to the next step SP10 and performs the activation processing for the second electronic terminal 60s.

  In step SP10, the activation processing unit 42b generates a temporary password for the second electronic terminal 60s only when it has already been activated with the first electronic terminal 60, and generates this temporary password for the first electronic terminal. 60 is transmitted by ultrasonic communication by the communication processing unit 43, and the process proceeds to the next step SP11.

  In step SP11, the first electronic terminal 60 displays the received temporary password. In step SP12, the temporary password and the same activation ID as in the case of the first electronic terminal 60 are input from the second electronic terminal 60s. In step SP13, the activation processing unit 42b receives the activation ID and the temporary password, proceeds to the processing of the next step SP7 to step SP9, and determines the second electronic terminal 60s based on the activation ID and the temporary password. Execute the activation process. Incidentally, the same activation ID as that of the first electronic terminal 60 can be received from the second electronic terminal 60s because the owner of the first electronic terminal 60 and the second electronic terminal 60s is authorized. This is because the user is the same as the user and can be said to be a regular second electronic terminal 60 s following the regular first electronic terminal 60.

  Next, the activation process between the location code generation device 40 and the smart meter 20 in step SP4 will be described in detail. As shown in FIG. 17, in step SP41, the activation processing unit 42b of the location code generation device 40 determines whether or not the location code generation device 40 and the first electronic terminal 60 have already been activated. If a negative result is obtained (step SP41: NO), the process returns to step SP1 (FIG. 15). If a positive result is obtained (step SP41: YES), the process proceeds to the next step SP42.

  In step SP42, the activation processing unit 42b wirelessly connects to the smart meter 20 by the communication processing unit 43 in response to a request from the already activated electronic terminal 60, and proceeds to the next step SP43.

  In step SP43, the activation processing unit 42b performs smart activation from the activated electronic terminal 60 with the activation ID assigned to the smart meter 20 in advance from the location code authentication and ID password authentication server 80s and the activation initial password. It is determined whether or not it has been received in place of the meter 20. If a negative result is obtained (step SP43: NO), the process returns to step SP43 again, and the activation processing unit 42b receives the activation ID of the smart meter 20 and the activation initial password from the electronic terminal 60. Wait until you do.

  On the other hand, if a positive result is obtained in step SP43 (step SP43: YES), the activation processing unit 42b proceeds to the next step SP44 to step S46, and performs the same operation on the smart meter 20 as in step SP7 to step SP9. Execute the activation process.

  In other words, when the activation processing unit 42b recognizes the legitimate smart meter 20 having a valid connection relationship with the location code generation device 40 based on the activation ID and the initial password for activation (step SP44: YES), activation processing with the smart meter 20 is performed in step SP45.

On the other hand, when the activation processing unit 42b recognizes that it is not the legitimate electronic terminal 60 that does not have a valid connection relationship based on the activation ID and the initial password for activation (step SP44: NO), In step SP46, the electronic terminal 60 is notified and displayed that an activation error has occurred between the smart meter 20 and the location code generation device 40, and then the activation process with the smart meter 20 is terminated.

<Authentication processing sequence>
Next, in such an authentication system 1, the authentication process sequence (SK1 to SK15) at the time of login processing by the location code authentication and ID password authentication server 80s using the smart meter 20, the location code generation device 40, and the electronic terminal 60 is performed. This will be described with reference to the sequence chart of FIG.
As described above, in this embodiment, the location code authentication and ID password authentication server 80s is a single unit, and has two functions of location code authentication and ID password authentication. Although the two authentication servers are integrated, a first authentication server that performs an authentication processing sequence (SK1 to SK15) during a login process and a second authentication server that performs an identity verification processing sequence (SK16 to SK20) , Can be configured as separate bodies.

  First, the electronic terminal 60 sends the activation ID and the activation initial password to the location code generation device 40 as authentication information from the electronic terminal 60 for activating the location code generation device 40 in the processing procedure SK1. Send.

  When the authentication of the electronic terminal 60 is successful in the processing procedure SK2, the location code generation device 40 performs an activation process with the electronic terminal 60 and notifies the electronic terminal 60 that it has been activated. That is, the location code generation device 40 first completes the activation process with the electronic terminal 60.

  Thereafter, the location code generation device 40 completes the activation process with the smart meter 20 in the processing procedures SK3 and SK4, similarly to the activation processing (processing procedures SK1 and SK2) of the electronic terminal 60.

  The controller 42 of the location code generator 40 completes the activation process with both the electronic terminal 60 and the smart meter 20 and has established a regular three-party topology. Therefore, in the processing procedure SK5, the alive signal generator 42c. Generates an alive signal AL and transmits it to the smart meter 20.

  When the communication processing unit 25 of the smart meter 20 receives the alive signal AL transmitted from the location code generation device 40 in the processing procedure SK6, it returns this to the location code generation device 40.

  When the location code generation device 40 receives the alive signal AL from the smart meter 20 by the communication processing unit 43 in the processing procedure SK7, the location code generation device 40 transmits the alive signal AL to the electronic terminal 60 via the communication processing unit 43 by ultrasonic communication. To do.

  When receiving the alive signal AL in the processing procedure SK8, the electronic terminal 60 immediately returns the alive signal AL to the location code generation device 40 by ultrasonic communication. As described above, the location code generation device 40 continues to circulate the alive signal AL between the three parties as shown in FIG. However, the circulation direction of the alive signal AL is the opposite direction, that is, the location code generator 40 → the electronic terminal 60 → the location code generator 40 → the smart meter 20 → the location code generator 40 →. Also good.

  In the processing procedure SK9, the electronic terminal 60 establishes a normal topology among the three of the location code generation device 40 and the smart meter 20, and the alive signal AL can be circulated. Authentication request information including a user ID and password for logging in and unique device identification information assigned to the electronic terminal 60 is transmitted to the location code authentication and ID password authentication server 80s.

  The location code authentication and ID password authentication server 80s generates salt information in the processing procedures SK10 and SK11, and transmits the salt information to the location code generation device 40 via the electronic terminal 60 by ultrasonic communication.

  When receiving the salt information in the processing procedures SK12 and SK13, the location code generation device 40 uses the SM identification information of the smart meter 20, the LC identification information of the location code generation device 40, and the salt information to obtain a predetermined salt answer. The unique salt answer information (location code) is generated by the function formula, and is transmitted from the electronic terminal 60 to the location code authentication and ID password authentication server 80s.

  The location code authentication and ID password authentication server 80s performs authentication determination for the login request from the electronic terminal 60 in the processing procedure SK14. Specifically, as shown in FIG. 20, the location code authentication and ID password authentication server 80s includes a smart meter 20, a location code generation device 40, and an electronic terminal 60. Approved legitimate and unique network topology is established, the latest alive signal AL circulating among the three parties, the user ID and password from the electronic terminal 60, and the salt answer information (location code) generated by the location code generation device 40 Only when all of the unique device identification information of the electronic terminal 60 are correctly arranged, it is determined that the login request from the electronic terminal 60 is true, and login authentication is permitted. The login authentication processing procedure by the location code authentication and ID password authentication server 80s will be specifically described with reference to the flowchart of FIG.

  As shown in FIG. 21, the authentication processing unit 80c of the location code authentication and ID password authentication server 80s receives the alive signal AL, the user ID, the password, and the device identification of the electronic terminal 60 from the electronic terminal 60 in step SP51 of the processing procedure SK14. It is determined whether or not authentication request information consisting of information has been received by the communication processing unit 80a, and if a negative result is obtained (step SP51: NO), it waits until the authentication request information is received and if a positive result is obtained ( Step SP51: YES), the process proceeds to the next step SP52.

  In step SP52, the authentication processing unit 80c determines whether or not it is the latest alive signal AL based on the generation time of the alive signal AL included in the authentication request information received from the electronic terminal 60. As described above, since the alive signal AL is generated every second, the authentication processing unit 80c can determine whether or not it is the latest alive signal AL by comparing with the current time. For example, if the difference between the time when the alive signal AL is generated and the current time is within 2 seconds, for example, the alive signal AL may be determined to be the latest alive signal.

In step SP52, the authentication processing unit 80c determines whether or not the latest alive signal AL has been normally received. Here, if a negative result is obtained (step SP52: NO), this means that the smart meter 20, the location code generation device 40, and the electronic terminal 60 are authorized and recognized by the location code authentication and ID password authentication server 80s. This indicates that a unique network topology is not constructed and the latest alive signal AL cannot be received. At this time, the authentication processing unit 80c moves to step SP58, and the electronic terminal 60 receives “NOT.
Non-authentication result information indicating “TRUE” is transmitted, and “NOT TRUE” is transmitted to the electronic terminal 60.
"Is displayed, and the login authentication processing procedure is terminated.

  On the other hand, if a positive result is obtained in step SP52 (step SP52: YES), the authentication processing unit 80c causes the smart meter 20, the location code generation device 40, and the electronic terminal 60 to perform location code authentication and ID password. Recognizing that a proper and unique network topology approved by the authentication server 80s is constructed, the process proceeds to the next step SP53, and the salt information is transmitted to the electronic terminal 60 by the communication processing unit 80a.

  As a result, the electronic terminal 60 transmits the salt information to the location code generation device 40. The location code generation device 40 generates salt answer information (location code) using a salt answer function equation using the salt information, SM identification information, and LC identification information, and generates the location code authentication and ID password authentication server from the electronic terminal 60. Send to 80s.

  In step SP54, the authentication processing unit 80c receives the salt answer information (location code) from the location code generation device 40, and proceeds to the next step SP55. In step SP55, the authentication processing unit 80c, the latest alive signal AL, the user ID and password from the electronic terminal 60, the salt answer information (location code) generated by the location code generation device 40, and the device identification of the electronic terminal 60 Only when all four elements of information are correctly aligned, an affirmative result is obtained (step SP55: YES), and the process proceeds to the next step SP56.

  In step SP56, the authentication processing unit 80c executes login processing for the electronic terminal 60, and transmits authentication result information representing “TRUE” in the next step SP57, thereby displaying “TRUE” on the electronic terminal 60. Thereafter, the login authentication processing procedure is terminated.

  On the other hand, if a negative result is obtained in step SP55 (step SP55: NO), this means that the authentication processing unit 80c cannot recognize the login because all four elements are not prepared, After moving to step SP58 and transmitting the non-authentication result information to the electronic terminal 60 as described above, the login authentication processing procedure is terminated.

  Here, when a negative result is obtained in step SP55, for example, when only the latest alive signal AL cannot be acquired as shown in FIG. 22, as shown in FIG. 23, the latest alive signal AL and salt answer information are obtained. When (location code) cannot be acquired, as shown in FIG. 24, the latest alive signal AL, salt answer information (location code) and device identification information cannot be acquired, and as shown in FIG. There are cases where all cannot be acquired.

  However, as shown in FIG. 25, a malicious third party illegally obtains the user ID and password, illegally obtains the electronic terminal 60, illegally obtains the location code generation device 40, and smart meter. If 20 is obtained illegally, it may be possible that spoofing by a malicious third party may be possible.

  However, when the smart meter 20 is removed from the regular location and attached to another location, communication between both the smart meter management server 30 and the smart meter 20 is disconnected. Therefore, the smart meter management server 30 determines that the smart meter 20 is not installed at the original location or is in an abnormal state in which a failure has occurred, and the location code authentication is performed via the Internet. And the ID password authentication server 80s.

  As a result, the location code authentication and ID password authentication server 80s can be used even if a malicious third party illegally obtains the user ID, password, electronic terminal 60, location code generation device 40, and smart meter 20. Unauthorized login authentication can be prevented in advance, and unauthorized login authentication by a malicious third party can be effectively invalidated.

  As described above, in the authentication system 1, only when the smart meter 20, the location code generation device 40, and the electronic terminal 60 construct a regular and unique network topology that is accepted by the location code authentication and ID password authentication server 80s. Since login authentication processing can be executed, spoofing by a malicious third party can be prevented much more than before, and the security of the security on the network can be further ensured compared to before. .

With reference to the sequence charts of FIGS. 1 and 18 again, a first mode of user identification will be described.
In the processing procedure SK16, the user U requests the bank counter 110 (in the present invention, the bank counter 110 means a bank counter staff and a computer operated by the bank staff) to open an account. Here, the user U presents his / her address and name to the bank counter 110 using an identification card such as a driver's license. In addition, the user U may present the customer's power number to the bank counter 110 based on an electricity usage amount notice (meter reading slip) or the like.
In the processing procedure SK17, the bank counter 110 transmits user information such as the address and name of the user U (and the power customer number if presented) to the location code authentication and ID password authentication server 80s, and the user of the user U The location code authentication and ID password authentication server 80s is inquired as to whether the information is correct.

In the processing procedure SK18, the location code authentication / ID password authentication server 80s authenticates whether the user information received from the bank counter 110 matches the user information held by the location code authentication / ID password authentication server 80s. Make a decision. Specifically, when “TRUE” is transmitted in the processing procedure SK15, as described above, the latest alive signal AL, the user ID and password from the electronic terminal 60, and the salt answer generated by the location code generation device 40 Since all four elements of the information (location code) and the device identification information of the electronic terminal 60 are correct, it is considered that the authorized user is using the authorized electronic terminal 60 at the authorized location. . Here, the location code authentication and ID password authentication server 80 s has user information such as an address and a name in association with at least the location code of the above-described four elements for a legitimate user. It is determined whether the information matches the user information received from the bank counter 110. In other words, the location code authentication and ID password authentication server 80s has a list of user information such as addresses and names at least in association with the location code for a number of legitimate users. Whether or not is included is determined.
If they match as a result of the authenticity determination, in the processing procedure SK19, the location code authentication and ID password authentication server 80s transmits authentication result information representing “TRUE” to the bank counter 110. On the other hand, if they do not match, the location code authentication and ID password authentication server 80 s transmits non-authentication result information representing “FALSE” to the bank window 110.

  When the bank counter 110 receives “TRUE”, the identity verification of the user U has been completed, so in the processing procedure SK20, the account opening procedure for the user U is continued. On the other hand, when “FALSE” is received, Since the identity verification of the user U has not been completed, the account opening procedure for the user U is canceled in the processing procedure SK20.

In the present invention, at the time of opening an account, in addition to the conventional identity verification work by the identification card, it is determined by using the location code whether or not the user actually resides in a legitimate location described in the identification card. Therefore, it is possible to confirm the identity securely.

With reference to the overall configuration of the authentication system of FIG. 26 and the sequence chart of FIG. 27, a second mode of user identification will be described. The authentication system 1 in FIG. 26 is the same as the authentication system 1 in FIG. 1, and the authentication (SK1 to SK15) at the time of login processing in FIG. 27 is the same as the authentication at the time of login processing in FIG. To do.
In the processing procedure SK16, the user U requests the bank counter 110 to open an account. In the processing procedure SK17, the bank counter 110 transmits the user information of the user U to the location code authentication and ID password authentication server 80s. The location code authentication and ID password authentication server 80s is inquired whether the user information of the user U is correct.
In the processing procedure SK18, the location code authentication / ID password authentication server 80s authenticates whether the user information received from the bank counter 110 matches the user information held by the location code authentication / ID password authentication server 80s. Make a decision. The processing so far is the same as the processing in the first aspect.

  If they match as a result of the authenticity determination, in processing procedure SK19, the location code authentication and ID password authentication server 80s transmits authentication result information indicating “TRUE” to the bank counter 110, and in processing procedure SK20 The code authentication and ID password authentication server 80s issues a PIN code and transmits it to an arbitrary electronic terminal of the user U. On the other hand, if they do not match, the location code authentication and ID password authentication server 80 s transmits non-authentication result information representing “FALSE” to the bank window 110.

  Although illustration is omitted, when the bank counter 110 receives “FALSE”, since the identity verification of the user U has not been completed, the account opening procedure of the user U is stopped.

In the processing procedure SK21, the user U informs the bank counter 110 of the received PIN code. Specifically, the user U may input the PIN code into a PIN code input terminal provided at the bank window 110 or may verbally convey the PIN code to a staff member of the bank window 110.
In the processing procedure SK22, the bank counter 110 transmits the PIN code to the location code authentication and ID password authentication server 80s, and requests the location code authentication and ID password authentication server 80s to determine whether the PIN code is correct.
In the processing procedure SK23, the location code authentication and ID password authentication server 80s determines whether or not the PIN code transmitted from the bank counter 110 matches the issued PIN code.
If they match as a result of the correctness determination, in processing procedure SK24, the location code authentication and ID password authentication server 80s transmits authentication result information representing “TRUE” to the bank window 110. On the other hand, if they do not match, the location code authentication and ID password authentication server 80 s transmits non-authentication result information representing “FALSE” to the bank window 110.

  If the bank counter 110 receives “TRUE”, the identity verification of the user U has been completed. Therefore, in the processing procedure SK25, the account opening procedure for the user U is continued. On the other hand, if “FALSE” is received, Since the identity verification of the user U has not been completed, the account opening procedure for the user U is canceled in the processing procedure SK25.

  In the present invention, at the time of opening an account, in addition to the conventional identity verification work by the identification card, it is determined by using the location code whether or not the user actually resides in a legitimate location described in the identification card. At the same time, the identity verification can be surely performed by determining whether the PIN code is correct or not.

With reference to the overall configuration of the authentication system of FIG. 28 and the sequence chart of FIG. 29, a third mode of user identification will be described. The authentication system 1 in FIG. 28 is the same as the authentication system 1 in FIG. 1, and the authentication (SK1 to SK15) at the time of login processing in FIG. 29 is the same as the authentication at the time of login processing in FIG. To do.
In the processing procedure SK16, the user U requests the bank server 110s to open an account online using an arbitrary electronic terminal. The bank server 110s is an arbitrary external server managed by the bank, and is a server that accepts an online account opening request.
In the processing procedure SK17, the bank server 110s transmits the user information of the user U to the location code authentication and ID password authentication server 80s, and determines whether or not the user information of the user U is correct. Contact
In the processing procedure SK18, the location code authentication / ID password authentication server 80s authenticates whether the user information received from the bank server 110s matches the user information included in the location code authentication / ID password authentication server 80s. Make a decision. The processing so far is the same as the processing in the first aspect.

  If they match as a result of the authenticity determination, in the processing procedure SK19, the location code authentication and ID password authentication server 80s transmits the authentication result information indicating “TRUE” to the bank server 110s, and in the processing procedure SK20, the location The code authentication and ID password authentication server 80s issues a PIN code, and sends the PIN code to the address of the user U by a limited-person mail. On the other hand, if they do not match, the location code authentication and ID password authentication server 80s transmits non-authentication result information representing “FALSE” to the bank server 110s.

  Although illustration is omitted, when the bank server 110 s receives “FALSE”, the identity verification of the user U has not been completed, and thus the account opening procedure for the user U is stopped.

In the processing procedure SK21, the user U transmits the received PIN code from any electronic terminal to the location code authentication and ID password authentication server 80s.
In the processing procedure SK22, the location code authentication and ID password authentication server 80s determines whether or not the received PIN code matches the issued PIN code.
If they match as a result of the correctness determination, in processing procedure SK23, the location code authentication and ID password authentication server 80s transmits authentication result information representing “TRUE” to the bank server 110s. On the other hand, if they do not match, the location code authentication and ID password authentication server 80s transmits non-authentication result information representing “FALSE” to the bank server 110s.

  When the bank server 110s receives “TRUE”, the identity verification of the user U has been completed, so in the processing procedure SK24, the account opening procedure for the user U is continued, whereas when “FALSE” is received, Since the identity verification of the user U has not been completed, the account opening procedure for the user U is canceled in the processing procedure SK24.

  In the present invention, at the time of opening an account, in addition to the conventional identity verification work by the identification card, it is determined by using the location code whether or not the user actually resides in a legitimate location described in the identification card. At the same time, the user can be surely verified by sending the PIN code to the user's address by mail limited to the user.

<Authentication system using both A route and B route>
Next, a plurality of authentication systems using both the A route and the B route will be described. As shown by the broken line in FIG. 30 in which the same reference numerals are assigned to the corresponding parts to FIG.
A smart meter 20, a location code authentication / smart meter management server 30s, a location code generation device 40, an electronic terminal 60, and an ID password authentication server 80 are provided. In this authentication system 1a, in particular, a location code authentication / smart meter management server 30s and an ID password authentication server 80 are provided instead of the smart meter management server 30 and the location code authentication / ID password authentication server 80s. . In this embodiment, the ID password authentication server 80 as the first authentication server and the location code authentication and smart meter management server 30s as the second authentication server are separate.
First, the authentication system 1a shown in the broken line will be described, and then identity verification at the bank window 110 will be described.

  The location code authentication and smart meter management server 30 s can receive the location code generated by the location code generation device 40 from the smart meter 20 through a so-called A route.

  The location code generator 40 transmits the location code to the ID password authentication server 80 via the electronic terminal 60 by the so-called B route as before, and the ID password authentication server 80 receives the location code received via the B route. The location code is authenticated and transmitted to the smart meter management server 30s via the router rt3, the Internet, and the router rt4.

  The location code authentication / smart meter management server 30s has basically the same configuration as that of the location code authentication / ID password authentication server 80s (FIG. 9), and is received via the A route at an authentication processing unit (not shown). The matching location code is matched with the location code received via the B route.

  The location code authentication and smart meter management server 30 s recognizes that the location code is the same as the normal login authentication, transmits the authentication result information indicating “TRUE” to the smart meter 20 via the A route, and B The location code generation device 40 transmits the route information to the electronic terminal 60 via the route, and transmits the authentication result information to the ID password authentication server 80 via the Internet.

  As a result, the ID password authentication server 80 can execute login processing using the user ID and password by the electronic terminal 60 based on the location code authentication and the authentication result information received from the smart meter management server 30s.

  When the user U requests the bank counter 110 to open an account, the bank counter 110 transmits the user information of the user U to the location code authentication and smart meter management server 30s, and whether or not the user information of the user U is correct. Is inquired of the location code authentication and smart meter management server 30s.

The location code authentication / smart meter management server 30s determines whether the user information received from the bank counter 110 matches the user information included in the location code authentication / smart meter management server 30s.
If they match as a result of the authentication, the location code authentication and smart meter management server 30 s transmits authentication result information indicating “TRUE” to the bank counter 110. On the other hand, if they do not match, the location code authentication and smart meter management server 30 s transmits non-authentication result information indicating “FALSE” to the bank window 110.

Further, as indicated by a broken line in FIG. 31, the authentication system 1b includes a smart meter 20, a smart meter management server 30, a location code generation device 40, an electronic terminal 60, and a location code authentication and ID password authentication server 80s. Yes. This authentication system 1b has the same overall configuration as the authentication system 1 of FIG. 1, except that the location code authentication and the ID password authentication server 80s perform matching in particular.

  In this case, the smart meter management server 30 receives the location code generated by the location code generation device 40 from the smart meter 20 through a so-called A route. The smart meter management server 30 transmits the location code to the location code authentication and ID password authentication server 80s via the router rt4, the Internet, and the router rt3. The location code generation device 40 transmits the location code to the location code authentication and ID password authentication server 80s via the electronic terminal 60 by the so-called B route as before.

Therefore, the location code authentication and ID password authentication server 80s matches the location code received via the A route and the location code received via the B route in the authentication processing unit 80c. The location code authentication and ID password authentication server 80 s recognizes that the location code of both matches as normal login authentication, transmits authentication result information indicating “TRUE” to the electronic terminal 60, and logs in by the electronic terminal 60. Execute the process. However, the present invention is not limited to this, and the location code authentication and ID password authentication server 80s can also send authentication result information from the smart meter 20 to the electronic terminal 60 via the location code generation device 40 via the A route. is there.
The identity verification procedure by the bank counter 110 is the same as that in FIG.

Further, as shown by a broken line in FIG. 32 in which parts corresponding to those in FIG. 1 are given the same reference numerals, the authentication system 1c includes a smart meter 20, a smart meter management server 30, a location code generation device 40, an electronic terminal 60, an ID password. In addition to the authentication server 80, a location code authentication server 100 is provided. This authentication system 1c is particularly different in that a location code authentication server 100 is newly provided. The location code authentication server 100 has basically the same configuration as the configuration of the location code authentication and ID password authentication server 80s (FIG. 9).
In this embodiment, the ID password authentication server 80 as the first authentication server and the location code authentication server 100 as the second authentication server are separate.

  In this case, the location code received by the location code authentication server 100 from the smart meter management server 30 via the router rt4 via the so-called A route and the location code received via the router rt3 from the ID password authentication server 80 via the so-called B route. Match with. The location code authentication server 100 recognizes as normal login authentication when both location codes match, and transmits authentication result information indicating “TRUE” to the electronic terminal 60 via the A route or the B route.

  When the user U requests the bank counter 110 to open an account, the bank counter 110 transmits the user information of the user U to the location code authentication server 100 and determines whether the user information of the user U is correct. The authentication server 100 is inquired.

The location code authentication server 100 determines whether or not the user information received from the bank counter 110 matches the user information that the location code authentication server 100 has.
If they match as a result of the authenticity determination, the location code authentication server 100 transmits authentication result information representing “TRUE” to the bank window 110. On the other hand, if they do not match, the location code authentication server 100 transmits non-authentication result information indicating “FALSE” to the bank window 110.

  As described above, as shown in FIG. 33, in the authentication systems 1a to 1c, the location code authentication and smart meter management server 30s, the location code authentication and ID password authentication server 80s, or the location code authentication server 100 can The location codes received from both the route and the B route are matched, and if both location codes match, it is accepted as normal login authentication. In this case, authentication is performed using not only the location code but also the latest alive signal AL, the user ID from the electronic terminal 60, the password, and the device identification information of the electronic terminal 60.

  As a result, if the location code generated by the location code generation device 40 is in any one of the A route via the smart meter 20 and the B route via the electronic terminal 60, the location code is not Since the codes do not match, the authentication systems 1a to 1c can effectively invalidate unauthorized login authentication and guarantee the security of security on the network.

  Further, in the authentication systems 1a to 1c, any one of the location code authentication and smart meter management server 30s, the location code authentication and ID password authentication server 80s, or the location code authentication server 100 has user information included therein, By determining whether or not the user information received from the bank window 110 or the bank server 110s matches, the identity verification can be performed reliably.

<Other embodiments>
The preferred embodiment of the present invention has been described above. However, the present invention is not limited to the authentication system 1 according to the above-described embodiment, and all aspects included in the concept of the present invention and the claims. including. In addition, the respective configurations may be selectively combined as appropriate so as to achieve at least part of the above-described problems and effects. For example, the arrangement, combination, and the like of each component in the above embodiment can be changed as appropriate according to the specific usage mode of the present invention.

DESCRIPTION OF SYMBOLS 1, 1a, 1b, 1c ... Authentication system, 20 ... Smart meter (electricity meter), 21 ... Electricity consumption measurement part, 22 ... Smart meter memory | storage part, 25 ... Communication processing part, 30 ... Smart meter management server, 30s .... location code authentication and smart meter management server, 40 ... location code generation device, 40M ... location code generation device (parent device), 40S ... location code generation device (slave device), 41 …… Storage unit 42 ...... Control unit 42 a ...... Location code generation unit 42 b ...... Activate processing unit 42 c alive signal generation unit 43 ...... communication processing unit 43 a …… radio signal conversion unit 43b: ultrasonic conversion unit, 43c: acoustic processing unit, 45: speaker, 46: microphone, 60: electronic terminal (electronic terminal), 80: ID password authentication service 80a ... Communication processing unit, 80b ... Storage unit, 80c ... Authentication processing unit, 80s ... Location code authentication and ID password authentication server, 90 ... Distribution board, 100 ... Location code authentication server, 110 ... bank counter, 110s ... bank server, D1, D2 ... LPC device, rt1-rt4 ... router.

Claims (8)

A digital watt-hour meter,
A location code generation unit that generates a unique location code by a predetermined function expression based on unique watt-hour meter identification information assigned to the watt-hour meter, and a communication process for transmitting the location code by a predetermined communication method A location code generation device having a section;
A first authentication server that receives the location code from the electronic terminal that has received the location code transmitted by the communication processing unit and authenticates the electronic terminal based on the location code;
It is integrated with or separate from the first authentication server, has user information associated with the location code, and determines whether or not the user information matches the user information received from a bank window or an external server A second authentication server to
An authentication system comprising: The location code generation unit includes, in addition to the watt-hour meter identification information, unique location code generation device identification information assigned to the location code generation unit, and salt information supplied from the first authentication server. The authentication system according to claim 1, wherein the location code is generated based on the function formula. The authentication system according to claim 1, wherein the communication processing unit transmits the location code to the electronic terminal by ultrasonic communication. In an activated state between the watt-hour meter, the location code generation device, and the electronic terminal, the alive signal generated by the location code generation device is the watt-hour meter, the location code generation device, And when it is transmitted / received between the three parties of the electronic terminal, the first authentication server transmits salt information to the location code generation device when the presence of the alive signal is confirmed. The authentication system according to claim 2. The first authentication server authenticates the electronic terminal based on the alive signal, the user ID and password, the location code, and device identification information unique to the electronic terminal. Authentication system. The second authentication server sends the issued PIN code to the user, and determines whether or not the PIN code returned from the user matches the issued PIN code. 6. The authentication system according to any one of 5 to 5. A location code generation step of generating a unique location code by a location code generation unit according to a predetermined function formula based on unique watt-hour meter identification information assigned to the digital energy meter;
A transmission step of transmitting the location code by a predetermined communication method by a communication processing unit;
An authentication step of receiving the location code from the electronic terminal that has received the location code transmitted by the communication processing unit, and authenticating the electronic terminal with a first authentication server based on the location code;
A second authentication server integrated with or separate from the first authentication server determines whether or not the user information associated with the location code matches the user information received from a bank window or an external server. And steps to
An authentication method characterized by comprising: The step of sending a PIN code issued by the second authentication server to a user and determining whether or not the PIN code returned from the user matches the issued PIN code. Item 8. The authentication method according to Item 7.