JP2018169820A - Mobile terminal device, authentication method of the same, and program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a mobile terminal device, an authentication method of the same, and a program, for reducing the risk of leakage of authentication information without restricting a usage environment or a user.SOLUTION: A mobile terminal device 100 includes: a display control unit 102 for causing a display unit to display an input screen for accepting an authentication operation corresponding to another authentication method different from one authentication method specified by a user; and an authentication unit 104 that acquires authentication information of the user while the input screen is being displayed and performs authentication processing by the one authentication method.SELECTED DRAWING: Figure 1

Description

  The present invention relates to a mobile terminal device, an authentication method thereof, and a program.

  Mobile terminals such as smartphones and tablets contain a lot of personal information, and it is common to set screen locks to protect them. The screen lock is a state where the use of the apparatus cannot be started without an authentication procedure by the user. As a general screen unlocking method, there is a method for inputting an unlock key such as “Pattern”, “PIN (Personal Identification Number)”, “Password”.

  However, if the input contents at the time of releasing the unlocking key are known, it can be easily unlocked by others. The input of the release key can be easily seen through the back and is likely to be easily known to others.

  Therefore, a technique for preventing password theft even if peeped has been proposed. For example, in Patent Document 1, the background color of each input key is set by the user in different colors for the password and the dummy word, and the dummy word is input while the user freely embeds it in the password. It describes that the security against password theft is improved.

  Patent Document 2 describes that authentication processing is performed by comparing impedance characteristics measured in a state where the mobile terminal is gripped, using templates having different impedance characteristics for each grip state of the mobile terminal. Yes.

  A technique for selectively using a plurality of authentication methods has also been proposed. For example, in a two-fold portable electronic terminal device that can change the device body to multiple styles (open style / view style / closed style), authentication data for unlocking can be easily input without changing the current style A technique for enabling this is described in Patent Document 3. The portable terminal device of Patent Document 3 stores three types of styles and three types of authentication means (password authentication means, fingerprint authentication means, face authentication means) in association with each other, and selects an authentication means corresponding to the current style. .

  In addition, as a method that cannot be easily unlocked by others, there is an authentication method using biometric information such as fingerprint authentication, but a person who has difficulty in reading a fingerprint cannot be used. Therefore, in Patent Document 4, it is convenient to be able to select an authentication method that is highly secure, such as motion authentication and face authentication, but that is restricted by the usage environment, and an authentication method such as password authentication, depending on conditions. A technique for improving security without losing performance is described.

JP 2010-277496 A JP 2014-013493 A JP 2007-336245 A JP 2011-091613 A

  Various methods have been proposed to reduce the risk of leakage of authentication information in this way, but anyone can use it without being restricted by the usage environment, and the release key (authentication information) is known to others. No authentication method has been proposed that cannot be easily unlocked even if it has been.

  An object of the present invention is to provide a portable terminal device, an authentication method thereof, and a program that reduce the risk of leakage of authentication information without using the use environment and user restrictions, which are the problems described above.

  Each aspect of the present invention employs the following configurations in order to solve the above-described problems.

The first aspect relates to a mobile terminal device.
The mobile terminal device according to the first aspect is
Display control means for displaying on the display unit an input screen for accepting an authentication operation corresponding to another authentication method different from the one authentication method designated by the user;
Authentication means for acquiring authentication information of the user and performing authentication processing by the one authentication method while the input screen is displayed.

A 2nd side is related with the authentication method of the portable terminal device performed by at least 1 computer.
The authentication method of the mobile terminal device according to the second aspect is as follows:
Mobile terminal device
An input screen for accepting an authentication operation corresponding to another authentication method different from the one authentication method specified by the user is displayed on the display unit,
Acquiring authentication information of the user while the input screen is displayed, and performing authentication processing by the one authentication method.

As another aspect of the present invention, there may be a program for causing at least one computer to execute the method of the second aspect, or a computer-readable recording medium recording such a program. May be. This recording medium includes a non-transitory tangible medium.
The computer program includes computer program code that, when executed by a computer, causes the computer to perform the authentication method on the mobile terminal device.

  It should be noted that any combination of the above-described constituent elements and a conversion of the expression of the present invention between a method, an apparatus, a system, a recording medium, a computer program, etc. are also effective as an aspect of the present invention.

  The various components of the present invention do not necessarily have to be independent of each other. A plurality of components are formed as a single member, and a single component is formed of a plurality of members. It may be that a certain component is a part of another component, a part of a certain component overlaps with a part of another component, or the like.

  Moreover, although the several procedure is described in order in the method and computer program of this invention, the order of the description does not limit the order which performs a several procedure. For this reason, when the method and computer program of the present invention are implemented, the order of the plurality of procedures can be changed within a range that does not hinder the contents.

  Furthermore, the plurality of procedures of the method and the computer program of the present invention are not limited to being executed at different timings. For this reason, another procedure may occur during the execution of a certain procedure, or some or all of the execution timing of a certain procedure and the execution timing of another procedure may overlap.

  According to each aspect described above, it is possible to provide a mobile terminal device, an authentication method thereof, and a program that reduce the risk of leakage of authentication information without restrictions on the use environment or the user.

It is a functional block diagram which shows logically the structure of the portable terminal device which concerns on embodiment of this invention. It is a block diagram which shows the structural example of the hardware of the portable terminal device of this embodiment. It is a figure which shows the example of the input screen according to the authentication method of the portable terminal device of this embodiment. It is a flowchart which shows an example of operation | movement of the portable terminal device of this embodiment. It is a figure for demonstrating the authentication method of the portable terminal device of this embodiment. It is a figure which shows the example of the input screen of the portable terminal device of this embodiment. It is a functional block diagram which shows the logical structure of the portable terminal device which concerns on this Embodiment. It is a figure which shows an example of the data structure of the authentication information storage part of this embodiment. It is a figure for demonstrating the example of arrangement | positioning of the detection part of the portable terminal device of this embodiment. It is a figure for demonstrating the example of arrangement | positioning of the detection part of the portable terminal device of this embodiment. It is a figure for demonstrating the example of arrangement | positioning of the detection part of the portable terminal device of this embodiment. It is a block diagram which shows the structural example of the hardware of the portable terminal device of this embodiment. It is a flowchart which shows an example of operation | movement of the portable terminal device of this embodiment. It is a figure for demonstrating the information registered into the authentication information storage part of the portable terminal device of this embodiment. It is a flowchart which shows an example of the procedure of the authentication process in the portable terminal device of this embodiment. It is a flowchart which shows an example of the procedure of the registration process of the some authentication method in the portable terminal device of this embodiment. It is a functional block diagram which shows logically the structure of the portable terminal device which concerns on embodiment of this invention. It is a flowchart which shows an example of operation | movement of the portable terminal device of this embodiment. It is a figure for demonstrating the combination of the original authentication method of this embodiment, and the fake authentication method which displays a 2nd input screen.

  Hereinafter, embodiments of the present invention will be described with reference to the drawings. In all the drawings, the same reference numerals are given to the same components, and the description will be omitted as appropriate. Moreover, in each figure, about the structure of the part which is not related to the essence of this invention, it has abbreviate | omitted and is not illustrated.

(First embodiment)
A first embodiment of the present invention will be described below.
FIG. 1 is a functional block diagram logically showing the configuration of the mobile terminal device 100 according to the embodiment of the present invention. The mobile terminal device 100 includes a display control unit 102, an authentication unit 104, and an authentication information storage unit (shown as “authentication information” in the figure) 106. The display control unit 102 displays an input screen for accepting an authentication operation corresponding to another authentication method different from the one authentication method designated by the user on the display unit. While the input screen is displayed, the authentication unit 104 acquires user authentication information and performs authentication processing using one authentication method. User authentication information is registered in the authentication information storage unit 106 in advance.

  When the mobile terminal device 100 is used, the lock screen that restricts the use of the mobile terminal device 100 is released by performing an authentication operation by the user. Alternatively, when the browsing of a website, the use of a service or system, or the use of an application is restricted on the mobile terminal device 100, the restriction is removed by performing an authentication operation by the user. The present invention improves the security of an authentication operation performed by a user performed on the mobile terminal device 100.

  The mobile terminal device 100 of the present invention is a mobile phone, a smart phone, a tablet terminal, an electronic book reader terminal, a portable game machine, a notebook personal computer, a PHS (Personal Handyphone System), a PDA (Personal Digital Assistants) or the like. If it is a terminal, it will not specifically limit. In the present embodiment, a smartphone will be described as an example of the mobile terminal device 100.

  FIG. 2 is a block diagram illustrating a hardware configuration example of the mobile terminal device 100 according to the present embodiment. The mobile terminal device 100 includes a CPU (Central Processing Unit) 12, a memory 14, a storage 16, an I / O (Input / Output) 18, a communication unit 20, an operation unit 22, an operation reception unit 24, A display unit 26, a display control unit 28, an imaging unit 32, and a fingerprint reading unit 36 are provided.

  The CPU 12 is an arithmetic processing device and is connected to each element via the bus 40 and controls the entire mobile terminal device 100 together with each element. The CPU 12 may be another processor such as a GPU (Graphics Processing Unit). A method of connecting the CPUs 12 and the like to each other is not limited to bus connection. The memory 14 is a memory such as a RAM (Random Access Memory) or a ROM (Read Only Memory). The storage 16 is a storage device such as a hard disk, an SSD (Solid State Drive), or a memory card.

  The storage 16 stores a program 50 for operating the mobile terminal device 100, various setting data used when the program operates, mail related data including transmission / reception mail and setting information, an address book, User data including various data such as application data is stored. The storage 16 may be a memory such as a RAM or a ROM, or may be detachably attached to the mobile terminal device 100.

  The storage 16 stores program modules that realize the functions of the processing units included in the mobile terminal device 100. The CPU 12 implements the functions of the processing units by executing these program modules. Here, when executing each of the above program modules, the CPU 12 may execute the program modules after reading them onto the memory 14 or without reading them onto the memory 14.

  The I / O 18 performs input / output control of data and control signals between the mobile terminal device 100 and other input / output devices. Other input / output devices include, for example, the communication unit 20, the touch panel unit 30, the imaging unit 32, the fingerprint reading unit 36, a speaker (not shown), a microphone (not shown), and the like.

  The communication unit 20 includes a communication interface for the mobile terminal device 100 to communicate with an external device via the antenna 21. Here, the type of communication is not limited. Further, a plurality of units for performing a plurality of types of communication may be provided.

  The operation unit 22 receives operations such as various settings and inputs from the user of the mobile terminal device 100. The operation unit 22 is, for example, an operation key, an operation button, a switch (including a power switch), a lever, a keyboard, a touch panel, a jog dial, a touch pad, or the like. The operation reception unit 24 receives an operation of the operation unit 22 by the user and notifies the CPU 12 of the operation.

  The display unit 26 is a liquid crystal display, an organic EL (ElectroLuminescence) display, a lamp, an LED (Light Emitting Diode) display, or the like. The display control unit 28 displays various screens on the display unit 26 in accordance with instructions from the CPU 12. The touch panel unit 30 is configured by integrating a part of the operation unit 22 and the display unit 26. In the present embodiment, an input screen that prompts input of authentication information is displayed on the liquid crystal display of the touch panel unit 30 by the display control unit 28, and when the user performs an operation such as tap or swipe on the input screen, the user's input operation is operated. The reception part 24 can receive.

  The imaging unit 32 is a camera including a lens and an imaging element such as a CCD (Charge Coupled Device) image sensor.

  The portable terminal device 100 is realized by a computer including the elements shown in FIG. Each component of the mobile terminal device 100 in FIG. 1 is realized by any combination of hardware and software of the computer in FIG. It will be understood by those skilled in the art that there are various modifications to the implementation method and apparatus. The functional block diagram showing the mobile terminal device 100 of each embodiment to be described below shows a block of logical functional units, not a configuration of hardware units.

Returning to FIG. 1, each element of the mobile terminal device 100 will be described in detail.
In the display control unit 102, one authentication method designated by the user refers to one authentication method designated in advance by the user from a plurality of authentication methods. Examples of the plurality of authentication methods include pattern authentication, PIN code authentication, password authentication, and biometric information authentication such as fingerprint authentication and face authentication.

  In an authentication method using pattern authentication, PIN code authentication, password authentication, or the like, first, an operation pattern, PIN code, password, or the like is performed by a user operation from an input screen displayed on the touch panel (display unit 26) of the mobile terminal device 100. Authentication information is entered. Then, the input authentication information is received by the operation reception unit 24 via the touch panel (operation unit 22), and the authentication process is performed by comparing the authentication information input by the user with the authentication information of the user registered in advance. Is done.

  In order to perform an authentication method using biometric information authentication such as fingerprint authentication and face authentication, the portable terminal device 100 needs to include a biometric information authentication unit for performing biometric information authentication. Therefore, when the mobile terminal device 100 includes biometric information authentication means, the user can specify an authentication method using biometric information authentication. On the other hand, when the mobile terminal device 100 does not include biometric information authentication means, the user cannot specify authentication information using biometric information authentication.

  In the authentication method using fingerprint authentication, the fingerprint reading unit 36 is used as biometric information authentication means. The fingerprint reading unit 36 reads the user's fingerprint to generate fingerprint feature information, and the authentication unit 104 performs authentication processing by comparing the fingerprint feature information generated by the fingerprint reading unit 36 with the previously registered user fingerprint feature information. I do.

  In the authentication method using face authentication, an imaging unit 32 and an image recognition processing unit (not shown) are used as biometric information authentication means. The imaging unit 32 captures the user's face, and the image recognition processing unit performs image recognition processing to extract feature information of the captured image of the user's face. The authentication unit 104 performs authentication processing by comparing the extracted feature information with the feature information of the face image of the user registered in advance.

  The mobile terminal device 100 may use finger vein authentication or iris authentication as the biometric information authentication unit.

  In the above-described authentication method using pattern authentication, PIN code authentication, or password authentication, an input screen that accepts input of authentication information by a user is used. However, a different input screen is used for each authentication method. FIG. 3 is a diagram illustrating an example of an input screen for each authentication method of the mobile terminal device 100 according to the present embodiment. 3A shows an example of an input screen 300 for PIN code authentication, FIG. 3B shows an example of an input screen 310 for pattern authentication, and FIG. 3C shows an example of an input screen 320 for password authentication. . Although fingerprint authentication and face authentication are not shown, a message for instructing the user to perform an authentication operation or an image of the user's face may be displayed on the screen.

  In the PIN code authentication input screen 300 of FIG. 3A, numeric keys 302 of 0 to 9 for inputting a PIN code are arranged in a predetermined arrangement. When the user presses the numeric key 302 and sequentially inputs the PIN code number, the number corresponding to the depressed numeric key 302 is displayed in the input confirmation display field 304. The numbers are preferably displayed invisible after being displayed for a certain time (for example, 0.5 seconds). For example, the number of input digits may be displayed with black circles, asterisks, or the like for the number of input digits.

  In the pattern authentication input screen 310 of FIG. 3B, a plurality of objects 312 such as dots serving as reference points of a locus when tracing a pattern are displayed in a predetermined arrangement. In the present invention, a PIN code may be input on the pattern authentication input screen 310. In this case, the pattern authentication input screen 310 has an input confirmation display field 304 in FIG. May be. The same applies to password authentication. The display control unit 102 may draw and display a locus drawn by the user with a finger or the like on the pattern authentication input screen 310.

  In the password authentication input screen 320 of FIG. 3C, character or numeric operation keys 322 for inputting a password are displayed in a predetermined arrangement. When the user operates the operation keys 322 to sequentially input characters or numbers of the password, English characters or numbers corresponding to the operation keys 322 pressed in the input confirmation display field 324 are displayed. The alphabetic characters or numbers are preferably displayed invisible after being displayed for a certain time (for example, 0.5 seconds). For example, the number of input digits may be displayed with black circles, asterisks, or the like for the number of input digits.

  While the PIN code authentication input screen 300 of FIG. 3A is being displayed, for example, when the user inputs a pattern for pattern authentication, the number of the numeric key 302 through which the path of the pattern passes is shown. May be displayed in order, and the acquired number may be displayed in the input confirmation display field 304 for a certain period of time, or only the black circles, asterisks, etc. for the number of input digits may be displayed without displaying the number. The same applies to the password authentication input screen 320 in FIG.

  The user designates in advance at least one of the above-described five authentication methods (PIN code authentication, password authentication, pattern authentication, fingerprint authentication, and face authentication) and stores the authentication information in the authentication information storage unit 106. Remember. The display control unit 102 displays a second input screen different from the first input screen of the authentication method designated by the user. For example, when the user designates PIN code authentication, the display control unit 102 displays one of input screens for pattern authentication and password authentication. When the user designates fingerprint authentication or face authentication, the display control unit 102 displays any one input screen among PIN code authentication, pattern authentication, and password authentication. Alternatively, an input screen for face authentication may be displayed when fingerprint authentication is specified, and an input screen for fingerprint authentication may be displayed when face authentication is specified.

  A user operation input on the second input screen is received by the operation receiving unit 24 and transferred to the authentication unit 104. Based on this input operation, the authentication unit 104 collates with authentication information of one authentication method specified by the user stored in the authentication information storage unit 106. The authentication information stored in the authentication information storage unit 106 differs depending on the authentication method and the verification method. The collation method is exemplified below.

<When one authentication method is PIN code authentication>
(A1) The pattern authentication input screen 310 or the password authentication input screen 320 is displayed on the display unit 26 as a fake second input screen instead of the PIN code authentication input screen 300. The user performs the PIN code input operation by regarding the object 312 of the pattern authentication input screen 310 or the operation key 322 of the password authentication input screen 320 as the number key 302 of the PIN code authentication input screen 300. .

  Therefore, a process of replacing the user operation received on the second input screen as an internal process with an operation on the PIN code authentication input screen 300 is performed. The number key of the PIN code authentication input screen 300 is previously set in the operation position (or area) of the object 312 on the pattern authentication input screen 310 or the operation position (or area) of the operation key 322 of the password authentication input screen 320. The number 302 is linked. The user's PIN code is stored in the authentication information storage unit 106 as authentication information.

  At the time of authentication, the number of the numeric key 302 of the PIN code authentication input screen 300 associated with the operation position in accordance with the user operation on the false second input screen displayed on the display unit 26 In order. Then, a number corresponding to the number of digits of the user's PIN code is acquired, and a PIN code is generated. The generated PIN code is collated with the PIN code stored in the authentication information storage unit 106.

(A2) In the above (a1), the PIN code is used for the authentication process. However, in this example, the operation procedure when the user's PIN code is input on the PIN code authentication input screen 300 (operation position and operation sequence) Is stored in the authentication information storage unit 106 as authentication information, and the operation content information is used for authentication processing.

For example, when registering authentication information, when a user inputs a PIN code on the input screen 300 for PIN code authentication, the operation position or area of the numeric key 302 and the operation order thereof are acquired and authenticated as operation content information. The information is stored in the information storage unit 106. Then, at the time of authentication, the operation position on the basis of the user operation object 312 or the operation key 322 on the false second input screen (310 or 320) displayed on the display unit 26 is sequentially acquired, and the authentication information is acquired. It collates with the operation content information memorize | stored in the memory | storage part 106. FIG.
(A3) When the pattern authentication input screen 310 is displayed on the display unit 26, the user operation may trace the object 312 on the pattern authentication input screen 310 in the order of the PIN codes. Therefore, in this example, pattern information indicating a trace drawn by tracing the object 312 of the pattern authentication input screen 310 with a finger in the order of the number of the user's PIN code is stored in the authentication information storage unit 106 in advance as authentication information. .

  At the time of authentication, a pattern input by a user operation is acquired on the fake pattern authentication input screen 310 displayed on the display unit 26 and collated with the pattern information stored in the authentication information storage unit 106. . The pattern information is information indicating the shape of the pattern or information indicating the position and order of the object 312 through which the pattern trajectory passes.

(A4) In the above (a3), pattern information is used as authentication information used for collation. In this example, a PIN code is used. The user's PIN code is stored in the authentication information storage unit 106. At the time of authentication, the user operation is performed such that the object 312 on the pattern authentication input screen 310 is traced in the order of the PIN codes as in (a3). Similar to (a1) above, the number of the numeric key 302 on the PIN code authentication input screen 300 is linked in advance to the operation position (or area) of the object 312 on the pattern authentication input screen 310.

  And the input of the pattern which shows the locus | trajectory drawn with a finger by user operation on the input screen 310 of the pattern authentication currently displayed on the display part 26 is received. At this time, the number of the numeric key 302 of the PIN code authentication input screen 300 associated with the position of the object 312 through which the path of the pattern input on the pattern authentication input screen 310 passes is sequentially obtained, and the number string is obtained. Generate.

  And it collates by analyzing whether a PIN code is contained in the generated number sequence. For example, when the PIN code is “2509”, the number that the trajectory passes is “25809”. The number string “25809” is compared with the PIN code “2509”, and the PIN code is included in the number string, so the authentication unit 104 can determine that the authentication is successful.

(A5) When the password authentication input screen 320 is displayed on the display unit 26, for example, the letters A, B, and C can also be input by operating the operation key 322 of the numeral 2. In this case, even when the English characters A, B, and C are input on the input screen 320, the number 2 is accepted internally. In this example, the PIN code is stored in the authentication information storage unit 106. Then, the received numeric string is collated with the PIN code stored in the authentication information storage unit 106. In the input confirmation display field 324 of the input screen 320, English characters input by a user operation may be displayed, or randomly generated character strings may be displayed. This makes it possible for others to see fake authentication information, and it seems that they are actually entering a password, thus improving security. In addition, an alphabetic character and a number input with the operation key 322 of the password authentication input screen 320 are linked in advance.

<When the first authentication method is password authentication>
(B1) In this example, not the password authentication input screen 320 but the PIN code authentication input screen 300 or the pattern authentication input screen 310 is displayed on the display unit 26 as a fake second input screen. Therefore, the user performs a password input operation on the fake second input screen. That is, the operation reception unit 24 receives a user operation as an operation of the operation key 322 of the password authentication input screen 320 regardless of the actual display screen.

  First, the user password is stored in the authentication information storage unit 106. Then, according to the operation content of the user operation on the second input screen (operation position, operation method (tap or either slide up / down / left / right), operation order, etc.), the first input screen (password authentication input screen) 320), numbers or characters accepted by the operation on the operation key 322 are acquired in order, and a password is generated. Check the generated password against the stored password.

  When the input screen 300 for PIN code authentication is displayed on the display unit 26, the input confirmation display field 304 uses the number of the numeric key 302 operated by the user as a dummy for the number of digits of the PIN code (for example, 4 It is preferable to display only (digits). However, a form of displaying an actually input character string (including numbers and English characters) or a form of displaying randomly generated character strings (including numbers and English characters) is not excluded. When the pattern authentication input screen 310 is displayed on the display unit 26, an input confirmation display field (not shown) for confirming and displaying the input password may be displayed.

(B2) In this example, operation content information indicating an operation procedure (operation position and operation sequence) when a user password is input on the password authentication input screen 320 is stored in the authentication information storage unit 106 as authentication information. The operation content information is used for the authentication process.

  For example, when registering authentication information, the user's password is input on the password authentication input screen 320, the operation position or area of the operation key 322, and the operation method (tap or slide up / down / left / right), Operation content information indicating the operation order is stored in the authentication information storage unit 106. Then, an operation based on the numeric key 302 or the object 312 of the user operation on the fake second input screen (the PIN code authentication input screen 300 or the pattern authentication input screen 310) displayed on the display unit 26 The position and the operation method are acquired in order and collated with the operation content information stored in the authentication information storage unit 106.

<When the first authentication method is pattern authentication>
(C1) In this example, instead of the pattern authentication input screen 320, the PIN code authentication input screen 300 or the password authentication input screen 320 is displayed on the display unit 26 as a false second input screen. In this example, the user draws a locus by tracing the number key 302 of the PIN code authentication input screen 300 or the operation key 322 of the password authentication input screen 320 as an object 312 of the pattern authentication input screen 310 with a finger. Enter the pattern. Note that the display control unit 102 does not perform the drawing display of the locus traced by the user with the finger on the second input screen.

  The numeric key 302 of the PIN code authentication input screen 300 or the operation key 322 of the password authentication input screen 320 is associated with the object 312 of the input screen 310 in advance. In addition, the user pattern information is stored in the authentication information storage unit 106. Here, the pattern information includes information indicating a locus of a user operation when a pattern is input on the pattern authentication input screen 310. The pattern information is information indicating the shape of the pattern or information indicating the position and order of the object 312 through which the pattern trajectory passes. Information on a pattern input by a user operation on the second input screen (300 or 320) is acquired. Then, the pattern information received on the second input screen is collated with the pattern information stored in the authentication information storage unit 106.

(C2) Instead of inputting the pattern, the user may input by the operation method suitable for the operation on the fake second input screen. In this case, the authentication information is stored as operation information indicating the position and order of the numeric key 302 of the PIN code authentication input screen 300 or the operation key 322 of the password authentication input screen 320 through which the path of the authentication information pattern passes. Stored in the unit 106.

  At the time of authentication, the user taps the number keys 302 on the input screen 300 or the operation keys 322 on the input screen 320 in the order in which the pattern trajectory passes. At this time, a number or a character string input by a user operation may be displayed in the input confirmation display field 304 or 324 of each input screen. However, in the case of PIN code authentication, it is preferable to display up to the number of digits of the PIN code. Alternatively, a randomly selected number string or character string may be displayed. Then, the operation content (operation position and order) by the user is acquired and collated with the operation content information stored in the authentication information storage unit 106.

<When one authentication method is biometric authentication>
The biometric feature information of the user used for biometric information authentication is stored in the authentication information storage unit 106. In this example, any input screen of a plurality of authentication methods may be displayed on the display unit 26 as the second input screen. The user performs an input operation of corresponding authentication information according to the second input screen. For example, when the PIN code authentication input screen 300 is displayed, a fake PIN code is input. When the pattern authentication input screen 310 is displayed, a fake pattern is input. When the password authentication input screen 320 is displayed, a fake password is input.

  However, the authentication unit 104 does not use the authentication information input by the user operation on the second input screen displayed on the display unit 26 for the authentication process. While the second input screen is displayed, the fingerprint feature information acquired by the fingerprint reading unit 36 or the feature information of the user's face extracted from the image captured by the imaging unit 32 and the authentication information storage unit 106 The stored biometric feature information is collated.

The operation of the portable terminal device 100 of the present embodiment configured as described above will be described below.
FIG. 4 is a flowchart illustrating an example of the operation of the mobile terminal device 100 of the present embodiment. This process is started, for example, when the screen lock that restricts the use of the mobile terminal device 100 is released. Here, the authentication information storage unit 106 stores authentication information of one authentication method designated in advance by the user. Here, for example, it is assumed that an authentication method by pattern authentication is designated in advance by the user, and a pattern 314 shown in FIG. 5A is registered in the authentication information storage unit 106 as authentication information.

  The mobile terminal device 100 causes the display unit 26 to display an input screen for accepting an authentication operation corresponding to another authentication method different from the one authentication method designated by the user (step S101), while the input screen is displayed. Then, the user authentication information is acquired, and the authentication process is performed by one authentication method (step S103).

  Specifically, first, the display control unit 102 determines another authentication method (hereinafter, “fake authentication method”) different from one authentication method (hereinafter, also referred to as “regular authentication method”) designated by the user in advance. (Also referred to as an input screen) is displayed (step S101). Specifically, an input screen 310 for pattern authentication, which is a regular authentication method, is as shown in FIG. 3B, but the display control unit 102 displays an input screen for a fake authentication method, here, PIN code authentication. The input screen 300 (FIG. 5B) is displayed.

  Then, as shown in FIG. 5C, the user performs an input operation of the pattern authentication pattern 316 on the PIN code authentication input screen 300. For example, the authentication unit 104 receives this input operation, acquires a pattern 316 as authentication information, and performs authentication processing by collating with the pattern authentication authentication information pattern 314 stored in the authentication information storage unit 106. Here, since the authentication information (pattern 316) input by the user operation matches the authentication information (pattern 314) stored in the authentication information storage unit 106, the authentication is successful (YES in step S105), and the authentication unit The screen lock is released by 104 (step S107).

  If another person tries to input the PIN code on the input screen 300 in FIG. 5B, the screen lock is not released because it does not match the authentication information (pattern 314) for pattern authentication (NO in step S105). In this case, the display control unit 102 displays an error message such as “PIN code does not match” and returns to step S101. Thus, it is preferable that the error message corresponds to a fake authentication method corresponding to the input screen 300 being displayed.

  If the authentication method designated in advance by the user is fingerprint authentication, in step S101, the display control unit 102 displays the PIN code authentication input screen 300 (FIG. 3A) and the pattern authentication input screen 310. (FIG. 3B), one of a password authentication input screen 320 (FIG. 3C) and a face authentication input screen (not shown) is displayed. In step S <b> 103, while the input screen is displayed, the authentication unit 104 reads the user's fingerprint by the fingerprint reading unit 36 and acquires fingerprint feature information.

  Then, the authentication unit 104 collates the user's fingerprint feature information stored in the authentication information storage unit 106 with the user's fingerprint feature information acquired in step S103, and performs an authentication process. At this time, even when the authentication information is input by the user operation from the input screen displayed on the display unit 26, the authentication information input by the user operation is not used for the authentication process. If the two fingerprint feature information matches (YES in step S105), the screen lock is released (step S107). If the two pieces of fingerprint feature information do not match (NO in step S105), the authentication is unsuccessful. Then, the display control unit 102 displays an error message corresponding to the authentication method corresponding to the displayed input screen, and returns to step S101.

  As described above, according to the present embodiment, the fake authentication method input screen different from the authentication method designated in advance by the user is displayed, and this is the case where another person steals the input operation and learns the authentication information. However, since the authentication information is not correct, the authentication process does not succeed and the risk of impersonation can be reduced. Even if another person tries to perform the authentication operation without permission, an input screen of an authentication method different from the regular authentication method is displayed, so that the risk of successful authentication can be reduced. In addition, since an error message corresponding to a fake authentication method is displayed, a legitimate authentication method is not known to others.

  Biometric authentication is low in the risk of authentication information being stolen, but is easily subject to restrictions on the use environment and users, and the cost of the mobile terminal device 100 increases. According to this embodiment, even when using an authentication method using an input screen such as PIN code authentication, password authentication, and pattern authentication, the risk of authentication information being stolen can be reduced. Security can be improved without any user restrictions. Further, in the mobile terminal device 100 of the present embodiment, the use of biometric authentication is not excluded when biometric authentication is not subject to usage environment, user restrictions, or cost restrictions. Even in that case, since the input screen of the fake authentication method different from the biometric authentication for performing the authentication process is displayed and the user inputs fake authentication information, even if another person steals the authentication information, fake authentication Since only information is stolen, leakage of authentication information can be prevented.

(Modification of the first embodiment)
Hereinafter, modified embodiments of the first embodiment will be described. In the first embodiment, the example in which the first input screen and the second input screen are different from each other has been described. In the modification of the first embodiment, the first input screen and the second input screen have the same authentication method, but the arrangements of a plurality of operation keys that accept input of authentication information are different.

  FIG. 6 is a diagram illustrating an example of an input screen displayed by the display control unit 102. FIG. 6A is a diagram illustrating an example of a first input screen for PIN code authentication. FIG. 6B is a diagram illustrating an example of a second input screen for PIN code authentication. The arrangement of the numeric keys 302 on the first input screen 300 in FIG. 6A is different from the arrangement of the numeric keys 302 on the second input screen 330 in FIG. 6B. The user looks at the second input screen 330, and inputs the PIN code by thinking of the arrangement of the numeric keys 302 on the first input screen 300.

  In the present embodiment, the display control unit 102 is different from the first input screen (FIG. 6A) in the arrangement of a plurality of operation keys (such as the numeric key 302 or the operation key 322) that accepts input of authentication information. 2 is displayed on the display unit 26 (FIG. 6B).

  Similarly, in the case of the authentication method based on password authentication, the second input screen can be obtained by displaying the operation keys 322 with different arrangements on the input screen 320. The arrangement of the PIN code and password operation keys may be changed each time at random.

  In this modification, the display control unit 102 displays the second input screen having an arrangement different from the arrangement of the plurality of operation keys on the first input screen, so that even if the input screen is looked at, it is displayed. Since the key arrangement is false, it is possible to prevent the authentication information (PIN code) being entered from being stolen.

  In the present embodiment, the numbers or characters displayed in the input confirmation display field may display numbers or characters corresponding to the key layout of the second input screen, or numbers or characters corresponding to the first input screen. Characters (PIN code or password that the user actually wants to input for authentication processing) may be displayed, or randomly selected characters may be displayed. These may be changed by user settings.

(Second Embodiment)
Next, a second embodiment of the present invention will be described below.
FIG. 7 is a functional block diagram showing a logical configuration of portable terminal device 100 according to the present embodiment. The mobile terminal device 100 of the present embodiment includes the same display control unit 102 as the mobile terminal device 100 of FIG. 1, an authentication unit 104, and an authentication information storage unit 106, and further includes a detection unit 114, a specifying unit, 116.

  The mobile terminal device 100 of this embodiment is different from the above embodiment in that it has a configuration in which a grip position pattern, an authentication method, and authentication information of the device can be linked and registered, and authentication information is specified according to the grip position. To do.

  The authentication information storage unit 106 stores gripping position information of the apparatus used for specifying one authentication method. The detection unit 114 detects the grip position of the device by the user. The identification unit 116 reads the grip position information from the authentication information storage unit 106, collates the grip position detected by the detection unit 114 and the read grip position information, and if they match, the user designates one authentication method. Identify what has been done. Then, when performing the authentication process, the display control unit 102 displays an input screen of another authentication method different from the one authentication method specified by the specifying unit 116.

  Furthermore, the mobile terminal device 100 may include a registration unit 112. The registration unit 112 may have a function of causing a user to register a gripping position used for specifying one authentication method. The registration unit 112 displays a screen that allows the user to hold the mobile terminal device 100, and the detection unit 114 detects the holding position. Then, the detected gripping position information is stored in the authentication information storage unit 106 as a gripping position used for specifying the authentication method. That is, when the user tries to perform the authentication process, the mobile terminal device 100 needs to be gripped at the registered gripping position. One authentication method may be determined by default for each device, or may be specified and changed by the user.

  FIG. 8 is a diagram illustrating an example of a data structure of the authentication information storage unit 106 according to the present embodiment. The authentication information storage unit 106 stores gripping position information for specifying one authentication method designated by the user and authentication information.

  9 to 11 are diagrams for explaining an arrangement example of the detection unit 114 of the mobile terminal device 100. FIG. 9 and 11 are perspective views of the mobile terminal device 100 as viewed from the surface on which the touch panel 120 of the mobile terminal device 100 is provided. FIG. 10 is a perspective view of the mobile terminal device 100 as seen from the back side opposite to the surface on which the touch panel 120 of the mobile terminal device 100 is provided.

  The detection unit 114 is realized by the contact sensor 34 of the mobile terminal device 100 of FIG. In the present embodiment, as shown in FIG. 12, the mobile terminal device 100 further includes a contact sensor 34 in addition to the configuration of the mobile terminal device 100 of FIG. The contact sensor 34 is a sensor for detecting the grip position of the user of the mobile terminal device 100, and is, for example, a plurality of temperature sensors or a plurality of pressure sensors, but is not limited thereto.

  In addition, the detection unit 114 may be realized by at least one of the contact sensor 34, the power switch 140, the fingerprint reading unit 36, and the touch panel 120 of the mobile terminal device 100, or any combination thereof.

  In the example of FIG. 9, the touch sensor 120 (shown by 130a, 130b, 130c, and 130d in the figure) is arranged on the four sides on the left, right, top, and bottom with the touch panel 120 of the mobile terminal device 100 as the front surface. Note that an imaging unit 32 is provided on the same surface as the touch panel 120. In the example of FIG. 10, a fingerprint reading unit 36 is provided on the back surface of the mobile terminal device 100. A contact sensor 34 (indicated by 130e in the figure) is disposed on the back surface of the mobile terminal device 100. In the example of FIG. 11, the contact sensors 34 (indicated by 130 f in the drawing) are arranged so as to extend from side to side and up and down along the side surface of the mobile terminal device 100.

  For example, the detection unit 114 has a plurality of pieces of positional information (for example, the contact range of the user's finger detected by the contact sensors 130a to 130e or the contact sensors 130e and 130f when the user holds the mobile terminal device 100 (for example, , A plurality of coordinate information) patterns.

  The collation processing between the grip position information registered in advance by the specifying unit 116 and the grip position detected by the detection unit 114 is preferably performed in consideration of the shift of the grip position by the user.

  The operation of the mobile terminal device 100 configured as described above will be described below. FIG. 13 is a flowchart illustrating an example of the operation of the mobile terminal device 100 of the present embodiment. First, the registration unit 112 registers gripping position information indicating the gripping position of the apparatus used for specifying one authentication method (regular authentication method) in the authentication information storage unit 106 (step S201). This process is first performed when the user starts using the mobile terminal device 100. Thereafter, this process is performed only when the user changes the gripping position used to specify the regular authentication method.

  Then, when the user requests to release the screen lock while the mobile terminal device 100 is locked (YES in step S203), the processing after step S203 is started. The user can request to release the screen lock, for example, when the user presses the power switch 140 of the mobile terminal device 100, or when the user touches the fingerprint reading unit 36 with a finger, but is not limited thereto. . Here, the mobile terminal device 100 detects a request to release the screen lock by the user by detecting the pressing of the power switch 140 or the contact with the fingerprint reading unit 36 while the screen is locked.

  And the detection part 114 detects the holding position of the portable terminal device 100 by a user (step S205). As described above, the grip position of the mobile terminal device 100 is detected by the contact sensor 34. Then, when the identifying unit 116 collates the gripping position detected in step S205 with the gripping position information registered in advance in the authentication information storage unit 106 and agrees (YES in step S207), a normal authentication method Is specified by the user (step S209). When the gripping position detected in step S205 does not match the gripping position information registered in advance in the authentication information storage unit 106 (NO in step S207), the process returns to step S205.

  Although not shown in the figure, if the collation processing in step S207 does not match even after a predetermined time, the user is notified that the screen cannot be unlocked (for example, a message is displayed on the display unit 26, voice output, vibration, etc.) ) To return to the screen lock state and return to step S203.

  Alternatively, when the detected gripping position does not match the gripping position of the authentication information storage unit 106 in step S207 (NO in step S207), the display control unit 102 displays the input screen of any of the plurality of authentication methods, or the user After the input screen designated in advance is displayed and the input of authentication information is accepted from the user, the authentication is not performed without performing the authentication process, and the user is notified of the failure (for example, a message is displayed on the display unit 26, voice Output or vibration), return to the screen lock state, and return to step S203. In this way, it is difficult for another person to guess that the authentication process does not proceed because the gripping position is incorrect.

  Then, the display control unit 102 displays an input screen for another authentication method different from the authentication method specified in step S209 (step S211). And it progresses to step S103 of FIG. 4, and an authentication process is performed. Since the processing after step S103 is as described in the above embodiment, the description thereof is omitted in this embodiment.

  As described above, according to the present embodiment, the same effects as those of the above-described embodiment can be obtained, and further, if the user does not hold the mobile terminal device 100 in the correct gripping position, the authentication process does not proceed or the authentication is performed. Therefore, it is possible to reduce the risk of impersonating another person and performing the authentication process. Further, in the configuration in which the latter authentication process is not successful, it is not inferred by another person that the authentication process does not proceed because the gripping position is incorrect.

  Further, in the configuration in which the gripping state itself is used for the authentication process as described in Patent Document 2, a plurality of gripping states are registered, so that the authentication strength decreases as the number of registrations increases. On the other hand, according to the present embodiment, since the gripping position is only used for specifying the authentication method, the authentication information of the specified authentication method is one each, so that the authentication strength does not decrease. is there.

(Third embodiment)
Next, a third embodiment of the present invention will be described below.
The mobile terminal device 100 according to the present embodiment has a configuration in which a gripping position that specifies each of a plurality of authentication methods is registered in advance, and an authentication method corresponding to the gripping position is specified from the plurality of authentication methods and used for authentication processing. 7 is the same as the above embodiment of FIG. Hereinafter, a description will be given with reference to FIG.

  The registration unit 112 stores an authentication method and authentication information, and an authentication method and grip position information in the authentication information storage unit 106 in association with each of a plurality of authentication methods. Then, when performing the authentication process, the display control unit 102 displays one input screen among the plurality of input screens respectively corresponding to the plurality of authentication methods. The identifying unit 116 then collates the grip position detected by the detection unit 114 with the grip position information in the authentication information storage unit 106, and identifies the authentication method associated with the grip position information that matches the detected grip position. To do. Then, the authentication unit 104 acquires authentication information associated with the specified authentication method from the authentication information storage unit 106, and performs authentication processing with the specified authentication method.

  FIG. 14 is a diagram for explaining information registered in the authentication information storage unit 106 of the mobile terminal device 100 according to the present embodiment. The authentication information storage unit 106 stores gripping position information used for specifying the authentication method for each authentication method. Further, the authentication information storage unit 106 stores authentication information used for authentication processing for each authentication method.

  Then, the identification unit 116 collates the grip position detected by the detection unit 114 with the grip position information in the authentication information storage unit 106. When gripping position information that matches the detected gripping position is found, the specifying unit 116 acquires an authentication method associated with the gripping position information. In this way, the specifying unit 116 specifies the authentication method.

  And the authentication part 104 reads the authentication information linked | related with the authentication method which the specific | specification part 116 specified from the authentication information storage part 106, and performs an authentication process with the specified authentication method.

  The operation of the mobile terminal device 100 of the present embodiment configured as described above will be described. FIG. 15 is a flowchart illustrating an example of the authentication processing procedure of the mobile terminal device 100 according to the present embodiment. The procedure of this figure includes steps S203 to S207 and S211 similar to those in the flowchart of FIG. 13 of the second embodiment, and further includes steps S321 to S323.

  First, the registration unit 112 registers, for each of a plurality of authentication methods, registration of gripping position information indicating the gripping position of the apparatus used for designating one authentication method (regular authentication method) in the authentication information storage unit 106. Processing is executed (step S321). This registration process will be described later using a separate flowchart of FIG.

  Then, when the user requests to release the screen lock while the mobile terminal device 100 is locked (YES in step S203), the processing after step S203 is started. The user can request to release the screen lock, for example, when the user presses the power switch 140 of the mobile terminal device 100, or when the user touches the fingerprint reading unit 36 with a finger, but is not limited thereto. . Here, the mobile terminal device 100 detects a request to release the screen lock by the user by detecting the pressing of the power switch 140 or the contact with the fingerprint reading unit 36 while the screen is locked.

  And the detection part 114 detects the holding position of the portable terminal device 100 by a user (step S205). As described above, the grip position of the mobile terminal device 100 is detected by the contact sensor 34. Then, the specifying unit 116 collates the gripping position detected in step S205 with the gripping position information registered in advance in the authentication information storage unit 106 (step S207).

  When gripping position information that matches the gripping position detected in step S205 is found (YES in step S207), an authentication method associated with the gripping position information is specified (step S209). If grip position information that matches the grip position detected in step S205 is not found in the authentication information storage unit 106 (NO in step S207), the process returns to step S205.

  Although not shown in the figure, if the collation processing in step S207 does not match even after a predetermined time, the user is notified that the screen cannot be unlocked (for example, a message is displayed on the display unit 26, voice output, vibration, etc.) ) To return to the screen lock state and return to step S203.

  Alternatively, when the detected gripping position does not match the gripping position of the authentication information storage unit 106 (NO in step S207), the display control unit 102 is designated in advance by any of the input screens of the plurality of authentication methods or by the user. The input screen is displayed as the second input screen. Then, after receiving the input of authentication information from the user, the display control unit 102 notifies the user that the authentication has failed without performing the authentication process (for example, a message is displayed on the display unit 26, voice output, or Vibrate, etc.) to return to the screen lock state and return to step S203. In this way, it is difficult for another person to guess that the authentication process does not proceed because the gripping position is incorrect.

  Then, the specifying unit 116 collates the grip position detected by the detection unit 114 in step S207 with the grip position information in the authentication information storage unit 106. When gripping position information that matches the detected gripping position is found, the specifying unit 116 acquires an authentication method associated with the gripping position information. In this way, the specifying unit 116 specifies the authentication method (step S323).

  Then, the display control unit 102 displays an input screen for another authentication method different from the authentication method specified in step S323 (step S211). And it progresses to step S103 of FIG. 4, and an authentication process is performed. Since the processing after step S103 is as described in the first embodiment, the description thereof is omitted in this embodiment.

  Next, the registration process in step S321 in FIG. 15 will be described in detail. FIG. 16 is a flowchart illustrating an example of a procedure of registration processing of a plurality of authentication methods in the mobile terminal device 100 of the present embodiment. The registration unit 112 performs the following processing. The registration process can be performed at the start of use of the mobile terminal device 100 or at any time according to a user's designation by a predetermined setting function of the mobile terminal device 100.

  First, when the registration process starts, a registration start screen is displayed. A message for instructing the user to hold the terminal at the holding position when designating the authentication method is displayed on the registration start screen (step S301). In addition, for example, several gripping positions may be exemplified by the user with diagrams, images, animations, videos, etc. and may be selected by the user. At this time, the user's gripping position may be detected by the detection unit 114, collated with the gripping position of the example selected by the user, and the result may be notified to the user. For example, if they do not match, guidance (display, audio output, vibration, etc.) such as “the gripping position is misaligned.

  When the user presses the OK button to determine the grip position (YES in step S303), the detection unit 114 detects the grip position (step S305). The display control unit 102 displays the gripping position detected by the detection unit 114 and displays a message that prompts the user to confirm (step S307). The method of presenting the gripping position may schematically show the arrangement of the contact sensor 34 of the terminal in a schematic diagram and schematically show a location where contact is detected. Also, for example, a message such as “Please confirm the gripping position. Please press the OK button if you like. If you want to detect it again, please press the NG button and take your phone again.” Voice output, or vibration).

  If the gripping position intended by the user is presented on the confirmation screen, the user presses the OK button (OK in step S309). When pressing of the OK button is detected (OK in step S309), an authentication method selection screen is displayed (step S311). On the selection screen, a plurality of authentication methods, for example, PIN authentication, pattern authentication, and password authentication may be selected from three candidates. Further, biometric authentication of at least one of fingerprint authentication and face authentication may be included as candidates. A plurality of authentication method candidates can be presented using a GUI (Graphical User Interface) such as a list or a drum, and a user's selection can be accepted.

  Furthermore, the display control unit 102 displays a screen that accepts input of authentication information corresponding to the selected authentication method. For example, when PIN authentication is selected, FIG. 3A is displayed. When pattern authentication is selected, FIG. 3B is displayed. When password authentication is selected, FIG. 3C is displayed. Is displayed. When fingerprint authentication or face authentication is selected, a screen for acquiring the user's fingerprint or face image is displayed, and guidance indicating the fingerprint or face image registration procedure is output to the user (display, audio output, or Vibrate).

  Then, when the selection of the authentication method and the input of the authentication information are completed, if the user presses the confirmation button (YES in step S313), an input screen is displayed to try the authentication process of the selected authentication method. Then, a message prompting the user to input authentication information is displayed. And the authentication part 104 acquires the authentication information input by the user, and performs an authentication process (step S315). When the authentication is successful (success in step S317), the authentication method selected in step S311 and the authentication information are registered in the authentication information storage unit 106 (step S319).

  If the authentication fails (failure in step S317), the display control unit 102 outputs a message notifying the user that the authentication has failed (display, audio output, vibration, etc.), bypasses step S319, and The process ends. Alternatively, the process may return to step S315, prompt the user to confirm the authentication information again, and perform the authentication process using the input authentication information. Alternatively, returning to step S311, even if a message such as “Authentication failed. Please select authentication method and input authentication information again” (display, voice output, vibration, etc.) is output. Good.

  Steps S301 to S319 can be repeatedly executed for a plurality of authentication methods. Further, the execution order of the gripping position setting process in steps S301 to S309 and the authentication method selection and authentication information input process in step S311 is not limited to this.

  In the registration process, the user may be able to specify a fake second input screen. After step S311, the display control unit 102 displays a selection screen of a fake second input screen. On the selection screen, a plurality of authentication methods, for example, PIN authentication, pattern authentication, and password authentication can be selected from three candidates. Further, biometric authentication of at least one of fingerprint authentication and face authentication may be included as candidates. A plurality of authentication method candidates can be presented using a GUI such as a list or a drum, and a user's selection can be accepted. The authentication method selected in step S311 may be included in the candidates, and the selected authentication method may be excluded from the candidates.

  Further, when the authentication process is tried in step S315, a second input screen of the authentication method different from the authentication method selected in step S311 (a fake input screen specified by the user described above) is displayed. The user may be prompted to input authentication information. Thereby, the user can practice the input of authentication information on the fake input screen.

  Further, when the authentication process is attempted in step S315, the user is prompted to hold the mobile terminal device 100 at the gripping position set in step S307, and whether or not the set gripping position is detected by the detection unit 114 is determined. judge. If the grip position is not set, the display control unit 102 may display a message notifying the user that the grip position is incorrect or a message instructing the user to correct the grip position. The display control unit 102 may display an input screen when a correct gripping position is detected.

  Further, the following processing may be further performed before step S307. It is checked whether or not the gripping position detected in step S305 is already stored in the authentication information storage unit 106. If a matching or similar gripping position is stored, a message that informs the user that the gripping method is already registered may be displayed. Then, a new authentication method may be registered with the user, and a message asking whether or not to overwrite may be displayed. When an overwriting instruction is received, a new authentication method and authentication information are received and registered in association with the grip position information. If an instruction not to overwrite is received, a message instructing to take back the portable terminal device 100 is displayed, and the process returns to step S301.

  As described above, according to the present embodiment, the same effect as that of the above-described embodiment is obtained, and further, the authentication method used by the user from among a plurality of authentication methods in association with the gripping position of the mobile terminal device 100. Can be registered with authentication information. Accordingly, since the user can change the authentication method at the gripping position every time it is used instead of the authentication method designated in advance, the risk due to theft of authentication information can be further reduced.

(Fourth embodiment)
Next, a fourth embodiment of the present invention will be described below.
FIG. 17 is a functional block diagram logically showing the configuration of mobile terminal apparatus 100 according to the embodiment of the present invention. The mobile terminal device 100 according to this embodiment includes a detection unit 114, a specification unit 116, and an authentication unit 104.

  The portable terminal device 100 of this embodiment is different from the above-described embodiment in that the authentication information input screen is not limited. In this embodiment, an authentication method that is associated with a gripping position in advance is specified from the user's gripping position, and authentication processing is performed using the specified authentication method. Authentication processing can be performed with the authentication method determined by the above. In the following description, the authentication information input screen is normally used as a screen. However, the screen is not limited to this, and a false second input screen different from the normal authentication method described in the above embodiment is used. Also good.

  The detection unit 114 detects the grip position of the device by the user. The identifying unit 116 refers to the authentication information storage unit 106 that stores the pattern of the gripping position of the device that identifies one authentication method specified by the user in association with the authentication information of the one authentication method. One authentication method associated with the gripping position pattern is specified. The authentication unit 104 reads authentication information of one authentication method specified by the specifying unit 116 from the authentication information storage unit 106. Then, the authentication unit 104 performs authentication by comparing the user authentication information acquired while the input screen prompting the user to input authentication information is displayed with the authentication information read from the authentication information storage unit 106. Process.

  FIG. 18 is a flowchart illustrating an example of the operation of the mobile terminal device 100 according to the present embodiment. This process is started, for example, when the screen lock that restricts the use of the mobile terminal device 100 is released. Here, in the authentication information storage unit 106, a pattern of a gripping position of the apparatus that specifies one authentication method designated by the user and authentication information of the one authentication method are stored in association with each other.

  First, this process is started when the user requests release of the screen lock (YES in step S203). And the detection part 114 detects the holding position of the portable terminal device 100 by a user (step S205). As described above, the grip position of the mobile terminal device 100 is detected by the contact sensor 34. Then, when the identifying unit 116 collates the gripping position detected in step S205 with the gripping position information registered in advance in the authentication information storage unit 106 and agrees (YES in step S207), a normal authentication method Is specified by the user (step S209). When the gripping position detected in step S205 does not match the gripping position information registered in advance in the authentication information storage unit 106 (NO in step S207), the process returns to step S205.

  Although not shown in the figure, if the collation processing in step S207 does not match even after a predetermined time, the user is notified that the screen cannot be unlocked (for example, a message is displayed on the display unit 26, voice output, vibration, etc.) ) To return to the screen lock state and return to step S203.

  Alternatively, when the detected gripping position does not match the gripping position of the authentication information storage unit 106 in step S207 (NO in step S207), the display control unit 102 displays the input screen of any of the plurality of authentication methods, or the user An input screen designated in advance is displayed. Then, after receiving the input of authentication information from the user, the display control unit 102 notifies the user that the authentication has failed without performing the authentication process (for example, a message is displayed on the display unit 26, voice output, or Vibrate, etc.) to return to the screen lock state and return to step S203. In this way, it is difficult for another person to guess that the authentication process does not proceed because the gripping position is incorrect.

  Then, the authentication unit 104 acquires user authentication information, and performs an authentication process using the authentication method specified in step S209 (step S401). In the case of PIN code authentication, pattern authentication, and password authentication as a method for acquiring user authentication information, the display control unit 102 displays each input screen and prompts the user to input authentication information to acquire the authentication information. be able to. In the case of biometric authentication using biometric information such as fingerprint authentication and face authentication, the display control unit 102 displays an input screen for acquiring the user's fingerprint or face image and inputs authentication information to the user. Authentication information can be acquired.

  Then, the process proceeds to step S105 in FIG. 4. If the authentication is successful (YES in step S105), the screen lock is released (step S107). Note that the input screen for acquiring user authentication information in step S401 may display the second input screen of the above-described embodiment.

  As described above, according to the present embodiment, the authentication method is specified by the gripping position, and the authentication process is performed by the specified authentication method. Therefore, the authentication method determined by the user's will every time without depending on the input screen. Authentication processing can be performed. If the input screen is different from the authentication method, the leakage of authentication information can be prevented even if another person peeps. In addition, by changing the gripping position, the user can freely select and change from multiple authentication methods, so even if another person peeks multiple times, the authentication information will be different each time. Risk can be reduced. Further, if the portable terminal device 100 is not held at the correct gripping position, the authentication process does not proceed or the authentication is not successful, so that it is possible to reduce the risk of impersonating another person and performing the authentication process. Further, in the configuration in which the latter authentication process is not successful, it is not inferred by another person that the authentication process does not proceed because the gripping position is incorrect.

  In the portable terminal device 100 according to any one of the embodiments described above, the CPU 12 (FIG. 2) executes various processing operations corresponding to the computer program 50 (FIG. 3), so that the various units as described above have various functions. Realized.

  The computer program of the present invention is an input screen for accepting an authentication operation corresponding to another authentication method different from the one authentication method designated by the user in the computer for realizing the mobile terminal device 100 of the first embodiment. Is displayed on the display unit 26, while the input screen is displayed, the authentication information of the user is acquired and the authentication process is performed by one authentication method.

  Further, the computer program of the present invention specifies a procedure for detecting the gripping position of the device by the user and one authentication method designated by the user in the computer for realizing the mobile terminal device 100 of the fourth embodiment. One authentication method associated with the gripping position pattern is referred to the authentication information storage unit 106 that associates and stores the gripping position pattern of the device with the authentication information of the one authentication method. The authentication information of the user acquired while the input screen for reading out the authentication information of the specified authentication method and the specified authentication method from the authentication information storage unit 106 and prompting the user to input the authentication information is displayed. The authentication information read from the storage unit 106 may be described so as to execute a procedure for performing authentication processing by collating the authentication information.

  The computer program 50 of the present invention may be recorded on a computer-readable recording medium. The recording medium is not particularly limited, and various forms can be considered. The program 50 may be loaded from the recording medium into the computer memory 14 or may be downloaded to the computer via the network and loaded into the memory 14.

  The recording medium for recording the computer program 50 includes a medium that can be used by a non-transitory tangible computer, and a program code that can be read by the computer is embedded in the medium. When the computer program 50 is executed on a computer, the computer is caused to execute an authentication method for realizing the mobile terminal device 100 of any one of the above embodiments.

As mentioned above, although embodiment of this invention was described with reference to drawings, these are the illustrations of this invention, Various structures other than the above are also employable.
For example, in the above-described embodiment, the authentication method is associated with each pattern of the user's gripping position. However, in another embodiment, a different PIN code (or password, or Pattern) may be associated and registered in the authentication information storage unit 106.

  The authentication unit 104 may perform authentication processing by collating the PIN code associated with the user's gripping position pattern by the specifying unit 116 with the user's PIN code input from the input screen. In this configuration, it is possible to make it difficult for others to recognize the regular PIN code by using the second input screen in which the arrangement of the operation keys is changed.

  Moreover, in the said embodiment, although the authentication method was specified based on the holding position of the portable terminal device 100 by a user, it is not limited to this. In another example, not the gripping position but the posture (direction, angle, etc.) of the mobile terminal device 100 when the user grips the mobile terminal device 100 may be detected, and the authentication method may be specified according to the posture. In this configuration, the detection unit 114 may include an acceleration sensor that detects the attitude of the mobile terminal device 100.

  Further, in another example, one authentication method may be specified according to the location where the user is currently present. The detection unit 114 detects the location where the user is currently located, and the specification unit 116 specifies the authentication method according to the location. For example, the authentication information storage unit 106 stores location information and an authentication method in association with each other. In step S301 in FIG. 16, the registration unit 112 uses a GPS (Global Positioning System) reception unit (not shown), for example, in a place where the user wants to use one authentication method instead of acquiring the gripping position. The received position information is acquired. Then, the registration unit 112 stores the acquired position information in the authentication information storage unit 106 in association with one authentication method.

  Alternatively, the registration unit 112 searches for a wireless LAN (Local Area Network) access point using a wireless communication unit at a place where the user wants to use one authentication method instead of acquiring gripping information in step S301. The IP address of the found access point may be stored as location information in the authentication information storage unit 106 in association with one authentication method.

  In another example, one authentication method may be specified for each time period. The registration unit 112 may accept designation of an authentication method for each time zone on the registration screen from the user, and store the authentication method in the authentication information storage unit 106 in association with each time zone. The detection unit 114 acquires the current time from a clock (not shown) of the mobile terminal device 100, and the specifying unit 116 reads the authentication method corresponding to the current time from the authentication information storage unit 106 and specifies the authentication method.

  Furthermore, in the above-described embodiment, one authentication method is specified based on the user's gripping position, but in another example, an authentication method for displaying the second input screen is specified based on the user's gripping position. It is good also as a structure. For each gripping position pattern, an authentication method is associated and registered in the authentication information storage unit 106, and the identifying unit 116 identifies the authentication method associated with the gripping position pattern detected by the detecting unit 114. The display control unit 102 causes the display unit 26 to display the authentication method input screen specified by the specifying unit 116. And the authentication part 104 acquires authentication information with the one authentication method previously designated by the user, and performs an authentication process.

  According to this configuration, for example, a fake input screen can be displayed only when a specific way of holding is held. When going out, a fake input screen can be displayed with a specific way of holding. Alternatively, a regular input screen can be displayed only when a specific way of holding is used. In this case, when there is no worry that the authentication information can be stolen by others, such as at home, a proper input screen can be displayed with a specific holding method.

  In the above-described embodiment (except for the modification of the first embodiment), the display control unit 102 displays an input screen corresponding to an authentication method different from the one authentication method designated in advance by the user. Then, the display control unit 102 displays an input screen (first input screen) corresponding to one authentication method among a plurality of authentication methods including one authentication method designated in advance by the user as a second input screen. May be. That is, it does not exclude displaying a regular input screen corresponding to one authentication method as the second input screen. FIG. 19 is a diagram for explaining a combination of the original authentication method of the present embodiment and a fake authentication method for displaying the second input screen. As described above, the input screens for pattern authentication, PIN code authentication, and password authentication can be used in all authentication methods (pattern authentication, PIN code authentication, password authentication, fingerprint authentication, and face authentication).

  Further, in the registration process for registering the authentication method corresponding to the gripping position in the third embodiment, the user can specify which authentication method the fake second input screen is to be used for. In the above embodiment, an example in which an input screen for one authentication method is designated from among a plurality of authentication method candidates has been described. However, in another example, a plurality of authentication methods (PIN authentication, pattern authentication, password authentication, etc.) ) May be specified to be automatically and randomly changed for each authentication process. In this case, in the registration process, “random” or the like can be included in the authentication method candidates. Alternatively, when the arrangement is changed to the operation key on the input screen for each authentication process as in the modification of the first embodiment, it can be included in the registration process as “change arrangement” or the like in the authentication method candidates.

While the present invention has been described with reference to the embodiments and examples, the present invention is not limited to the above embodiments and examples. Various changes that can be understood by those skilled in the art can be made to the configuration and details of the present invention within the scope of the present invention.
In addition, when acquiring and using the information regarding a user in this invention, this shall be done legally.

A part or all of the above embodiments can be described as in the following supplementary notes, but is not limited thereto.
1. Display control means for displaying on the display unit an input screen for accepting an authentication operation corresponding to another authentication method different from the one authentication method designated by the user;
A portable terminal device comprising: authentication means for acquiring authentication information of the user while the input screen is displayed, and performing authentication processing by the one authentication method.
2. 1. In the mobile terminal device described in
The said display control means is a portable terminal device which displays on the said display part the 2nd input screen different from the 1st input screen which receives the authentication operation corresponding to the said 1 authentication method.
3. 1. Or 2. In the mobile terminal device described in
Detecting means for detecting a gripping position of the device by the user;
The gripping position information is acquired from a storage unit that stores gripping position information indicating the gripping position of the device used for designating the one authentication method, and the gripping position information and the gripping position detected by the detection unit And a specifying unit that specifies that the one authentication method is specified by the user when the two match.
4). 3. In the mobile terminal device described in
For each of the plurality of authentication methods, further comprising registration means for registering the authentication method and the authentication information, and the authentication method and the gripping position information in association with each other in the storage unit,
When performing the authentication process,
While the display control means is displaying the input screen,
The specifying unit collates the gripping position detected by the detecting unit with the gripping position information of the storage unit, and uses the authentication method associated with the gripping position information that matches the detected gripping position. Identify,
The said authentication means is a portable terminal device which acquires the said authentication information linked | related with the specified said authentication method from the said memory | storage part, and performs the said authentication process with the specified said authentication method.
5. 3. Or 4. In the mobile terminal device described in
The detection means includes a plurality of sensors that respectively detect that the user's fingers are in contact with the device at a plurality of locations.
The grip position information indicates a combination pattern of the sensors for detecting contact of the user's finger,
The mobile terminal device that specifies the grip position information that matches the combination pattern of the sensors that detect contact of the user's finger.
6). 3. To 5. In the mobile terminal device according to any one of the above,
The portable terminal device in which the authentication unit sets authentication failure when the grip position information that matches the grip position detected by the detection unit is not stored in the storage unit.
7). 1. To 6. In the mobile terminal device according to any one of the above,
When performing the authentication process, the display control unit causes the display unit to display an input screen corresponding to an authentication method randomly selected from the plurality of authentication methods.
8). 1. To 7. In the mobile terminal device according to any one of the above,
The mobile terminal device, wherein the authentication method is at least any two of pattern authentication, PIN code authentication, password authentication, and biometric information authentication.

9. The mobile terminal device
An input screen for accepting an authentication operation corresponding to another authentication method different from the one authentication method specified by the user is displayed on the display unit,
An authentication method for a mobile terminal device that acquires authentication information of the user and performs authentication processing by the one authentication method while the input screen is displayed.
10. 9. In the authentication method of the mobile terminal device described in
The portable terminal device is
An authentication method for a portable terminal device, wherein a second input screen different from a first input screen for receiving an authentication operation corresponding to the one authentication method is displayed on the display unit.
11. 9. Or 10. In the authentication method of the mobile terminal device described in
The portable terminal device further includes:
Detecting the gripping position of the device by the user,
The gripping position information is acquired from a storage unit that stores gripping position information indicating the gripping position of the device used for specifying the one authentication method, and the gripping position information is compared with the detected gripping position. An authentication method for a portable terminal device that identifies that the one authentication method is designated by the user when they match.
12 11. In the authentication method of the mobile terminal device described in
The portable terminal device further includes:
For each of the plurality of authentication methods, the authentication method and the authentication information, and the authentication method and the grip position information are associated with each other and registered in the storage unit,
While performing the authentication process, while displaying the input screen,
The detected gripping position is compared with the gripping position information in the storage unit, and the authentication method associated with the gripping position information that matches the detected gripping position is specified.
An authentication method for a mobile terminal device, wherein the authentication information associated with the specified authentication method is acquired from the storage unit, and the authentication process is performed using the specified authentication method.
13. 11. Or 12. In the authentication method of the mobile terminal device described in
The mobile terminal device has a plurality of sensors that respectively detect at a plurality of locations that the user's fingers are in contact with the device;
The grip position information indicates a combination pattern of the sensors for detecting contact of the user's finger,
The portable terminal device is
The authentication method of the portable terminal device which specifies the said holding | grip position information corresponding to the combination pattern of the said sensor which detected the contact of the said user's finger.
14 11. To 13. In the authentication method of the mobile terminal device according to any one of the above,
The portable terminal device is
An authentication method for a mobile terminal device in which authentication fails when the grip position information that matches the detected grip position is not stored in the storage unit.
15. 9. To 14. In the authentication method of the mobile terminal device according to any one of the above,
The portable terminal device is
An authentication method for a portable terminal device, wherein when performing the authentication process, an input screen corresponding to an authentication method randomly selected from the plurality of authentication methods is displayed on the display unit.
16. 9. To 15. In the authentication method of the mobile terminal device according to any one of the above,
The authentication method of the portable terminal device is at least any two of pattern authentication, PIN code authentication, password authentication, and biometric information authentication.

17. In a computer that realizes a mobile terminal device,
A procedure for causing the display unit to display an input screen for accepting an authentication operation corresponding to another authentication method different from the one authentication method designated by the user;
A program for executing the procedure of acquiring authentication information of the user and performing authentication processing by the one authentication method while the input screen is displayed.
18. 17. In the program described in
further,
A program for causing a computer to execute a procedure for causing a display unit to display a second input screen different from a first input screen for receiving an authentication operation corresponding to the one authentication method.
19. 17. Or 18. In the program described in
further,
A procedure for detecting a gripping position of the device by the user;
The gripping position information is acquired from a storage unit that stores gripping position information indicating the gripping position of the device used for specifying the one authentication method, and the gripping position information is compared with the detected gripping position. A program for causing a computer to execute a procedure for specifying that the one authentication method is designated by the user when they match.
20. 19. In the program described in
further,
For each of the plurality of authentication methods, a procedure for registering the authentication method and the authentication information, and the authentication method and the gripping position information in association with each other in the storage unit,
While performing the authentication process, while displaying the input screen,
A procedure for collating the detected gripping position with the gripping position information in the storage unit and identifying the authentication method associated with the gripping position information that matches the detected gripping position;
A program for causing a computer to execute the procedure of acquiring the authentication information associated with the specified authentication method from the storage unit and performing the authentication process with the specified authentication method.
21. 19. Or 20. In the program described in
The mobile terminal device has a plurality of sensors that respectively detect at a plurality of locations that the user's fingers are in contact with the device;
The grip position information indicates a combination pattern of the sensors for detecting contact of the user's finger,
The program for making a computer perform the procedure which specifies the said holding | grip position information which corresponds with the combination pattern of the said sensor which detected the contact of the said user's finger.
22. 19. To 21. In the program described in any one of the above,
A program for causing a computer to execute a procedure in which authentication is failed when the gripping position information that matches the detected gripping position is not stored in the storage unit.
23. 17. To 22. In the program described in any one of the above,
A program for causing a computer to execute a procedure for causing an input screen corresponding to an authentication method randomly selected from a plurality of the authentication methods to be displayed on the display unit when performing the authentication process.
24. 17. To 23. In the program described in any one of the above,
The authentication method is a program that is at least any two of pattern authentication, PIN code authentication, password authentication, and biometric information authentication.

25. Detecting means for detecting a gripping position of the device by a user;
The gripping position pattern of the device that identifies the one authentication method specified by the user is linked to the gripping position pattern with reference to a storage unit that stores the pattern in association with the authentication information of the one authentication method. A specifying means for specifying the one authentication method,
The authentication information of the one authentication method specified by the specifying means is read from the storage unit, and the user authentication information acquired while an input screen prompting the user to input authentication information is displayed, Authentication means for performing authentication processing by collating the authentication information read from the storage unit;
A mobile terminal device comprising:
26. 25. In the mobile terminal device described in
A portable terminal device further comprising display control means for causing an input screen for accepting an authentication operation corresponding to another authentication method different from the one authentication method to be displayed on a display unit.
27. 26. In the mobile terminal device described in
The said display control means is a portable terminal device which displays on the said display part the 2nd input screen different from the 1st input screen which receives the authentication operation corresponding to the said 1 authentication method.
28. 26. Or 27. In the mobile terminal device described in
When performing the authentication process, the display control unit causes the display unit to display an input screen corresponding to an authentication method randomly selected from the plurality of authentication methods.
29. 25. To 28. In the mobile terminal device according to any one of the above,
For each of the plurality of authentication methods, further comprising registration means for registering the authentication method and the authentication information, and the authentication method and the gripping position information in association with each other in the storage unit,
When performing the authentication process,
While the input screen is displayed,
The specifying unit collates the gripping position detected by the detecting unit with the gripping position information of the storage unit, and uses the authentication method associated with the gripping position information that matches the detected gripping position. Identify,
The said authentication means is a portable terminal device which acquires the said authentication information linked | related with the specified said authentication method from the said memory | storage part, and performs the said authentication process with the specified said authentication method.
30. 29. In the mobile terminal device described in
The portable terminal device in which the authentication unit sets authentication failure when the grip position information that matches the grip position detected by the detection unit is not stored in the storage unit.
31. 25. To 30. In the mobile terminal device according to any one of the above,
The detection means includes a plurality of sensors that respectively detect that the user's fingers are in contact with the device at a plurality of locations.
The grip position information indicates a combination pattern of the sensors for detecting contact of the user's finger,
The mobile terminal device that specifies the grip position information that matches the combination pattern of the sensors that detect contact of the user's finger.
32. 25. To 31. In the mobile terminal device according to any one of the above,
The mobile terminal device, wherein the authentication method is at least any two of pattern authentication, PIN code authentication, password authentication, and biometric information authentication.

33. The mobile terminal device
Detect the gripping position of the device by the user,
The gripping position pattern of the device that identifies the one authentication method specified by the user is linked to the gripping position pattern with reference to a storage unit that stores the pattern in association with the authentication information of the one authentication method. Identifying the one authentication method being used,
The authentication information of the identified one authentication method is read from the storage unit, and the user authentication information acquired while the input screen prompting the user to input the authentication information is displayed, and is read from the storage unit. An authentication method for a portable terminal device, wherein authentication processing is performed by collating the authentication information.
34. 33. In the authentication method of the mobile terminal device described in
The portable terminal device is
An authentication method for a mobile terminal device, wherein an input screen for accepting an authentication operation corresponding to another authentication method different from the one authentication method is displayed on a display unit.
35. 34. In the authentication method of the mobile terminal device described in
The portable terminal device is
An authentication method for a portable terminal device, wherein a second input screen different from a first input screen for receiving an authentication operation corresponding to the one authentication method is displayed on the display unit.
36. 34. Or 35. In the authentication method of the mobile terminal device described in
The portable terminal device is
An authentication method for a portable terminal device, wherein when performing the authentication process, an input screen corresponding to an authentication method randomly selected from the plurality of authentication methods is displayed on the display unit.
37. 33. To 36. In the authentication method of the mobile terminal device according to any one of the above,
The portable terminal device is
further,
For each of the plurality of authentication methods, the authentication method and the authentication information, and the authentication method and the grip position information are associated with each other and registered in the storage unit,
While performing the authentication process, while the input screen is displayed,
The detected gripping position is compared with the gripping position information in the storage unit, and the authentication method associated with the gripping position information that matches the detected gripping position is specified.
An authentication method for a mobile terminal device, wherein the authentication information associated with the specified authentication method is acquired from the storage unit, and the authentication process is performed using the specified authentication method.
38. 37. In the authentication method of the mobile terminal device described in
The portable terminal device is
An authentication method for a mobile terminal device in which authentication fails when the grip position information that matches the detected grip position is not stored in the storage unit.
39. 33. To 38. In the authentication method of the mobile terminal device according to any one of the above,
The mobile terminal device has a plurality of sensors that respectively detect at a plurality of locations that the user's fingers are in contact with the device;
The grip position information indicates a combination pattern of the sensors for detecting contact of the user's finger,
The portable terminal device is
The authentication method of the portable terminal device which specifies the said holding | grip position information corresponding to the combination pattern of the said sensor which detected the contact of the said user's finger.
40. 33. To 39. In the authentication method of the mobile terminal device according to any one of the above,
The authentication method of the portable terminal device is at least any two of pattern authentication, PIN code authentication, password authentication, and biometric information authentication.

41. In a computer that realizes a mobile terminal device,
A procedure for detecting a gripping position of the device by a user;
The gripping position pattern of the device that identifies the one authentication method specified by the user is linked to the gripping position pattern with reference to a storage unit that stores the pattern in association with the authentication information of the one authentication method. A procedure for identifying said one authentication method being
The authentication information of the identified one authentication method is read from the storage unit, and the user authentication information acquired while the input screen prompting the user to input the authentication information is displayed, and is read from the storage unit. A program for executing an authentication process by collating the authentication information with the authentication information.
42. 41. In the program described in
A program for causing a computer to execute a procedure for causing a display unit to display an input screen for accepting an authentication operation corresponding to another authentication method different from the one authentication method.
43. 42. In the program described in
A program for causing a computer to execute a procedure for causing a display unit to display a second input screen different from a first input screen for receiving an authentication operation corresponding to the one authentication method.
44. 42. Or 43. In the program described in
A program for causing a computer to execute a procedure for displaying an input screen corresponding to an authentication method randomly selected from the plurality of authentication methods when performing the authentication process.
45. 41. To 44. In the program described in any one of the above,
further,
For each of the plurality of authentication methods, a procedure for registering the authentication method and the authentication information, and the authentication method and the gripping position information in association with each other in the storage unit,
While performing the authentication process, while the input screen is displayed,
A procedure for collating the detected gripping position with the gripping position information in the storage unit and identifying the authentication method associated with the gripping position information that matches the detected gripping position;
A program for causing a computer to execute the procedure of acquiring the authentication information associated with the specified authentication method from the storage unit and performing the authentication process with the specified authentication method.
46. 45. In the program described in
A program for causing a computer to execute a procedure in which authentication is failed when the gripping position information that matches the detected gripping position is not stored in the storage unit.
47. 41. To 46. In the program described in any one of the above,
The mobile terminal device has a plurality of sensors that respectively detect at a plurality of locations that the user's fingers are in contact with the device;
The grip position information indicates a combination pattern of the sensors for detecting contact of the user's finger,
The program for making a computer perform the procedure which specifies the said holding | grip position information which corresponds with the combination pattern of the said sensor which detected the contact of the said user's finger.
48. 41. To 47. In the program described in any one of the above,
The authentication method is a program that is at least any two of pattern authentication, PIN code authentication, password authentication, and biometric information authentication.

12 CPU
14 Memory 16 Storage 18 I / O
20 communication unit 21 antenna 22 operation unit 24 operation reception unit 26 display unit 28 display control unit 30 touch panel unit 32 imaging unit 34 touch sensor 36 fingerprint reading unit 40 bus 50 program 100 portable terminal device 102 display control unit 104 authentication unit 106 authentication information Storage unit 112 Registration unit 114 Detection unit 116 Identification unit 120 Touch panel 130a, 130b, 130c, 130d, 130e, 130f Touch sensor 140 Power switch 300 Input screen 302 Number key 304 Input confirmation display field 310 Input screen 312 Object 314 Pattern 316 Pattern 320 Input screen 322 Operation key 324 Input confirmation display field 330 Input screen

Claims (10)

Display control means for displaying on the display unit an input screen for accepting an authentication operation corresponding to another authentication method different from the one authentication method designated by the user;
A portable terminal device comprising: authentication means for acquiring authentication information of the user while the input screen is displayed, and performing authentication processing by the one authentication method. The mobile terminal device according to claim 1,
The said display control means is a portable terminal device which displays on the said display part the 2nd input screen different from the 1st input screen which receives the authentication operation corresponding to the said 1 authentication method. The mobile terminal device according to claim 1 or 2,
Detecting means for detecting a gripping position of the device by the user;
The gripping position information is acquired from a storage unit that stores gripping position information indicating the gripping position of the device used for designating the one authentication method, and the gripping position information and the gripping position detected by the detection unit And a specifying unit that specifies that the one authentication method is specified by the user when the two match. The mobile terminal device according to claim 3.
For each of the plurality of authentication methods, further comprising registration means for registering the authentication method and the authentication information, and the authentication method and the gripping position information in association with each other in the storage unit,
When performing the authentication process,
While the display control means is displaying the input screen,
The specifying unit collates the gripping position detected by the detecting unit with the gripping position information of the storage unit, and uses the authentication method associated with the gripping position information that matches the detected gripping position. Identify,
The said authentication means is a portable terminal device which acquires the said authentication information linked | related with the specified said authentication method from the said memory | storage part, and performs the said authentication process with the specified said authentication method. The mobile terminal device according to claim 3 or 4,
The detection means includes a plurality of sensors that respectively detect that the user's fingers are in contact with the device at a plurality of locations.
The grip position information indicates a combination pattern of the sensors for detecting contact of the user's finger,
The mobile terminal device that specifies the grip position information that matches the combination pattern of the sensors that detect contact of the user's finger. In the portable terminal device according to any one of claims 3 to 5,
The portable terminal device in which the authentication unit sets authentication failure when the grip position information that matches the grip position detected by the detection unit is not stored in the storage unit. In the portable terminal device according to any one of claims 1 to 6,
When performing the authentication process, the display control unit causes the display unit to display an input screen corresponding to an authentication method randomly selected from the plurality of authentication methods. In the portable terminal device according to any one of claims 1 to 7,
The mobile terminal device, wherein the authentication method is at least any two of pattern authentication, PIN code authentication, password authentication, and biometric information authentication. The mobile terminal device
An input screen for accepting an authentication operation corresponding to another authentication method different from the one authentication method specified by the user is displayed on the display unit,
An authentication method for a mobile terminal device that acquires authentication information of the user and performs authentication processing by the one authentication method while the input screen is displayed. In a computer that realizes a mobile terminal device,
A procedure for causing the display unit to display an input screen for accepting an authentication operation corresponding to another authentication method different from the one authentication method designated by the user;
A program for executing the procedure of acquiring authentication information of the user and performing authentication processing by the one authentication method while the input screen is displayed.