JP2020038684A - Qualification authentication system using mobile terminal, tool for qualification authentication, and qualification authentication method - Google Patents

Abstract

To provide a qualification authentication system capable of freely setting an authentication place and authentication time, an authentication tool for use in the same, and an authentication method.SOLUTION: In a server device, information concerning a qualification to be authenticated and face information of a right holder of the qualification are registered. A dedicated terminal device 5 at an authenticator 3 side includes: a reception section for receiving information concerning the qualification and the face information from the server device via a network; a storage section for storing a face image of a person to be authenticated 1, which is photographed using a camera function; and a collation section for collating the face information transmitted from the server device and the photographed face image in its own terminal. When it is determined that the face information and the face image match and the information concerning the qualification is effective as a result of collation processing in the terminal, a qualification authentication system authenticates that the person to be authenticated is the right holder of the qualification, and provides a right granted by the qualification to the person to be authenticated.SELECTED DRAWING: Figure 2

Description

  The present invention relates to a qualification authentication system, a qualification authentication tool (equipment), and a qualification authentication method using a mobile terminal, and more particularly to a qualification authentication system capable of performing accurate authentication at an arbitrary place without fixing an authentication place. And an authentication tool used for the authentication method.

  In the present invention, “qualification” can be defined as the right or authority obtained by the person, and “qualification” certifies the qualification, for example, obtained by purchase, gift, transfer, etc. Tickets such as admission tickets, air tickets, boarding tickets, watching tickets, discount tickets, coupon tickets, invitation tickets, etc., financial cards such as credit, debit, cash, etc., or transportation cards such as commuter passes It should be understood that the type may be tangible / intangible as long as the type of the qualification information can be recorded and stored, such as a print medium, an electronic medium, and a magnetic medium.

  Since such a qualification becomes an important ID for the person, various measures have been taken to prevent damage from theft or unauthorized use. As a typical example, a method of managing with an ID and a password is known. However, there is a drawback that anyone can easily use this ID and password once they are known to others.

  Therefore, as an authentication method that does not require a password, for example, as described in Patent Literature 1, a specialized authentication organization is set up, and a face photograph of the person registered in advance in the mobile terminal of the store from the authentication organization is obtained. A technique has also been proposed in which the data can be transferred so that the user can be identified at the store.

  However, the authentication means used in this technique merely focuses on confirming that the user is himself, such as a photograph of his / her face, fingerprint information, or personal information. Therefore, there is a drawback that even if the identity can be confirmed by a face photograph or the like, it is not possible to see at a store whether or not the credential possessed by the person has been stolen or illegally obtained.

  On the other hand, as an authentication technology that does not require a credential, for example, Patent Document 2 discloses a technology for performing payment of a product purchase price on a smartphone without presenting a credential (here, a credit card) itself and without carrying around. It has been disclosed. According to this, forgery and unauthorized acquisition of credentials can be avoided, but on the contrary, there is a conflicting disadvantage that ID and password must be used for identity verification (see paragraph 0042 described later). See).

  That is, even if the password for personal authentication is eliminated by the technique of Patent Document 1, it is meaningless to use a password as in Patent Document 2 for qualification confirmation. Moreover, Patent Document 2 requires the use of a terminal (smartphone) owned by the purchaser for cardless payment, and therefore has a drawback that the burden on the purchaser at the time of payment is large. There is also the problem that the loss or theft of a file increases the risk of unauthorized use.

  It should be noted here that the authentication of the qualification includes first authentication (identification) for determining whether or not the person to be authenticated is a person, and second authentication (qualification validity) for determining whether the credential is valid. Authentication), and in addition to these, "three authentication requirements" of a third authentication (authentication authentication) that determines whether or not the credential is indeed the authenticated person. is there. In particular, without the third authentication (authentication authentication), even if the authenticated person is correct and his / her credentials are valid, the authenticated person is This is because if you have a valid certificate, you will not be able to see it.

  2. Description of the Related Art In recent years, with the spread of communication networks and advances in image processing technology, a face authentication system that captures and authenticates a face of a person to be authenticated has attracted attention. The reference diagram shown in FIG. 2 is a schematic diagram of a typical configuration of the face authentication system. This system can be applied to, for example, a case where a customer (certified person) who purchases a product makes a credit card payment at a sales floor.

  The purchaser (certified person) 1 presents the credential (credit card) 2 brought to the staff (authenticator) 3 of the sales floor 8 at the time of card settlement, and faces the camera 4 installed there. Take a picture of yourself. The photographed face image and the credential information (card information) possessed by the purchaser are transmitted to a server 7 on a cloud 6 connected to a communication network via a dedicated terminal device 5 installed in a store such as a personal computer. Sent and saved. The face image and the card information stored in the server 7 are transferred to an authentication organization (for example, a financial institution such as a credit card management company or a bank) 10 located at a place 9 away from the sales floor, where the face image and the card information are transferred. Matching is performed. In the matching process, the face information of the person 1 to be authenticated and the card information (including the credit information) registered in advance in the authentication organization 10 are compared, and if they match, a notification of settlement approval is sent from the authentication organization 10. It is transmitted to the terminal device 5 of the counter 8 and the card payment is completed.

  Through such a series of authentication procedures, the first authentication (identity authentication) for confirming the identity is performed with the face image of the person to be authenticated photographed by the camera, and whether the credentials are valid or not. The second authentication (qualification validity authentication) for determining whether or not the card information is carried out can be performed by comparing the card information brought with the card information registered in the certification organization. The third authentication (authentication authentication) relating to whether or not the credential brought is the authenticated person who came to the sales floor, includes the name and the date of birth of the face information registered in advance in the authentication organization 10. It is possible by comparing the name and the date of birth contained in the card information with the name and the date of birth. By adopting such a face authentication technology, the purchaser does not need to input a password or a password at the time of payment. That is, face authentication replaces passwords and passwords.

  However, in such an authentication system, the matching process of the face image and the qualification information must be performed by the authentication institution 10 remote from the authentication place (sales counter) via the network. is there. In particular, there is a drawback that smooth procedures are hindered in places where congestion is expected. In addition, there is a problem that the authentication requests from the sales floor concentrate on the authentication organization 10. This means that access to the certificate authority 10 is concentrated, and there is a risk that the system may malfunction if a large number of authentication requests are made at the same time. For example, assuming that this system is used not as a sales floor but as an entrance management system for a competition venue, a large number of spectators will concentrate on the designated entrance gates at the same time, resulting in excessive processing load on networks and servers. There is a danger that authentication will be disabled, which may hinder smooth entrance guidance.

  As a technique for reducing the server load, as described in Patent Literature 3, there has been proposed a method in which the authentication process is performed by a terminal at an authentication site instead of the authentication organization. Patent Document 3 discloses an authentication system using face authentication in entry / exit management, in which face data of a person permitted to enter is transmitted from a server at a start time at which entry is permitted. A technique of transferring the information to a face authentication terminal device installed in an entrance restricted area is described. Specifically, when the visitor brings his / her face close to the face authentication terminal device installed in the restricted access area, the terminal device recognizes the visitor's face, and the recognized face data is transmitted. In the terminal device, a search is performed to determine whether the terminal is inside.

JP 2004-38917 A JP 2015-124545 A JP-A-2005-198442

  However, in the technique of Patent Document 3 described above, it is necessary to previously install a dedicated device called a face authentication terminal device in an entrance restricted area. Therefore, such an installation-type dedicated device has a disadvantage that congestion cannot be avoided in a situation where a large number of people rush to the entrance gate at the same time, such as a stadium or a concert hall. Furthermore, if a large number of such dedicated terminal devices are provided in order to alleviate congestion, it is necessary to secure a considerably large authentication space in terms of area, and it is hard to say that it is advantageous in terms of operation and cost.

  The problem of installing the dedicated equipment is also a common problem in any of the above-described prior arts, and is a major cause for delaying the spread of the face authentication system.

  Therefore, a first object of the present invention is to provide an authentication system and an authentication method that do not select an authentication place (the place is not fixed).

  Further, what is important in an authentication system that can be used anywhere is that the authentication tool used is easy to operate and easy to carry. However, the simplicity of operation sometimes places restrictions on the authentication range. For example, as described in Patent Document 3, when performing face authentication using a relatively small dedicated terminal device installed at an authentication place instead of an authentication institution, the target person who can be authenticated is limited to a predetermined specific person. (See paragraphs 0010 and 0023 of Patent Document 3). In other words, the authentication technique of Patent Document 3 is nothing more than the one that targets only the person who has the qualification given in advance by the authentication side, and the “three authentication requirements” required for the qualification authentication described above. Of these, only the technology focuses on personal authentication (first authentication). In other words, the qualification in the authentication technology is not the qualification of the subject but the qualification given by the authenticator. Therefore, there is no need to consider the validity determination of the qualification (second authentication) or the validity authentication (third authentication) of whether or not the person to be authenticated is the valid owner of the qualification. Therefore, in the technique of Patent Document 3, the target range that can be authenticated must be limited to only a predetermined specific person. As a result, there is a disadvantage that it is not suitable for unspecified large number of authentications. Furthermore, there is a drawback in that identity authentication alone is susceptible to spoofing using a photo of another person's face.

  Therefore, a second object of the present invention is to provide an authentication system using an easy-to-operate and portable authentication tool, which has all of the “three authentication requirements” required for qualification authentication, and It is an object of the present invention to provide a credential authentication system which does not limit the authentication, an authentication method thereof, and an authentication tool used for the system.

  Recently, standardization of online authentication technology without using a password by using biometric information called “FIDO (Fast Identity Online)” has been advanced. However, biometric information used in place of a password has a large amount of information, and the method of transferring the information to an authentication organization using a network has a problem in that it takes a long time for authentication and a rapid procedure cannot be performed.

  Therefore, a third object of the present invention is to provide a qualification authentication system and a qualification authentication method that enable a quick authentication procedure.

  By the way, there are two types of qualification authentication methods: manned authentication and unmanned authentication. The former is a method in which a person such as an observer, an examiner, a store clerk or a clerk intervenes as an authenticator at the authentication place, and the latter is a method in which authentication is performed using only a machine without human intervention. In general, in the case of attended authentication, although damages due to impersonation using a face photograph of another person can be prevented, there is a drawback that the burden on the authenticator is large, and conversely, unattended authentication has a drawback that there is much damage due to impersonation etc. . That is, there is a great difference in the authentication method depending on whether the authentication place is attended or unattended. Therefore, the authentication devices used are individually used as individual devices. As a specific example, in the attended authentication, presentation of an identification card and an oral question are frequently used, and in the unattended authentication, input of a password or a password is used. As a result, the authentication device for manned authentication cannot be used as the authentication device for unattended authentication, and vice versa. In particular, when replacing manned authentication with unattended authentication, a new authentication device had to be procured, and the economic burden was large.

  In view of this point, a fourth object of the present invention is to provide a qualification authentication tool that can be commonly used for both attended and unattended authentication.

  In order to achieve the above-mentioned object, each claim of the present invention has the following features.

  The invention according to claim 1 relates to a qualification authentication system using a mobile terminal, and has a camera function and a communication function, and is provided with a portable authentication-side mobile terminal and a network connected to the authentication-side mobile terminal. A qualification authentication system comprising a server device connectable through a server, wherein information relating to a qualification to be authenticated and face information of a valid holder of the qualification are registered in the server device, and a mobile terminal on the authentication side is registered. A receiving unit that receives the information on the qualification and the face information from a server device via a network, a storage unit that stores a face image of the person to be authenticated by using a camera function, A collation unit that collates the obtained face information with the captured face image in its own terminal, and as a result of the collation processing in the terminal, the face information matches the face image; , When the information on the qualification is determined to be valid, the authenticated person is authenticated as a valid holder of the qualification, and the right permitted by the qualification is given to the authenticated person. It is characterized by.

  Here, the "mobile terminal on the authentication side" is not a mobile terminal owned by the person to be authenticated, but a mobile terminal owned by the side that performs authentication. For example, a clerk, a clerk, a supervisor at the authentication place Or a mobile terminal possessed by an authenticating person such as an examiner. Also, "portable mobile terminal" is not a terminal that is fixed and installed so that it can not be moved to the specified location of the authentication place, but a clerk or clerk on the authentication side, or a monitoring officer or examiner Means a small and lightweight terminal that can be worn and carried around freely, for example, a mobile phone, a smartphone, a tablet, a wearable terminal, and the like. Further, "rights granted by qualifications" are rights that can be performed by a valid owner of the qualifications using the qualifications. For example, in the case of tickets, the right to enter if it is an admission ticket The right to watch games for watching tickets, the right to board for air tickets and tickets, and the right to purchase goods and services for credit cards and debit cards, and transportation cards For example, it means the right to be allowed to travel or travel on a specified vehicle or a specified road.

  According to a second aspect of the present invention, in the first aspect, the information on the qualification to be authenticated stored in the server device and the face information of a valid holder of the qualification are authenticated by the qualification holder. The information is self-registered information before receiving the information, and the information is associated with each other, and the information is transmitted as a pair to the authentication-side mobile terminal.

  According to a third aspect of the present invention, in the second aspect of the present invention, the face image of the subject to be authenticated using the mobile terminal on the authentication side matches the face information sent from the server device. In this case, as long as the information on the qualification sent from the server device to the mobile terminal is valid, the right set in the qualification can be obtained without asking the subject to present the credential. To give to the person.

  According to a fourth aspect of the present invention, in the second aspect of the present invention, the face image of the person to be authenticated using the mobile terminal on the authentication side matches the face information sent from the server device. In the case, when the authenticated person exercises the qualification given to the authenticated person by the information on the qualification, the accepted information input unit for inputting the accepted information indicating the consent of exercising the qualification to the mobile terminal on the authentication side is provided by the mobile terminal It is provided in the terminal.

  According to a fifth aspect of the present invention, in the fourth aspect of the present invention, a verification information input for inputting a signature of a subject, biometric information such as a voiceprint or a fingerprint, or a combination thereof as confirmation information on the subject. A mobile terminal on the authentication side.

  The invention according to claim 6 relates to a qualification authentication tool used in a qualification authentication system, the qualification authentication tool includes a mobile terminal attachment / detachment unit to which a mobile terminal can be attached, and a qualification data input unit operated by a person to be authenticated. And a qualification data transfer unit for transferring qualification data input by the subject to be authenticated to the mobile terminal while the mobile terminal is mounted.

  According to a seventh aspect of the present invention, in the credential authentication tool according to the sixth aspect, the qualification data input unit is a sign input unit for inputting a signature of a person to be authenticated, or a credential held by the person to be authenticated. A credential information reading unit for reading the above information, or a combination thereof.

  The invention according to claim 8 is characterized in that the qualification authentication tool according to claim 7 has a function of inputting the signature or the information of the credential electrically, magnetically, or optically. .

  The invention according to claim 9 relates to a qualification authentication method using a mobile terminal, which is a method for authenticating whether or not a person to be authenticated has authority to have a valid qualification, wherein information on qualifications registered in advance, And a first step of storing face information of a valid holder of the qualification in a portable mobile terminal on the authentication side, and using the mobile terminal of the authentication side to change the face of the person to be authenticated at the authentication place and authentication time guided by the authentication side. A second step of photographing with a camera built in the terminal, the face information stored in the mobile terminal on the authentication side, and the face image of the person to be authenticated photographed at the authentication place and authentication time, A third step of collating in the mobile terminal on the authentication side; and a fourth step of determining whether or not the subject has the right to have the valid qualification based on the collation result. It is to provide a qualification authentication method using a mobile terminal.

  According to a tenth aspect of the present invention, in the qualification authentication method according to the ninth aspect, before the first step, a qualification holder having a proper qualification specifies information on the qualification and his / her face information. And registering the registered server device.

  According to an eleventh aspect of the present invention, in the qualification authentication method according to the ninth aspect, the program for executing each of the first to fourth steps is executed by a qualification provider that provides qualifications to the qualification holder. The mobile terminal is provided with the mobile terminal.

  According to a twelfth aspect of the present invention, in the qualification authentication method according to the ninth aspect, the authentication-side mobile terminal is used for the collation in the third step after completing the determination processing in the fourth step. An erasing step for erasing the face information and the face image.

  In the present invention as described above, the following effects can be obtained.

  According to the qualification authentication system of the first aspect, first, a portable mobile terminal (for example, a mobile phone, a smartphone, a tablet, or the like) is used as a device for photographing and authenticating a face image of a person to be authenticated. By using it, it is possible to perform authentication in a free place without fixing the authentication place, so that the authentication side can judge without making a long line in the place where the authentication device is installed as in the past. It is possible to obtain an effect that a free space can be found and a response can be made freely. Furthermore, the certifier (clerk, clerk, etc.) can guide the subject to the appropriate authentication location by holding only his / her own mobile terminal without holding large equipment, so that the burden on the authentication side is reduced. There is also an advantage. In addition, even if the number of the certifiers is large, it is possible to make the number of authentication places equal to the number of the certifiers. Therefore, there is no need to secure a large-scale authentication space or authentication equipment, so that a low-cost and highly versatile authentication system can be constructed.

  Second, since the actual authentication is performed only in the mobile terminal on the authentication side, not in the server device, the face image of the subject to be authenticated taken at the time of authentication is stored in an external server via a network. Since there is no need to transmit to the device, there is an advantage that the authentication time can be reduced and the authentication procedure can be speeded up. Furthermore, when many authentications are performed within a predetermined time, it is necessary to avoid a situation where authentication requests are concentrated on one server device (access concentration or load concentration). On the other hand, since the authentication method of the present invention is not a centralized authentication method but a distributed authentication method, these problems can be solved at the same time, and it is not only important in the authentication procedure but also in server protection and communication load measures. It should be noted that the effect is obtained.

  In particular, with regard to this "distributed authentication method", the certification authorities are not distributed and one authentication is not performed in a distributed manner. It is a feature of the present invention that mobile terminals scattered at each authentication location independently authenticate information according to their own work. In other words, the idea of distributing the authentication that has been performed by the authentication organization to each mobile terminal in the related art is the main focus of the present invention. Thus, it is an important effect obtained by the present invention that the concentration of access to the authentication server and the processing load are avoided, and the authentication time can be reduced. Furthermore, in the present invention, a DB server for registration is sufficient, and a certification authority is not required.

  Third, the authentication of the present invention permits the qualification of a credential registered in advance by the credential holder, not the qualification of the credential brought by the subject. In other words, instead of authenticating the credentials (tickets and cards) brought by the subject, the qualifications of the credential holder registered on the server are given to the subject. It is the authentication of the present invention to determine whether or not it is acceptable. Therefore, the authentication of the present invention is possible even when the person to be authenticated does not bring his / her credentials. In other words, in the present invention, authentication is performed by using the face of the person to be authenticated as a ticket or card. In this way, the person to be authenticated can be authenticated only by the face without a credential, so that the user is free from the input operation of the password, the password, and the like (unlike the drawback of the invention of Patent Document 2 described above). In addition to this, it is possible to provide a qualification authentication system that does not put stress on a subject who does not have to worry about being banned from entering or watching games even if one forgets the credential.

  Next, according to the qualification authentication system according to the second aspect, an unspecified number of persons can be set as authentication targets without being limited to specific persons. What made this possible is the requirement for pre-registration of qualifications and faces by qualification holders and the requirement for authentication of pre-registered faces and qualifications. That is, instead of authenticating only with a face as in the technology described in Patent Document 3, the present invention authenticates a face and a qualification as a pair, so that the authentication target is limited to only a specific person. Never.

  In the qualification authentication system according to the third aspect, the qualification holder gives the qualification registered in advance by the qualification holder instead of the credential brought by the certifier, so that the certifier can bring the credential. Even if it is not done, if the face of the qualification holder matches the face of the person to be authenticated, there is no problem in giving the qualification of the qualification holder registered in advance to the person to be authenticated. Therefore, the person to be authenticated can obtain the qualification without the credential. This means that the face of the person to be authenticated serves as a substitute for a credential such as a ticket or a card, and as a result, the provision of the above-mentioned qualification authentication system that does not stress the object to be authenticated It will be appreciated that this is possible.

  In the qualification authentication system according to the fourth aspect, the mobile terminal has a consent information input unit that agrees to exercise the qualification after the authenticated subject has obtained the qualification. Therefore, by sending this consent information to the server device and linking it with the registration information of the qualification holder and storing it, it is possible to provide an authentication system suitable for log management and confirmation management.

  As in the qualification authentication system according to the fifth aspect, a card or the like is used by providing a mobile terminal with a confirmation information input unit for inputting biometric information such as a signature, a voiceprint, and a fingerprint of the subject as confirmation information. Even in a payment system requiring strict management such as financial payment, it can sufficiently cope with a mobile payment system.

The invention according to claim 6 relates to an authentication tool suitable for the above qualification authentication system.
In particular, it is a tool for performing authentication by detachably attaching the mobile terminal on the authentication side in the previous qualification authentication system, and qualification data (handwritten signature, information printed on paper or card, or , Information embedded as an IC chip) to a mobile terminal. Since such qualification data is transmitted to the terminal by a communication connector or a short-range wireless communication method in a state where the mobile terminal is mounted on the tool, it is necessary to send the qualification data to a remote authentication server using a network. There is no. As a result, there is an effect that a quick authentication procedure becomes possible. As the data input unit, a card scanner, a barcode reader, a handwriting input reader, or the like can be used.

  In addition, by separating the qualification data input function and the mobile terminal from each other, it is possible to apply to both the attended authentication and the unattended authentication. For example, this tool is installed near the door of the hotel guest room, and the guest rents it from the hotel (at check-in, the guest's face image, the length of stay, whether there is breakfast, the facilities in the hotel By attaching face recognition to the tool by registering qualification information on the use permission of the user), this tool can be used as a room key in front of a guest room where no hotel employee is present. If a regular key is lost or stolen, troublesome work such as replacing a guest room or replacing a door key is required, but since this tool uses the face of the guest as a key, However, even if stolen, only the person himself / herself can enter the room, so that he / she can enjoy the hotel life safely and safely without troublesome work. In addition, since the mobile terminal itself can support manned authentication, an excellent effect of being able to be used at low cost at any authentication place, whether manned or unmanned, is obtained.

  Also in the authentication tool according to the seventh and eighth aspects, the same effect as described above can be obtained more reliably and with higher reliability.

  Each of the inventions according to claims 9 to 12 relates to a method for authenticating whether or not the person to be authenticated has the right to the qualification, and has the same effect as that obtained by the qualification authentication system described above. Obviously you can.

  In particular, according to the authentication method of the ninth aspect, the authentication of the subject is performed at the location guided by the authentication side and using the mobile terminal of the authentication side. You cannot know the authentication environment. Therefore, it is possible to perform authentication in a highly reliable and secure environment without giving the person to be authenticated an opportunity for illegal activities, and it is possible to reliably prevent damages due to improper authentication such as impersonation. . In addition, since a face image obtained by photographing the face of the person to be authenticated can be determined on the spot without sending it to the outside, an extremely high-level security environment without risk of information leakage can be secured. .

  Further, by interposing a step of registering information of a valid qualification holder in a server device designated by the authentication side as in the method according to claim 10, a credential such as a ticket purchased as a gift can be obtained. However, it is possible to obtain an opportunity to register the user, not the purchaser of the ticket, as a valid qualification holder. As a result, the authentication target is not limited to the ticket purchaser, but can be widely applied to general users.

  An authentication method according to an eleventh aspect provides that an authentication program is supplied to a mobile terminal on the authentication side by a qualification provider (a person who is responsible for operation of a qualification). In this way, the authentication program can be prevented from being installed illegally on the mobile terminal and abused, so that the credential holder can safely put his / her credential information on the server device designated by the qualification provider. And face information can be registered for authentication. Further, since the registered information is not transmitted from the mobile terminal to the outside, the risk of information leakage can be avoided. Furthermore, since the first to fourth processing steps executed by the authentication program can be used in common regardless of the type of qualification, it can be applied to all qualification providers regardless of the type of business. .

  According to the authentication method of the twelfth aspect, after the collation processing is completed in the mobile terminal, the qualification information and face information on the qualification holder used for the collation and the face image of the person to be authenticated captured by the camera are stored in the terminal. By deleting the information from the terminal, it is possible to obtain an effect that the memory area in the terminal can be effectively used and leakage of personal information can be surely prevented.

1 is a functional block diagram illustrating an entire qualification authentication system using a mobile terminal according to the present invention. It is a functional block diagram of the conventional face authentication system shown as a reference example. It is a functional block diagram for explaining the qualification authentication system using the distributed authentication system of the present invention. BRIEF DESCRIPTION OF THE DRAWINGS It is a figure explaining the practical example of this invention, (A) is the figure which applied this invention to the attended person authentication system and (B) to the unmanned authentication system, respectively. It is a flowchart which shows the specific example at the time of a qualification holder registering his / her information in a server in the present invention. It is a flowchart which shows the specific example at the time of a qualification holder registering his / her information in a server in the present invention. FIG. 6 is a diagram illustrating a relationship between a condition of qualification authentication and an authentication result in a mobile terminal used in each embodiment of the present invention. FIG. 3 is an internal functional block diagram of the mobile terminal used in the first embodiment. 5 is a flowchart illustrating an authentication procedure according to the first embodiment. FIG. 14 is an internal functional block diagram of a mobile terminal used in the second embodiment. 9 is a flowchart illustrating an authentication procedure according to the second embodiment. FIG. 13 is an internal functional block diagram of a mobile terminal used in a third embodiment. 13 is a flowchart illustrating an authentication procedure according to the third embodiment. FIG. 2 is an external view of a qualification authentication tool used in the qualification authentication system of the present invention. It is a flowchart which shows an example of the processing procedure at the time of implementing this invention in an unattended authentication place.

Hereinafter, embodiments of the present invention will be described with reference to the drawings.
(Overall configuration and authentication procedure of the qualification authentication system of the present invention)
The present invention works effectively in an implementation environment as shown in FIG. FIG. 1 assumes a situation in which a facility user uses the facility in a facility that can be used only by a person having a predetermined ticket.

  The facility user pays for a ticket (qualification) required for use (T1) and purchases it at the ticket store (qualification provider) 11 (T2). The user who has purchased the ticket captures his / her face with a mobile terminal having a camera function, and transmits it along with the ticket number to the server device 7 designated by the qualification provider 11 via a communication line (T3). The transmitted face information and ticket number (certificate) are stored as qualification holder information in a registration database (registration DB) of the server device. Thus, the ticket purchaser (facility user) is registered in the server device 7 as the qualified user 1. The process of transmitting the user's face image and ticket number to the server device 7 can be performed by, for example, a ticket store (qualification provider) 11 instead of the user himself (T4).

  The qualification holder information stored in the registration DB 7 is transferred to the mobile terminal 13 of a staff member of the qualification facility 12 (T5). Here, the mobile terminal 13 used is owned by the usage facility 12 and given to the staff or guide of the facility for business use. For example, a mobile phone, a smartphone, a tablet, or the like has a camera function and a communication function. Any terminal may be used as long as it is equipped with and can be carried (or worn) by a staff member or guide by hand.

  The facility user (qualified user) 1 applies for use at the facility 12 (T6). In such an environment, the location where the usage facility 12 is located is defined as the qualification authentication location 8 of the present invention. More specifically, the point where the user 1 stands in front of the staff in order to apply for use of the facility is the actual authentication place. At that point, the staff takes a picture of the face of the user 1 with the mobile terminal 13 and authenticates whether or not the user 1 in front of the user has a valid qualification for using the ticket. Note that this authentication is not authentication of whether or not the user who has the ticket is the person himself / herself, but whether or not the user who came to the application has a valid use qualification for the ticket provided at the ticket store 11. Note in particular that it is a certification.

  As will be described in detail later, this authentication process is all performed in the mobile terminal of the attendant, and the captured face image of the user is not transmitted from this terminal to the outside. In other words, the equipment required for authentication may be only the mobile terminal possessed by the attendant. Therefore, unlike the conventional authentication system shown in FIG. 2, there is no need to use a dedicated fixed camera 4 or a terminal device 5, and it is also necessary to fix only a place where these devices are installed as an authentication place. There is no. As a result, it is possible to freely use as an authentication place wherever there is a free space, without preparing expensive authentication equipment or securing a dedicated authentication space. Furthermore, even if many users are concentrated, the authentication place is not crowded, and the stress of waiting in a queue for application for use is released.

(Description of Distributed Authentication in the Present Invention)
FIG. 3 is a system block diagram of an authentication system in which a plurality of authentication operations (P1 to Pn) are performed in different places (8-1 to 8-n). The certification institution 9 has a registration DB server 7 in which information for verification used in authentication is stored. Conventionally, when authentication is performed at each authentication location, an authentication request (R1 to Rn) is transmitted from each authentication location to the authentication organization 9 as indicated by a dashed arrow. Taking face authentication as an example, face information of a person to be authenticated photographed by a camera is sent from each authentication location to an authentication organization 9 together with an authentication request. The authentication organization 9 sequentially compares the sent face information of the person to be authenticated with the face information stored in the registration DB server 7, and when matching face information is found, the authentication result (A1 to A1) An) is returned to the terminal device (5 in FIG. 2) installed at each authentication location. In this conventional authentication method, it can be understood that the authentication process (face matching process) for authentication is all performed by the authentication organization 9.

  On the other hand, in the authentication method of the present invention, contrary to the conventional method, the registered face information stored in the registered DB server 7 for matching and the qualification information (D1 to Dn) associated therewith are registered. Is sent to each authentication location. The sent registered face information and qualification information are transferred to the mobile terminal (13 in FIG. 1) of the attendant at each authentication location (8-1 to 8-n), and collation processing is performed in the mobile terminal. You. What is compared with the transmitted registered face information is a face image of the person to be authenticated at each authentication place, which is captured by a camera built in the mobile terminal of the attendant.

  As is clear from the above description, the most important collation processing (matching processing) conventionally performed by the certification organization 9 collectively is now performed by the present invention in each mobile terminal of a staff member at an actual authentication place. Can be dispersed. As a result, the concentration of access to the server 7 of the certification organization and the concentration of processing load are greatly reduced. In addition, at each of the authentication locations 8-1 to 8-n, the fixed camera 4 and the dedicated terminal device 5 as shown in FIG. 2 are not required, and a dedicated space for installing them is not required. It is.

  Further, what should be noted in the distributed authentication of the present invention is that authentication is performed not only with face information but also with qualification information. For example, if the user who came to the authentication location is to authenticate whether or not he / she has purchased the ticket, it can be said that face authentication alone is sufficient. However, when the purchased ticket is transferred or sold to a third party, there is a problem that if only the face is authenticated, entrance to the facility is permitted without the ticket. In order to avoid this, conventionally, the user is required to always bring a ticket and present it to the attendant. Therefore, there is also a problem that the user who has lost the ticket cannot use the facility. In addition, the attendant must confirm possession of the ticket one by one, and must also identify whether or not the ticket is a counterfeit ticket, which requires an extremely nervous operation.

  On the other hand, in the present invention, the face authentication and the authentication of the qualification associated with the face are performed, and the qualification authentication is not the authenticity of the ticket brought by the user but the registration. One of the major features is that authentication is performed to determine whether or not the ticket (qualification) that has been given may be given to the user (authenticatee). Thus, even if the user does not bother to bring a ticket, the use of the qualification is permitted by determining that the qualification information stored in the registration DB server is valid. That is, it should be noted that while the face of the person to be authenticated has conventionally been authenticated only as a face, the present invention has a great difference in that the face is authenticated as a ticket. ADVANTAGE OF THE INVENTION According to this invention, since the presentation of a ticket by a user is unnecessary and the confirmation of a ticket by an attendant is also unnecessary, the excellent effect that smooth entrance guidance can be performed in a short time is achieved. Obtainable.

  If the user who purchased the ticket first registered his face and qualification in the registration DB server and then abandoned the qualification by selling or transferring this ticket to a third party, the ticket was transferred. The person registers his / her face information and qualification information as new information in the registration DB server. In response to the new registration, the previously registered credential is invalidated, so that the use of a person who has relinquished the qualification can be reliably prevented. For example, registration of new information and invalidation of old information can be easily performed using information (ticket number or the like) uniquely given to each ticket as a key.

  4A and 4B are diagrams showing that the present invention can be applied to both a manned authentication place and an unmanned authentication place. FIG. 4A shows a case of manned authentication (a staff or the like is present at the authentication site), and FIG. Each case of authentication (only the person to be authenticated exists at the authentication site) is shown. In the case of attended authentication, as shown in FIG. 4A, the face of the person to be authenticated 1 captured by a camera built in the mobile terminal 13 of the authenticator (clerk) 3 at the authentication place 8 and the registration DB server 7 is compared with the face of the qualification holder in the mobile terminal of the authenticator 3, and when they match, the qualification information sent together with the qualification holder's face from the registration DB server 7 The determined qualification is given to the person 1 to be authenticated. On the other hand, in the case of the unattended authentication shown in FIG. 4B, since there is no authenticator in the authentication place 8, the mobile terminal 13 is attached to the authentication tool body 14 there, and the face of the person to be authenticated is photographed. Done. In this case, in order to prevent impersonation, it is necessary to input a signature or a voice of the person 1 to be authenticated to the tool 14 as described later to request some kind of confirmation information from the person 1 to be authenticated. Is desirable.

(Pre-registration process)
Three specific examples will be described with reference to FIGS. 5A and 5B as a pre-registration procedure in the case where a mobile terminal authenticates a subject.

  In FIG. 5A, a purchaser who has purchased a qualification such as a ticket photographs his or her face at the time of purchase (or may be after purchase) (S1), and the face information and ticket information (ticket number, The registration is completed by transferring the purchase shop information and information such as the purchase date) to the designated server (S2). The face may be photographed using a camera installed at the place of purchase, or using a smartphone or the like owned by the purchaser. At this time, personal information such as the name, date of birth, and age of the purchaser (ie, qualification holder), and biometric information such as a signature and a voiceprint (here, a self-written signature is regarded as a part of the biometric information) You can also register at the same time. When the registration is completed, the owner of the registered face is stored in the server as a valid qualification holder. Further, for example, when a ticket is purchased for a gift, a registration number or a server address may be separately acquired as important information (S4), and the user himself / herself may be registered (S5).

  On the other hand, if the purchaser of the first ticket transfers the ticket to a third party, as shown in FIG. 5B, the transferee sends his / her face information and qualification information to the server to register a new registration. Perform (S6). The server stores the newly registered information (S7) and invalidates the previously registered credential (S8). By doing so, it is possible to update the valid qualification holder in ticket use, and prevent unauthorized use.

  The application program and the authentication program for executing the processing shown in FIG. 8 are downloaded from the credential provider (ticket sales company, card provider, etc.) to the mobile terminal on the authentication side (qualification use facility) and used. In addition, the program can be easily managed, and illegal use can be prevented. In addition, since the certificate provider manages the authentication program, the user can be authenticated with confidence.

  According to the present invention described above, the authentication method can be optimized according to the authentication conditions required for the credentials. As an example of optimization, three patterns shown in FIG. 6 can be considered. The first pattern authenticates the face and the presence or absence of a qualification as shown in FIG. 6 (C1). For example, the case where the ticket plays the role of an entrance ticket only. The second pattern is a case where it is necessary to authenticate not only the face but also the contents of the qualification as shown in FIG. 6 (C2), and is applied to, for example, the authentication of a ticket whose seat after entry is designated. Is the case. The third pattern is a case where the authentication condition is more severe as shown in FIG. 6 (C3), and a log management of the use of the qualification is required like a credit card. The functions of the mobile terminal and the authentication method used in the above three patterns will be described using the following three embodiments.

  In the case where the ticket (certificate) plays only the role of an entrance ticket (pattern (C1) in FIG. 6), the authenticator only needs to confirm the identity and determine whether or not the person is qualified to enter. Therefore, the mobile terminal (13 in FIG. 1) in that case only needs to have a function as shown in FIG. That is, the functions required of the mobile terminal 13 include a camera function 15 for photographing the face of the person to be authenticated, an authentication program execution unit 16, and the face information and the qualification information of the qualification holder used for verification at the time of authentication. An information receiving unit 17 received from the registration DB server 7; a face image storage unit 18 in which a face image of the subject captured by the camera is stored; and a face image of the subject and the qualification transmitted from the registration DB server 7. A matching unit 19 for determining the match / mismatch of the face information of the holder, an authentication result output unit 21 for outputting an authentication result according to the matching result, and at least data of the face image storage unit 18 and the received face information after the authentication is completed. And an information erasing unit 22 for erasing the information.

  Each of the above-mentioned functions is implemented by a hardware mechanism such as a CPU, a RAM, a general-purpose register, an image processing circuit, a communication control circuit, and an input / output interface circuit built in a normal mobile terminal such as a mobile phone or a smartphone. It can be easily conceived by a person skilled in the art that the control can be realized by the above-mentioned control. Further, the authentication program may be pre-installed on the mobile terminal, or the authentication program may be externally installed on its own terminal by activating the application program. In the mobile terminal of FIG. 7, an example is shown in which an authentication program is installed from the registration DB server 7 using an application program.

  Next, a procedure of an authentication method that satisfies the authentication condition described in the pattern (C1) in FIG. 6 using the mobile terminal having the function illustrated in FIG. 7 will be described with reference to FIG. As described above, when the application program is started (S10), the mobile terminal 13 of the authenticator (3 in FIG. 4) installs the authentication program from outside (the registration DB server 7 in the example of FIG. 7) ( S11). The installed authentication program is decrypted in the authentication program execution unit 16, and a control signal for controlling each hardware mechanism in the terminal is generated. Further, the face information of the valid qualification holder and the qualification information linked thereto from the registration DB server 7 are sent to the face information receiving unit and the qualification information receiving unit and stored by the authentication program (S12). . In the case of the first embodiment, the qualification information sent from the registration DB server 7 may be information indicating whether or not the qualification of the registered qualification holder is currently valid.

  When the information of the qualification holder is set in the mobile terminal 13, the authenticator captures the face of the person to be authenticated at the authentication location with the camera 15 built in the terminal and stores it in the face image storage unit 18. (S13). Subsequently, the collation unit 19 collates the face image (authenticatee) of the face image storage unit 18 with the face information (qualification holder) of the face information receiving unit 17 (S14).

  Here, when the authenticating side can know the visit of the subject in advance, the information of the qualification holder to be received from the registration DB server 7 can be easily specified from the qualification information (for example, the ticket number). On the other hand, if the subject is not sure of the scheduled visit, and the subject brings his / her credentials (ticket) at the time of arrival, the unique information (for example, the ticket number) specified on the credentials is used. The registration DB server 7 may be accessed to receive the information of the corresponding qualification holder. When an unspecified number of persons to be authenticated are targeted, the qualification holders corresponding to the qualifications to be authenticated may be collectively received as a group according to the nature of the qualification to be authenticated. In the case where a large number of users visit during the same time period, in consideration of the memory capacity of the mobile terminal, each authenticator (person in charge) is assigned to a group assigned to each terminal (for example, alphabetical, age, gender, born, etc.). (Per month, etc.), and the user may be authenticated in an empty space. In particular, in this case, the staff can authenticate with only the mobile terminal, so free and quick authentication using available space without securing a dedicated authentication space or carrying large equipment. can do.

  By the way, as a result of the face collation processing in step S14, if the face of the person to be authenticated does not match the face of the qualification holder, the facility use application is rejected without determining the validity of the qualification information. Therefore, the processing after step S15 in FIG. 8 may be skipped. On the other hand, if the faces match, a qualification validity determination process in the next step S15 is executed. In this embodiment, since it is only necessary to check whether the qualification is valid, the gate circuit 20 can easily determine whether or not a flag indicating validity is set in the qualification information receiving unit. If it does not stand, it rejects the facility use application assuming that the qualification of the qualification holder has been revoked, and if it does stand, a notification that permits the use of the facility with the authenticated person as a valid qualification holder is sent to the authentication processing unit. 21 to the authenticator 3 (S16).

  Further, when the authentication is completed, the information erasing unit 22 is activated in response to the output of the authentication processing unit 21, and the information in the face image storage unit 18 and the face information receiving unit 17 is erased (S17). It can be easily understood that this erasing process contributes to protection of personal information and effective use of the memory area.

  As is clear from the above description, according to the first embodiment, “person authentication” is performed by face authentication, “qualification authentication” is performed by credential information, and “validity authentication” is performed by a face and qualification pair. By doing so, it is possible to provide an authentication system and an authentication method that satisfy all “three authentication requirements” necessary for qualification authentication.

  The authentication condition of the pattern (C2) in FIG. 6 is applied, for example, when a seat number is specified after a user enters. In this case, it is required to determine whether the seat number described in the ticket possessed by the user matches the seat number of a valid qualification holder. To respond to this request, a mobile terminal having the function disclosed in FIG. 9 is effective. Here, the description of the same functions as in the first embodiment shown in FIG. 7 is omitted, and the specific functions required in the second embodiment will be described. See FIG. 10 for the authentication procedure.

  In order to satisfy the authentication condition of the pattern (C2) in FIG. 6, it is necessary to determine not only the validity of the qualification information but also the contents thereof. It should be understood that the reason is, for example, to avoid trouble after entry. Therefore, in the mobile terminal 13 of the second embodiment disclosed in FIG. 9, the qualification information on the qualification contents is stored in the qualification information receiving unit 17 together with the face information of the qualification holder (S12 in FIG. 10). Further, the mobile terminal 13 includes a qualification data input / storage unit 23 for inputting and storing qualification data (seat number in this example) of a qualification (ticket) possessed by the person to be authenticated. The collation of the qualification data of the credential with the qualification information registered by the qualification holder is performed by the second collation unit 24 located after the first collation unit 19 for collating the face image of the subject in the processing procedure. Will be The second collation unit 24 may be any unit that starts collation after a match is determined as a result of the face collation in the first collation unit 19. That is, the first and second matching units may be individual matching circuits or may be the same matching circuit in terms of hardware configuration. In short, the first and second matching processes are performed by the first and second matching processes. It will be easily understood that the program may be controlled so as to be continuous in time.

  In the processing procedure of the second embodiment shown in FIG. 10, input of qualification data (step S18) and determination of qualification (step S19) are functions added to the functions of the first embodiment in FIG. In FIG. 10, the input processing of the qualification data (S18) is described as a procedure executed in response to the result of the face collation processing (S14). Data may be input.

  According to the mobile terminal of FIG. 9, as shown in the pattern (C2) of FIG. 6, if the face authentications do not match, it is determined that the facility use application is rejected at that time. If the qualifications do not match in the next step, it is also determined that the use application has been rejected. That is, in this example, only when both the face and the qualification content match, it is determined that the person to be authenticated and the qualification holder are the same, and the facility use is permitted. Therefore, it is possible to prevent a trouble that the user's seat is double booked in the facility.

  In the second embodiment, permission or non-permission is not determined for the credential possessed by the authenticated person. Is determined.

  The mobile terminal shown in FIG. 11 is effective when stricter authentication conditions are imposed. The mobile terminal is suitable for, for example, authentication of credentials used for settlement of financial transactions such as credit cards. Hereinafter, a specific authentication method will be described with reference to the functional block diagram of FIG. 11 and the flowchart showing the authentication procedure of FIG.

  In the mobile terminal according to the third embodiment, a confirmation information input / storage unit 25, a third matching unit 26, and a consent information input unit 27 are added to the functions of the second embodiment. The confirmation information refers to, for example, biometric information for identifying an individual, such as a handwritten signature of a qualified person, a fingerprint, a voiceprint, and the like. Here, the autographed signature is also regarded as a part of the biological information as information that can identify an individual. In the third embodiment, not only the face authentication but also the biometric information is authenticated as the confirmation information, so that the personal authentication is duplicated. This not only provides an authentication system capable of coping with a high security environment by increasing the accuracy of personal authentication, but also functions effectively in unattended authentication described later. Also, the consent information refers to information that proves that the authenticated person has agreed to use the qualification on the spot if the authenticated person and the qualification holder are authenticated, and log management It is also for inflection. Therefore, this may be information indicating that the subject has agreed, such as a consent signature or a consent voice of the subject.

  As an authentication procedure, as shown in FIG. 12, face authentication (S13 and S14) and authentication of authentication information (S20 and S21) are performed, and after it is determined that both match, authentication of authentication data is performed. Is performed (S18 and S19). Further, as a result of this authentication, use of the qualification is permitted only when it is recognized that the person to be authenticated is the same as the qualification holder (pattern C3 in FIG. 6). Thereafter, the subject inputs consent information that agrees with the use of the permitted qualification (S22), and the authentication process ends. The consent information indicating consent is transferred to the registration DB server 7, and recorded and stored in association with the information on the qualification holder.

  It should be noted that the qualification actually used by the authenticated person is not the credit card brought but card information registered in the registration DB server. Therefore, if it is determined that the person to be authenticated and the qualification holder are the same by the double authentication of the face information and the confirmation information, the subsequent qualification determination processing step (S19) can be omitted. In this case, it can be understood that since the face and the living body of the person to be authenticated function as a substitute for a card, cardless payment is also possible.

  Further, the face image of the subject and the confirmation information may be automatically deleted in response to the input of the consent information. By doing so, the user does not have to transmit his / her face or biometric information from the mobile terminal for authentication to the outside, and is completely erased after the authentication is completed. You can make cardless payments with care.

  Here, another thing to note is the relationship between the face information and the qualification information of the qualification holder registered in the registration DB server 7. Usually, when performing card payment, a card user generally presents a card in possession and then inputs a password. In this case, it is common to determine the coincidence of the passwords by using the card information as the key information and linking it to the password information. Therefore, as long as this method is adopted, even if face authentication is used instead of a password, face information is linked to card information. However, in this case, since the card user must always present the card first, cardless payment cannot be realized. Therefore, in the third embodiment of the present invention, a method of linking card information to face information is adopted. It will be understood that this makes it possible to perform cardless payment for the first time. However, it is of course possible to link a face to the card if it is recommended to present a credential (card). Even in such a case, it is apparent that the effect obtained by performing the collation with the mobile terminal of the authenticator, that is, the effect of the present invention that the qualification authentication can be performed regardless of the authentication place can be obtained in the same manner.

(Configuration of authentication tool)
FIG. 13 is an external perspective view of a state where the mobile terminal 13 is mounted. The authentication tool main body 30 is used to input qualification information and confirmation information (biological information) to the mobile terminal 13 described in the second or third embodiment. It is used for. The tool body 30 includes a terminal attachment / detachment unit 31 to which the mobile terminal 13 can be attached and detached, a credential information reading unit 32 that reads information such as a card and a ticket, and a sign having an input screen on which a person to be authenticated performs an autograph. And an information reading unit 33. As the credential information reading unit 32, a known device such as a card scanner or a barcode reader can be used. In addition, a well-known handwriting input device such as a touch panel method or a pen input method can be used for the signature information reading unit 33.

  The authentication tool main body 30 further includes an information transfer unit 34 that transfers information from the credential information reading unit 32 and the signature information reading unit 33 to the mobile terminal 13 in a state where the mobile terminal 13 is mounted. The whole functions as an authentication tool in a state where is attached to the tool body. As the information transfer unit 34, a cable connector that can be connected to the data transfer USB terminal of the mobile terminal 13 or an information transfer device such as near field communication (NFC) can be used. If the tool body does not have a power terminal or a battery terminal, power may be supplied from the mobile terminal. Further, a voiceprint or a fingerprint other than a signature can be used as the biometric information input means of the subject, and a microphone, a fingerprint sensor, or the like for that purpose may be mounted.

(Application to unattended authentication)
The authentication tool in FIG. 13 is effective not only for attended person authentication but also for unattended authentication. For example, in a restricted area such as a hotel's exclusive pool or exclusive lounge that can be used only by qualified persons, by installing the authentication tool shown in FIG. 13 at those entrances, a door using a password or a password can be used. The opening / closing control mechanism becomes unnecessary. That is, the user can lock or unlock the door or the like by photographing his / her face with the camera 15 of the mobile terminal 13, so that the user does not need to remember the password or the password.

  As a method of using the authentication tool, as shown in FIG. 14, first, user information is registered in the mobile terminal 13 (S30). The user information includes qualification information and face information given to the user. Here, the qualification information indicates information on an area (facility) that can be used by the user, and the face information indicates a face image of the user himself, and the qualification information is linked to this face image. At the check-in (entrance) of the hotel, the information is registered by the front desk staff of the hotel, and the mobile terminal 13 in which the information is registered is lent to the user (S31). The user is now a valid holder and can use the mobile terminal instead of the key to freely enter and exit the desired area.

  The tool body of FIG. 13 is installed at the entrance of the restricted area, and the user attaches the mobile terminal 13 to this tool (S32), and photographs his / her own face with the camera 15 of the terminal (S33). When confirmation of the user is required for use, the user is requested to sign the signature information input unit 33 of the tool body 30, speak a predetermined word, touch a fingerprint sensor, or the like. The received confirmation information is input (S34). Thereafter, the authentication tool checks the photographed face image and the input confirmation information with the registered face information and confirmation information (S35), and if they match, the door is unlocked so that the facility can be used. (S36). It should be noted that only the area corresponding to the qualification given at the time of registration can be used.

  By adopting such an authentication tool, you can be free from troublesome password and password input operations, and even if your mobile terminal is lost or stolen, it can only be used by anyone other than the user himself, which is illegal. There is no risk of damage from use. Although the use procedure in FIG. 14 shows an example in which a mobile terminal is lent to a user, an authentication tool equipped with the mobile terminal can be installed at the entrance of each restricted area in advance. In this case, face information and qualification information (and, if necessary, confirmation information) about the user are transmitted from the hotel server to the mobile terminal, and are stored and saved. The user can obtain the effect that the facility can be freely used only by photographing his / her own face with this terminal or by simultaneously inputting the confirmation information.

  As is apparent from the above description, the present invention can be widely used in any place where ticket or card authentication is required. In particular, it is effective in the entrance management of a theater, a stadium, a concert hall, etc., the use management of a hotel or the like, or the phase where financial settlement is required. It is also effective in environments where large numbers of people must be authenticated in a limited space, such as immigration control and boarding procedures at airport facilities. Furthermore, even in a place where a strict security check is required, the authentication system of the present invention can be introduced at low cost.

1..certified person (qualified user)
2. Certificates (tickets and cards)
3 ・ ・ Authenticator (clerk and staff)
4. Camera 5, Dedicated terminal device 6, Cloud 7, Registration database (DB) server 8, Sales floor (authorized place)
9. Location of certification body 10 ... Certification body 11: Qualification provider (ticket dealer)
12. Authentication side (qualification facility)
13, mobile terminal 14, authentication tool body 15, built-in camera 16, authentication program execution unit 17, face information and qualification information receiving unit 18, face image storage unit 19, matching unit 20, gate Circuit 21, authentication processing unit 22, information erasure unit 23, qualification data input / storage unit 24, second collation unit 25, confirmation information input / storage unit 26, third collation unit 27, consent information The input unit 30, the authentication tool body 31, the mobile terminal attaching / detaching unit 32, the qualification information reading unit 33, the signature information reading unit 34, the information transfer units P1 to Pn, the authentication work R1 to Rn, the authentication request A1. Authentication results D1 to Dn. Registered face information and qualification information S1 to S22, S30 to S36. Processing steps

Claims (12)

A qualification authentication system including a camera function and a communication function, a portable authentication-side mobile terminal, and a server device connectable to the authentication-side mobile terminal via a network,
In the server device, information on a qualification to be authenticated and face information of a valid holder of the qualification are registered,
A mobile terminal on the authentication side, a receiving unit that receives the information related to the qualification and the face information from the server device via a network, and a storage unit that stores a face image of the subject who is captured using a camera function. A collating unit for collating the face information and the captured face image sent from the server device in its own terminal,
As a result of the matching process in the terminal, when the face information and the face image match and it is determined that the information on the qualification is valid, the person to be authenticated is a valid holder of the qualification. And a right granted by the qualification is given to the person to be authenticated.   The information on the qualification to be authenticated stored in the server device and the face information of the valid holder of the qualification are information registered by the qualification owner before being authenticated, and these information 2. The qualification authentication system according to claim 1, wherein the authentication information is associated with each other and transmitted as a pair to the mobile terminal on the authentication side.   When the face image of the person to be authenticated photographed using the mobile terminal on the authentication side matches the face information sent from the server device, the face information is sent from the server device to the mobile terminal. 3. The method according to claim 2, wherein the right set in the qualification is given to the person to be authenticated without asking the person to be authenticated as long as the information on the qualification is valid. Credential authentication system.   If the face image of the person to be authenticated taken using the mobile terminal on the authentication side matches the face information sent from the server device, the qualification given to the person to be authenticated by the information on the qualification is 3. The qualification authentication according to claim 2, wherein a consent information input unit for inputting consent information indicating consent of exercising the qualification to the mobile terminal on the authentication side is provided in the mobile terminal when the subject is exercising. system.   The mobile terminal on the authentication side has a confirmation information input unit for inputting the signature of the subject, or biometric information such as a voiceprint or a fingerprint, or a combination thereof as confirmation information on the subject. The qualification authentication system according to claim 4, wherein   A mobile terminal attaching / detaching section capable of attaching a mobile terminal, a qualification data input section operated by a subject, and transferring the qualification data input by the subject to the mobile terminal while the mobile terminal is mounted. And a qualification data transfer unit.   The qualification data input unit may include a sign input unit for inputting the signature of the authenticated person, or a credential information reading unit for reading information of a credential possessed by the authenticated person, or a combination thereof. 7. The qualification authentication tool according to claim 6, wherein:   The credential authentication tool according to claim 7, wherein the credential information reading unit has a function of electrically, magnetically, or optically inputting the signature or the credential information. A credential authentication method for authenticating whether or not a subject has authority to have a valid qualification,
A first step of storing information about a qualification registered in advance and face information of a valid holder of the qualification in a portable authentication-side mobile terminal;
A second step of photographing the face of the person to be authenticated with a camera built in the mobile terminal on the authentication side at the authentication place and authentication time guided by the authentication side;
A third step of comparing the face information stored in the authentication-side mobile terminal and the face image of the subject to be shot at the authentication location and the authentication time in the authentication-side mobile terminal;
A fourth step of determining whether or not the person to be authenticated has the right to have the valid qualification based on the collation result.   10. The method according to claim 9, further comprising, before the first step, a step in which a qualification holder having a proper qualification registers information on the qualification and his / her face information in a designated server device. Credential authentication method described.   The program for executing each of the first to fourth steps is supplied to a mobile terminal on the authentication side from a qualification provider that provides qualifications to the qualification holder. 9. The qualification authentication method described in 9.   An erasing step for erasing the face information and the face image used for collation in the third step after the authentication-side mobile terminal ends the determination processing in the fourth step. The qualification authentication method according to claim 9, wherein: