JP2021146759A - Movable body authentication system and movable body authentication program - Google Patents

Abstract

To automatically set a limit of operations to a protected person, who is a driver, and enhance convenience.SOLUTION: A movable body authentication system 1 includes: a driver specification unit 4c for specifying a driver of a movable body by using a result of authentication of at least either portable terminal authentication by a portable terminal or biological authentication by biological information; an authority condition information storage unit 4e for storing the correspondence between at least one or more persons and a function limit as authority condition information; and a function limit imparting unit 4f for imparting a function limit associated with the specified driver when the driver is specified by the driver specification unit.SELECTED DRAWING: Figure 1

Description

The present invention relates to a mobile authentication system and a mobile authentication program.

For example, when the driver of a car is a beginner, an elderly person, a patient with mild dementia, etc., the driver is designated as a protected person, and the guardian sets restrictions on the operation of the protected person. A configuration that restricts the operation of is disclosed (see, for example, Patent Document 1).

Japanese Unexamined Patent Publication No. 2011-19031

However, in the configuration disclosed in Patent Document 1, it is necessary for the guardian to set restrictions on the operation of the protected person, which requires time and effort for the guardian.

The present invention has been made in view of the above circumstances, and an object of the present invention is to automatically set restrictions on the operation of a protected person who is a driver, and to improve convenience. To provide an authentication system for mobiles and an authentication program for mobiles.

According to the invention described in claim 1, the driver identification unit (4c) identifies the driver of the moving body by using at least one of the authentication results of the mobile terminal authentication by the mobile terminal or the biometric authentication by the biometric information. do. The authority condition information storage unit (4e) stores the correspondence between at least one person and the function restriction as the authority condition information. When the driver is specified by the driver specifying unit, the function restriction assigning unit (4f) assigns the function restriction associated with the specified driver. Use at least one of the authentication results of mobile terminal authentication by mobile terminal or biometric authentication by biometric information to identify the driver of the moving object and assign the function restriction associated with the specified driver. bottom. It is not necessary for the guardian to set the operation restriction of the protected person who is the driver, and the operation restriction of the protected person can be automatically set, which can improve the convenience.

Functional block diagram showing one embodiment Diagram showing user authentication information Diagram showing permission condition information flowchart

Hereinafter, an embodiment in which the moving body is applied to an automobile will be described with reference to the drawings. As shown in FIG. 1, the automobile authentication system 1 includes a mobile terminal authentication device 2, a face recognition device 3, a control unit 4, and various electronic control units (ECUs) 5 to 7. .. The various ECUs 5 to 7 are, for example, a motion control system ECU 5 that controls the motion control system, an HMI system ECU 6 that controls the HMI (Human Machine Interface) system, and a body system ECU 7 that controls the body system, and CAN (Controller). It is connected to the control unit 4 via an in-vehicle network 8 such as Area Network (registered trademark).

The mobile terminal authentication device 2 is a device that authenticates a mobile terminal brought into a vehicle interior, and includes an individual authentication unit 2a, a mobile terminal authentication database 2b, and a user position detection unit 2c. The mobile terminal is, for example, a multifunctional mobile information terminal called a smartphone, a mobile phone, or the like. The individual authentication unit 2a collates the terminal identification information such as the telephone number of the mobile terminal with the terminal identification information registered in the mobile terminal authentication database 2b in advance in association with the mobile terminal authentication ID, and both match. Judge whether or not. When the individual authentication unit 2a determines that the terminal identification information of the mobile terminal is the same as any terminal identification information registered in the mobile terminal authentication database 2b and matches the two, it is associated with the terminal identification information. The registered mobile terminal authentication ID is transmitted to the control unit 4.

The user position detection unit 2c detects the position of the mobile terminal when the individual authentication unit 2a determines that the two match. Specifically, for example, if a communication module for short-range wireless communication with a mobile terminal is installed for each seat, the user position detection unit 2c determines the communication status of the communication module and boarding the mobile terminal. It is determined whether the position of the person is the driver's seat or other than the driver's seat, and the user position information indicating the determination result is transmitted to the control unit 4.

The face recognition device 3 is a device that authenticates the face of a passenger who is a person in a car, and includes an individual authentication unit 3a, a face recognition database 3b, and a user position detection unit 3c. The individual authentication unit 3a collates the image taken by the vehicle interior camera for photographing the vehicle interior of the vehicle with the face image registered in the face authentication database 3b in advance in association with the face authentication ID, and the vehicle interior camera. It is determined whether or not the face image registered in the face recognition database 3b is included in the image taken by the camera, and whether or not there is a person registered in the face recognition database 3b among the passengers. Is determined. The individual authentication unit 3a calculates the match rate by collating, for example, the contour of the face, the position of the featured parts such as eyes, nose, and mouth, and compares the calculated match rate with a predetermined value to compare the calculated match rate with the predetermined value. It is determined whether or not there is a person registered in the face authentication database 3b. When the individual authentication unit 3a determines that the match rate is equal to or higher than a predetermined value and the personal authentication probability is equal to or higher than a certain value (for example, 80%), there is a person registered in the face recognition database 3b among the passengers. Then, it is determined that the face authentication ID registered in association with the person is transmitted to the control unit 4. As the vehicle interior camera, one camera with a wide field of view capable of photographing the entire interior of the vehicle may be installed, or a camera with a narrow field of view capable of photographing individual seats may be installed for each seat. Multiple units may be installed in.

When the individual authentication unit 3a determines that there is a person registered in the face recognition database among the passengers, the user position detection unit 3c detects the position of the passenger from the image taken by the vehicle interior camera. do. Specifically, the user position detection unit 3c determines whether the position of the passenger is the driver's seat or other than the driver's seat, and transmits the user position information indicating the determination result to the control unit 4.

The control unit 4 is composed of a microcomputer having a CPU (Central Processing Unit), a ROM (Read Only Memory), a RAM (Random Access Memory), and an I / O (Input / Output). The microcomputer executes a computer program stored in a non-transitional substantive storage medium, and executes a process corresponding to the computer program. The processing executed by the microcomputer includes the processing corresponding to the mobile authentication program. The control unit 4 includes a user authentication information storage unit 4a, a user authentication information storage unit 4b, a driver identification unit 4c, a simultaneous passenger identification unit 4d, an authority condition information storage unit 4e, and a function restriction granting unit 4f. , The authority condition information update unit 4g and the function restriction release unit 4h are provided.

As shown in FIG. 2, the user authentication information storage unit 4a stores the user authentication information indicating the correspondence relationship between the user type, the mobile terminal authentication ID, and the face authentication ID. When the user authentication unit 4b receives the mobile terminal authentication ID transmitted from the individual authentication unit 2a of the mobile terminal authentication device 2, the received mobile terminal authentication ID is stored in the user authentication information storage unit 4a. It collates with the mobile terminal authentication ID, and if both match, the user type associated with the mobile terminal authentication ID is specified. That is, the user authentication unit 4b identifies the "owner" as the user type if the mobile terminal authentication ID transmitted from the individual authentication unit 2a of the mobile terminal authentication device 2 is "***** 1". .. Further, when the user authentication unit 4b receives the face authentication ID transmitted from the individual authentication unit 3a of the face authentication device 3, the received face authentication ID is stored in the user authentication information storage unit 4a. It collates with the authentication ID, and if both match, the user type associated with the face authentication ID is specified. That is, if the face authentication ID transmitted from the individual authentication unit 3a of the face authentication device 3 is "***** b", the user authentication unit 4b identifies the "owner's spouse" as the user type. ..

When the driver identification unit 4c receives the user position information transmitted from the user position detection unit 2c of the mobile terminal authentication device 2 or the user position detection unit 3c of the face authentication device 3, the received user position information is received. Indicates the driver's seat, it identifies that the user type specified based on the mobile terminal authentication ID or the face authentication ID is the driver.

When the simultaneous passenger identification unit 4d receives the user position information transmitted from the user position detection unit 2c of the mobile terminal authentication device 2 and the user position detection unit 3c of the face recognition device 3, the received user position If the information indicates other than the driver's seat, it is specified that the user type specified based on the mobile terminal authentication ID or the face authentication ID is not a driver but a simultaneous passenger. A simultaneous passenger is a passenger other than the driver, and is a passenger in the passenger seat or the rear seat.

As shown in FIG. 3, the authority condition information storage unit 4e stores the authority condition information indicating the correspondence relationship between the driver, the simultaneous passengers, and the function restriction. The function restriction imparting unit 4f is associated with the specified driver if the driver is specified by the driver identification unit 4c but the simultaneous passenger is not specified by the simultaneous passenger identification unit 4d. Is given. When the driver is specified by the driver identification unit 4c and the simultaneous passengers are specified by the simultaneous passenger identification unit 4d, the function restriction imparting unit 4f is combined with the combination of the specified driver and the simultaneous passengers. Give the associated function restrictions.

The function restrictions include, for example, "80 km / h restriction", "authority condition information update prohibition", "billing application usage restriction", "Web usage restriction in HMI" and the like. The "80km / h limit" is to limit the vehicle speed to 80km / h. "Prohibition of updating authority condition information" is to prohibit the update of authority condition information. "Billing application usage restriction" is to restrict the use of the billing application. "Restriction on Web usage in HMI" is to restrict Web usage in HMI. The types of function restrictions may be other than those illustrated, and may include, for example, "expressway usage restrictions" that restrict the use of expressways, "driving prohibition during snowfall", and the like that prohibit driving during snowfall. The types of function restrictions are, for example, a mechanism restriction that is directly involved in the driving operation such as "80km / h restriction" and a mechanism that is not directly involved in the driving operation such as "billing application usage restriction". Including restrictions.

For example, when the driver is identified as the "owner", the function restriction imparting unit 4f does not impose any function restriction and sets the function restriction to "No matter how the simultaneous passengers are identified." Set to "None". For example, when the driver is identified as the "owner's spouse" and the simultaneous passenger is identified as the "owner", the function restriction imparting unit 4f imparts a function restriction of "80 km / h limit". Set the function limit to "80km / h limit".

For example, when the driver is identified as the "owner's child" and the simultaneous passenger is identified as the "owner and owner's spouse", the function restriction assigning unit 4f imposes a function restriction of "80 km / h limit". Grant and set the function limit to "80km / h limit". For example, when the driver is identified as the "owner's child" and the simultaneous passenger is identified as the "owner or owner's spouse", the function restriction assigning unit 4f limits "80 km / h, updates authority condition information". The function restriction of "prohibition" is given, and the function restriction is set to "80km / h limit, permission condition information update prohibition". When there are a plurality of user types of simultaneous passengers, a combination of a plurality of user types may be ORed or ANDed.

The authority condition information update unit 4g updates the authority condition information stored in the authority condition information storage unit 4e by, for example, the owner performing an operation of updating the authority condition information in a mobile terminal or an HMI device installed in the vehicle interior. Update. The operation of updating the authority condition information performed by the owner is a registration operation, a change operation, and a deletion operation. When the owner performs the operation of registering the authority condition information, new authority condition information is stored in the authority condition information storage unit 4e. When the owner performs the operation of changing the authority condition information, the content of the authority condition information stored in the authority condition information storage unit 4e is changed. When the owner performs the operation of deleting the authority condition information, the authority condition information stored in the authority condition information storage unit 4e is deleted. The function restriction release unit 4h releases the function restriction being granted.

In the above configuration, by providing both the mobile terminal authentication device 2 and the face authentication device 3, a case where the user type is specified by using both the mobile terminal authentication authentication result and the face authentication authentication result is exemplified. However, by providing either the mobile terminal authentication device 2 or the face authentication device 3, the user type may be specified using either the mobile terminal authentication authentication result or the face authentication authentication result. .. In face recognition, for example, if the lens of the camera inside the vehicle is dirty or the illuminance is not sufficient at night, the accuracy of the authentication result may decrease, but in mobile terminal authentication, such a problem does not occur. There are advantages. On the other hand, in mobile terminal authentication, passengers who do not carry a mobile terminal are not subject to authentication, but face authentication has the advantage that such a problem does not occur. Further, when both the authentication result of the mobile terminal authentication and the authentication result of the face authentication are used and the authentication results are different, either of the authentication results may be valid or both authentication results may be invalidated.

Next, the operation of the above configuration will be described with reference to FIG.
The control unit 4 operates using the battery power source as an operating power source, monitors the release of the door lock, for example, and starts the authentication process when the release of the door lock is detected. When the control unit 4 starts the authentication process, the control unit 4 waits for the reception of the mobile terminal authentication ID, the face authentication ID, and the user position information transmitted from the mobile terminal authentication device 2 and the face authentication device 3.

Here, when any person boarded, the mobile terminal authentication device 2 authenticates the mobile terminal and the face recognition device 3 authenticates the face of the boarded person. When the mobile terminal authentication device 2 authenticates the mobile terminal and succeeds in the mobile terminal authentication, the mobile terminal authentication ID and the user position information are transmitted from the mobile terminal authentication device 2 to the control unit 4. When the face authentication device 3 performs face authentication and the face authentication is successful, the face authentication ID and the user position information are transmitted from the face authentication device 3 to the control unit 4. The control unit 4 receives the mobile terminal authentication ID, face authentication ID, and user position information transmitted from the mobile terminal authentication device 2 and the face authentication device 3, and thereby receives the mobile terminal authentication ID, face authentication ID, and user position. Acquire information (S1). The control unit 4 determines whether or not the driver has been identified based on the acquired mobile terminal authentication ID, face authentication ID, and user position information (S2).

When the control unit 4 determines that the person has not boarded the driver's seat and has not specified the driver (S2: NO), the control unit 4 determines whether or not the function restriction is being granted (S3). When the control unit 4 determines that the function restriction is not being applied (S3: NO), the control unit 4 determines whether or not the end condition of the authentication process is satisfied (S12). If, for example, the control unit 4 does not detect the door lock and determines that the end condition of the authentication process is not satisfied (S12: NO), the control unit 4 returns to step S1 described above and transmits from the mobile terminal authentication device 2 or the face authentication device 3. Waits for the mobile terminal authentication ID, face authentication ID, and user position information to be received. When the control unit 4 determines that the function restriction is being granted (S3: YES), the control unit 4 releases the function restriction being granted, that is, resets the function restriction (S4), and the end condition of the authentication process is satisfied. Whether or not it is determined (S12). When the control unit 4 determines that the end condition of the authentication process is not satisfied (S12: NO), the control unit 4 returns to step S1 described above.

When the control unit 4 determines that the person has boarded the driver's seat and identified the driver (S2: YES, which corresponds to the driver identification procedure), the acquired mobile terminal authentication ID, face authentication ID, and user position It is determined whether or not the simultaneous passengers have been identified based on the information (S5).

When the control unit 4 determines that another person has not boarded and has not specified the simultaneous passenger (S5: NO), the function restriction being granted is the function restriction associated with the specified driver. It is determined whether or not there is (S6). When the control unit 4 determines that the function restriction being granted is the function restriction associated with the specified driver (S6: YES), the control unit 4 continues the function restriction being granted (S7). The control unit 4 determines whether or not the end condition of the authentication process is satisfied (S12), and if it determines that the end condition of the authentication process is not satisfied (S12: NO), returns to step S1 described above.

When the control unit 4 determines that the function restriction being granted is not the function restriction associated with the specified driver (S6: NO), the control unit 4 assigns the function restriction associated with the specified driver. (S8, corresponding to the function restriction granting procedure). The control unit 4 determines whether or not the end condition of the authentication process is satisfied (S12), and if it determines that the end condition of the authentication process is not satisfied (S12: NO), returns to step S1 described above.

When the control unit 4 determines that another person has boarded a vehicle other than the driver's seat and has identified the simultaneous passengers (S5: YES, which corresponds to the simultaneous passenger identification procedure), the function restriction being granted has been identified. It is determined whether or not the function restriction is associated with the combination of the driver and the simultaneous passenger (S9). When the control unit 4 determines that the function restriction being granted is a function restriction associated with the combination of the specified driver and the simultaneous passenger (S9: YES), the control unit 4 continues the function restriction being granted. (S10). The control unit 4 determines whether or not the end condition of the authentication process is satisfied (S12), and if it determines that the end condition of the authentication process is not satisfied (S12: NO), returns to step S1 described above.

When the control unit 4 determines that the function restriction being granted is not the function restriction associated with the combination of the specified driver and the simultaneous passenger (S9: NO), the control unit 4 simultaneously boarded the specified driver. The function restriction associated with the combination with the person is given (S11, corresponding to the function restriction giving procedure). The control unit 4 determines whether or not the end condition of the authentication process is satisfied (S12), and if it determines that the end condition of the authentication process is not satisfied (S12: NO), returns to step S1 described above.

In the above, the configuration in which face authentication is adopted as biometric authentication has been illustrated, but fingerprint authentication, voiceprint authentication, retinal authentication, iris authentication, vein authentication and the like may be adopted. Further, when a plurality of authentication results are used, the driver or the simultaneous passenger may be specified by combining the individual authentication results. For example, when using the face authentication authentication result and the fingerprint authentication authentication result, if the personal authentication probability by face authentication is not more than a certain value and the personal authentication probability by fingerprint authentication is not more than a certain value, the face authentication authentication result The driver and simultaneous passengers are not identified only by the authentication result of fingerprint authentication, but by combining the authentication result of face authentication and the authentication result of fingerprint authentication, the driver or the driver can be based on the total of multiple personal authentication probabilities. Simultaneous passengers may be identified.

As described above, according to the present embodiment, the following effects can be obtained. In the automobile authentication system 1, the driver of the automobile is specified by using the authentication result of the mobile terminal authentication and the face authentication, and the function restriction associated with the specified driver is given. It is not necessary for the guardian to set the operation restrictions of the protected person who is the driver, and the operation restrictions of the protected person who is the driver can be automatically set, which can improve convenience. ..

Further, in the automobile authentication system 1, the combination of the driver and the simultaneous passenger of the automobile is specified, and the function restriction associated with the combination of the specified driver and the simultaneous passenger is given. .. Function restrictions can be diversified by combining the driver and simultaneous passengers, and the degree of freedom of function restrictions can be increased. For example, if the simultaneous passenger is the owner, the owner can directly monitor the driver, so the function restrictions are set relatively loosely, while if the simultaneous passenger is not the owner, the owner directly monitors the driver. Therefore, it is possible to increase the degree of freedom of function restrictions, such as setting relatively strict function restrictions.

Further, in the automobile authentication system 1, when a plurality of authentication results are used, the driver and the simultaneous passengers are identified based on the sum of the plurality of personal authentication probabilities by combining the plurality of authentication results. By identifying the driver and simultaneous passengers based on the sum of multiple personal authentication probabilities, it is not possible to identify the driver and simultaneous passengers with only single biometric information such as faces and fingerprints, but multiple By combining biometric information, it is possible to increase the possibility of identifying the driver and simultaneous passengers.

In addition, the authority condition information is updated in the automobile authentication system 1. It is possible to respond appropriately according to the person who uses the car. For example, the authority condition information can be appropriately updated, for example, the function restrictions can be appropriately relaxed as the person who uses the car grows, or the function restrictions can be added as appropriate when a new person uses the car. ..

The present disclosure has been described in accordance with the examples, but it is understood that the present disclosure is not limited to the examples and structures. The present disclosure also includes various modifications and modifications within a uniform range. In addition, various combinations and forms, as well as other combinations and forms containing only one element, more or less, are also within the scope of the present disclosure.

The controls and methods thereof described in the present disclosure are realized by a dedicated computer provided by configuring a processor and memory programmed to perform one or more functions embodied by a computer program. You may. Alternatively, the control unit and its method described in the present disclosure may be realized by a dedicated computer provided by configuring a processor with one or more dedicated hardware logic circuits. Alternatively, the control unit and method thereof described in the present disclosure may be a combination of a processor and memory programmed to perform one or more functions and a processor composed of one or more hardware logic circuits. It may be realized by one or more dedicated computers configured. Further, the computer program may be stored in a computer-readable non-transitional tangible recording medium as an instruction executed by the computer.

Although automobiles have been applied as mobile objects, they can also be applied to aircraft and ships.
The configuration in which the authentication process is started when the door lock is detected in the control unit 4 is illustrated. However, the seat sensor monitors the seating in the driver's seat and the seating in the driver's seat is detected. The authentication process may be started, or the engine start may be monitored and the authentication process may be started when the engine start is detected.

Elements of vehicle position and time zone may be added to the authority condition information. For the same authentication result, for example, when the vehicle position is a motorway, a function limit of "80 km / h limit" is given, and when the vehicle position is a general road, a function limit of "50 km / h limit" is given. Is also good. Further, for the same authentication result, for example, when the time zone is daytime, the function limit of "60 km / h limit" is given, and when the time zone is nighttime, the function limit of "50 km / h limit" is given. good. Further, the function limitation may be given by combining the vehicle position and the time zone.

In the drawing, 1 is an automobile authentication system (mobile authentication system), 4 is a control unit, 4c is a driver identification unit, 4d is a simultaneous passenger identification unit, 4e is an authority condition information storage unit, and 4f is a function restriction assignment. Section 4g is an authority condition information update section.

Claims (9)

A driver identification unit (4c) that identifies a driver of a moving body by using at least one of the authentication results of mobile terminal authentication by a mobile terminal or biometric authentication by biometric information.
The authority condition information storage unit (4e) that stores the correspondence between at least one person and the function restriction as authority condition information, and
A mobile authentication system including a function restriction imparting unit (4f) that imparts a function restriction associated with the identified driver when the driver is identified by the driver identification unit. It is equipped with a simultaneous passenger identification unit (4d) that identifies simultaneous passengers of a moving object by using at least one of the authentication results of mobile terminal authentication by a mobile terminal or biometric authentication by biometric information.
When the driver is specified by the driver identification unit 4c and the simultaneous passengers are specified by the simultaneous passenger identification unit, the function restriction assigning unit can be used between the specified driver and the simultaneous passengers. The mobile authentication system according to claim 1, which imparts functional restrictions associated with the combination. The mobile authentication system according to claim 1 or 2, wherein the driver identification unit identifies the driver of the mobile based on the personal authentication probability based on the authentication result. When the driver identification unit uses a plurality of authentication results, any one of claims 1 to 3 identifies the driver of the mobile body based on the sum of the individual authentication probabilities based on the individual authentication results. Authentication system for mobiles described in. The mobile authentication system according to any one of claims 2 to 4, wherein the simultaneous passenger identification unit identifies simultaneous passengers of a mobile based on a personal authentication probability based on an authentication result. When the simultaneous passenger identification unit uses a plurality of authentication results, any one of claims 2 to 5 for identifying the simultaneous passengers of the moving body based on the sum of the individual authentication probabilities based on the individual authentication results. The mobile authentication system described in item 1. The mobile authentication system according to any one of claims 1 to 6, further comprising an authority condition information update unit (4 g) for updating the authority condition information stored in the authority condition information storage unit. In the control unit (4) of the mobile authentication system (1) provided with the authority condition information storage unit (4e) that stores the correspondence between at least one person and the function restriction as the authority condition information.
A driver identification procedure for identifying a moving vehicle driver using at least one of the authentication results of mobile terminal authentication using a mobile terminal or biometric authentication using biometric information, and a driver identification procedure.
A mobile authentication program for executing a function restriction imparting procedure for imparting a function restriction associated with a driver specified by the driver identification procedure. Using at least one of the authentication results of mobile terminal authentication by mobile terminal or biometric authentication by biometric information, the simultaneous passenger identification procedure for identifying the simultaneous passengers of the moving body is executed.
The function restriction imparting procedure is described in claim 8 for imparting a function restriction associated with a combination of a driver specified by the driver identification procedure and a simultaneous passenger specified by the simultaneous passenger identification procedure. Authentication program for mobiles.

Images