JP2022044629A - Management server, system, token issuing method, and computer program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a management server which excludes a user who is not authorized to use a check-in system using biometric authentication.

SOLUTION: A management server includes a receiving unit and a generation unit. The receiving unit receives a token issuance request including at least boarding pass information included in a boarding pass and passport information included in a passport, from a terminal. The generation unit executes first determination on consistency of the boarding pass information and the passport information by using passport information received from an airline company server which stores passport information acquired at the time of reservation of a boarding pass in association with reservation information of the boarding pass, and the passport information included in the token issuance request, to generate a token for a user to use a check-in service using biometric authentication, on the basis of a result of the first determination.

SELECTED DRAWING: Figure 1

COPYRIGHT: (C)2022,JPO&INPIT

Description

The present invention relates to techniques related to biometric authentication.

Patent Document 1 describes ticketless boarding in which various procedures are performed by face recognition at multiple checkpoints (check-in lobby, security checkpoint, boarding gate, etc.) in the airport using passenger biometric information (face image). The system is disclosed.

JP-A-2007-079656

Patent Document 1 only discloses a configuration for using face recognition for a specific business in an airport, and does not disclose conditions for system registration for using face recognition.

In principle, when boarding an international flight, a user who is permitted to board the aircraft will board the aircraft. The same applies to the boarding procedure using biometric authentication, and the user who has been issued a boarding pass can board the aircraft through the boarding procedure using biometric authentication. That is, it is necessary to verify the eligibility of the user who desires the boarding procedure using biometric authentication, and the user who has not been issued a boarding pass uses the boarding procedure using biometric authentication. Not qualified.

An object of the present invention is to provide a management server, a system, a token issuing method, and a storage medium that contribute to eliminating users who are not qualified to use a boarding procedure system using biometric authentication. ..

According to the first aspect of the present invention, a receiving unit that receives a token issuance request including at least the boarding pass information written on the boarding pass and the passport information written on the passport from the terminal, and the boarding pass information. It is provided with a generation unit that makes a first determination regarding the integrity of the passport information and generates a token for the user to use the boarding procedure using biometric information based on the result of the first determination. , A management server is provided.

According to a second aspect of the present invention, the management server includes a terminal and a management server connected to the terminal, and the management server is described from the terminal in at least the boarding pass information and passport described in the boarding pass. The receiver, which receives the token issuance request including the passport information, makes the first determination regarding the consistency between the boarding pass information and the passport information, and based on the result of the first determination, the user is a living body. A system is provided that includes a generator that generates tokens for using informational boarding procedures.

According to the third aspect of the present invention, the management server receives a token issuance request including at least the boarding pass information written on the boarding pass and the passport information written on the passport from the terminal, and the boarding pass information and the above-mentioned boarding pass information. Provided is a token issuing method for making a first determination regarding the integrity of the passport information and generating a token for the user to use the boarding procedure using biometric information based on the result of the first determination. Ru.

According to the fourth aspect of the present invention, a process of receiving a token issuance request including at least the boarding pass information written on the boarding pass and the passport information written on the passport from the terminal to the computer mounted on the management server. And, the first determination regarding the consistency between the boarding pass information and the passport information is performed, and based on the result of the first determination, a token for the user to use the boarding procedure using the biometric information is generated. A computer-readable storage medium is provided that stores a program for processing and executing.

According to each viewpoint of the present invention, a management server, a system, a token issuing method and a storage medium are provided, which contribute to eliminating users who are not qualified to use a boarding procedure system using biometric authentication. .. The effect of the present invention is not limited to the above. According to the present invention, other effects may be produced in place of or in combination with the effect.

It is a figure for demonstrating the outline of one Embodiment. It is a figure which shows an example of the schematic structure of the boarding procedure system which concerns on 1st Embodiment. It is a figure which shows an example of the processing structure of the check-in terminal which concerns on 1st Embodiment. It is a figure for demonstrating the operation of the system registration part which concerns on 1st Embodiment. It is a figure which shows an example of the processing structure of the system registration part which concerns on 1st Embodiment. It is a figure which shows an example of a token issuance request. It is a figure which shows an example of the processing structure of the baggage deposit machine which concerns on 1st Embodiment. It is a figure which shows an example of the processing configuration of the management server which concerns on 1st Embodiment. It is a figure which shows an example of the token ID information database. It is a figure which shows an example of a business information database. It is a sequence diagram which shows an example of the operation of the boarding procedure system which concerns on 1st Embodiment. It is a figure which shows an example of the hardware configuration of a management server.

First, an outline of one embodiment will be described. It should be noted that the drawing reference reference numerals added to this outline are added to each element for convenience as an example for assisting understanding, and the description of this outline is not intended to limit anything. Further, unless otherwise specified, the blocks described in each drawing represent not the configuration of hardware units but the configuration of functional units. Connection lines between blocks in each figure include both bidirectional and unidirectional. The one-way arrow schematically shows the flow of the main signal (data), and does not exclude bidirectionality. In the present specification and the drawings, the same reference numerals may be given to elements that can be similarly described, so that duplicate description may be omitted.

The management server 100 according to one embodiment includes a receiving unit 101 and a generating unit 102 (see FIG. 1). The receiving unit 101 receives from the terminal a token issuance request including at least the boarding pass information written on the boarding pass and the passport information written on the passport. The generation unit 102 makes a first determination regarding the consistency between the boarding pass information and the passport information, and based on the result of the first determination, generates a token for the user to use the boarding procedure using the biometric information. ..

As mentioned above, users who are not qualified to use the check-in system using biometrics must be excluded. Here, in order to board an international flight, the passenger must have a boarding pass (BP; Boarding Pass) and a passport (PP; Passport). In boarding procedures that do not use biometrics, airline staff visually confirm that the name on the boarding pass and passport are the same. However, such identity verification by staff cannot be performed by boarding procedures using biometric authentication. Check-in procedures using biometrics are automated by computers (servers, terminals) and there is little room for human intervention. Therefore, if the name on the boarding pass and passport are spelled differently, part of the name is omitted, or the order of description (first name, last name) is different, it will be stated on the boarding pass and passport. It becomes very difficult to judge whether or not the same person is the same person. That is, in the boarding procedure using biometric authentication, there may be a problem regarding the matching of names written on two media (boarding pass, passport). In order to deal with such problems, it is possible to omit the name matching, but if such measures are taken, there is room to allow a third party who illegally obtained the boarding pass to board the aircraft. ..

In order to deal with such a problem, the management server 100 confirms the consistency between the boarding pass and the passport acquired through the terminal. For example, the management server 100 transmits the acquired boarding pass information to a server managed by the airline company (airline company server 30 described later), and inquires about the passport information corresponding to the boarding pass information. If the passport information presented to the terminal and the passport information obtained from the airline match, the management server 100 determines that the passport of the passenger who is permitted to board the aircraft has been presented to the terminal, and performs biometric authentication. Issue a token to receive the boarding procedure used. In other words, if the above two passport information does not match, the management server 100 is a terminal of a third party (a user who is not qualified to use the boarding procedure using biometric authentication) who has not been issued a boarding pass. Judging that you are presenting your passport to, do not issue a token. As described above, the management server 100 stores the passport information of the airline server (DCS; Departure Control System) that stores the reservation information that is the basis of the boarding pass information, and the passport information that the user has on the boarding date. Identity verification is performed by collating. As a result, the token will not be issued to a third party who is not qualified to use the biometric check-in system, and the third party will be excluded from the check-in procedure using biometrics.

Specific embodiments will be described in more detail below with reference to the drawings.

[First Embodiment]
The first embodiment will be described in more detail with reference to the drawings.

[System configuration]
FIG. 2 is a diagram showing an example of a schematic configuration of the boarding procedure system according to the first embodiment. The boarding procedure system according to the first embodiment is a system that realizes a series of procedures (baggage deposit, security check, etc.) at the airport by biometric authentication. The boarding procedure system shown in FIG. 2 is operated by, for example, a public institution such as an immigration control bureau or a trustee who has been entrusted with business by the public institution.

In the disclosure of the present application, "boarding procedure" refers to a series of procedures performed from check-in to boarding an aircraft.

Referring to FIG. 2, the boarding procedure system includes a check-in terminal 10, a baggage deposit machine 11, a passenger passage system 12, a gate device 13, a boarding gate device 14, a management server 20, and an airline server 30. ..

The check-in terminal 10, the baggage deposit machine 11, the passenger passage system 12, the gate device 13, and the boarding gate device 14 are terminals (touch points) installed at the airport. These terminals are connected to the management server 20 via a network. The network shown in FIG. 2 is composed of a LAN (Local Area Network) including an airport premises communication network, a WAN (Wide Area Network), a mobile communication network, and the like. The connection method is not limited to the wired method and may be a wireless method.

The management server 20 and the airline server 30 are also connected via a network. The management server 20 and the airline company server 30 are installed in facilities such as an airport company and an airline company. Alternatively, these servers may be servers installed in the cloud on the network.

The configuration shown in FIG. 2 is an example, and does not mean to limit the configuration of the boarding procedure system. The boarding procedure system may include terminals and the like (not shown).

The user boarding procedure is performed by each terminal shown in FIG. Specifically, a series of procedures when a user leaves Japan is sequentially carried out at terminals installed at five locations. In the boarding procedure system shown in FIG. 2, the boarding procedure of the user is realized by authentication using biometric information (biometric authentication).

Upon arriving at the airport, a user (system user) who wishes to carry out boarding procedures by biometric authentication operates the check-in terminal 10 to perform "check-in procedures". The system user presents a paper ticket, a two-dimensional bar code on which boarding information is described, a mobile terminal displaying a copy of the e-ticket, and the like to the check-in terminal 10. The check-in terminal 10 outputs a boarding pass when the check-in procedure is completed. The boarding pass includes a paper boarding pass and an electronic boarding pass.

A system user who has completed the check-in procedure and wishes to carry out the boarding procedure by biometric authentication performs system registration using the check-in terminal 10. Specifically, the system user causes the check-in terminal 10 to read the acquired boarding pass and passport. In addition, the check-in terminal 10 acquires biometric information (for example, a face image) of the system user.

The check-in terminal 10 transmits information related to these (boarding pass, passport, biometric information) to the management server 20.

The management server 20 confirms the validity of the information acquired from the check-in terminal 10. Specifically, the management server 20 determines the consistency between the boarding pass and the passport and the validity of the passport presented at the check-in terminal 10. When the management server 20 confirms the validity of the information acquired from the check-in terminal 10, the management server 20 registers the system user. Specifically, the management server 20 issues a token used for the boarding procedure of the user registered in the system.

The issued token is identified by a token ID (Identifier). Information required for boarding procedures (for example, biometric information, business information required for boarding procedures, etc.) is associated via a token ID. That is, the "token" is issued together with the registration of the system user, and is the identification information for the registered system user to undergo the boarding procedure using the biometric information. When the token (token ID) is issued, the system user can use the boarding procedure using biometric authentication.

When the system user to whom the token is issued arrives at a terminal (for example, a baggage deposit machine 11 or the like), biometric information (for example, a face image) is acquired at the terminal. The terminal sends an authentication request including a face image to the management server 20.

The management server 20 specifies the token ID by a collation process (1 to N collation; N is a positive integer, the same applies hereinafter) using the biometric information acquired from the terminal and the biometric information registered in the system. The user boarding procedure is carried out based on the business information associated with the specified token ID.

When the series of boarding procedures is completed and the user leaves the country (when the user passes through the boarding gate device 14), the token ID is deleted.

The check-in terminal 10 is installed in the check-in lobby in the airport. As described above, the user performs system registration for realizing the boarding procedure using biometric authentication using the check-in terminal 10. In addition, the system user operates the check-in terminal 10 to perform the check-in procedure. That is, the check-in terminal 10 is also a self-terminal for performing a check-in procedure by being operated by the user. The check-in terminal 10 is also referred to as a CUSS (Common Use Self Service) terminal. After completing the check-in procedure, the user will be transferred to the baggage deposit area or security checkpoint.

The baggage depository 11 is installed in an area adjacent to the baggage counter (manned counter) in the airport or in an area near the check-in terminal 10. The baggage depository 11 is a self-terminal for performing a procedure (baggage deposit procedure) for depositing baggage that is not brought into an aircraft by being operated by the user. The baggage deposit machine 11 is also referred to as a CUBD (Common Use Bag Drop) terminal. After completing the baggage check-in procedure, the user will move to the security checkpoint. If the user does not check the baggage, the baggage check-in procedure is omitted.

The passenger passage system 12 is a gate device installed at the entrance of a security checkpoint in an airport. The passenger passage system 12, also called a PRS (Passenger Reconciliation System), is a system for determining whether or not a user can pass through at the entrance of a security checkpoint. When the user completes the security inspection procedure after passing through the passenger passage system 12, the user moves to the immigration checkpoint.

The gate device 13 is installed at the immigration checkpoint in the airport. The gate device 13 is a device that automatically performs the departure examination procedure of the user. After completing the departure examination procedure, the user will move to the departure area where duty-free shops and boarding gates are provided.

The boarding gate device 14 is a traffic control device installed for each boarding gate in the departure area. The boarding gate device 14 is also referred to as an ABG (Automated Boarding Gates) terminal. The boarding gate device 14 confirms that the user is a passenger of an aircraft that can board from the boarding gate. After passing through the boarding gate device 14, the user boarded the aircraft and departed for a second country.

The boarding procedure using biometric authentication by each device shown in FIG. 2 (check-in terminal 10, baggage deposit machine 11, passenger passage system 12, gate device 13, boarding gate device 14) is an example and is used for the procedure. It is not intended to limit the equipment to be used. For example, a device different from the above device may be used for the boarding procedure, or some of the above devices may not be used for the procedure. For example, the gate device 13 may not be included in the check-in system.

The management server 20 is a server device for supporting and managing the boarding procedure. The management server 20 manages the token ID. Specifically, the management server 20 issues or invalidates the token ID. In addition, the management server 20 processes authentication requests from various terminals in the airport.

The airline server 30 is a server device managed by the airline. The airline server 30 includes a database for storing airline ticket reservation information. The airline server 30 stores the information about the passport acquired at the time of booking the ticket and the reservation information of the ticket in association with each other. The airline server 30 is also referred to as a DCS (Departure Control System). The airline server 30 may store all the information described in the passport in association with the reservation information, or may store some information described in the passport in association with the reservation information. May be good.

In the following description, the information written on the boarding pass (part or all of the information written on the boarding pass) will be referred to as "boarding pass information". The boarding pass information is all or part of the reservation information stored in the airline server 30. That is, the boarding pass shows all or part of the reservation information.

Further, in the following description, the information described in the passport (part or all the information described in the passport) will be referred to as "passport information".

[Overview of system operation]
Subsequently, the schematic operation of the boarding procedure system will be described with reference to FIG.

Among the users who have arrived at the airport and completed the check-in procedure, the user (system user) who desires the boarding procedure using biometric authentication operates the check-in terminal 10 to register the system. As described above, the user loads the boarding pass and passport possessed by the check-in terminal 10. At that time, the check-in terminal 10 acquires the user's biological information (for example, a face image).

The check-in terminal 10 generates a "token issuance request" including the three acquired information (boarding pass information, passport information, and biometric information). The check-in terminal 10 transmits the generated token issuance request to the management server 20.

The management server 20 retrieves boarding pass information and passport information included in the token issuance request. The management server 20 determines the consistency between the boarding pass and the passport presented to the check-in terminal 10 using the two pieces of information. Specifically, the management server 20 determines whether or not the person who is permitted to board the aircraft for which the boarding pass is issued and the person who has been issued the passport presented at the check-in terminal 10 match. do.

The management server 20 transmits the boarding pass information (all or part of the reservation information) acquired from the check-in terminal 10 to the airline server 30 in order to determine the consistency.

The airline server 30 searches the database using the acquired boarding pass information as a key, and transmits the corresponding passport information to the management server 20.

The management server 20 compares the passport information acquired from the check-in terminal 10 with the passport information acquired from the airline company server 30, and determines whether or not these information match.

When the above two passport information matches, the management server 20 determines that the boarding pass and the passport presented to the check-in terminal 10 are consistent.

After that, the management server 20 determines the validity of the passport presented to the check-in terminal 10. Specifically, the management server 20 determines whether or not the person who presented the passport to the check-in terminal 10 and the person who received the issuance of the passport are the same person. More specifically, the management server 20 determines whether or not the face image included in the passport information (hereinafter referred to as a passport face image) and the face image captured by the check-in terminal 10 substantially match.

When the two face images (biological information) substantially match, the management server 20 determines that the system user has presented the correct passport to the check-in terminal 10 (the passport presented to the check-in terminal 10 is). Judged to be legitimate).

If no problem is found in the two determinations (determination regarding the consistency of boarding pass information and passport information, determination regarding the validity of the passport presented to the check-in terminal 10), the management server 20 performs the boarding procedure. Generate a token to receive.

In response to the generation of the token, the management server 20 adds an entry to each of the database that stores the detailed information of the generated token and the database that stores the business information.

If a problem is found in at least one of the two determinations, the management server 20 rejects (rejects) the token issuance request from the check-in terminal 10.

Subsequently, the details of each device included in the boarding procedure system according to the first embodiment will be described. In the following description, the user's "face image" will be taken as an example as biometric information.

[Check-in terminal]
As described above, the check-in terminal 10 is a device that provides system users with operations related to check-in procedures and system registration.

FIG. 3 is a diagram showing an example of a processing configuration (processing module) of the check-in terminal 10 according to the first embodiment. Referring to FIG. 3, the check-in terminal 10 includes a communication control unit 201, a system registration unit 202, a token issuance request unit 203, a message output unit 204, a check-in execution unit 205, and a storage unit 206. include.

The communication control unit 201 is a means for controlling communication with other devices. Specifically, the communication control unit 201 receives data (packets) from the management server 20 and the airline company server 30. Further, the communication control unit 201 transmits data to the management server 20 and the airline company server 30. The communication control unit 201 passes the data received from the other device to the other processing module. The communication control unit 201 transmits the data acquired from the other processing module to the other device. In this way, the other processing module transmits / receives data to / from the other device via the communication control unit 201. The communication control unit 201 functions as a transmission unit and a reception unit.

The system registration unit 202 is a means for registering the system of a user who wishes to carry out boarding procedures by biometric authentication. For example, the system registration unit 202 provides the user with a GUI (Graphical User Interface) for confirming whether or not the user desires "boarding procedure using a face image" after the check-in procedure is completed. (See Fig. 4).

When the user wishes to register the system, the system registration unit 202 acquires the three pieces of information using the GUI for acquiring the three pieces of information (boarding pass information, passport information, and biometric information).

The system registration unit 202 includes three submodules. FIG. 5 is a diagram showing an example of a processing configuration (processing module) of the system registration unit 202 according to the first embodiment. As shown in FIG. 5, the system registration unit 202 includes a boarding pass information acquisition unit 211, a passport information acquisition unit 212, and a biometric information acquisition unit 213.

The boarding pass information acquisition unit 211 is a means for acquiring boarding pass information from the boarding pass possessed by the system user. The boarding pass information acquisition unit 211 controls a reader (not shown) such as a scanner to acquire information (boarding pass information) written on the boarding pass.

Boarding pass information includes name (last name, first name), airline code, flight number, boarding date, departure place (boarding airport), destination (arrival airport), seat number, boarding time, arrival time and the like.

The passport information acquisition unit 212 is a means for acquiring passport information from the passport possessed by the system user. The passport information acquisition unit 212 controls a reader such as a scanner to acquire information (passport information) written in the passport.

Passport information includes a passport face image, name, gender, nationality, passport number, passport issuing country, and the like.

The biometric information acquisition unit 213 is a means for acquiring biometric information of a system user. The biological information acquisition unit 213 controls the camera and acquires a facial image of the system user. For example, when the biometric information acquisition unit 213 detects a face in an image to be constantly or periodically photographed, the biometric information acquisition unit 213 photographs the user's face and acquires the face image.

It is desirable that the biological information acquisition unit 213 displays a guidance message regarding the acquisition of the face image via the message output unit 204 before photographing the face image. For example, the biometric information acquisition unit 213 displays a message such as "The customer's face image is taken and registered in the system. The registered face image will be deleted from the system after boarding is completed."

The system registration unit 202 delivers the acquired three pieces of information (boarding pass information, passport information, and biometric information) to the token issuance request unit 203.

The token issuance request unit 203 shown in FIG. 3 is a means for requesting the management server 20 to issue a token. The token issuance request unit 203 generates a token issuance request including boarding pass information, passport information, and biometric information (face image). For example, the token issuance request unit 203 generates a token issuance request including an identifier of the own device (hereinafter referred to as a check-in terminal identifier), the boarding pass information, and the like (see FIG. 6). As the check-in terminal identifier, a MAC (Media Access Control) address or an IP (Internet Protocol) address of the check-in terminal 10 can be used. The token issuance request unit 203 transmits the generated token issuance request to the management server 20.

The token issuance request unit 203 delivers the response (response to the token issuance request) acquired from the management server 20 to the message output unit 204.

The message output unit 204 is a means for outputting various messages. For example, the message output unit 204 outputs a message according to the response acquired from the management server 20.

When a response (affirmative response) to the effect that the token has been successfully issued is received, the message output unit 204 outputs to that effect. For example, the message output unit 204 outputs a message such as "Future procedures can be performed by face recognition".

When a response (negative response) to the effect that the token issuance has failed is received, the message output unit 204 outputs to that effect. For example, the message output unit 204 outputs a message such as "Sorry. The procedure by face recognition cannot be performed. Please go to the manned booth."

The check-in execution unit 205 is a means for performing a user's check-in procedure. The check-in execution unit 205 executes a check-in procedure such as seat selection based on the ticket presented by the user. For example, the check-in execution unit 205 transmits the information described in the ticket to the DCS (airline company server 30), and acquires the information described in the boarding pass from the DCS. Since the operation of the check-in execution unit 205 can be the same as the operation of the existing check-in terminal, a more detailed description will be omitted.

The storage unit 206 is a means for storing information necessary for the operation of the check-in terminal 10.

[Baggage deposit machine]
FIG. 7 is a diagram showing an example of a processing configuration (processing module) of the baggage deposit machine 11 according to the first embodiment. Referring to FIG. 7, the baggage deposit machine 11 includes a communication control unit 301, a biometric information acquisition unit 302, an authentication request unit 303, a function realization unit 304, and a storage unit 305.

The communication control unit 301 is a means for controlling communication with other devices. Specifically, the communication control unit 301 receives data (packets) from the management server 20. Further, the communication control unit 301 transmits data to the management server 20. The communication control unit 301 passes the data received from the other device to the other processing module. The communication control unit 301 transmits the data acquired from the other processing module to the other device. In this way, the other processing module transmits / receives data to / from other devices via the communication control unit 301. The communication control unit 301 functions as a transmission unit and a reception unit.

The biometric information acquisition unit 302 is a means for controlling a camera (not shown) to acquire biometric information of a user. The biological information acquisition unit 302 images the front of the own device at regular intervals or at predetermined timings. The biological information acquisition unit 302 determines whether or not the acquired image includes a human face image, and if the acquired image includes a face image, extracts the face image from the acquired image data.

Since existing techniques can be used for the face image detection process and the face image extraction process by the biological information acquisition unit 302, detailed description thereof will be omitted. For example, the biological information acquisition unit 302 may extract a face image (face region) from the image data by using a learning model learned by a CNN (Convolutional Neural Network). Alternatively, the biological information acquisition unit 302 may extract a face image by using a technique such as template matching.

The biological information acquisition unit 302 delivers the extracted face image to the authentication request unit 303.

The authentication request unit 303 is a means for requesting the management server 20 to authenticate the user in front of him. The authentication request unit 303 generates an authentication request including the acquired face image and sends it to the management server 20.

The authentication request unit 303 receives a response from the management server 20 to the authentication request.

If the authentication result is "authentication failure", the authentication request unit 303 notifies the visitor to that effect.

If the authentication result is "authentication successful", the authentication request unit 303 notifies the function realization unit 304 to that effect. Further, the authentication request unit 303 delivers the "business information" acquired from the management server 20 to the function realization unit 304.

The function realization unit 304 is a means for realizing the "baggage deposit" function of the baggage deposit machine 11. The function realization unit 304 identifies the boarding flight of the baggage deposited by the user from the acquired business information, and attaches a label or the like so that the baggage is accommodated in the boarding flight. Since the operation of the function realization unit 304 can be the same as the operation of the existing baggage deposit machine, detailed description thereof will be omitted.

The storage unit 305 is a means for storing information necessary for the operation of the baggage depository machine 11.

[Other terminals]
The basic processing configuration of the other terminals (passenger passage system 12, gate device 13, boarding gate device 14) included in the boarding procedure system can be the same as the processing configuration of the baggage deposit machine 11 shown in FIG. Therefore, detailed explanation is omitted. Each terminal acquires the biometric information (face image) of the system user and requests the management server 20 to authenticate using the acquired biometric information. If the authentication is successful, the function assigned to each terminal is executed.

[Management server]
FIG. 8 is a diagram showing an example of a processing configuration (processing module) of the management server 20 according to the first embodiment. Referring to FIG. 8, the management server 20 includes a communication control unit 401, a token generation unit 402, a database management unit 403, an authentication request processing unit 404, and a storage unit 405.

The communication control unit 401 is a means for controlling communication with other devices. Specifically, the communication control unit 401 receives data (packet) from the check-in terminal 10 or the like. Further, the communication control unit 401 transmits data to the check-in terminal 10 and the like. The communication control unit 401 passes the data received from the other device to the other processing module. The communication control unit 401 transmits the data acquired from the other processing module to the other device. In this way, the other processing module transmits / receives data to / from other devices via the communication control unit 401. The communication control unit 401 functions as a transmission unit and a reception unit.

The token generation unit 402 is a means for generating tokens in response to a token generation request from the check-in terminal 10. The token generation unit 402 issues a token when the two determinations described above are successful.

The first determination is a determination regarding the consistency between the boarding pass information and the passport information. The second determination is a determination regarding the validity of the passport presented to the check-in terminal 10.

The token generation unit 402 makes the first determination. The token generation unit 402 determines whether or not the person who is permitted to board the aircraft for which the boarding pass is issued and the person who has been issued the passport presented at the check-in terminal 10 match. Specifically, the token generation unit 402 seems to have issued the passport presented to the check-in terminal 10 to the user B while the user A is registered as a passenger in the DCS (airline server 30). Make sure the situation has not occurred. That is, the token generation unit 402 confirms the identity of the passport that is the basis for issuing the boarding pass (airline ticket) and the passport presented at the time of system registration in the first determination.

The token generation unit 402 transmits the boarding pass information acquired from the check-in terminal 10 to the airline server 30. Specifically, the token generation unit 402 transmits boarding pass information that can identify one of the plurality of reservation information stored in the airline server 30 to the airline server 30. For example, the token generation unit 402 transmits to the airline server 30 as boarding pass information such as an airline code, flight number, boarding date, and seat number.

The airline server 30 searches the database and identifies the passport information corresponding to the acquired boarding pass information. The airline server 30 transmits (replies) the specified passport information to the management server 20.

The token generation unit 402 compares the passport information acquired from the check-in terminal 10 with the passport information acquired from the airline server 30, and determines whether or not they match. At that time, the token generation unit 402 may confirm that all the information described in the passport match, or may confirm that some of the information match.

When determining whether or not some of the information matches, for example, the token generator 402 determines whether or not each of the passport number and the issuing country included in the two passport information matches. Since the name is not suitable for determining the identity, information different from the name (combination of passport number and issuing country) is used to determine whether the two passport information match. Is desirable.

When the above two passport information matches, the token generation unit 402 determines that the boarding pass presented to the check-in terminal 10 and the passport are consistent. If the above two passport information does not match, the token generation unit 402 determines that the boarding pass presented to the check-in terminal 10 and the passport are not consistent.

The token generation unit 402 makes a second determination. The token generation unit 402 determines whether or not the person who presented the passport to the check-in terminal 10 and the person who received the issuance of the passport are the same person. Specifically, the passport presented to the check-in terminal 10 was issued to the user C, but the situation that the user standing in front of the check-in terminal 10 is the user D has not occurred. Make sure that. That is, the check-in terminal 10 confirms that the system user has not presented the passport issued to another person to the check-in terminal 10.

In order to execute the second determination, the token generation unit 402 extracts the face image (system user's face image) included in the token generation request and the passport face image included in the passport information. The token generation unit 402 determines whether or not these two facial images substantially match.

The token generation unit 402 executes collation (one-to-one collation) of the two face images. The token generation unit 402 calculates a feature vector from each of the two images. The token generation unit 402 calculates the similarity (for example, Euclidean distance) between the two images, and determines whether the two images are facial images of the same person based on the result of the threshold processing for the calculated similarity. do. For example, if the similarity is greater than a predetermined value (if the distance is shorter than a predetermined value), the token generation unit 402 determines that the two facial images are from the same person.

The token generation unit 402 issues a token when it succeeds in determining the consistency of the boarding pass and the passport (first determination) and determining the validity of the passport using the biometric information (second determination). For example, the token generation unit 402 generates a unique value as the token ID based on the date and time at the time of processing, the sequence number, and the like.

When the token generation unit 402 generates a token (token ID), it sends an acknowledgment (token issuance) to the check-in terminal 10. When the token ID generation unit 402 fails to generate the token ID, the token generation unit 402 sends a negative response (not issued a token) to the check-in terminal 10.

When the token ID generation unit 402 succeeds in generating (issuing) the token ID, the token generation unit 402 hands over the generated token ID, boarding pass information, passport information, and face image (face image of the system user) to the database management unit 403.

The database management unit 403 is a means for managing various databases built on the management server 20.

The management server 20 includes a token ID information database and a business information database.

The token ID information database stores at least the token ID and the biometric information of the user in association with each other. FIG. 9 is a diagram showing an example of a token ID information database. Referring to FIG. 9, the token ID information database has fields for storing a token ID, a registered face image, a feature amount, a token issuing time, a token issuing device name, an invalidation flag, an invalidation time, and the like.

As mentioned above, the token ID is a temporarily issued identifier. When the user completes the procedure at the boarding gate device 14, the token ID is invalidated. That is, the token ID is not an identifier that is used permanently, but a one-time ID that has a valid period (life cycle).

The registered face image is a face image of the system user. For example, the registered face image may be a user's face image captured by the check-in terminal 10 or a passport face image. The feature quantity is a feature vector generated from the face image. The token issuance time is the time when the management server 20 issues the token ID. The device name is the device name (check-in terminal 10) from which the registered face image was acquired, which triggered the issuance of the token ID. The invalid flag is flag information indicating whether or not the token ID is currently valid. The invalid flag is set to "1" if the token ID is valid, and cleared to "0" if it is invalid. The invalidation time is a time stamp when the token ID is invalidated.

The business information database is a database that manages information (business information) necessary for performing boarding procedures for users. FIG. 10 is a diagram showing an example of a business information database. Referring to FIG. 10, the business information database has fields for storing a token ID, a passenger name, a departure place, a destination, an airline code, a flight number, an operation date, and the like. In addition to the above fields, the business information database may have fields for storing sheet numbers, nationalities, passport numbers, surnames, first names, dates of birth, gender, and the like. The business information database stores business information related to a predetermined business (procedure business performed at each touch point) for each token ID.

The above information stored in the business information database is acquired from boarding pass information and passport information.

When the database management unit 403 acquires the token ID from the token generation unit 402 (when the token ID is issued), the database management unit 403 adds a new entry to the above two databases. The database management unit 403 sets the set values in the fields of each database. For example, the database management unit 403 generates a feature amount from the registered face image and registers the generated feature amount in the token ID information database. For fields for which setting values cannot be set, the database management unit 403 may set initial values (default values).

The authentication request processing unit 404 is a means for processing an authentication request acquired from a terminal. The authentication request includes the biometric information of the person to be authenticated. The authentication request processing unit 404 executes a collation process (one-to-N collation) using the biometric information included in the authentication request and the biometric information included in the token ID information database.

The authentication request processing unit 404 generates a feature amount from the face image acquired from the terminal. The authentication request processing unit 404 extracts feature points from the face image. Since existing techniques can be used for the feature point extraction process, detailed description thereof will be omitted. For example, the authentication request processing unit 404 extracts eyes, nose, mouth, and the like as feature points from the face image. After that, the authentication request processing unit 404 calculates the position of each feature point and the distance between each feature point as a feature quantity, and generates a feature vector composed of a plurality of feature quantities.

The authentication request processing unit 404 sets the generated feature amount (feature vector) as the feature amount on the collation side and the feature amount registered in the token ID information database as the feature amount on the registration side. The authentication request processing unit 404 calculates the degree of similarity between the feature amount on the collation side and the plurality of feature amounts on the registration side. For the similarity, a chi-square distance, an Euclidean distance, or the like can be used. The farther the distance is, the lower the similarity is, and the closer the distance is, the higher the similarity is.

The authentication request processing unit 404 states that the authentication is successful if, among the plurality of features registered in the token ID information database, the features having a similarity between the features to be matched and the features having a similarity equal to or higher than a predetermined value exists. to decide.

If the authentication is successful, the authentication request processing unit 404 identifies the token ID corresponding to the feature amount having the highest degree of similarity. The authentication request processing unit 404 searches the business information database using the specified token ID as a key, and identifies the corresponding business information (passenger name, departure place, etc.).

The authentication request processing unit 404 transmits the authentication result to the terminal (responds to the authentication request). If the authentication is successful, the authentication request processing unit 404 sends a response including that fact (authentication success) and business information to the terminal. If the authentication fails, the authentication request processing unit 404 sends a response including that fact (authentication failure) to the terminal.

The storage unit 405 stores various information necessary for the operation of the management server 20. A token ID information database and a business information database are constructed in the storage unit 405.

[System operation]
Subsequently, the operation of the boarding procedure system according to the first embodiment will be described. FIG. 11 is a sequence diagram showing an example of the operation of the boarding procedure system according to the first embodiment. The operation when registering the user's system will be described with reference to FIG.

The check-in terminal 10 transmits a token issuance request to the management server 20 (step S01).

Upon receiving the token issuance request, the management server 20 executes a determination regarding the consistency between the boarding pass information and the passport information (executes the first determination).

The management server 20 transmits all or part of the boarding pass information acquired from the check-in terminal 10 to the airline server 30 (step S02).

The airline server 30 searches the database and transmits all or part of the passport information corresponding to the acquired boarding pass information to the management server 20 (step S03).

The management server 20 determines whether or not the passport information acquired from the check-in terminal 10 and the passport information acquired from the airline server 30 match (step S04). That is, the management server 20 determines whether or not the above two passport information is the information described in the same passport (information obtained from the same passport).

If the two passport information does not match (step S04, No branch), the management server 20 rejects the token issuance request. In this case, the management server 20 transmits a negative response to the check-in terminal 10 (step S08).

If the two passport information match (step S04, Yes branch), the management server 20 executes a determination regarding the validity of the passport (executes a second determination).

The management server 20 determines whether or not the face image captured by the check-in terminal 10 matches the passport face image (step S05).

If the two face images do not match (step S05, No branch), the management server 20 rejects the token issuance request. In this case, the management server 20 transmits a negative response to the check-in terminal 10 (step S08).

If the two face images match (step S05, Yes branch), the management server 20 issues a token (step S06). In this case, the management server 20 transmits an acknowledgment to the check-in terminal 10 (step S07).

As described above, the management server 20 according to the first embodiment receives a token issuance request including at least boarding pass information and passport information from the check-in terminal 10. The management server 20 makes a first determination regarding the consistency between the boarding pass information and the passport information. The management server 20 generates a token for the user to use the boarding procedure using biometric information based on the result of the first determination. More specifically, the management server 20 transmits the acquired boarding pass information to the airline company server 30, and receives the passport information corresponding to the boarding pass information transmitted from the airline company server 30. The management server 20 generates a token when the passport information included in the token issuance request and the passport information received from the airline server 30 match and the presented passport is valid. As a result, tokens for using the procedure will not be issued to users who are not eligible for the boarding procedure using biometric authentication. Therefore, users who are not qualified to use the boarding procedure using biometric authentication are excluded from the target of the boarding procedure using biometric authentication.

In addition, the management server 20 excludes users who try to use the boarding procedure by using biometric authentication by using the passport of another person by executing the second determination regarding the validity of the passport. In the boarding procedure system according to the first embodiment, the identity of the passenger and the user (system user) who operates the check-in terminal 10 from the passport (passport information) as a starting point, and the use after the passport is issued. The identity of the person and the system user is confirmed. By these two judgments, it is guaranteed that the token will be issued to the user who is truly qualified to receive biometric authentication, and the user (passenger, etc.) who illegally obtained the boarding pass or passport will be impersonated. Prevents tokens from being issued to users).

Next, the hardware of each device constituting the boarding procedure system will be described. FIG. 12 is a diagram showing an example of the hardware configuration of the management server 20.

The management server 20 can be configured by an information processing device (so-called computer), and includes the configuration illustrated in FIG. For example, the management server 20 includes a processor 311, a memory 312, an input / output interface 313, a communication interface 314, and the like. The components such as the processor 311 are connected by an internal bus or the like and are configured to be able to communicate with each other.

However, the configuration shown in FIG. 12 is not intended to limit the hardware configuration of the management server 20. The management server 20 may include hardware (not shown) or may not include an input / output interface 313 if necessary. Further, the number of processors 311 and the like included in the management server 20 is not limited to the example of FIG. 12, and for example, a plurality of processors 311 may be included in the management server 20.

The processor 311 is a programmable device such as a CPU (Central Processing Unit), an MPU (Micro Processing Unit), and a DSP (Digital Signal Processor). Alternatively, the processor 311 may be a device such as an FPGA (Field Programmable Gate Array) or an ASIC (Application Specific Integrated Circuit). Processor 311 executes various programs including an operating system (OS).

The memory 312 is a RAM (Random Access Memory), a ROM (Read Only Memory), an HDD (Hard Disk Drive), an SSD (Solid State Drive), or the like. The memory 312 stores an OS program, an application program, and various data.

The input / output interface 313 is an interface of a display device or an input device (not shown). The display device is, for example, a liquid crystal display or the like. The input device is, for example, a device that accepts user operations such as a keyboard and a mouse.

The communication interface 314 is a circuit, a module, or the like that communicates with another device. For example, the communication interface 314 includes a NIC (Network Interface Card) and the like.

The function of the management server 20 is realized by various processing modules. The processing module is realized, for example, by the processor 311 executing a program stored in the memory 312. The program can also be recorded on a computer-readable storage medium. The storage medium may be a non-transient such as a semiconductor memory, a hard disk, a magnetic recording medium, or an optical recording medium. That is, the present invention can also be embodied as a computer program product. Further, the above program can be downloaded via a network or updated by using a storage medium in which the program is stored. Further, the processing module may be realized by a semiconductor chip.

The check-in terminal 10, the airline server 30, and the like can also be configured by the information processing device in the same manner as the management server 20, and the basic hardware configuration thereof is not different from that of the management server 20, so the description thereof will be omitted. .. The check-in terminal 10 or the like may be provided with a camera, a scanner, or the like.

The management server 20 is equipped with a computer, and the function of the management server 20 can be realized by causing the computer to execute a program. Further, the management server 20 executes the token issuing method by the program.

[Modification example]
The configuration, operation, and the like of the boarding procedure system described in the above embodiment are examples, and are not intended to limit the system configuration and the like.

In the above embodiment, a case where a token is issued when a problem is not detected in both the first determination and the second determination has been described. However, if it can be confirmed by another device or the like that the user has the correct passport, the management server 20 does not have to execute the second determination. Alternatively, the second judgment is unnecessary even when the passport has been pre-verified by the staff of the airport or the airline company. In this case, the management server 20 may receive a token issuance request including at least boarding pass information and passport information, and make the first determination.

In the above embodiment, it has been described that the system registration is performed after the user's check-in procedure, but the system registration may be performed before the check-in procedure. In this case, since the boarding pass has not been issued before the check-in procedure, the management server 20 may check the consistency between the ticket and the passport instead of the boarding pass. That is, the check-in terminal 10 transmits the ticket information (all or part of the information described in the ticket) to the management server 20. The management server 20 transmits the ticket information to the airline server 30 and acquires the corresponding passport information. The management server 20 may execute the first determination by confirming the match between the two passport information.

In the above embodiment, a case where system registration (registration for realizing boarding procedure using biometric authentication) is performed by the check-in terminal 10 has been described. However, the system registration may be performed by a device or terminal other than the check-in terminal 10. For example, a device dedicated to system registration may be installed at the airport, or the system may be registered at a terminal (touch point) such as a baggage deposit machine 11 or a passenger passage system 12.

In the above embodiment, the case where a series of boarding procedures are performed by biometric authentication has been described, but some procedures may be performed by biometric authentication. For example, in FIG. 2, the system may be registered in the baggage deposit machine 11 and the procedures (security inspection, etc.) after the baggage deposit may be performed by biometric authentication. In other words, some of the boarding procedures may be carried out at a manned booth or the like.

In the above embodiment, the management server 20 and the airline server 30 have been described as separate devices, but the functions of these devices may be realized by one device (server). Alternatively, the token ID information database and the business information database built on the management server 20 may be built on a database server different from the management server 20. That is, the boarding procedure system may include various means (for example, token generation means) described in the above embodiment.

In the above embodiment, the case where the face image is included in the authentication request has been described, but the feature amount generated from the face image may be included in the authentication request. In this case, the management server 20 may process the authentication request using the feature amount extracted from the authentication request and the feature amount registered in the token ID information database.

The form of data transmission / reception between the check-in terminal 10 and the like and the management server 20 is not particularly limited, but the data transmitted / received between these devices may be encrypted. Boarding pass information and passport information include personal information, and it is desirable that encrypted data be sent and received in order to properly protect the personal information.

In the flow chart (flow chart, sequence diagram) used in the above description, a plurality of steps (processes) are described in order, but the execution order of the steps executed in the embodiment is not limited to the order of description. In the embodiment, the order of the illustrated processes can be changed within a range that does not hinder the contents, for example, each process is executed in parallel.

The above embodiments have been described in detail to facilitate understanding of the present disclosure and are not intended to require all of the configurations described above. Moreover, when a plurality of embodiments are described, each embodiment may be used alone or in combination. For example, it is possible to replace a part of the configuration of the embodiment with the configuration of another embodiment, or to add the configuration of another embodiment to the configuration of the embodiment. Further, it is possible to add, delete, or replace a part of the configuration of the embodiment with another configuration.

Although the industrial applicability of the present invention is clear from the above description, the present invention is suitably applicable to a boarding procedure system at an airport or the like.

Some or all of the above embodiments may also be described, but not limited to:
[Appendix 1]
A receiver that receives at least a token issuance request containing the boarding pass information written on the boarding pass and the passport information written on the passport from the terminal.
The first determination regarding the consistency between the boarding pass information and the passport information is performed, and based on the result of the first determination, a token for the user to use the boarding procedure using biometric information is generated. Department and
A management server.
[Appendix 2]
The generator generates the token when the person who is permitted to board the aircraft for which the boarding pass is issued and the person who has been issued the passport presented to the terminal match. The management server described.
[Appendix 3]
The generation unit transmits the boarding pass information included in the token issuance request to an airline server that stores the passport information acquired at the time of ticket reservation and the ticket reservation information in association with each other, and the airline company. Receive the passport information corresponding to the boarding pass information sent from the server,
The management server according to Appendix 1 or 2, which generates the token when the passport information included in the token issuance request and the passport information received from the airline server match.
[Appendix 4]
The management server according to Appendix 3, wherein the generation unit uses information different from the name to determine whether or not the passport information included in the token issuance request and the passport information received from the airline company server match. ..
[Appendix 5]
The generation unit determines whether or not the passport information included in the token issuance request and the passport information received from the airline server match based on the passport number and the issuing country, according to Appendix 3 or 4. Management server.
[Appendix 6]
The generator makes a second determination regarding the validity of the passport presented to the terminal, and generates the token based on the results of the first and second determinations, any one of Supplementary note 1 to 5. The management server described in.
[Appendix 7]
The generation unit determines whether or not the person who presented the passport to the terminal and the person who received the issuance of the passport presented to the terminal are the same person. The management server according to Appendix 6, which makes a determination of.
[Appendix 8]
The token issuance request includes the biometric information of the user.
The management server according to Appendix 6 or 7, wherein the generation unit makes the second determination by one-to-one collation using the biometric information included in the token issuance request and the biometric information described in the passport.
[Appendix 9]
The management server according to any one of Supplementary note 1 to 8, further comprising a transmission unit that transmits a response to the token issuance request to the terminal.
[Appendix 10]
With the terminal
The management server connected to the terminal and
Including
The management server
A receiving unit that receives a token issuance request including at least the boarding pass information written on the boarding pass and the passport information written on the passport from the terminal.
The first determination regarding the consistency between the boarding pass information and the passport information is performed, and based on the result of the first determination, a token for the user to use the boarding procedure using biometric information is generated. Department and
The system.
[Appendix 11]
On the management server
Receive a token issuance request from the terminal, including at least the boarding pass information written on the boarding pass and the passport information written on the passport.
A token that makes a first determination regarding the consistency between the boarding pass information and the passport information, and generates a token for the user to use the boarding procedure using biometric information based on the result of the first determination. Issuance method.
[Appendix 12]
On the computer installed in the management server,
Processing to receive a token issuance request including at least the boarding pass information written on the boarding pass and the passport information written on the passport from the terminal.
A process of making a first determination regarding the consistency between the boarding pass information and the passport information, and generating a token for the user to use the boarding procedure using biometric information based on the result of the first determination. ,
A computer-readable storage medium that stores programs for executing.

The disclosures of the above-mentioned prior art documents cited shall be incorporated into this document by citation. Although the embodiments of the present invention have been described above, the present invention is not limited to these embodiments. It will be appreciated by those skilled in the art that these embodiments are merely exemplary and that various modifications are possible without departing from the scope and spirit of the invention. That is, it goes without saying that the present invention includes all disclosure including claims, various modifications and modifications that can be made by those skilled in the art in accordance with the technical idea.

10 Check-in terminal 11 Baggage deposit machine 12 Passenger passage system 13 Gate device 14 Boarding gate device 20, 100 Management server 30 Airline server 101 Reception unit 102 Generation unit 201, 301, 401 Communication control unit 202 System registration unit 203 Token issuance request Part 204 Message output part 205 Check-in execution part 206, 305, 405 Storage part 211 Boarding pass information acquisition part 212 Passenger information acquisition part 213, 302 Biometric information acquisition part 303 Authentication request part 304 Function realization part 311 Processor 312 Memory 313 Input / output Interface 314 Communication interface 402 Token generation unit 403 Database management unit 404 Authentication request processing unit

Claims (13)

A receiver that receives at least a token issuance request containing the boarding pass information written on the boarding pass and the passport information written on the passport from the terminal.
Using the passport information received from the airline server that stores the boarding pass reservation information in association with the passport information acquired at the time of boarding pass reservation, and the passport information included in the token issuance request. Therefore, the first determination regarding the consistency between the boarding pass information and the passport information is performed, and based on the result of the first determination, a token for the user to use the boarding procedure using biometric information is generated. , Generation part,
A management server. When the generation unit determines that the person who is permitted to board the aircraft for which the boarding pass is issued and the person who has been issued the passport presented to the terminal match by the first determination. The management server according to claim 1, which generates the token. The generation unit transmits the boarding pass information included in the token issuance request to the airline company server, receives the passport information corresponding to the boarding pass information from the airline company server, and receives the information of the passport.
The management server according to claim 1 or 2, wherein the token is generated when the passport information included in the token issuance request and the passport information received from the airline server match. The management according to claim 3, wherein the generation unit uses information different from the name to determine whether or not the passport information included in the token issuance request and the passport information received from the airline company server match. server. The management according to claim 3, wherein the generation unit determines whether or not the passport information included in the token issuance request matches the passport information received from the airline server based on the passport number and the issuing country. server. The generation unit makes a second determination regarding the validity of the passport presented to the terminal, and generates the token based on the results of the first and second determinations, claim 1 to claim 5. The management server described in any one of the items. The generation unit makes a second determination regarding the validity of the passport by determining whether or not the person who presented the passport to the terminal and the person who received the issuance of the passport are the same person. The management server according to claim 6. The token issuance request includes the biometric information of the user.
The sixth or seventh aspect of the present invention, wherein the generation unit makes the second determination by one-to-one matching using the biometric information included in the token issuance request and the biometric information described in the passport. Management server. The management server according to claim 8, wherein the token is identification information associated with the biometric information, the passport information, and the boarding pass information included in the token issuance request. The management server according to any one of claims 1 to 9, further comprising a transmission unit that transmits a response to the token issuance request to the terminal. With the terminal
The management server connected to the terminal and
Including
The management server
A receiving unit that receives a token issuance request including at least the boarding pass information written on the boarding pass and the passport information written on the passport from the terminal.
Using the passport information received from the airline server that stores the boarding pass reservation information in association with the passport information acquired at the time of boarding pass reservation, and the passport information included in the token issuance request. Therefore, the first determination regarding the consistency between the boarding pass information and the passport information is performed, and based on the result of the first determination, a token for the user to use the boarding procedure using biometric information is generated. , Generation part,
The system. The management server
Receive a token issuance request from the terminal, including at least the boarding pass information written on the boarding pass and the passport information written on the passport.
Using the passport information received from the airline server that stores the boarding pass reservation information in association with the passport information acquired at the time of boarding pass reservation, and the passport information included in the token issuance request. Therefore, the first determination regarding the consistency between the boarding pass information and the passport information is performed, and based on the result of the first determination, a token for the user to use the boarding procedure using biometric information is generated. , How to issue a token. On the computer installed in the management server,
Processing to receive a token issuance request including at least the boarding pass information written on the boarding pass and the passport information written on the passport from the terminal.
Using the passport information received from the airline server that stores the boarding pass reservation information in association with the passport information acquired at the time of boarding pass reservation, and the passport information included in the token issuance request. Therefore, the first determination regarding the consistency between the boarding pass information and the passport information is performed, and based on the result of the first determination, a token for the user to use the boarding procedure using biometric information is generated. Processing and
A computer program to run.

Images