JP2020144927A - Electronic unlocking management system and program - Google Patents

Abstract

To provide an electronic unlocking management system and a program that perform electronic unlocking in consideration of crime prevention and usability according to various situations.SOLUTION: An electronic unlocking management system includes a management server 1, a manager terminal 2, a plurality of authentication units 3 installed outside a target door; and a locking/unlocking unit 4 having a mechanism for unlocking the target door. The management server 1 includes: an update unit for updating a combination of the authentication units 3 to be used among the plurality of authentication units 3; and a transmission unit for transmitting unlocking instruction information to the locking/unlocking unit 4 based on success of authentication of all the authentication units 3 to be used.SELECTED DRAWING: Figure 1

Description

The present invention relates to an electronic unlocking management system and a program.

Conventionally, an electronic unlocking system that opens and closes a door using an electric lock has been known (for example, Patent Document 1). Further, in order to enable intuitive unlocking based on the user's operation, an electronic unlocking system related to graphic authentication that accepts input of graphic data from a user and determines a match with the recorded graphic data is known. (For example, Patent Document 2).

Japanese Unexamined Patent Publication No. 2018-071280 JP-A-2018-109314

In such an electronic unlocking system, a plurality of authentication units (for example, devices that perform face authentication, fingerprint authentication, iris authentication, speech authentication, graphic authentication, pin authentication, etc.) are installed outside the door, and all of them are authenticated. By unlocking the door on the condition that it has been done, the security can be improved. On the other hand
As the number of authentication units required for unlocking increases, the convenience of the user decreases. In particular, the level of security required varies depending on the time of day (day and night), day of the week (weekdays and holidays), and whether there are people or objects inside or outside the door, so it is suitable for various situations. There was a need for a suitable unlocking method.

The present invention has been made in view of such a problem, and an object of the present invention is to provide an electronic unlocking management system and a program in consideration of crime prevention and convenience according to various situations.

The main invention of the present invention for solving the above problems is a plurality of authentication units installed outside the target door, an unlocking unit having a mechanism for unlocking the target door, and the plurality of authentication units. Among them, an update unit for updating the combination of authentication units to be used, and a transmission unit for transmitting unlocking instruction information to the unlocking unit based on the success of all authentications for each of the authentication units to be used are provided. I will do it.

Other problems disclosed in the present application and solutions thereof will be clarified in the columns and drawings of the embodiments of the invention.

According to the present invention, electronic unlocking can be performed in consideration of crime prevention and convenience according to various situations.

It is a figure which shows the whole structure example of the electronic unlocking management system which concerns on one Embodiment of this invention. It is a figure which shows the hardware configuration example of management server 1. It is a figure which shows the software configuration example of management server 1. It is a figure which shows the structure example of the administrator information. It is a figure which shows the configuration example of the authentication information. It is a figure which shows the configuration example of the use authentication part information. It is a flowchart which shows an example of the processing flow which concerns on the update of the use authentication part executed by management server 1. It is a figure which shows an example of the setting screen 300 displayed on the administrator terminal 2. It is a flowchart which shows an example of the flow of the process which concerns on unlocking executed by management server 1.

The contents of one embodiment of the present invention will be described in a list. The electronic unlocking management system and program according to the embodiment of the present invention have the following configurations.

[Item 1]
An authentication unit having multiple authentication means installed on one side of the target boundary,
An unlocking unit having a mechanism for unlocking the target passage unit,
Of the plurality of authentication units, an update unit that updates the combination of authentication units to be used, and an update unit.
A transmission unit that transmits unlocking instruction information to the unlocking unit based on the fact that the authentication for each of the authentication units to be used meets a predetermined standard.
Electronic unlocking management system equipped with.
[Item 2]
The updating unit updates the combination of the authentication units to be used based on an instruction from the administrator of the target passing unit.
The electronic unlocking management system according to item 1, characterized in that.
[Item 3]
The updating unit updates the combination of the authentication units to be used based on the instruction from the administrator to set the security level.
The electronic unlocking management system according to item 2, characterized in that.
[Item 4]
The renewal unit reduces the number of authentication units used based on the instruction to lower the level of crime prevention.
The electronic unlocking management system according to item 3, characterized in that.
[Item 5]
The update unit automatically updates the combination of the authentication units to be used when the preset time comes.
The electronic unlocking management system according to item 1, characterized in that.
[Item 6]
A computer capable of communicating with an authentication unit having a plurality of authentication means installed on one of the boundary portions of the target and an unlocking unit having a mechanism for unlocking the passage portion of the target.
An update means for updating the combination of authentication units to be used among the plurality of authentication units,
A transmission means for transmitting unlocking instruction information to the unlocking unit based on the fact that the authentication for each of the authentication units to be used meets a predetermined standard.
A program that functions as.

<Overall configuration>
FIG. 1 is a diagram showing an overall configuration example of an electronic unlocking management system according to an embodiment of the present invention.

The electronic unlocking management system of the present embodiment includes a management server 1. The management server 1 is an administrator terminal 2, a plurality of authentication units 3, and a locking / unlocking unit 4 via a communication network 5.
Is connected so that it can communicate with. The communication network 5 is, for example, the Internet, and is constructed by a public telephone line network, a mobile telephone line network, a wireless communication path, Ethernet (registered trademark), or the like.

The electronic unlocking management system of the present embodiment is intended to provide an electronic unlocking service to a user. The electronic unlocking management system of the present embodiment is used by the user, for example, depending on the time of day and specific conditions (there is a person in the room, there is a stored item in a safe or a delivery box, etc.). Set (change) a combination of one or a plurality of authentication units 3. Then, the electronic unlocking management system physically unlocks the door by the locking / unlocking unit 4 when the authentication is successful in all the set authentication units 3. These doors include doors installed at the entrances of residences and offices, doors installed in offices and conference rooms in offices, automatic doors installed at the entrances of stores, and auto locks installed in hotel rooms. Examples thereof include a type door, a door provided in a safe, a locker (delivery box), and the like, and the door is not particularly limited as long as it is a door that can be locked and unlocked. The authentication unit 3 may have any hardware configuration as long as a plurality of authentication means (authentication methods) can be used. That is, it may be a set of a plurality of devices having a single authentication method, a single device having a plurality of authentication methods, or a combination thereof. The authentication unit 3 may also include other isolated devices.

The management server 1 is a computer that manages a plurality of authentication units 3 and locking / unlocking units 4. The management server 1 is, for example, a personal computer, a workstation, or a virtual computer by cloud computing. When the management server 1 receives, for example, a request for setting the security level from the administrator terminal 2, the management server 1 updates the combination of one or a plurality of authentication units 3 used by the user. Then, when all the authentications are successful in each of the authentication units 3 used by the user, the management server 1 transmits the unlocking instruction information for unlocking the door to the locking / unlocking unit 4. It is assumed that the management server 1 executes these functions as a so-called Web application.

The administrator terminal 2 is a computer operated by an administrator, such as a mobile phone, a smartphone, a tablet computer, or a personal computer. For example, the administrator can operate the administrator terminal 2 to access the management server 1 and make a request to set the security level for the target door. Examples of the manager include the head of the house, the manager (real estate agent), the office (company), the store, the security manager of the hotel, the owner of the safe or locker (delivery box), or the owner of the stored item. , The administrator and the user may be the same person.

The authentication unit 3 personally authenticates the user, for example, a face authentication device, a fingerprint authentication device, an iris authentication device, and the like.
An utterance authentication device, a graphic input device, a Pin input device, and the like. For example, as a graphic input device, an input unit disclosed in Patent Document 2 can be mentioned. In the present embodiment, a plurality of authentication units 3 are installed outside the target door. The authentication unit 3 may be able to perform a plurality of types of personal authentication (for example, face authentication and iris authentication) with one device. Further, the authentication unit 3 has a transmission unit and transmits authentication information related to personal authentication to the management server 1.

The locking / unlocking unit 4 is composed of a locking unit having a mechanism for locking the target door and an unlocking unit having a mechanism for unlocking the door. For example, as the locking / unlocking unit 4, the key case disclosed in Patent Document 1 can be mentioned. In the present embodiment, the locking / unlocking portion 4 is installed inside the target door. The locking / unlocking unit 4 has a receiving unit, and unlocks the target door when the unlocking instruction information is received from the management server 1. Further, the locking / unlocking unit 4 has a transmitting unit, detects that the door has been locked from the inside of the target door, and transmits the detection information to the management server 1. In addition to this, when the locking / unlocking unit 4 is installed in a safe or locker (delivery box), the recognition unit (for example, a sensor) that recognizes whether or not there is a stored object inside the door and the stored object are photographed. A photographing unit (for example, a camera) may be provided, and the recognized information or the captured image may be transmitted to the management server 1. The management server 1 may transmit the transmitted image to the administrator terminal 2.

FIG. 2 is a diagram showing a hardware configuration example of the management server 1. The management server 1 includes at least a control unit 10, a memory 11, a storage 12, a transmission / reception unit 13, an input / output unit 14, and the like, and these are electrically connected to each other through a bus 15. The control unit 10 is an arithmetic unit that controls the operation of the entire management server 1, controls the transmission and reception of data between each element, and performs information processing and the like necessary for application execution and authentication processing. For example, the control unit 10 is a CPU (
It is a Central Processing Unit), and each information processing is executed by executing a program or the like stored in the storage 12 and expanded in the memory 11. Memory 11
Main memory composed of volatile storage devices such as DRAM (Dynamic Random Access Memory), flash memory, HDD (Hard Disk Drive), etc.
Includes auxiliary storage configured by a non-volatile storage device such as ve). The memory 11 is used as a work area of the processor 10 and the like, and the BI is executed when the management server 1 is started.
OS (Basic Input / Output System) or UEFI (Un)
stored Extensible Firmware Interface), various setting information, and the like. The storage 12 stores various programs such as application programs. A database (not shown) storing data used for each process may be built in the storage 12. The transmission / reception unit 13 connects the management server 1 to the communication network 5. The transmission / reception unit 13 is a Bluetooth (registered trademark) or Wi-F.
It may be provided with a short-range communication interface such as i (registered trademark). The input / output unit 14 is an information input device such as a keyboard and a mouse, and an output device such as a display. The bus 15 is commonly connected to each of the above elements and transmits, for example, an address signal, a data signal, and various control signals.

FIG. 3 is a diagram showing a software configuration example of the management server 1. The management server 1 includes a receiving unit 111, a transmitting unit 112, an updating unit 113, a determination unit 114, an administrator information storage unit 151, an authentication information storage unit 152, and a usage authentication unit information storage unit 153.

The receiving unit 111, the transmitting unit 112, the updating unit 113, and the determining unit 114 are realized by the control unit 10 included in the management server 1 reading the program stored in the storage 12 into the memory 11 and executing the program. .. Further, the administrator information storage unit 151, the authentication information storage unit 152, and the usage authentication unit information storage unit 153 are realized as a part of the storage area provided by at least one of the memory 11 and the storage 12.

The administrator information storage unit 151 contains information about the administrator and the users managed by the administrator (
Hereinafter referred to as administrator information. ) Is memorized. FIG. 4 is a diagram showing a configuration example of administrator information.

As shown in FIG. 4, the administrator information includes an administrator ID, a user ID, and a user installation authentication unit ID.
, The unlocking part ID, and the door ID are included. The administrator ID is information that identifies the administrator. The user ID is information that is associated with the administrator ID and identifies the user managed by the administrator. The user-installed authentication unit ID is associated with the user ID, and is information that identifies each authentication unit installed outside the door used by the user. In addition, "# N / A" is stored in the authentication unit which is not installed outside the door. Here, when the authentication unit is installed outside the door, the information for identifying the authentication unit is newly stored in "# N / A". Further, when a new authentication method (for example, smartphone authentication) is added to the authentication unit 3, a new item is added to the user-installed authentication unit ID. The unlocking unit ID is associated with the user ID and is information for identifying the unlocking unit that unlocks the door used by the user. The door ID is associated with the user ID and is information that identifies the door used by the user.

The authentication information storage unit 152 stores information for personally authenticating each user (hereinafter, referred to as authentication information). FIG. 5 is a diagram showing a configuration example of authentication information.

As shown in FIG. 5, the authentication information includes comparison data in association with the user ID. For example, the comparison data regarding the face corresponds to the face image of the user. The user's fingerprint image (pattern) corresponds to the comparison data related to the fingerprint. The user's iris image (pattern) corresponds to the comparison data regarding the iris. The comparison data related to utterance corresponds to voice data (pattern) in which the user's voice is recorded. The comparison data related to the figure corresponds to the figure to be input (drawn) by the user. The comparison data related to Pin corresponds to the Pin code that the user should enter. Regarding the comparison data of the authentication unit that is not installed outside the door used by the user, or the comparison data that is not registered by the user, "# N / A"
Is remembered.

The usage authentication unit information storage unit 153 stores information about the authentication unit used by each user (hereinafter, referred to as usage authentication unit information). FIG. 6 is a diagram showing a configuration example of usage authentication unit information.

As shown in FIG. 6, the usage authentication unit information includes the usage authentication unit data indicating the authentication unit used by the user in association with the user ID. The usage authentication unit data is "True" for the authentication unit that is used, "False" for the authentication unit that is not used, the authentication unit that is not installed outside the door used by the user, or the data for comparison by the user. For the authentication department that has not registered, "#
"N / A" is stored. That is, the user uses the usage authentication unit data in combination with the authentication unit in which "True" is stored.

The receiving unit 111 receives information from the administrator terminal 2 and the authentication unit 3. In the present embodiment, the receiving unit 111 receives a request for updating the user's usage authentication unit data from the administrator terminal 2.
In addition, the receiving unit 111 receives the authentication information related to personal authentication from the transmitting unit of the authentication unit 3. Examples of this authentication information include a user's face image, fingerprint image, iris image, speech data, input graphic image, and input Pin code.

The transmission unit 112 transmits information to the administrator terminal 2 and the locking / unlocking unit 4. In the present embodiment, the transmission unit 112 transmits information indicating that the personal authentication related to unlocking has succeeded or failed to the administrator terminal 2. Further, when the personal authentication regarding unlocking is successful, the transmitting unit 112 transmits the unlocking instruction information to the locking / unlocking unit 4. The success of authentication is not limited to the two stages of success and failure, and unlocking instruction information may be transmitted, for example, by satisfying a predetermined standard (cancellation of authentication of a predetermined number or more).

The update unit 113 updates the information stored in various storage units of the management server 1. In the present embodiment, the update unit 113 automatically changes the security level for the door (convenience level for the user) according to the request from the administrator terminal 2, and the user authentication unit 113 changes the level. Update the data. That is, the updating unit 113 updates (changes) the combination of the authentication units to be used as the level of crime prevention (convenience) for the door is updated.
For example, the renewal unit 113 reduces the number of authentication units to be used when lowering the level of security against the door (increasing the level of convenience for the user). That is, the update unit 113
Updates one or more authentication units in which "True" is stored to "False" in the usage authentication unit data of the usage authentication unit information storage unit 153. Similarly, the renewal unit 113 increases the number of authentication units to be used when increasing the level of security against the door (decreasing the level of convenience for the user). That is, the update unit 113 uses "Tr" for one or more authentication units in which "False" is stored in the usage authentication unit data of the usage authentication unit information storage unit 153.
Update to "ue".
Further, when changing the level of security against the door, the updating unit 113 may change the combination of the authentication units to be used without changing the number of the authentication units to be used. For example, when the update unit 113 lowers the level of crime prevention, the utterance authentication of the usage authentication unit data is changed from "True" to "True".
Update to "False" and change the Pin authentication of the usage authentication unit data from "False" to "True".
May be updated to.
Similarly, when changing the level of convenience for the user, the update unit 113 may change the combination of the authentication units to be used without changing the number of the authentication units to be used.

In the present embodiment, the update unit 113 has security (convenience) in response to a request from the administrator terminal 2.
Change the level of. For example, the renewal unit 113 may: (1) Request from the manager of the rental property,
(2) Change the level of crime prevention (convenience) according to the request from the office security manager. Hereinafter, specific examples of the above (1) and (2) will be described.

(1) Request from the manager of the rental property For example, the manager of the rental property (real estate agent) can operate the manager terminal 2 to prevent crime with respect to the door of the property being rented (resident). You can request to raise the level or lower the security level for the doors of vacant properties. Regarding the door of the property that is being rented, in consideration of the daily convenience of the user, face authentication and iris authentication may be combined so that two authentications can be performed using only the face image. On the other hand, since the doors of properties that are vacant are rarely used, for example, authentication using a Pin code of 10 digits or more may be used to reduce convenience.

(2) Requests from office security managers For example, when an office (corporate) security manager changes an internal conference room to an external conference room, the level of security against the door of the conference room is increased. When the external conference room is changed to the internal conference room, a request for lowering the level of security for the door of the conference room can be made from the administrator terminal 2.
In addition, when the security manager of the office changes the attribute of the user from an employee to an officer, the level of convenience for the user is raised, or when the attribute of the user is changed from an employee to a part-time job. Requests to lower the level of convenience for the user
It can be done from the administrator terminal 2.

Further, in the present embodiment, the update unit 113 automatically changes the level of crime prevention (convenience). For example, the update unit 113 may include (1) when a preset time has come, (2) when there is a person in the house, (3) when there is a stored item inside a safe or locker, and (4). ) If personal authentication fails, change the security level accordingly. Hereinafter, the above (1) to (4)
A specific example of will be described.

(1) When the preset time comes The update unit 113 may change the level of security against the door when the preset date comes. For example, the renewal unit 113 raises the level of security against doors on Sundays when the store is closed, and lowers the level of security against doors from Monday to Saturday, which are business days.
Further, the update unit 113 may change the security level for the door when the preset time is reached. For example, the update unit 113 is at 0:00 to 8:00 and 18 outside the working hours of the company.
The level of security against the door is increased from 0:00 to 23:00, and the level of security against the door is decreased from 8:00 to 18:00 during working hours.
In addition, the administrator can operate the administrator terminal 2 to set in advance the time for changing the level of crime prevention in the management server 1. The level of crime prevention may be lowered during holidays and non-working hours, and the level of crime prevention may be raised during business days and working hours.

(2) When a person exists in the house In the updating unit 113, the transmitting unit 112 sends an unlocking instruction to the locking / unlocking unit 4 by authenticating the user to the door of the house, and the door is locked from the inside within a predetermined time. If so, the level of security may be changed assuming that there is a person in the residence. For example, when the locking / unlocking unit 4 detects that the door is locked from the inside of the door after the door is unlocked by the authentication of the adult male user, the updating unit 113 has an adult male inside the door. As a result, the level of security is lowered. On the other hand
When the locking / unlocking unit 4 detects that the door has been locked from the inside of the door after the door has been unlocked by the authentication by the child or female user, the updating unit 113 has a child or a woman inside the door. As it does, it raises the level of security.

(3) When the stored items exist inside the safe or locker The update unit 113 may change the level of crime prevention depending on whether or not the stored items exist inside the safe or locker (delivery box). .. For example, the renewal unit 113 raises the level of crime prevention when the locking / unlocking unit 4 recognizes that a stored object exists inside the door. On the other hand, the renewal unit 113 lowers the level of crime prevention when the locking / unlocking unit 4 recognizes that there is no stored object inside the door.
Further, the updating unit 113 may change the level of crime prevention depending on the nature and size of the stored items inside the safe, locker (delivery box), and the like. For example, the renewal unit 113 raises the level of crime prevention when the locking / unlocking unit 4 recognizes that there is metal or a large-volume storage object inside the door.
Further, when the locking / unlocking unit 4 recognizes that there is a stored object inside the door, the updating unit 113 can also transmit an image of the object to the administrator terminal 2. As a result, the administrator can change the level of crime prevention on the administrator terminal 2 after confirming the stored object by the image.

(4) When personal authentication fails The update unit 113 may change the security level when the user fails in personal authentication for the door. For example, the update unit 113 raises the level of crime prevention when the determination unit 114, which will be described later, determines that the personal authentication has failed.

The determination unit 114 determines whether or not the personal authentication is performed by the user based on the authentication information related to the personal authentication received by the receiving unit 111. In the present embodiment, the determination unit 114 refers to the authentication information (comparison data) of the authentication information storage unit 152, compares it with the received authentication information, and determines the success or failure of personal authentication. For example, the determination unit 114 compares the face image of the authentication information with the received authentication information regarding the face authentication, compares whether or not the feature points (patterns) of the faces are the same, and succeeds in personal authentication. Or judge the failure.

<Processing related to update of usage authentication department>
FIG. 7 is a flowchart showing an example of a processing flow related to the update of the usage authentication unit executed by the management server 1. This process is started, for example, when the administrator operates (instructs) the administrator terminal 2 and selects a menu for changing the level of security for the target door.

(Step S201)
The update unit 113 identifies the authentication unit currently used by the user who uses the target door. Specifically, the update unit 113 is the user I corresponding to the door ID (target door) of the administrator information 151.
Acquire D to identify one or more users who use the target door. Subsequently, the update unit 11
3 specifies the authentication unit used by each of the users by referring to the usage authentication unit data of the usage authentication unit information storage unit 153. Then, the process proceeds to the process of step S202.

(Step S202)
The update unit 113 displays the setting screen of the authentication method used for the administrator terminal 2. In the present embodiment, the update unit 113 displays a setting screen based on the user who uses the target door specified in step S201 and the authentication unit currently used by the user, and informs the administrator of the user. Set (select) the authentication method used by.

FIG. 8 is a diagram showing an example of the setting screen 300 displayed on the administrator terminal 2. In the figure, a slide button 301 for setting the security level for the target door, a slide button 302 for custom-setting the authentication method to be used, and a selected authentication method for sending to the management server 1. The submit button 303 is shown. The administrator can set (change) the level of crime prevention by instructing the slide button 301 to slide left and right. Similarly, the administrator can slide the slide button 302 left and right to instruct it.
You can set (change) the authentication method to be used. In this embodiment, when the security level is set by the slide button 301, each slide button 302 also automatically moves left and right in conjunction with the slide button 301. For example, when the administrator slides the slide button 301 to the right and sets the security level from 1 to 2, the slide button 302 corresponding to face recognition automatically moves to the left to "use". At the same time, the slide button 302 corresponding to Pin authentication automatically moves to the right and becomes "not used".
When the transmission button 303 is pressed (instructed) by the administrator and there is another user, the screen transitions to a screen where the authentication method used by the other user can be set.

Returning to FIG. 7, the process proceeds to the process of step S203.

(Step S203)
The update unit 113 updates the usage authentication unit data of the usage authentication unit information storage unit 153. In the present embodiment, the update unit 113 reflects the authentication method selected (instructed) by the administrator on the setting screen displayed in step S202 in the usage authentication unit data of the usage authentication unit information storage unit 153. Specifically, the update unit 113 updates the usage authentication unit data to "True" for the authentication method for which "use" is selected, and updates the usage authentication unit data for the authentication method for which "not use" is selected.
Update to "False". Then, the process ends a series of processes shown in FIG. 7.

<Flow of processing related to unlocking>
FIG. 9 is a flowchart showing an example of the flow of processing related to unlocking executed by the management server 1. This process is started, for example, when the user uses any of the authentication units 3.

(Step S401)
The receiving unit 111 determines whether or not the authentication information related to personal authentication has been received from all the authentication units 3 used by the user. Specifically, whether or not the receiving unit 111 has received the authentication information from each of the authentication units used by the user associated with the door ID with reference to the usage authentication unit data of the usage authentication unit information storage unit 153. Is determined. Then, when the determination is affirmative, the process proceeds to the process of step S402. On the other hand, when the determination is negative, the process is limited to the process of step S401. If the user stays in step S401 for more than a predetermined time (for example, 30 seconds), the process may proceed to step S405 as error processing.

(Step S402)
Based on the authentication information received in step S401, the determination unit 114 determines whether or not all the authentications related to each of the authentication units 3 used by the user have succeeded. Then, when the determination is affirmative, the process proceeds to the process of step S403. On the other hand, if the determination is negative, the process proceeds to the process of step S405.

(Step S403)
The transmission unit 112 transmits unlocking instruction information to the locking / unlocking unit 4. As a result, the locking / unlocking unit 4 becomes
The mechanism of the unlocking part is operated to unlock the target door. Then, the process is step S40.
Move to 4.

(Step S404)
The transmission unit 112 notifies (transmits) to the administrator terminal 2 that the personal authentication related to unlocking has been successful.
To do. Then, the process ends a series of processes shown in FIG.

(Step S405)
The update unit 113 updates the level of security against the door. In this embodiment, the update unit 11
3 raises the level of crime prevention. Then, the process proceeds to the process of step S406.

(Step S406)
The transmission unit 112 notifies (transmits) to the administrator terminal 2 that the personal authentication related to unlocking has failed.
To do. Then, the process ends a series of processes shown in FIG.

Although the present embodiment has been described above, the above embodiment is for facilitating the understanding of the present invention, and is not for limiting and interpreting the present invention. The present invention can be modified and improved without departing from the spirit thereof, and the present invention also includes equivalents thereof.

In the above embodiment, it is assumed that the management server 1 includes both functional units (reception units 111 to determination units 114) and storage units (administrator information storage unit 151 to usage authentication unit information storage unit 153). , Not limited to this, for example, a part or all of each storage unit may be provided in the database server, and the database server may be accessed from the management server 1.

In the above embodiment, the management server 1 is provided with each functional unit and each storage unit, but the administrator terminal 2 or the user terminal may be provided with a part or all of them.

In the above embodiment, the determination unit 114 determines the success or failure of the personal authentication, but each authentication unit 3 may determine the success or failure. In this case, each authentication unit 3 transmits to the management server 1 that the authentication succeeded or failed.

In the above embodiment, each authentication unit 3 manages the management server 1 for authentication information related to personal authentication.
However, the main (parent) authentication unit of each authentication unit 3 may collectively transmit the authentication information of other authentication units. In addition, this main authentication unit transmits that all the authentications are successful to the locking / unlocking unit 4 by short-range radio or the like without going through the management server 1, and the locking / unlocking unit 4
May unlock the door.

In the above embodiment, the authentication unit 3 has given as an example a device that mainly performs biometric authentication as a device for personally authenticating a user, but may be a device that personally authenticates with an IC card, an IC chip, or the like.

In the above embodiment, the transmission unit 112 transmits the success or failure of the personal authentication related to unlocking to the administrator terminal 2 in the steps S404 and S406, but it may be transmitted to the user terminal.

In the above embodiment, the update unit 113 automatically or in response to a request from the administrator terminal 2.
We decided to change the combination of authentication units to be used, but we will manage the history of changes in the authentication unit to be used and which user unlocked the door (entered / exited) on the blockchain. May be good.

In the above embodiment, the updating unit 113 automatically changes the level of crime prevention, but for example, the combination of authentication units used may be automatically changed depending on the weather. Specifically, when the temperature is 0 degrees or less, the update unit 113 does not use fingerprint authentication in consideration of the time and effort (convenience) for the user to remove the gloves, and another authentication unit (for example, You may use iris recognition). This air temperature may be measured by the authentication unit 3, or may be collected by the management server 1 from meteorological data or the like. The management server 1 may notify the administrator terminal 2 to change the authentication unit to be used according to the weather, instead of automatically changing the authentication unit to be used.

In the above embodiment, the update unit 113 changes the crime prevention level in response to the request from the administrator terminal 2, but the convenience level may be changed. Further, the update unit 113 may learn the time when the request from the administrator terminal 2 is made and the changed combination of the usage authentication units, and automatically change the combination of the usage authentication units.

In the above embodiment, the renewal unit 113 may raise the level of crime prevention when the user fails to authenticate the individual to the door, but the user exceeds a predetermined number of times (for example, twice). The level of security may be increased if personal authentication fails.

In the above-described embodiment, the administrator or the like intentionally changes the combination of authentication, but for example, the following configuration example is also possible.

The combination of authentication units to be used and the order in which authentication is requested may be randomly selected. According to such a configuration, it is possible to improve the security level as compared with the case where the same authentication unit is always selected.

In addition, the number of authentication units to be used may be changed each time. That is, n usable authentication units may be automatically selected, and the number, order, and combination may be changed each time authentication is performed.

Furthermore, the administrator, etc. selects the security strength (strong, medium, weak, etc.) and automatically selects the authentication method (combination, number, order, etc. of authentication units to be used) that satisfies the selected security level. You may do it. In this case, for example, a security level may be assigned to each authentication unit by a score or the like and associated with the security strength.

Further, for example, the security level may be lowered if a predetermined time has not passed since the last authentication. As a result, for example, flexible operation such as raising the security level at the time of the first authentication within a predetermined period and lowering the authentication after the next time becomes possible.

The object of the electronic unlocking management system according to the present invention is a physical boundary (partition) such as a room or a safe.
It was an entry (access) to the space created by. However, it can also be applied, for example, to entry (access) into a space composed of gates and ideological boundaries by artificial arrangements.

1 Management server 2 Administrator terminal 3 Authentication unit 4 Locking / unlocking unit 5 Communication network 111 Reception unit 112 Transmission unit 113 Update unit 114 Judgment unit 151 Administrator information storage unit 152 Authentication information storage unit 153 Usage authentication unit Information storage unit

Claims (6)

An authentication unit having multiple authentication means installed on one side of the target boundary,
An unlocking unit having a mechanism for unlocking the target passage unit,
Of the plurality of authentication units, an update unit that updates the combination of authentication units to be used, and an update unit.
A transmission unit that transmits unlocking instruction information to the unlocking unit based on the fact that the authentication for each of the authentication units to be used meets a predetermined standard.
Electronic unlocking management system equipped with. The updating unit updates the combination of the authentication units to be used based on an instruction from the administrator of the target passing unit.
The electronic unlocking management system according to claim 1. The updating unit updates the combination of the authentication units to be used based on the instruction from the administrator to set the security level.
The electronic unlocking management system according to claim 2. The renewal unit reduces the number of authentication units used based on the instruction to lower the level of crime prevention.
The electronic unlocking management system according to claim 3. The update unit automatically updates the combination of the authentication units to be used when the preset time comes.
The electronic unlocking management system according to claim 1. A computer capable of communicating with an authentication unit having a plurality of authentication means installed on one of the boundary portions of the target and an unlocking unit having a mechanism for unlocking the passage portion of the target.
An update means for updating the combination of authentication units to be used among the plurality of authentication units,
A transmission means for transmitting unlocking instruction information to the unlocking unit based on the fact that the authentication for each of the authentication units to be used meets a predetermined standard.
A program that functions as.

Images