JP2019057011A - Determination apparatus, determination method, and determination program - Google Patents

Abstract

To provide a determination apparatus, a determination method, and a determination program for utilizing information managed online according to various situations.SOLUTION: The determination apparatus includes a first acquisition unit, a second acquisition unit, and a determination unit. The first acquisition unit acquires authority information on a service which a first user of the first terminal intends to accept and a usage status on the first terminal. The second acquisition unit acquires a condition which permits transfer of the authority information and indicates a relationship between the first user and a transfer destination to which the authority information is transferred. The determination unit determines whether or not a relationship between the first user and a second user to whom the first user intends to transfer the authority information satisfies a condition on the basis of the usage status acquired by the first acquisition unit.SELECTED DRAWING: Figure 4

Description

  The present invention relates to a determination device, a determination method, and a determination program.

  In recent years, the spread of communication networks has progressed, and services via communication networks have been actively provided. In addition, services that connect information managed online to offline (real world) services are also being developed. For example, a ticket for receiving a service online is issued in advance, and then the entrance to a real-world concert venue is managed by checking the online ticket displayed on the user's terminal device. Services are deployed.

  As a technology related to such services, identity verification information is generated by comparing authority information on the service side with authentication information such as user biometric information, and services are provided by using the generated identity verification information. Techniques for this have been proposed.

Japanese Patent No. 6134371

  However, there is room for improvement in technologies that utilize information managed on-line offline. For example, the above prior art is premised on the service side managing in advance the authority information of the person who uses the service. For this reason, for example, a user whose authority information is not properly managed on the service side, such as a companion other than the user who purchased the ticket (for example, the purchaser is the person himself / herself because the user himself / herself has not purchased the ticket). In some cases, it is difficult to apply the above-described conventional technique to a user who does not manage personal identification information or the like for confirming whether or not there is.

  The present application has been made in view of the above, and an object thereof is to provide a determination device, a determination method, and a determination program that can utilize information managed online according to various situations.

  The determination apparatus according to the present application includes: a first acquisition unit that acquires authority information related to a service that a first user who is a user using a first terminal wants to receive; and a usage situation related to the first terminal; A second acquisition unit for acquiring a condition for permitting delegation of authority information, which indicates a relationship between the first user and a delegation destination to which the authority information is delegated; and the first acquisition unit The determination of whether or not the relationship between the first user and the second user who is the user to whom the first user is delegating authority information satisfies the condition based on the usage situation acquired by And a section.

  According to one aspect of the embodiment, there is an effect that information managed online can be utilized according to various situations.

FIG. 1 is a diagram (1) illustrating an example of a determination process according to the embodiment. FIG. 2 is a diagram (2) illustrating an example of the determination process according to the embodiment. FIG. 3 is a diagram illustrating a configuration example of the determination system according to the embodiment. FIG. 4 is a diagram illustrating a configuration example of the determination apparatus according to the embodiment. FIG. 5 is a diagram illustrating an example of a usage status storage unit according to the embodiment. FIG. 6 is a diagram illustrating an example of a communication destination storage unit according to the embodiment. FIG. 7 is a diagram illustrating an example of a trust list storage unit according to the embodiment. FIG. 8 is a diagram illustrating a configuration example of a user terminal according to the embodiment. FIG. 9 is a diagram illustrating a configuration example of the service server according to the embodiment. FIG. 10 is a diagram illustrating an example of the service information storage unit according to the embodiment. FIG. 11 is a diagram illustrating an example of a trust policy storage unit according to the embodiment. FIG. 12 is a flowchart (1) illustrating a processing procedure according to the embodiment. FIG. 13 is a flowchart (2) illustrating a processing procedure according to the embodiment. FIG. 14 is a hardware configuration diagram illustrating an example of a computer that realizes the function of the determination apparatus.

  Hereinafter, modes for carrying out a determination apparatus, a determination method, and a determination program according to the present application (hereinafter referred to as “embodiments”) will be described in detail with reference to the drawings. Note that the determination device, the determination method, and the determination program according to the present application are not limited by this embodiment. In addition, the embodiments can be appropriately combined within a range that does not contradict processing contents. In the following embodiments, the same portions are denoted by the same reference numerals, and redundant description is omitted.

[1. Example of judgment process)
First, an example of determination processing according to the embodiment will be described with reference to FIGS. 1 and 2. FIG. 1 is a diagram (1) illustrating an example of a determination process according to the embodiment. In FIG. 1, the determination apparatus 100 according to the present application has a user who has authority to receive provision of a predetermined service (hereinafter may be referred to as “first user”) and a user whose authority is delegated (hereinafter, “first user”). , A process of determining whether or not a relationship with a “second user” may satisfy a predetermined condition is shown.

  A determination apparatus 100 illustrated in FIG. 1 is a server apparatus that executes determination processing according to the embodiment. The service server 50 shown in FIG. 1 is a server device managed by a service provider, and performs processing related to service provision.

  In the embodiment, as a service provided by a service provider, a concert held in a theater, a concert facility, or the like (hereinafter collectively referred to as “venue”) is taken as an example. In the embodiment, the right of the first user will be described as an example of the right to participate in the concert (this right is embodied by an online ticket or the like indicating the right to enter the venue, for example). That is, in the example of FIG. 1, the user U01 who is the user (purchaser) who purchased the ticket has authority regarding the service, and corresponds to the first user. In addition, the user U02 who is a user (accompanying person) who accompanies the user U01 is a second user because the user U01 receives the ticket purchased by the user U01 and enters the venue.

  The purchaser terminal 20 illustrated in FIG. 1 is an information processing terminal used by a user U01 that is an example of a first user. 1 is an information processing terminal used by a user U02, which is an example of a second user. The purchaser terminal 20 and the accompanying terminal 30 are, for example, smartphones. In this specification, when the information processing terminal is used by a user such as the purchaser terminal 20 or the accompanying terminal 30 and the purchaser terminal 20 or the accompanying terminal 30 does not need to be distinguished, These devices are collectively referred to as “user terminal 10”. When there is no need to distinguish between the user U01 and the user U02, they are collectively referred to as “users”. Hereinafter, the user may be read as the user terminal 10 or the like. For example, the description “user U01 transmits information” may actually indicate a situation where “buyer terminal 20 (an example of user terminal 10) used by user U01 transmits information”. In the following description, the user terminal 10 (the purchaser terminal 20 in the example of FIG. 1) used by the first user (purchaser) is referred to as “first terminal” and is used by the second user (accompanying person). The user terminal 10 (the accompanying terminal 30 in the example of FIG. 1) may be referred to as a “second terminal”.

  Further, the service server 50 shown in FIG. 1 issues authority information related to the service, and performs processing for confirming the identity of the user having the issued authority information. Specifically, the service server 50 performs processing related to sales and issuance of online tickets, and acquires authentication information for confirming the identity of the user from the user who distributed the online ticket. The authentication information is, for example, a password set by the user, face image data obtained by capturing the user's face, user fingerprint data, and the like. The service provider receives the presentation of the authentication information from the user at the venue where the service is actually provided, and collates with the authentication information held in the service server 50 in advance. That is, the service provider determines whether or not the user who has visited the venue is the user who has actually purchased the ticket. As a result, the service provider can prevent entry by a counterfeit ticket or entry of a user who has obtained a ticket through unauthorized resale.

  As described above, since the service provider can obtain authentication information in advance for the ticket purchaser himself, the service provider can confirm the identity of the user. However, in general, the purchaser often purchases a plurality of tickets for concerts, etc., and visits the venue together with the accompanying person. In this case, although the service provider can confirm the identity of the purchaser, it is difficult to determine whether or not the accompanying person is a reliable user. For example, a companion may be an opponent to whom a purchaser reselled a ticket at an unreasonably high price. In this case, even if the service provider confirms the purchaser's identity, the service provider cannot prevent unfair resale in the service. However, tickets are often sold a few months before the service is actually provided, and it is burdensome for the buyer to present the information of all accompanying persons at that time. . Also, if the accompanying person's information can be changed later, the accompanying person's reliability will still be lacking.

  Therefore, the determination apparatus 100 according to the embodiment determines the reliability (trust) of the accompanying person without using a prior registration process related to the accompanying person by using the method described below. Specifically, the determination apparatus 100 acquires a usage status related to the first terminal in advance and acquires a condition for delegating authority information defined by the service provider. And the determination apparatus 100 determines whether the relationship between a 1st user and a 2nd user satisfy | fills conditions based on the utilization condition of a 1st terminal. For example, the determination apparatus 100 determines whether the first user and the second user are acquaintances before actually visiting the venue based on the usage status of the first terminal. If the determination device 100 is acquainted from a predetermined period before the first user and the second user visit the venue (for example, one month before), the second user enters the venue after obtaining a resold ticket. It is determined that the possibility of being a user who tries to be very low. Then, the determination apparatus 100 determines to permit delegation of the online ticket issued by the service server 50 and delegates authority information held by the first user to the second user. Thereby, the 2nd user who is a companion can present provision of the ticket delegated from the 1st user at a meeting place, and can receive provision of a service. Hereinafter, the flow of the determination process according to the embodiment will be described with reference to FIG.

  In the example of FIG. 1, a user U01 (purchaser) and a user U02 (accompanying person) each have a purchaser terminal 20 and a companion terminal 30, and accompany various places in daily life. It is assumed that action is taken. In such daily activities, the purchaser terminal 20 periodically communicates with the accompanying terminal 30 (step S01). For example, the purchaser terminal 20 detects the accompanying terminal 30 by short-range wireless communication such as Bluetooth (registered trademark), or sometimes performs processing such as pairing. Specifically, the purchaser terminal 20 recognizes the identification information of the surrounding device (in this example, the accompanying person terminal 30) detected by the short-range wireless communication, and stores the recognized identification information. More specifically, the purchaser terminal 20 acquires and stores a usage status such as what kind of device and how many times the device has been detected or paired. The identification information may be, for example, a device-specific manufacturing number or a MAC address (Media Access Control address).

  The usage status acquisition process of the purchaser terminal 20 as described above may be realized by, for example, a dedicated application (hereinafter simply referred to as “application”) that is an example of a program installed in the purchaser terminal 20. . Such an application may be provided from the determination device 100 or the service server 50, for example.

  As described above, the purchaser terminal 20 periodically stores the usage status of the terminal (that is, the context at the purchaser terminal 20) in the daily life of the user U01 (step S02). For example, the purchaser terminal 20 acquires the usage status of the terminal at the timing when the device is detected or at a timing every predetermined time (for example, 5 minutes), and stores the acquired usage status. Further, the purchaser terminal 20 stores the usage status in its own device and transmits the usage status to the determination device 100 (step S03). For example, the purchaser terminal 20 periodically transmits the usage status to the determination apparatus 100 according to the function of the above-described application. The determination apparatus 100 may transmit a usage status acquisition request to the purchaser terminal 20 and acquire the usage status from the purchaser terminal 20 that has responded to the request.

  The determination apparatus 100 generates a trust list L01 related to the user U01 based on the acquired usage status (step S04). In the embodiment, the trust list is a list in which users who are worthy of trust for the user U01 are described. Specifically, the trust list L01 includes a plurality of users having a relationship with the user U01 extracted based on the usage status of the purchaser terminal 20. In the present specification, the trust list L01 is described as including a user who is trustworthy for the user U01, but in reality, the information included in the trust list L01 is possessed by a user who is trustworthy for the user U01. This is identification information for identifying a device. However, if the determination apparatus 100 holds information that associates the identification information of each device with the user, the trust list L01 can include information that identifies the user itself.

  The determination apparatus 100 may determine the users included in the trust list L01 according to various determination criteria (extraction criteria). For example, the determination apparatus 100 may include, in the trust list L01, users who have been close to the user U01 (that is, the purchaser terminal 20) for a predetermined time or more in a predetermined period (for example, the latest 30 days). Specifically, the determination apparatus 100 includes, in the trust list L01, a user who owns a device detected by the Bluetooth function from the purchaser terminal 20 over a predetermined number of times in a predetermined period.

  In addition, the determination apparatus 100 may include a user who takes an action estimated to have taken the same action as the user U01 in the trust list L01. For example, the purchaser terminal 20 obtains a usage situation in which the user U01 makes a payment (for example, electronic money payment using the NFC (Near Field Communication) standard) over the purchaser terminal 20 in a predetermined store. To do. Further, the purchaser terminal 20 also acquires information that the user U02 holds over the accompanying terminal 30 and makes a payment within a predetermined time (for example, within 10 minutes) at the same store. In this case, the purchaser terminal 20 may acquire the payment information from the accompanying terminal 30 by performing pairing with the accompanying terminal 30. Then, for example, when the usage situation that the two users U01 and U02 have made a payment within a predetermined time in the same store is observed more than a predetermined number of times, the determination apparatus 100 determines the user U02 as a trust list. The process included in L01 is performed.

  In this way, the determination apparatus 100 generates a trust list L01 including users who are reliable for the user U01. Note that the trust list L01 includes not only a trusted user but also information that is a basis for determining that the user is a trusted user. The basis information is, for example, the type of usage status used for determining reliability, such as the number of times the user U01 has approached and the same action taken at the same store.

  The trust list generation process described above is continuously performed, for example, when the user U01 continues to use the application. Thereafter, it is assumed that the user U01 performs processing for purchasing the right of the service provided by the service provider at an arbitrary timing. For example, when the service is a concert or the like, the user U01 purchases a ticket via the above-described application. In addition, when purchasing a ticket, the user U01 transmits authentication information when the user's authentication information is required to be presented. That is, the user U01 transmits a ticket purchase request and authentication information to the service server 50 (step S05).

  In response to the request from the user U01, the service server 50 issues the requested ticket and stores the authentication information of the user U01 who is the purchaser (step S06). For example, the service server 50 acquires a password set by the user U01, face image data of the user U01, and the like as authentication information, and stores the authentication information in association with the purchase information of the user U01. Further, the service server 50 generates authority information for the ticket purchased by the user U01. For example, when the user U01 requests “two tickets”, the service server 50 generates authority information indicating that the user U01 has authority for “two tickets”.

  Then, the service server 50 transmits tickets for the number of purchases to the purchaser terminal 20 via the network (step S07). As a result, the user U01 can acquire two online tickets as the right (authority) related to the service provided by the service server 50. Management of authority information such as an online ticket purchased by the user U01 may be performed by an application installed in the purchaser terminal 20.

  Next, a determination process performed by the determination apparatus 100 at the stage where the service is actually provided will be described with reference to FIG. FIG. 2 is a diagram (2) illustrating an example of the determination process according to the embodiment. FIG. 2 shows a situation in which a predetermined period has elapsed since the user U01 purchased a ticket, and the service is actually provided. Note that the determination apparatus 100 continues to acquire the usage status of the user U01 (purchaser terminal 20) from when the user U01 purchases the ticket until when the ticket is actually used.

  As shown in FIG. 2, the user U01 who visited the venue together with the accompanying user U02 presents the online ticket he / she purchased to the service provider (step S11). The service provider requests the user U01 to present authentication information for authenticating whether the user U01 is truly a purchaser (step S12). In response to the request, the user U01 presents authentication information (step S13). For example, the user U01 presents a password set by the user U01 or presents his / her face image data using a face recognition system prepared by the service provider.

  The service provider collates the authentication information presented by the user U01 with the authentication information of the user U01 stored in the service server 50 in advance. When collation is performed, the service provider confirms the identity of the user U01 (purchaser) (step S14). That is, the service provider determines that the authority information held by the user U01 is valid.

  Subsequently, the service provider performs processing for confirming the reliability of the accompanying user U02. Specifically, the service provider requests the companion's reliability determination from the user U01 (step S15). That is, the service provider is a user who is not a user who actually has connection with the user U01, such as a user who purchased the resale ticket from the user U01 at the venue, such as the user U02 accompanied by the user U01. Request processing to prove this.

  Here, for example, the user U01 activates an application of the purchaser terminal 20 and requests a companion reliability determination (step S16). For example, the user U01 establishes communication between the purchaser terminal 20 and the accompanying terminal 30, and acquires identification information of the accompanying terminal 30. Then, the purchaser terminal 20 transmits the acquired identification information of the companion terminal 30 to the determination apparatus 100, and determines whether or not the user U02 who owns the device identified by the identification information is a reliable user. Let Specifically, the purchaser terminal 20 inquires whether or not the identification information of the accompanying terminal 30 is included in the trust list L01 generated in advance.

  At this time, the determination apparatus 100 receives a determination request from the purchaser terminal 20 and acquires a service-side trust policy (condition) from the service server 50 (step S17). For example, when receiving a determination request from the purchaser terminal 20, the determination apparatus 100 specifies a service related to determination and requests the service server 50 that provides the specified service to transmit a trust policy. In response to the request, the service server 50 transmits a trust policy related to the service to the determination apparatus 100.

  Even if the user U02 is included in the trust list L01 generated by the determination apparatus 100, whether or not the service side trusts the trust list L01 is finally determined by the trust policy set by the service side. By. For example, the service side does not accept the fact that the user U01 and the user U02 are close to each other as a basis for trust only once in the past, for example, the user U01 and the user U01 You may have on condition that there exists the utilization condition which shows that user U02 approached at least 3 times. In other words, the conditions on the service side specify the relationship between the purchaser and the accompanying person that the purchaser accompanies (in other words, the user wants to receive the service by transferring the authority information the purchaser has). . Such conditions presented by the service can be arbitrarily set by the service.

  The determination apparatus 100 collates the conditions acquired from the service server 50 with the information included in the trust list L01 (step S18). Specifically, the determination apparatus 100 indicates that the service list presents the condition that the usage status indicating that the user U01 and the user U02 are close to each other before the past 30 days is at least three times. It is determined whether or not the information included in is satisfied. In the example of FIG. 2, it is assumed that the trust list L01 holds the usage status with the user U02 that satisfies the above-described conditions. In this case, the determination apparatus 100 determines that the accompanying user U02 satisfies the service-side condition (step S19).

  If the determination apparatus 100 determines that the companion of the user U01 is a trustworthy user, the determination apparatus 100 permits the authority information held by the user U01 to be transferred to the companion. Specifically, the determination apparatus 100 notifies the purchaser terminal 20 that the user U01 is permitted to delegate the ticket to the user U02 (step S20).

  The user U01 that has received the notification delegates the ticket to the user U02 via the app of the purchaser terminal 20 (step S21). For example, the application of the purchaser terminal 20 has a lock function that cannot delegate authority information stored in the application, and the user included in the permission notification is only received when the permission notification is received. The lock function shall be released. Then, when the lock function is released, the purchaser terminal 20 and the accompanying terminal 30 are allowed to perform pairing in the application, and can transfer authority information.

  The user U02 who has received the ticket delegation from the user U01 presents the ticket to the service provider (step S22). The service provider confirms the reliability of the accompanying person based on the fact that the user U02 has transferred the ticket, that is, the delegation of authority information is permitted by the determination apparatus 100 (step S23). In this case, the service provider provides a service to the accompanying user U02 together with the user U01 (step S24). Specifically, the service provider permits the user U01 and the user U02 to enter the venue.

  As described above, the determination apparatus 100 according to the embodiment acquires authority information related to a service to which the user U01 is to be provided and usage status related to the purchaser terminal 20. Further, the determination apparatus 100 acquires a condition for permitting delegation of authority information, which indicates a relationship between the user U01 and the user U02 that is a delegation destination to which the authority information is delegated. Then, the determination apparatus 100 determines whether or not the relationship between the user U01 and the user U02 satisfies a condition based on the acquired usage situation.

  That is, the determination apparatus 100 acquires the daily usage status of the user U01, and extracts in advance a user who is reliable for the user U01 based on the acquired usage status. The user extracted in this way is a user who can be a companion candidate for the user U01 (hereinafter, may be referred to as “candidate user”). When the determination device 100 desires to transfer the authority information that the user U01 has at the timing when the user U01 actually uses the service, the user to be transferred is included in the candidate users It is determined whether or not. Furthermore, the determination apparatus 100 determines whether the candidate user satisfies a service-side condition. By such processing, the determination apparatus 100 can determine whether or not a companion who does not have authentication information in advance on the service side has a certain level of reliability. As a result, the determination apparatus 100 can prevent an illegal act such as resale from being performed in the service. Specifically, even if a user who purchased a ticket by reselling from the purchaser visits the venue together with the purchaser, the user is not permitted to receive the delegation of the ticket because there is no trust relationship with the purchaser. Further, according to the determination apparatus 100 according to the embodiment, the service side can save time and effort for acquiring accompanying person's authentication information and the like and collating authentication information. As described above, the determination apparatus 100 can use information managed online, such as determination of the reliability of a user whose authentication information is not stored in advance, according to various situations. Hereinafter, the configuration of the determination apparatus 100 that performs the above-described processing and the determination system 1 including the determination apparatus 100 will be described in detail.

[2. (Configuration of judgment system)
Next, the configuration of the determination system 1 including the determination apparatus 100 according to the embodiment will be described with reference to FIG. FIG. 3 is a diagram illustrating a configuration example of the determination system 1 according to the embodiment. As illustrated in FIG. 3, the determination system 1 according to the embodiment includes a user terminal 10, a service server 50, and a determination device 100. Further, the user terminal 10 includes a purchaser terminal 20 and a companion terminal 30. The number of various devices included in the determination system 1 is not limited to that illustrated. These various devices are communicably connected via a network N by wire or wireless. As an aspect of the network N, an arbitrary communication network such as the Internet (Internet), a LAN (Local Area Network), a VPN (Virtual Private Network), or a mobile communication network can be cited.

  The user terminal 10 is, for example, an information processing terminal (device) such as a desktop PC (Personal Computer), a notebook PC, a tablet terminal, a mobile phone including a smartphone, or a PDA (Personal Digital Assistant). The user terminal 10 also includes a wearable device such as a watch-type terminal and a glasses-type terminal. Furthermore, the user terminal 10 may include various smart devices having an information processing function. For example, the user terminal 10 may include a smart home appliance such as a TV (Television), a smart vehicle such as an automobile, a drone, and a home robot.

  The service server 50 is a server device managed by a service provider. The service server 50 may be realized by an information processing device such as a desktop PC, a tablet PC, or a notebook PC, or a POS (Point Of Sales) terminal that performs accounting processing in a service.

  For example, the service server 50 manages information related to services provided by the service provider, authority information related to services, authentication information of the user who acquired the authority information, and the like. Specifically, the service server 50 issues an online ticket in response to a request from the user, and transmits the issued online ticket to the user. In other words, the service server 50 performs a process of giving authority information related to the service to the user who is the purchaser. Such processing may be performed via an application installed in the user terminal 10, for example. The service server 50 may acquire and manage user attribute information such as the name, address, date of birth, and age of the user who purchased the service. For example, the service server 50 acquires various types of information related to the user based on information registered by the user when the ticket is purchased. In the embodiment, the service server 50 and the determination device 100 are described as separate devices, but these may be a single device. For example, the service server 50 and the determination apparatus 100 may be apparatuses managed under the same administrator.

  As described above, the determination apparatus 100 acquires the usage status and the service-side condition regarding the first terminal, and whether the relationship between the first user and the second user satisfies the condition based on the acquired usage status It is a server device that determines whether or not. The determination device 100 is used, for example, in cooperation with the service server 50 for the purpose of preventing unauthorized use in the service (for example, high-priced resale of tickets).

[3. (Configuration of judgment device)
Next, the configuration of the determination apparatus 100 according to the embodiment will be described with reference to FIG. FIG. 4 is a diagram illustrating a configuration example of the determination apparatus 100 according to the embodiment. As illustrated in FIG. 4, the determination apparatus 100 includes a communication unit 110, a storage unit 120, and a control unit 130. The determination apparatus 100 includes an input unit (for example, a keyboard and a mouse) that receives various operations from an administrator of the determination apparatus 100 and a display unit (for example, a liquid crystal display) for displaying various types of information. May be.

(About the communication unit 110)
The communication unit 110 is realized by, for example, a NIC (Network Interface Card). The communication unit 110 is connected to the network N in a wired or wireless manner, and transmits and receives information to and from the user terminal 10 and the service server 50 via the network N.

(About the storage unit 120)
The storage unit 120 is realized by, for example, a semiconductor memory device such as a RAM (Random Access Memory) or a flash memory, or a storage device such as a hard disk or an optical disk. The storage unit 120 according to the embodiment includes a usage status storage unit 121, a communication destination storage unit 122, and a trust list storage unit 123. Hereinafter, each storage unit will be described in order.

(About usage status storage unit 121)
The usage status storage unit 121 stores the usage status of the first terminal. Here, FIG. 5 illustrates an example of the usage status storage unit 121 according to the embodiment. FIG. 5 is a diagram illustrating an example of the usage status storage unit 121 according to the embodiment. In the example illustrated in FIG. 5, the usage status storage unit 121 includes items such as “user ID” and “usage status”. The “use status” item has small items such as “log ID”, “action date and time”, “destination ID”, and “sensor information”.

  “User ID” indicates identification information for identifying the first user or the first terminal. In the description of the embodiment, the identification information as shown in FIG. 5 and the reference numerals used for the description are common. For example, the user whose user ID is “U01” indicates the user U01 (or the purchaser terminal 20 owned by the user U01). The association between the user and the purchaser terminal 20 (first terminal) is, for example, information registered by the user when the user uses a predetermined service provided by the determination device 100 or the service server 50. May be performed on the basis. Specifically, the determination apparatus 100 and the service server 50 identify the identification information (the MAC address may be a cookie of the browser) of the buyer terminal 20 that has accessed the identification information (the user account is registered). And the purchaser terminal 20 can be associated with each other.

  “Usage status” indicates the usage status (context) of the first terminal. “Log ID” indicates identification information of a log acquired as a usage status. “Action date and time” indicates the date and time when the usage status was acquired (that is, the action was performed). The “communication destination ID” indicates identification information such as a connection destination device connected to the first terminal via the network N or a device detected from the first terminal.

  “Sensor information” indicates various sensor information acquired as usage status. FIG. 5 shows an example in which conceptual information such as “G01” is stored in the “sensor information” item, but actually, the “sensor information” item includes a sensor provided in the first terminal. The specific information detected by is stored. As an example, the sensor information includes the type of communication detected by the first terminal (such as Bluetooth or LAN connection), position information detected by the GPS (Global Positioning System) function provided in the first terminal, and the like. And gradient and acceleration information detected by the gyro sensor, ambient illuminance and atmospheric pressure, numerical values indicating the volume of ambient sound, and the like.

  That is, in FIG. 5, an example of the usage status of the first terminal owned by the user U01 identified by the user ID “U01” is the log LG01 identified by the log ID “LG01”, and the usage status indicated by the log LG01 The action date and time is “August 1, 2017 12:00”, the device identified by the communication destination ID “E02”, and the sensor information is “G01”.

(About the communication destination storage unit 122)
The communication destination storage unit 122 stores information regarding a communication destination that is a communication partner of the first terminal. Specifically, the communication destination storage unit 122 stores history such as information indicating a device with which communication has been established with the first terminal and information indicating a device detected by the first terminal. Here, FIG. 6 illustrates an example of the communication destination storage unit 122 according to the embodiment. FIG. 6 is a diagram illustrating an example of the communication destination storage unit 122 according to the embodiment. In the example illustrated in FIG. 6, the communication destination storage unit 122 includes items such as “communication destination ID”, “device type”, and “communication method”.

  The “communication destination ID” is the communication destination of the first terminal and corresponds to the same item shown in FIG. “Device type” indicates the type of the device that is the communication destination. The “communication method” indicates a communication method when communication is performed between the first terminal and a communication destination device. Note that the communication method is not limited to one type, and a plurality of communication methods may be stored.

  That is, FIG. 6 shows that the device type of the device identified by the communication destination ID “E02” is “smartphone” and the communication method with the first terminal is “Bluetooth”.

  Although not shown in FIG. 6, the communication destination storage unit 122 may store identification information for identifying the user who owns the device corresponding to the communication destination ID. The association between the device corresponding to the communication destination ID and the user may be performed from the registration information for the service or the like as in the case described with reference to FIG. In this case, the communication destination storage unit 122 stores, for example, information that the owning user of the device identified by the communication destination ID “E02” is the user identified by “U02”.

(About the trust list storage unit 123)
The trust list storage unit 123 stores information on the trust list generated for each first user (in other words, the first terminal). Here, FIG. 7 illustrates an example of the trust list storage unit 123 according to the embodiment. FIG. 7 is a diagram illustrating an example of the trust list storage unit 123 according to the embodiment. In the example illustrated in FIG. 7, the trust list storage unit 123 includes items such as “trust ID”, “destination ID”, “trust data type”, and “log ID”.

  “Trust ID” indicates identification information for identifying data included in the trust list. The “communication destination ID” corresponds to the same item shown in FIG. “Trust data type” indicates the type of data that is the basis for determining that the communication destination is a reliable user (candidate user). “Log ID” corresponds to the same item shown in FIG. 5 and indicates log data used for determination of the trust data type.

  For example, it is assumed that the log IDs “LG01”, “LG02”, and the like are usage states indicating that a Bluetooth connection has been made with the communication destination E02. In this case, it can be determined that the first terminal and the communication destination E02 have a close relationship (several meters to 10 meters). As described above, when the usage situation that the first terminal and the communication destination E02 are close to each other is frequently observed, the user U01 of the first terminal and the user of the communication destination E02 (for example, the user U02 shown in FIG. 1). Is presumed to be a friend or acquaintance relationship. The determination apparatus 100 determines the situation that the first terminal and the communication destination E02 are “close” based on the log of the usage situation, and based on the determined information, the first terminal and the communication destination It is determined that E02 has a relationship, that is, the communication destination E02 is a reliable device for the first terminal, and is added to the trust list.

  As shown in FIG. 7, the trust list includes a combination of information for identifying a communication destination and data determined to be reliable. For this reason, even if the communication destination ID is the same, the trust list may include users (communication destinations) extracted as candidate users by different trust data types. For example, in FIG. 7, the same communication destination E02 is extracted from the trust list based on different trust data types such as “proximity”, “action history”, and “SNS (Social Networking Service)”. Show. In addition, although mentioned later for details, "SNS" is communication as a user who has connection in the SNS which user U01 uses (relationships to follow each other, the setting of friendship, etc. are performed), for example. It means that the previous E02 was observed.

  That is, in FIG. 7, the candidate user identified by the trust ID “T01” is a device identified by the communication destination ID “E02”, and the trust data type is a device extracted based on “proximity”. Is shown. Further, it is indicated that the usage status that is the basis for determining that the trust data type is “proximity” is a log identified by the log ID “LG01”, “LG02”, or the like.

(About the control unit 130)
The control unit 130 is a controller, for example, various programs (an example of a determination program) stored in a storage device inside the determination apparatus 100 by a CPU (Central Processing Unit), an MPU (Micro Processing Unit), or the like. This is realized by executing the RAM as a work area. The control unit 130 is a controller, and is realized by an integrated circuit such as an application specific integrated circuit (ASIC) or a field programmable gate array (FPGA).

  As illustrated in FIG. 4, the control unit 130 includes a first acquisition unit 131, a generation unit 132, a second acquisition unit 133, a determination unit 134, and a transmission unit 135, and information processing described below. Realize or execute the functions and operations of Note that the internal configuration of the control unit 130 is not limited to the configuration illustrated in FIG. 4, and may be another configuration as long as information processing described later is performed. In addition, the connection relationship between the processing units included in the control unit 130 is not limited to the connection relationship illustrated in FIG. 4, and may be another connection relationship.

(About the first acquisition unit 131)
The first acquisition unit 131 acquires various types of information from the user terminal 10. For example, the 1st acquisition part 131 acquires the utilization condition regarding the said 1st terminal from the 1st terminal which the 1st user who becomes an owner of authority information uses. In the example illustrated in FIGS. 1 and 2, the first acquisition unit 131 acquires the usage status of the first terminal from the first terminal that is an example of the first terminal.

  The 1st acquisition part 131 acquires various information detected by the 1st terminal as a use situation. For example, the 1st acquisition part 131 acquires the use condition which shows that the 1st terminal and the 2nd terminal which a 2nd user uses adjoined.

  For example, the first acquisition unit 131 may use a history indicating that the first terminal and the second terminal have performed short-range wireless communication or wired communication as a usage status indicating that the first terminal and the second terminal have approached, or The first terminal and the second terminal acquire a history of using the same access point. In addition, the first acquisition unit 131 acquires the first terminal and the second terminal by acquiring, for example, the time during which pairing is continued by short-range communication or the time when wired connection is performed as the usage status. Proximity time can be derived.

  Moreover, the 1st acquisition part 131 may acquire the action history which shows that the 1st user and the 2nd user performed the action which is the same or similar as a utilization condition.

  For example, the first acquisition unit 131 uses a history that the first user has used a predetermined service as a usage status indicating that the first user and the second user have performed the same or similar behavior, and the first user The second user acquires a history of using the predetermined service within a predetermined time of using the service. For example, the first acquisition unit 131 uses information indicating that the information settled by the first user and the information settled by the second user are performed within a predetermined time (for example, within 10 minutes) at the same store. Get status. More specifically, the 1st acquisition part 131 acquires the utilization condition which shows that the 1st user and the 2nd user made payment within the predetermined time in the same employee cafeteria. In this case, the first acquisition unit 131 is not limited to the first terminal, but from an employee communication device (such as a wireless LAN router) installed in a cafeteria or the like used by the first terminal, the first terminal or the second terminal The usage status may be acquired. Moreover, the 1st acquisition part 131 may acquire not only a communication condition but the positional information etc. which show that the 1st terminal and the 2nd terminal are located in the same position, for example.

  Furthermore, the 1st acquisition part 131 may acquire the information etc. which show the exchange of a 1st user and a 2nd user as well as communication between 1st terminals and 2nd terminals as a utilization condition. For example, the 1st acquisition part 131 acquires the information regarding SNS which a 1st user uses as a use situation of the 1st terminal. Specifically, the 1st acquisition part 131 acquires the discernment information which identifies the user who has a connection with the 1st user in SNS which the 1st user uses as a use situation. More specifically, the 1st acquisition part 131 acquires the identification information which identifies the user who has the relationship which follows in predetermined SNS, the identification information which identifies the user who shares the same image, etc. Thus, the 1st acquisition part 131 may acquire not only a communication condition and payment information but the information regarding every action of a 1st user as a usage condition of the 1st terminal.

  Further, the first acquisition unit 131 acquires authority information related to the service from the first terminal. The second acquisition unit 133 to be described later specifies a service based on the acquired authority information, and acquires conditions that the service has. Further, the determination unit 134 determines whether or not the relationship between the first user and the second user satisfies a condition based on the acquired authority information.

  The first acquisition unit 131 stores the acquired various types of information in the storage unit 120. For example, the first acquisition unit 131 stores log data indicating the acquired usage status in the usage status storage unit 121.

(About the generator 132)
The generation unit 132 is a list in which candidate users that are users who can be candidates for the second user are extracted based on the usage situation acquired by the first acquisition unit 131, and indicates a basis for extraction as a candidate user Generate a trust list that contains the information.

  For example, the generation unit 132 may use the first terminal and the user terminal 10 used by the candidate user as a usage status, a history of short-range wireless communication or wired communication, or a user terminal used by the first terminal and the candidate user. A trust list is generated on the basis of a history of using the same access point as 10. In this case, the generation unit 132 generates a trust list with the trust data type “proximity”. Note that definition data and the like for the generation unit 132 to determine the trust data type may be appropriately input or updated by an administrator of the determination apparatus 100, for example.

  For example, the generation unit 132 extracts, as candidate users, user terminals 10 having a history of short-range wireless communication with the first terminal exceeding a predetermined number of times during a predetermined period (for example, one week or one month). Then, the generation unit 132 associates the extracted identification information of the candidate user with the trust data type (in this example, “proximity”) and stores it in the trust list storage unit 123.

  Further, the generation unit 132 trusts the usage status based on the history that the first user has used the predetermined service and the history that the candidate user has used the predetermined service within the predetermined time that the first user has used the predetermined service. A list may be generated. That is, the generation unit 132 determines that a user who has performed the same action in the same time zone as the first user is likely to be a user having some relationship with the first user, and extracts the candidate user as a candidate user. Then, the generation unit 132 associates the extracted identification information of the candidate user with the trust data type (in this example, “behavior history”) and stores it in the trust list storage unit 123.

  Further, the generation unit 132 may generate a trust list based on the usage status of the service used by the first user. Specifically, the generation unit 132 extracts users who have connections in the SNS used by the first user as candidate users. Then, the generation unit 132 associates the extracted identification information of the candidate user with the trust data type (“SNS” in this example), and stores it in the trust list storage unit 123. The generation unit 132 may perform the criterion for extracting candidate users based on arbitrary setting information. For example, when there is setting information such as “extract users connected in at least two SNSs as candidate users”, the generating unit 132 extracts users satisfying the conditions as candidate users based on such settings. Such setting information is stored in the storage unit 120 in advance by, for example, an administrator of the determination apparatus 100.

(About the second acquisition unit 133)
The second acquisition unit 133 acquires various information from the service server 50. For example, the second obtaining unit 133 obtains a condition for permitting delegation of authority information and indicating a relationship between the first user and a delegation destination to which the authority information is delegated.

  For example, the second acquisition unit 133 acquires on the condition that there is a history in which the first terminal and the second terminal used by the second user are close to each other for a predetermined time. In addition, the second acquisition unit 133, for example, has a history that the first terminal and the second terminal are close to each other a predetermined number of times, and further relates to a period-related condition (for example, close within the last month, one month or more You may acquire the conditions etc. which added the thing which adjoined in the past etc.).

  Moreover, the 2nd acquisition part 133 may acquire on condition that there exists an action history which shows that the 1st user and the 2nd user performed the same or similar action more than predetermined times. The same or similar action history is, for example, an action history indicating that the first user has used the predetermined service, and that the second user has used the predetermined service within a predetermined time during which the first user has used the predetermined service. It is specified by the action history shown.

  Moreover, the 2nd acquisition part 133 may acquire on the conditions that the log | history which shows having a connection with a 2nd user is contained in SNS which a 1st user uses. For example, the service side presents on the condition that the first user and the second user have a connection on the SNS before a predetermined period of time, so that the second user who has created a quick connection for resale The use of the service can be restricted because the reliability cannot be secured.

  The second acquisition unit 133 may not only acquire the conditions from the service server 50 at the timing when the determination request is received from the first user, but may acquire the conditions from various service servers 50 in advance. . In this case, the second acquisition unit 133 stores the acquired condition in the storage unit 120. And the 2nd acquisition part 133 specifies the conditions which concern on a service at the timing which received the request | requirement from a 1st user, and acquires the specified conditions from the memory | storage part 120. FIG.

(About determination unit 134)
The determination unit 134 determines whether or not the relationship between the user and the second user who is the user who intends to delegate authority information satisfies the condition.

  For example, the determination unit 134 collates the condition acquired by the second acquisition unit 133 with the information included in the list generated by the generation unit 132, so that the candidate satisfies the condition as the second user among the candidate users. Determine the user. In addition, when the information which the 2nd user who is going to delegate authority information transmits with the determination request | requirement with the determination request | requirement 134, the 2nd user specified is a candidate in a trust list. It is determined whether or not the user is included and whether or not the specified second user satisfies the condition.

  For example, when the condition related to proximity is acquired, the determination unit 134 firstly includes a history in which the first terminal and the user terminal 10 used by the candidate user are close to each other for a predetermined time in the trust list. When a candidate user having a relationship with the user is specified, it is determined that the candidate user satisfies the condition. Specifically, the determination unit 134 determines that a candidate user (a user identified by the communication destination ID) whose trust data type item in the example illustrated in FIG. Note that the determination unit 134 is not limited to simply “proximity”, but more detailed conditions on the service side (for example, a condition of proximity of 3 hours or more in the last 30 days). It may be determined whether or not it is satisfied.

  Note that the determination unit 134 uses, for example, a history of short-range wireless communication or wired communication between the first terminal and the user terminal 10 used by the candidate user in the trust list, And the user terminal 10 used by the candidate user includes a history of using the same access point, a candidate user having a relationship with the first user is identified, and the candidate user is determined to satisfy the condition You may make it do. That is, the determination unit 134 estimates that the type of communication as described above and the terminals using the same access point are in close proximity, and performs the determination as described above.

  Further, the determination unit 134 has a relationship with the first user on the basis that the trust list includes an action history indicating that the first user and the candidate user have performed the same or similar actions for a predetermined number of times or more. When a candidate user is specified, it may be determined that the candidate user satisfies the condition.

  Specifically, the determination unit 134 includes, in the trust list, a history that the first user has used the predetermined service, and a history that the candidate user has used the predetermined service within a predetermined time that the first user has used the predetermined service. If a candidate user having a relationship with the first user is specified on the basis of including the above, it is determined that the candidate user satisfies the condition. As described above, since users who use the same service in the same time zone have a close relationship and are likely to be friends or acquaintances, the determination unit 134 determines whether the two are related based on such information. It is determined that it has.

  In addition, the determination unit 134 identifies candidate users having a relationship with the first user based on the fact that a history indicating that the SNS used by the first user has a connection with the candidate user is included in the trust list. In this case, it may be determined that the candidate user satisfies the condition.

  If the determination unit 134 determines that the first user and the second user have a relationship that satisfies the condition, the determination unit 134 permits the authority information held by the first user to be transferred to the second user. Specifically, the determination unit 134 performs a setting that allows the authority information to be transferred from the first user to the second user in the application installed in the first terminal.

(About transmitter 135)
The transmission unit 135 transmits various information. For example, based on the result determined by the determination unit 134, the transmission unit 135 transmits a notification indicating that the delegation of authority information is permitted to the first terminal. In addition, the transmission unit 135 may transmit a notification to the first server and a notification to the effect that delegation of authority information from the first user to the second user is permitted. Thereby, the service side can grasp in advance that the delegation of authority information is permitted by the determination apparatus 100.

[4. Configuration of user terminal]
Next, the configuration of the user terminal 10 according to the embodiment will be described with reference to FIG. FIG. 8 is a diagram illustrating a configuration example of the user terminal 10 according to the embodiment. As illustrated in FIG. 8, the user terminal 10 includes a communication unit 11, an input unit 12, a display unit 13, a detection unit 14, a storage unit 15, and a control unit 16. Note that the connection relationship between the processing units included in the user terminal 10 is not limited to the connection relationship illustrated in FIG. 8, and may be another connection relationship.

(About the communication unit 11)
The communication unit 11 is connected to a network by wire or wireless, and transmits / receives information to / from the determination device 100, the service server 50, and the like. For example, the communication unit 11 is realized by a NIC or the like.

(About the input unit 12)
The input unit 12 is an input device that receives various operations from the user. For example, the input unit 12 is realized by an operation key or the like provided in the user terminal 10. The input unit 12 may include an imaging device (such as a camera) for capturing an image and a sound collection device (such as a microphone) that collects sound.

(About display unit 13)
The display unit 13 is a display device for displaying various information. For example, the display unit 13 is realized by a liquid crystal display or the like. In addition, when a touch panel is employ | adopted for the user terminal 10, a part of input part 12 and the display part 13 are integrated.

(About the detector 14)
The detection unit 14 detects various information related to the user terminal 10. Specifically, the detection unit 14 detects a user operation on the user terminal 10, location information of the user terminal 10, information about a device connected to the user terminal 10, an environment in the user terminal 10, and the like. To do.

  For example, the detection unit 14 detects a user operation based on information input to the input unit 12. In other words, the detection unit 14 detects that there has been an input of an operation for touching the screen to the input unit 12, an input of audio, or the like. Moreover, the detection part 14 may detect that the application mentioned above was started by the user. Further, the detection unit 14 may detect an operation in which the user terminal 10 itself is moved based on data detected by an acceleration sensor, a gyro sensor, or the like provided in the user terminal 10.

  Further, the detection unit 14 detects the current position of the user terminal 10. Specifically, the detection unit 14 receives radio waves transmitted from GPS satellites, and acquires position information (for example, latitude and longitude) indicating the current position of the user terminal 10 based on the received radio waves.

  Moreover, the detection part 14 may acquire position information with various methods. For example, when the user terminal 10 has a function equivalent to that of a contactless IC card used at a station ticket gate or a store (or the user terminal 10 has a function of reading a history of the contactless IC card) ), The used position is recorded together with the information on the settlement of the boarding fee at the station by the user terminal 10. The detection unit 14 detects such information and acquires it as position information. Moreover, the detection part 14 may detect the positional information acquirable from an access point, when the user terminal 10 communicates with a specific access point. The position information may be acquired by an optical sensor, an infrared sensor, a magnetic sensor, or the like included in the user terminal 10. Moreover, when the position of the user terminal 10 can be estimated from the IP address or the like, the detection unit 14 may acquire an IP address or the like as an example of the position information.

  The detection unit 14 detects an external device connected to the user terminal 10. Note that the external device is a device other than the target user terminal 10 and may include other user terminals 10 different from the target. For example, when viewed from the purchaser terminal 20, the accompanying person terminal 30 is recognized as an external device.

  The detection unit 14 detects the external device based on, for example, exchange of communication packets with the external device, a signal generated by the external device, or the like. Specifically, the detection unit 14 detects radio waves such as WiFi (registered trademark) and Bluetooth that are used by the external device. The detection unit 14 may detect the type of connection with the external device when communication with the external device is established. For example, the detection unit 14 detects whether it is connected to an external device by wire or wireless communication. Moreover, the detection part 14 may detect the communication system etc. which are used by radio | wireless communication. The detection unit 14 may detect the external device based on information acquired by a radio wave sensor that detects a radio wave emitted by the external device, an electromagnetic wave sensor that detects an electromagnetic wave, or the like.

  In addition, the detection unit 14 detects an environment in the user terminal 10. The detection unit 14 uses various sensors and functions provided in the user terminal 10 to detect information about the environment. For example, the detection unit 14 is a microphone that collects sound around the user terminal 10, an illuminance sensor that detects illuminance around the user terminal 10, and an acceleration sensor that detects physical movement of the user terminal 10 (or A gyro sensor), a humidity sensor that detects the humidity around the user terminal 10, a geomagnetic sensor that detects a magnetic field at the location of the user terminal 10, and the like. And the detection part 14 detects various information using various sensors. For example, the detection unit 14 detects a noise level around the user terminal 10 and whether the surroundings of the user terminal 10 have illuminance suitable for imaging the user's iris. Further, the detection unit 14 may detect surrounding environment information based on a photograph or video taken by the camera.

  Further, the user terminal 10 may acquire various types of information indicating the context of the user terminal 10 based on the information detected by the detection unit 14. As described above, the user terminal 10 has various sensors such as position, acceleration, temperature, gravity, rotation (angular velocity), illuminance, geomagnetism, pressure, proximity, humidity, and rotation vector by various built-in sensors (detection unit 14). Is acquired as information indicating the context. Further, the user terminal 10 uses a built-in communication function to acquire a connection status (for example, information regarding establishment of communication or a communication standard used) as information indicating a context. Also good.

(About the storage unit 15)
The storage unit 15 stores various information. The storage unit 15 is realized by a semiconductor memory device such as a RAM or a flash memory, or a storage device such as a hard disk or an optical disk, for example. For example, the storage unit 15 stores the usage status of the user terminal 10 by the user.

(About the control unit 16)
The control unit 16 is a controller, and is realized, for example, by executing various programs stored in a storage device inside the user terminal 10 using the RAM as a work area by a CPU or the like. The control unit 16 is a controller, and is realized by an integrated circuit such as an ASIC or FPGA, for example. For example, the control unit 16 implements various types of information processing by executing programs such as installed applications using the RAM as a work area. As illustrated in FIG. 8, the control unit 16 includes an acquisition unit 161, a reception unit 162, and a transmission unit 163, and implements or executes information processing functions and operations described below. Note that the internal configuration of the control unit 16 is not limited to the configuration illustrated in FIG. 8, and may be another configuration as long as the information processing described below is performed.

(About the acquisition unit 161)
The acquisition unit 161 acquires various types of information. For example, the acquisition unit 161 acquires various types of information detected by the detection unit 14 as the usage status of the user terminal 10. The acquisition unit 161 stores the acquired usage status in the storage unit 15.

(Receiver 162)
The receiving unit 162 receives various information. For example, the receiving unit 162 receives information transmitted from a predetermined device installed in the venue when the user actually wants to receive service at the venue. Specifically, the receiving unit 162 authenticates the authentication information presented to the service side at the time of purchase from the service server 50 installed at the venue, an access point installed at the venue, a beacon, or the like. A signal indicating that information is to be transmitted is received.

(About transmitter 163)
The transmission unit 163 transmits various information. For example, the transmission unit 163 transmits information on authority information (such as an online ticket) previously purchased by the user at the venue to the service server 50. In addition, the transmission unit 163 transmits authentication information to the service server 50 for checking with the authentication information presented to the service side at the time of purchase according to the user's operation. Specifically, the transmission unit 163 transmits a password input from the user, a user's face image captured at the venue, and the like. Note that the transmission unit 163 may transmit user fingerprint information or audio information as authentication information.

  In addition, the transmission unit 163 requests that the determination device 100 perform determination of delegation of authority information when the user performs an operation for desiring delegation of authority information to the accompanying person. Send a signal.

[5. Service server configuration]
Next, the configuration of the service server 50 will be described. FIG. 9 is a diagram illustrating a configuration example of the service server 50 according to the embodiment. As illustrated in FIG. 9, the service server 50 includes a communication unit 51, an operation input unit 52, a display unit 53, a reader unit 54, a storage unit 55, and a control unit 56.

(About the communication unit 51)
The communication unit 51 is an interface such as a NIC. The communication unit 51 transmits / receives various data to / from other devices via the network. For example, the communication unit 51 transmits information related to the service provided by the service server 50 to the determination device 100. In addition, the communication unit 51 transmits a request for authentication processing to the purchaser and the accompanying person to the user terminal 10.

(About the operation input unit 52)
The operation input unit 52 is an input device for inputting various types of information. For example, the operation input unit 52 includes an input device such as a mouse, a keyboard, or a touch panel. For example, the operation input unit 52 receives input of various types of information from an administrator of the service server 50 (for example, a service provider located at the venue), and inputs operation information indicating the received operation content to the control unit 56.

(About display unit 53)
The display unit 53 is a display device that displays various types of information. An example of the display unit 53 is a display device such as an LCD or a CRT. The display unit 53 displays various information. For example, the display unit 53 displays whether or not the user satisfies the service provision condition (for example, whether or not the online ticket is valid).

(About the reader unit 54)
The reader unit 54 reads predetermined information. For example, the reader unit 54 activates the short-range wireless communication function of the user terminal 10 when the user terminal 10 is held over. The reader unit 54 reads authority information such as whether the user terminal 10 has an online ticket or whether the online ticket is valid and valid. The means for reading information by the reader unit 54 may be realized by various known reading means. For example, the reader unit 54 may read a two-dimensional code in which authority information is encoded as an image, decode the read image, and output the encoded authority information to the control unit 56.

(About the storage unit 55)
The storage unit 55 is a device that stores various types of information. For example, examples of the storage unit 55 include semiconductor memory devices such as RAM and flash memory, and storage devices such as a hard disk and an optical disk.

  The storage unit 55 stores various programs used for managing the OS and user information executed by the control unit 56. Furthermore, the storage unit 55 stores various data. For example, the storage unit 55 includes a service information storage unit 551 and a trust policy storage unit 552.

(About the service information storage unit 551)
The service information storage unit 551 stores information related to services. Here, FIG. 10 illustrates an example of the service information storage unit 551 according to the embodiment. FIG. 10 is a diagram illustrating an example of the service information storage unit 551 according to the embodiment. In the example illustrated in FIG. 10, the service information storage unit 551 includes items such as “service ID”, “service content”, “authority acquirer”, “ticket issue number”, and “authentication information”.

  “Service ID” indicates identification information for identifying a service. “Service content” indicates the specific content of the service. The “authority acquirer” indicates an acquirer who has acquired authority regarding the service. Note that the information displayed as the authority acquirer is common to the user ID. The “ticket issue number” indicates the number of tickets issued to the authority acquirer (that is, the purchaser). In other words, the authority acquirer has authority information for the number of tickets issued for the service. “Authentication information” indicates the type of authentication information used to confirm the identity of the authority acquirer.

  That is, in FIG. 10, as an example of information stored in the service information storage unit 551, the service identified by the service ID “P01” is related to “concert ticket sales” and the authority is acquired for the service. For example, the person is “U01”, the number of ticket issued is “2”, and “password” is registered as authentication information.

(About the trust policy storage unit 552)
The trust policy storage unit 552 stores information related to policies (contracts) related to trusts on the service side. Specifically, the trust policy storage unit 552 stores conditions that the service side requests from the accompanying person. Here, FIG. 11 illustrates an example of the trust policy storage unit 552 according to the embodiment. FIG. 11 is a diagram illustrating an example of the trust policy storage unit 552 according to the embodiment. In the example illustrated in FIG. 11, the trust policy storage unit 552 includes items such as “service ID”, “condition ID”, and “condition”.

  “Service ID” corresponds to the same item shown in FIG. “Condition ID” indicates identification information for identifying a condition. “Condition” indicates the content of a specific condition that the service side requests from the accompanying person.

  That is, in FIG. 11, as an example of information stored in the trust policy storage unit 552, the service identified by the service ID “P01” has a condition ID “R01”, “R02”, “R03”, or the like. For example, the condition R01 is a condition that the relationship between the first terminal and the second terminal satisfies the relationship that “the proximity time within the last month is 3 hours or more”. It shows that.

(Regarding the controller 56)
The control unit 56 is a controller, and is realized, for example, by executing various programs stored in a storage device inside the service server 50 using the RAM as a work area by a CPU, an MPU, or the like. The control unit 56 is a controller, and is realized by an integrated circuit such as an ASIC or FPGA, for example. The control unit 56 functions as various processing units by operating various programs. For example, the control unit 56 includes an acquisition unit 561, a reading control unit 562, an authentication information request unit 563, and a verification unit 564.

(About the acquisition unit 561)
The acquisition unit 561 acquires various information. For example, the acquisition unit 561 acquires information about the service input by the service provider. In addition, the acquisition unit 561 acquires information related to a ticket purchase request made online, authentication information transmitted from the purchaser, and the like.

(Regarding the reading control unit 562)
The reading control unit 562 controls reading processing in the reader unit 54. For example, when a predetermined operation for instructing the operation input unit 52 to start reading of the user terminal 10 is performed, the reading control unit 562 controls the reader unit 54 to read the user terminal 10. Specifically, the reading control unit 562 reads the authority information related to the service from the user terminal 10 presented by the purchaser at the venue.

(Regarding the authentication information request unit 563)
After the read control unit 562 reads the authority information, the authentication information request unit 563 requests the purchaser for authentication information related to the authority information. For example, the authentication information request unit 563 requests input of a password as authentication information. The authentication information request unit 563 requests input of face image data as authentication information. Note that the input of the face image data may be performed in cooperation with an external device such as a face authentication system installed at the venue, for example.

(About the verification unit 564)
The verification unit 564 verifies the authentication information transmitted from the user terminal 10 that has responded to the request from the authentication information request unit 563. Specifically, the verification unit 564 collates the authentication information stored in advance in the service information storage unit 551 with the authentication information presented by the purchaser at the venue. And the verification part 564 determines with the purchaser's identity having been confirmed, when a collation result corresponds.

[6. Processing procedure)
Next, a processing procedure performed by the determination apparatus 100 will be described with reference to FIGS. 12 and 13. First, the procedure of the trust list generation process by the determination apparatus 100 will be described with reference to FIG. FIG. 12 is a flowchart (1) illustrating a processing procedure according to the embodiment.

  The determination apparatus 100 determines whether or not the usage status of the first terminal has been acquired from the first terminal (step S101). When the usage status is not acquired (step S101; No), the determination apparatus 100 waits until acquisition.

  On the other hand, when the usage status is acquired (step S101; Yes), the determination apparatus 100 generates a trust list related to the first user who owns the first terminal based on the acquired usage status (step S102).

  Thereafter, the determination apparatus 100 determines whether or not the usage status is further acquired from the first terminal (step S103). When the usage status has not been acquired (step S103; No), the determination apparatus 100 waits until acquisition.

  On the other hand, when the usage status is acquired (step S103; Yes), the determination apparatus 100 updates the trust list related to the first user (step S104). The determination apparatus 100 repeats the process of extracting or deleting candidate users having a relationship with the first user by continuously performing the trust list update process.

  Next, a determination process procedure performed by the determination apparatus 100 will be described with reference to FIG. FIG. 13 is a flowchart (2) illustrating a processing procedure according to the embodiment.

  The determination apparatus 100 determines whether or not the authority information and the companion reliability determination request have been received from the first terminal (step S201). When the authority information and the determination request are not received (step S201; No), the determination apparatus 100 waits until it is received.

  On the other hand, when the authority information and the determination request are received (step S201; Yes), the determination apparatus 100 specifies a service related to the authority information and the determination request, and acquires the condition of the service from the service side (step S201). S202).

  Then, the determination apparatus 100 collates the condition with the trust list (step S203). Receiving the result of the collation, the determination apparatus 100 determines whether or not the accompanying person satisfies the condition (step S204).

  If the accompanying person satisfies the condition (step S204; Yes), the determination apparatus 100 transmits to the first terminal that permission to transfer the ticket (authority information) is permitted (step S205).

  On the other hand, if the accompanying person does not satisfy the condition (step S204; No), the determination apparatus 100 transmits to the first terminal that the delegation of the ticket (authorization information) is not permitted (step S206).

[7. (Modification)
The determination process by the determination system 1 described above may be implemented in various different forms other than the above embodiment. Therefore, in the following, another embodiment of the determination system 1 will be described.

[7-1. Conditions and types of trust data)
In the above-described embodiment, the determination device 100 uses, for example, whether the first terminal and the second terminal are in a daily proximity relationship, have similar behavior history, or have a connection in SNS. The example which added the 2nd terminal (2nd user) to the trust list | wrist based on the condition, or determined conditions was shown. However, the information for the determination apparatus 100 to determine the reliability of the second terminal is not limited to the above.

  For example, the determination apparatus 100 may acquire the condition that a history indicating that the image captured by the second user is shared in the image sharing service used by the first user is included. In addition, the determination apparatus 100 has a relationship with the first user on the basis that the trust list includes a history indicating that the candidate user shares an image captured by the image sharing service used by the first user. May be determined to satisfy the condition.

  In this case, the determination apparatus 100 acquires information regarding the image sharing site that the first user shares an image with another user and information for identifying the other user. Then, the determination apparatus 100 adds the other user to the trust list based on the relationship that the image is shared. As described above, the determination apparatus 100 may generate the trust list based on the sharing relationship in the image sharing site or the like. Note that the determination apparatus 100 estimates that users who are related to sharing various services provided on the cloud, such as a data sharing site, as well as an image sharing site, are related users, and are trusted. You may make it add to a list.

  In addition, the determination apparatus 100 may perform processing for determining the reliability of the accompanying person by different methods using, for example, the above image data. For example, the determination apparatus 100 analyzes image data stored locally in the image sharing site or the first terminal using a known technique, and extracts a human face image included in the image data. Thereafter, the service server 50 acquires the face image data of the accompanying person (for example, images the accompanying person using the face authentication system) at the venue, and transmits the acquired face image data to the determination apparatus 100. When the face image extracted from the image data stored in the first terminal includes a face image determined to be the same person as the accompanying person who has visited the venue, the determining apparatus 100 determines that the accompanying person is a friend of the purchaser It is estimated that there is a high possibility that the person is an acquaintance, and the accompanying person is determined to be a reliable user. If the determination apparatus 100 determines that the accompanying person is a reliable user, the determining apparatus 100 may perform a setting that allows the process of delegating the authority information of the first user to the second user (accompanying person).

  The determination apparatus 100 may perform the above determination process using image data other than the face. For example, the determination apparatus 100 can analyze image data stored locally in the image sharing site or the first terminal using a known technique, and can identify a companion that is a target included in the image data. The right target. As an example, the determination apparatus 100 extracts nail art included in image data as a target. In this case, the service server 50 acquires nail art image data provided by a companion at the venue (for example, the nail art is captured using a camera), and the determination device 100 determines the acquired nail art image data. Send to. In addition, the service side may acquire nail art image data of a companion when receiving an application for authentication using nail art image data from the first user or a companion.

  The determination apparatus 100 accepts nail art image data transmitted from the service server 50, and at the image sharing site or the image data stored locally in the first terminal, the nail art image transmitted from the service server 50 is received. It is determined whether there is image data that partially matches the image data. Then, the determination apparatus 100 has the case where the image data estimated to have previously captured the nail art transmitted from the service server 50 exists in the image sharing site or the image data stored locally in the first terminal In addition, it may be estimated that the first user and the accompanying person are likely to be friends or acquaintances, and the accompanying person may be determined to be a reliable user.

  As described above, the determination apparatus 100 extracts various information estimated to indicate the relationship with the second user based on the usage situation acquired from the first terminal, and the first user, the second user, The process of determining the relationship may be performed flexibly.

  As another example, the determination apparatus 100 may acquire the condition that a history indicating that the same schedule as the second user is shared in the calendar service on the network used by the first user is included. In this case, the determination apparatus 100 has a relationship with the first user on the basis that the trust list includes a history indicating that the same schedule as the candidate user is included in the calendar service on the network used by the first user. When a candidate user is specified, it is determined that the candidate user satisfies the condition.

  In this case, the determination apparatus 100 adds the other user to the trust list based on the fact that the calendar service on the network used by the first user includes a history indicating that the same schedule is shared with the other user. To do. Thus, the determination apparatus 100 may generate a trust list based on a shared relationship in a schedule service such as a calendar service on the cloud, for example.

  As another example, the determination apparatus 100 may acquire the condition that there is a history that the first user and the second user have accompanied the user for a predetermined time or more. In this case, the determination apparatus 100 specifies a candidate user having a relationship with the first user based on the fact that a history in which the first user and the candidate user co-occurd in the walking motion is included for a predetermined time or longer is included in the trust list. If it is determined, the candidate user is determined to satisfy the condition.

  That is, the determination apparatus 100 determines that both are accompanied based on detection information by the gyro sensor in the first terminal and detection information by the gyro sensor acquired from the second terminal paired with the first terminal. To do. Such co-occurrence of walking can be determined by a known technique, position information matching, or the like. The determination apparatus 100 adds the user to the trust list, assuming that the user who has accompanied the first user for a long time is a user who has some relationship with the first user. As described above, the determination apparatus 100 may generate the trust list based on all usage situations (contexts) such as daily operations and actions acquired by the first terminal.

[7-2. (Delegation of authority information)
In the said embodiment, when the companion's reliability was determined, the example by which authority information was delegated from the 1st user to the 2nd user was shown. Here, delegation of authority information does not necessarily indicate that online ticket information is transferred between terminals, but simply includes a situation in which the second user is allowed to use the authority of the first user. It may be a thing. For example, the service provider confirms the information indicating that the second user has been verified as a companion of the first user on the screen of the first terminal, and permits the exercise of the authority when the confirmation is made. You may make it do.

  In this case, the accompanying person does not necessarily have to have a device having various functions such as the user terminal 10 shown in FIG. For example, the accompanying person can communicate with the first terminal, such as an employee card corresponding to NFC, and can enjoy the service if he / she has only identification information. Specifically, the determination apparatus 100 records in the history that the accompanying person's employee ID is located at a position close to the first terminal (for example, the history of the employee ID being recognized by the first terminal by NFC). Based on this, the employee ID is included in the trust list. The determination apparatus 100 can determine that the employee ID is a reliable device if the information on the trust list satisfies the service conditions. In this case, the companion, for example, holds the employee card whose authority information is permitted to be transferred by the determination apparatus 100 over the reader unit 54 of the service server 50, thereby informing the service side that he / she is a trusted device. be able to.

[7-3. Judgment timing]
The determination apparatus 100 acquires from the service server 50 information indicating that the first user (purchaser) has been confirmed to be the person having the authority information from the service providing side, and confirms that such information has been acquired. As an opportunity, it may be determined whether the relationship between the first user and the second user (accompanying person) satisfies the condition.

  Since the determination apparatus 100 determines the reliability of the accompanying person on the assumption that the purchaser is a reliable user, it is not necessary to perform determination processing when the purchaser is not a reliable user. For this reason, the determination apparatus 100 may perform the accompanying person's determination process after acquiring information indicating that the verification of the purchaser's authentication information by the service server 50 has been completed without any problem. Thereby, since the determination apparatus 100 can avoid useless determination processing, the load of information processing can be reduced.

  In addition, the information indicating that the service side has confirmed the identity of the purchaser as described above is used when processing for determining the relationship between the purchaser and the accompanying person is performed, or when the purchaser and the accompanying person are involved. It may be acquired after the process of determining the relationship with is performed. That is, acquisition of information indicating that the purchaser has been confirmed to be the person may be performed before the determination process or after the determination process.

  That is, when the determination apparatus 100 determines whether or not the relationship between one user and the second user satisfies the condition, the service providing side confirms that the first user is the person who has authority information. If the service provider has not been confirmed, the service provider is requested to present information indicating that the first user has been confirmed by the service provider to have the authority information. May be.

  Specifically, the determination apparatus 100 determines that the relationship between the first user and the second user satisfies the condition, and is in a stage of delegating the online ticket purchased by the first user to the second user. If the identity of the first user is not confirmed by the service side, a request is made to the service side to obtain information indicating that the first user has been confirmed by the service side without fail. . Thereby, the determination apparatus 100 performs a process of determining whether or not the relationship between the first user and the second user satisfies the condition, and when the second user actually tries to exercise the rights, It is possible to prevent a situation in which the identity confirmation of one user has not been completed.

[7-4. Judgment device]
In the embodiment described above, an example in which the determination device 100 is realized as a server device different from the first terminal has been described. However, all the processes performed by the determination apparatus 100 described in the embodiment may be performed by the first terminal. That is, instead of uploading the usage status to the server, the first terminal may have the function of the determination device 100 and perform the determination process according to the embodiment. In this case, the first terminal may include all the configurations of the determination apparatus 100 illustrated in FIG. 4 in addition to the configuration illustrated in FIG.

[7-5. Mode of user terminal]
In the above embodiment, the configuration example of the user terminal 10 is shown using FIG. 8, but the user terminal 10 does not necessarily have all the configurations shown in FIG. 8. As described above, the user terminal 10 includes not only smart devices such as smartphones and wearable devices, but also various wearable devices such as eyeglass-type terminals having a communication function or heart rate measuring devices that store a user's heart rate. Is included. The user terminal 10 includes a card-type terminal having an NFC function as described above. In this case, the user terminal 10 does not necessarily receive an input from the user, but may have a function of automatically acquiring user information and transmitting the information to a communication network. That is, the user terminal 10 does not necessarily have the configuration shown in FIG. 8 as long as it is a device having a predetermined communication function that realizes so-called IoT (Internet of Things). Further, the user terminal 10 may be realized by two or more devices having a function for realizing the configuration shown in FIG.

[7-6. Authentication information〕
In the said embodiment, the purchaser terminal 20 showed the example which transmits authentication information to the service server 50 for a purchaser's identity verification. However, the purchaser terminal 20 may transmit information indicating that the authentication is completed by the authentication function of the purchaser terminal 20 instead of transmitting the authentication information itself. For example, when the purchaser terminal 20 has a fingerprint authentication function, the purchaser holds the fingerprint over the purchaser terminal 20 at the venue. Then, the purchaser terminal 20 transmits information indicating that the user of the terminal in which the authority information is stored is authenticated as the purchaser to the service server 50 as authentication information. As a result, the purchaser terminal 20 can perform the personal authentication without transmitting the authentication information itself such as the password, so that the safety can be improved. Such processing can be realized by using a technology such as FIDO (Fast Identity Online Alliance).

  Further, the purchaser terminal 20 transmits “result information that the person has been authenticated on the terminal side” as described above to the accompanying terminal 30, and the accompanying person presents the result information received from the purchaser terminal 20 to the service side. May be. In this case, the purchaser terminal 20 refers to the trust list and determines a user who is permitted to transmit “result information that the terminal is authenticated”. Then, the purchaser terminal 20 permits the result information to be transmitted to a user who has a trust relationship (here, a user who owns the accompanying terminal 30).

  In this case, the accompanying person has the “result information that the purchaser has been authenticated” in the accompanying terminal 30, and therefore has a trusting relationship with the purchaser and exercises the authority information of the service. It can be shown to the service side that it has the right. In this manner, the accompanying person may prove his / her reliability by using “result information that the terminal has been authenticated” at the purchaser terminal 20. In other words, the accompanying person can exercise the authority for the service by presenting the result information obtained by the purchaser terminal 20 performing the personal authentication on the terminal side instead of the authority information such as a ticket.

[7-7. Confirmation of accompanying person)
When the authority information such as an online ticket is transferred from the purchaser to the accompanying person, the determination apparatus 100 may request the accompanying person's identity confirmation at the accompanying terminal 30 when exercising the transferred authority. . For example, the determination apparatus 100 requests the accompanying person for fingerprint authentication or the like in the accompanying terminal 30 as a condition for exercising the delegated authority information authority information. Thereby, the determination apparatus 100 may permit the exercise of the delegated authority information after verifying that the accompanying terminal 30 to which the authority information has been delegated is truly a terminal owned by the accompanying person. Therefore, it is possible to further improve safety and reliability related to delegation of authority information.

[7-8. Service type]
In the above embodiment, as a service provided by the service server 50, a service related to concert ticket sales is taken as an example. However, the process described in the above embodiment can be applied to services other than concert ticket sales. For example, the determination apparatus 100 can apply the determination process described in the above embodiment to a store use that is permitted only by introduction from an existing customer, that is, a store use that is not allowed at first glance. It is usually difficult for the store side to verify whether a new customer introduced by an existing customer is a truly reliable customer. However, according to the determination apparatus 100, since it is possible to determine the relationship between an existing customer and a new customer, the store side determines whether or not the new customer is a reliable customer. In addition, the use of the store can be permitted.

[7-9. (Trust list)
In the above embodiment, the example in which the determination apparatus 100 uses the trust list to determine the reliability of the accompanying person according to the request from the purchaser has been described. Here, the determination apparatus 100 may provide the service side with information included in the trust list that has determined the reliability of the accompanying person according to a request from the purchaser.

  For example, the determination apparatus 100 refers to the trust list according to a request from the purchaser, and extracts a companion who is reliable for the purchaser (for example, identification information of a terminal device used by the companion). Then, the determination apparatus 100 provides the extracted companion identification information to the service side.

  The service side determines the reliability of the accompanying person based on the information provided from the determination device 100. For example, the service side determines the reliability of the accompanying person based on whether or not the accompanying terminal 30 presented by the accompanying person is included in the information provided from the determination apparatus 100. The service side receives the trust list information from the determination apparatus 100 in advance, so that, for example, when the accompanying person arrives late from the purchaser, the trust of the accompanying person can be obtained even if the purchaser is not involved in the procedure. Gender can be determined. According to this configuration, the service side can acquire all the information of the accompanying person who is reliable to the purchaser in advance, so that the processing at the venue can be simplified or the accompanying person who arrives late The reliability confirmation process can be performed without problems for the user, and usability in the service can be improved.

  Moreover, in the said embodiment, the example in which the identification information of specific 2nd terminal was included in the trust list like the companion terminal 30 was shown. However, the trust list does not include the identification information of the second terminal, but a condition for determining as a trust context, for example, what kind of relationship the second terminal is trusted with the first terminal. Etc. may be included. That is, the trust list does not necessarily include the identification information of the second terminal, but may include information comprehensively such as what conditions satisfy the second terminal in a trust relationship.

[7-10. (Trust policy)
In the above embodiment, an example in which the service side has the trust policy is shown. Here, the trust policy which the service side has is not necessarily common to all users, and may include information different for each user, for example. For example, the trust policy may have a standard of trusting a user who has provided a service as a companion in the past. In this case, the applied trust policy differs between a user who has used a service previously provided by the same service provider and a user who receives the service for the first time. In this way, the trust policy does not apply a standard common to all users, but may include a matter that is not determined uniformly, such as whether or not the user has used a service in the past.

[8. Hardware configuration)
The user terminal 10, the service server 50, and the determination apparatus 100 according to the above-described embodiments are realized by a computer 1000 configured as shown in FIG. 14, for example. Hereinafter, the determination apparatus 100 will be described as an example. FIG. 14 is a hardware configuration diagram illustrating an example of a computer 1000 that implements the functions of the determination apparatus 100. The computer 1000 includes a CPU 1100, RAM 1200, ROM 1300, HDD 1400, communication interface (I / F) 1500, input / output interface (I / F) 1600, and media interface (I / F) 1700.

  The CPU 1100 operates based on a program stored in the ROM 1300 or the HDD 1400 and controls each unit. The ROM 1300 stores a boot program executed by the CPU 1100 when the computer 1000 is started up, a program depending on the hardware of the computer 1000, and the like.

  The HDD 1400 stores a program executed by the CPU 1100, data used by the program, and the like. The communication interface 1500 receives data from other devices via the communication network 500 (corresponding to the network according to the embodiment), sends the data to the CPU 1100, and sends the data generated by the CPU 1100 to other devices via the communication network 500. Send.

  The CPU 1100 controls an output device such as a display and a printer and an input device such as a keyboard and a mouse via the input / output interface 1600. The CPU 1100 acquires data from the input device via the input / output interface 1600. Further, the CPU 1100 outputs the data generated via the input / output interface 1600 to the output device.

  The media interface 1700 reads a program or data stored in the recording medium 1800 and provides it to the CPU 1100 via the RAM 1200. The CPU 1100 loads such a program from the recording medium 1800 onto the RAM 1200 via the media interface 1700, and executes the loaded program. The recording medium 1800 is, for example, an optical recording medium such as a DVD (Digital Versatile Disc) or PD (Phase change rewritable disk), a magneto-optical recording medium such as an MO (Magneto-Optical disk), a tape medium, a magnetic recording medium, or a semiconductor memory. Etc.

  For example, when the computer 1000 functions as the determination apparatus 100 according to the embodiment, the CPU 1100 of the computer 1000 implements the function of the control unit 130 by executing a program loaded on the RAM 1200. The HDD 1400 stores data in the storage unit 120. The CPU 1100 of the computer 1000 reads these programs from the recording medium 1800 and executes them, but as another example, these programs may be acquired from other devices via the communication network 500.

[9. Others]
In addition, among the processes described in the above embodiment, all or part of the processes described as being automatically performed can be performed manually, or the processes described as being performed manually can be performed. All or a part can be automatically performed by a known method. In addition, the processing procedures, specific names, and information including various data and parameters shown in the document and drawings can be arbitrarily changed unless otherwise specified. For example, the various types of information illustrated in each drawing is not limited to the illustrated information.

  Further, each component of each illustrated apparatus is functionally conceptual, and does not necessarily need to be physically configured as illustrated. In other words, the specific form of distribution / integration of each device is not limited to that shown in the figure, and all or a part thereof may be functionally or physically distributed or arbitrarily distributed in arbitrary units according to various loads or usage conditions. Can be integrated and configured. For example, the first acquisition unit 131 and the second acquisition unit 133 illustrated in FIG. 4 may be integrated. For example, the information stored in the storage unit 120 may be stored in a storage device provided outside via a network.

  In addition, the above-described embodiments and modifications can be combined as appropriate within a range that does not contradict processing contents.

[10. effect〕
As described above, the determination apparatus 100 according to the embodiment includes the first acquisition unit 131, the second acquisition unit 133, and the determination unit 134. The 1st acquisition part 131 acquires the authority information regarding the service which the 1st user who is a user who uses the 1st terminal wants to receive, and the utilization condition regarding the 1st terminal. The second acquisition unit 133 acquires a condition for permitting delegation of authority information, which indicates a relationship between the first user and a delegation destination to which the authority information is delegated. Based on the usage status acquired by the first acquisition unit 131, the determination unit 134 satisfies the relationship between the first user and the second user who is the user to whom the first user wants to delegate authority information. It is determined whether or not.

  Thus, the determination apparatus 100 according to the embodiment acquires the daily usage status of the first user, and based on the acquired usage status, the relationship between the first user and the second user is a condition on the service side. It is determined whether or not the above is satisfied. Thereby, the 2nd user who accompanies a 1st user can show own reliability to a service side based on a relationship with an everyday 1st user, without performing a special response beforehand. As described above, the determination apparatus 100 can use information managed online, such as determination of the reliability of a user whose authentication information is not stored in advance, according to various situations.

  In addition, the determination apparatus 100 according to the embodiment is a list in which candidate users who are users who can be candidates for the second user are extracted based on the usage situation acquired by the first acquisition unit 131, It further includes a generating unit 132 that generates a list (trust list) including information indicating the basis for extraction. The determination unit 134 collates the condition acquired by the second acquisition unit 133 with the information included in the list generated by the generation unit 132, thereby selecting candidate users that satisfy the condition as the second user among the candidate users. judge.

  Thus, the determination apparatus 100 according to the embodiment generates a list in which users who are reliable for the first user are extracted as candidate users based on the daily usage status of the first user. And the determination apparatus 100 can extract the 2nd user who satisfy | fills conditions accurately by collating the conditions shown from the service side in the determination process, and the information contained in a list | wrist.

  Moreover, the 2nd acquisition part 133 acquires on condition that there exists a log | history in which the 1st terminal and the 2nd terminal which a 2nd user uses adjoined more than predetermined time. The determination unit 134, when a candidate user having a relationship with the first user is identified on the basis that the list includes a history in which the first terminal and the terminal used by the candidate user are close to each other for a predetermined time or more, It is determined that the candidate user satisfies the condition.

  Thus, the determination apparatus 100 according to the embodiment determines the reliability of the second user based on the proximity of the first terminal and the second terminal. In general, it is presumed that users having close relationships with each other for a predetermined time or more are estimated to be friends or acquaintances, and therefore the determination apparatus 100 accurately determines a reliable second user based on the usage situation. Can do.

  In addition, the generation unit 132 has the same usage history as the short-distance wireless communication or wired communication between the first terminal and the terminal used by the candidate user, or the terminal used by the first terminal and the candidate user. A list is generated based on the history of using access points. In the list, the determination unit 134 includes a history of short-range wireless communication or wired communication between the first terminal and the terminal used by the candidate user, or an access point where the first terminal and the terminal used by the candidate user are the same. When a candidate user having a relationship with the first user is specified on the basis of including the used history, it is determined that the candidate user satisfies the condition.

  Thus, the determination apparatus 100 according to the embodiment determines whether or not the first terminal and the second terminal are close to each other according to the type of communication or the like. That is, since the determination apparatus 100 determines the owner of the terminal that is frequently communicating with the first terminal as the second user, the determination apparatus 100 can determine the second user with high accuracy.

  Moreover, the 2nd acquisition part 133 acquires on condition that there exists an action history which shows that the 1st user and the 2nd user performed the same or similar action more than predetermined times. The determination unit 134 determines whether a candidate user having a relationship with the first user is based on the fact that the list includes an action history indicating that the first user and the candidate user have performed the same or similar actions for a predetermined number of times or more. If specified, it is determined that the candidate user satisfies the condition.

  Thus, the determination apparatus 100 according to the embodiment determines the reliability of the second user on the basis of having the same action history. Generally, users having similar behavior histories are presumed to be friends and acquaintances, so the determination device 100 can accurately determine a reliable second user based on the usage situation.

  In addition, the generation unit 132 may list the usage status based on a history that the first user has used the predetermined service and a history that the candidate user has used the predetermined service within a predetermined time that the first user has used the predetermined service. Is generated. The determination unit 134 is based on the fact that the list includes a history that the first user has used the predetermined service and a history that the candidate user has used the predetermined service within a predetermined time that the first user has used the predetermined service. When a candidate user having a relationship with one user is specified, it is determined that the candidate user satisfies the condition.

  Thus, the determination apparatus 100 according to the embodiment determines whether or not the first user and the second user have the same action history depending on whether or not the predetermined service is used in the same time zone. That is, since the determination apparatus 100 determines the relationship between the first user and the second user based on daily activities such as the first user and the second user spending together, the relationship between the two can be accurately determined. Can be determined. Note that the predetermined service in this case is, for example, a retail store, a restaurant, or the like, and a store that supports NFC standard settlement.

  Moreover, the 2nd acquisition part 133 is acquired on condition that the log | history which shows having a connection with a 2nd user is contained in SNS which a 1st user uses. The determination unit 134, when a candidate user having a relationship with the first user is specified on the basis that a history indicating that the list includes a connection with the candidate user in the SNS used by the first user is included in the list, It is determined that the candidate user satisfies the condition.

  As described above, the determination apparatus 100 according to the embodiment executes a flexible determination process using various information such as determining the relationship between the first user and the second user based on the usage status of the SNS. be able to.

  Moreover, the 2nd acquisition part 133 is acquired on condition that the log | history which shows sharing the image imaged by the 2nd user in the image sharing service which a 1st user uses is contained. The determination unit 134 is a candidate having a relationship with the first user on the basis that the list includes a history indicating that the candidate user shares an image captured by the image sharing service used by the first user. When the user is specified, it is determined that the candidate user satisfies the condition.

  As described above, the determination apparatus 100 according to the embodiment uses a flexible determination process using various information, such as determining the relationship between the first user and the second user based on the usage status of the image sharing service or the like. Can be executed.

  Moreover, the 2nd acquisition part 133 is acquired on condition that the log | history which shows sharing the same schedule with a 2nd user is contained in the calendar service on the network which a 1st user uses. The determination unit 134 determines whether the candidate user having a relationship with the first user is based on the fact that the list includes a history indicating that the same schedule is shared with the candidate user in the calendar service on the network used by the first user. If specified, it is determined that the candidate user satisfies the condition.

  As described above, the determination apparatus 100 according to the embodiment uses various information such as determining the relationship between the first user and the second user based on the usage status of the schedule sharing service on the cloud, for example. Flexible determination processing can be executed.

  Moreover, the 2nd acquisition part 133 acquires on condition that there exists a log | history with which the 1st user and the 2nd user were accompanied by more than predetermined time. The determination unit 134 determines when a candidate user having a relationship with the first user is specified in the list based on the fact that the history of the first user and the candidate user co-occurring in the walking motion for a predetermined time or longer is included. It is determined that the candidate user satisfies the condition.

  Thus, the determination apparatus 100 according to the embodiment is based on the history indicating that the first user and the second user are acting together, such as walking co-occurrence information, so that the first user and the second user The relationship with the user can be determined from various viewpoints.

  The second acquisition unit 133 also acquires information indicating that the first user has been confirmed to be the person who has the authority information by the service providing side. The determination unit 134 has the relationship between the first user and the second user triggered by the fact that the second acquisition unit 133 has acquired information indicating that the first user has been confirmed to have the authority information. It is determined whether or not the sex satisfies the condition.

  As described above, the determination apparatus 100 according to the embodiment performs the determination process as to whether or not the relationship between the first user and the second user satisfies the condition after the identity confirmation of the first user is performed. Therefore, it is possible to prevent unnecessary determination processing from occurring, and to reduce the load of information processing.

  In addition, when the determination unit 134 determines whether or not the relationship between the first user and the second user satisfies the condition, the service providing side confirms that the first user is the person who has the authority information. If the service providing side has not been confirmed, the service providing side is requested to present information indicating that the first user has been confirmed by the service providing side.

  As described above, when the determination apparatus 100 according to the embodiment performs the determination process whether or not the relationship between the first user and the second user satisfies the condition, the identity confirmation of the first user is surely performed. If it is not determined that the identity confirmation of the first user has been performed reliably, the service side may be requested to transmit information indicating that the first user has been identified. Thereby, the determination apparatus 100 can prevent a useless determination process from occurring, and can reduce the load of information processing.

  As described above, some of the embodiments of the present application have been described in detail with reference to the drawings. However, these are merely examples, and various modifications, including the aspects described in the disclosure section of the invention, based on the knowledge of those skilled in the art, It is possible to implement the present invention in other forms with improvements.

  In addition, the “section (module, unit)” described above can be read as “means” or “circuit”. For example, the generation unit can be read as generation means or a generation circuit.

DESCRIPTION OF SYMBOLS 1 Determination system 10 User terminal 20 Purchaser terminal 30 Accompanying terminal 50 Service server 100 Determination apparatus 110 Communication part 120 Memory | storage part 121 Usage condition memory | storage part 122 Communication destination memory | storage part 123 Trust list memory | storage part 130 Control part 131 1st acquisition part 132 Generation unit 133 Second acquisition unit 134 Determination unit 135 Transmission unit

Claims (14)

A first acquisition unit that acquires authority information relating to a service to be provided by a first user who is a user using the first terminal, and a usage situation relating to the first terminal;
A second obtaining unit for obtaining a condition for permitting delegation of the authority information, which indicates a relationship between the first user and a delegation destination to which the authority information is delegated;
Whether or not the relationship between the first user and the second user who is the user to whom the first user wants to delegate authority information satisfies the condition based on the usage situation acquired by the first acquisition unit A determination unit for determining whether or not
A determination apparatus comprising: A list in which candidate users, who can be candidates for the second user, are extracted based on the usage situation acquired by the first acquisition unit, and includes information indicating a basis for extraction as the candidate user A generating unit for generating a list,
Further comprising
The determination unit
The candidate acquired by the second acquisition unit and the information included in the list generated by the generation unit are collated to determine a candidate user that satisfies the condition as the second user among the candidate users.
The determination apparatus according to claim 1, wherein: The second acquisition unit includes
The first terminal and the second terminal used by the second user are acquired as a condition that there is a history of close proximity for a predetermined time,
The determination unit
In the list, when a candidate user having a relationship with the first user is specified on the basis of including a history that the first terminal and a terminal used by the candidate user are close to each other for a predetermined time, It is determined that the candidate user satisfies the condition.
The determination apparatus according to claim 2, wherein: The generator is
As the usage status, a history of short-distance wireless communication or wired communication between the first terminal and the terminal used by the candidate user, or an access point where the first terminal and the terminal used by the candidate user are the same Generate the list based on the history of using
The determination unit
In the list, a history of short-distance wireless communication or wired communication between the first terminal and a terminal used by the candidate user, or a terminal used by the candidate user that has the same access point. When a candidate user having a relationship with the first user is specified on the basis of including a used history, it is determined that the candidate user satisfies the condition.
The determination apparatus according to claim 3. The second acquisition unit includes
Obtaining the condition that there is an action history indicating that the first user and the second user have performed the same or similar actions more than a predetermined number of times,
The determination unit
In the list, a candidate user having a relationship with the first user is identified on the basis of including an action history indicating that the first user and the candidate user have performed the same or similar actions for a predetermined number of times or more. If it is determined that the candidate user satisfies the condition,
The determination apparatus according to any one of claims 2 to 4, wherein The generator is
As the usage status, the list is based on a history that the first user has used the predetermined service and a history that the candidate user has used the predetermined service within a predetermined time that the first user has used the predetermined service. Produces
The determination unit
The list includes a history that the first user has used the predetermined service and a history that the candidate user has used the predetermined service within a predetermined time that the first user has used the predetermined service. When a candidate user having a relationship with the first user is specified, it is determined that the candidate user satisfies the condition.
The determination apparatus according to claim 5. The second acquisition unit includes
The SNS (Social Networking Service) used by the first user obtains as a condition that a history indicating that the first user has a connection with the second user is included,
The determination unit
In the list, when a candidate user having a relationship with the first user is identified on the basis that a history indicating that the SNS used by the first user has a connection with the candidate user is included, It is determined that the candidate user satisfies the condition.
The determination apparatus according to claim 2, wherein The second acquisition unit includes
The image sharing service used by the first user obtains as a condition that a history indicating that the second user is sharing a captured image is included as the condition,
The determination unit
A candidate user having a relationship with the first user on the basis that the list includes a history indicating that the candidate user shares an image captured by the image sharing service used by the first user. If the candidate user is determined to satisfy the condition,
The determination apparatus according to any one of claims 2 to 7, wherein the determination apparatus includes: The second acquisition unit includes
Acquired as a condition that a history indicating that the same schedule as the second user is shared in the calendar service on the network used by the first user is included,
The determination unit
In the list, a candidate user having a relationship with the first user is identified based on the fact that the calendar service on the network used by the first user includes a history indicating that the same schedule is shared with the candidate user. If it is determined that the candidate user satisfies the condition,
The determination apparatus according to any one of claims 2 to 8, wherein The second acquisition unit includes
Acquired as the condition that there is a history that the first user and the second user have accompanied for a predetermined time or more,
The determination unit
In the list, when a candidate user having a relationship with the first user is specified based on the fact that the history of the first user and the candidate user co-occurring in a walking motion is included for a predetermined time or more, Determining that the candidate user satisfies the condition;
The determination apparatus according to any one of claims 2 to 9, wherein The second acquisition unit includes
Obtaining information indicating that the first user has been confirmed to be the person having the authority information by the service provider;
The determination unit
The relationship between the first user and the second user triggered by the fact that the second acquisition unit has acquired information indicating that the first user has been confirmed to be the person having the authority information. Determines whether the above condition is satisfied,
The determination apparatus according to claim 1, wherein: The determination unit
Whether it is confirmed by the service provider that the first user is the person having the authority information when determining whether or not the relationship between the first user and the second user satisfies the condition If the service provider has not confirmed the request, the service provider is requested to present information indicating that the first user has been confirmed by the service provider. To
The determination apparatus according to claim 1, wherein: A determination method executed by a computer,
A first acquisition step of acquiring authority information relating to a service to be provided by a first user who is a user using the first terminal, and a usage situation relating to the first terminal;
A second acquisition step for acquiring a condition for permitting delegation of the authority information, which indicates a relationship between the first user and a delegation destination to which the authority information is delegated;
Whether or not the relationship between the first user and the second user who is the user to whom the first user wants to delegate authority information satisfies the condition based on the usage situation acquired in the first acquisition step A determination step for determining whether or not
The determination method characterized by including. A first acquisition procedure for acquiring authority information relating to a service to be provided by a first user who is a user using the first terminal, and a usage situation relating to the first terminal;
A second acquisition procedure for acquiring a condition for permitting delegation of the authority information, which indicates a relationship between the first user and a delegation destination to which the authority information is delegated;
Whether or not the relationship between the first user and a second user who is a user to whom the first user wants to delegate authority information satisfies the condition based on the usage situation acquired by the first acquisition procedure A determination procedure for determining whether or not
The determination program characterized by causing a computer to execute.

Images