JP2022064559A - Authentication device and program - Google Patents

Abstract

To provide an authentication device which enables easier authentication of a user for using a device used by multiple users with different authentication destinations, as compared to cases where authentication information is manually entered.SOLUTION: An authentication device 200 provided herein comprises a processor 201 configured to receive an image for identifying an authentication destination and biometric information of a user to be authenticated, and provide control so as to issue an authentication request by sending the biometric information of the user to be authenticated to an authentication destination identified from the image.SELECTED DRAWING: Figure 8

Description

The present invention relates to an authentication device and a program.

In the following Patent Document 1, when a user logs in using biometric authentication, the user is made to select and input a group to which the user belongs, and the biometric authentication server uses information for identifying the group selected and input by the user to perform a living body. It discloses an authentication system that narrows down the search range of information and performs biometric authentication.

The following Patent Document 2 aims to eliminate the need to operate an operation screen for an unspecified user displayed on an image forming apparatus, and when the image forming apparatus is logged into a cloud service, the image forming apparatus is carried instead of the image forming apparatus. It discloses a system in which an image forming apparatus logs in to a cloud service by logging in to a cloud service with an information terminal and bringing the mobile information terminal closer to a proximity communication means, and the login information is transmitted to the image forming apparatus.

The following Patent Document 3 discloses an information processing device in which a user can select a billing method, and the information processing device is used in the case where the usage fee of the image forming device can be charged by the first method. A second billing control that cancels the usage restriction of the image forming apparatus when the usage fee of the image forming apparatus can be charged by the first billing control unit that releases the usage restriction and the second method different from the first method. It is provided with a charging method control unit that allows the user to select either a charging method according to the first method or a charging method according to the second method.

Japanese Unexamined Patent Publication No. 2013-164835 Japanese Unexamined Patent Publication No. 2013-109616 Japanese Unexamined Patent Publication No. 2014-178899

An object of the present invention is to facilitate user authentication in authentication for using a device used by a plurality of users having different authentication destinations, as compared with the case where the user manually inputs the authentication destination information. Is to provide an authentication device capable of doing so.

The present invention according to claim 1 is
Equipped with a processor
The processor accepts an image for specifying an authentication destination and biometric information of a user to be authenticated, and the living body of the user to be authenticated for the authentication destination specified by the image. It is an authentication device that controls to send information and make an authentication request.

The present invention according to claim 2 controls the processor to extract an image for specifying the authentication destination and biometric information of a user to be authenticated from one image. The authentication device described.

The authentication according to claim 1, wherein the processor controls to simultaneously acquire an image for specifying the authentication destination and biometric information of a user to be authenticated. It is a device.

The present invention according to claim 4 is connected to an image pickup apparatus, and the processor captures an image so as to include both an image for identifying the authentication destination and biometric information of a user subject to the authentication. The authentication device according to claim 1 or 2, which controls the image pickup device.

The present invention according to claim 5 controls the processor to extract an image for specifying the authentication destination and biometric information of a user to be authenticated from separate images. The authentication device described.

The present invention according to claim 6 is connected to an image pickup device, and the processor controls the image pickup device to continuously take an image, and the image for specifying the authentication destination and the target of the authentication. The authentication device according to claim 5, which controls the biometric information of the user to be extracted from each image continuously captured by the image pickup device.

The present invention according to claim 7 is the authentication device according to claim 1, wherein the processor acquires biometric information determined according to the authentication destination specified by the image and controls the processor to make an authentication request. be.

The present invention according to claim 8 is connected to a motion sensor, and the processor includes an image for identifying the authentication destination when the motion sensor detects the approach of a user, and the subject of the authentication. The authentication device according to any one of claims 1 to 7, which controls to acquire the biometric information of the user.

The present invention according to claim 9 is connected to a display device, and the processor controls the display device to display an input screen prompting the user to input authentication information when the authentication process is not successful. The authentication device according to any one of claims 1 to 8.

The present invention according to claim 10 is connected to a display device, and the processor permits the display device to display an optimized operation screen for the user when the authentication process is successful. , The authentication device according to any one of claims 1 to 8.

The present invention according to claim 11 is connected to an image forming apparatus, and the processor controls the authentication destination for which the authentication processing is successful to charge according to the processing executed in the image forming apparatus. The authentication device according to any one of claims 1 to 10.

The present invention according to claim 12
To the computer that configures the authentication device,
The image for specifying the authentication destination and the biometric information of the user to be authenticated are accepted, and the biometric information of the user to be authenticated is transmitted to the authentication destination specified by the image. It is a program that makes an authentication request.

According to the first aspect of the present invention, in the authentication for using the device used by a plurality of users having different authentication destinations, the authentication destination information is used as compared with the case where the user manually inputs the information of the authentication destination. It is possible to provide an authentication device capable of easily authenticating a person.

According to the second aspect of the present invention, it is possible to acquire an image for specifying an authentication destination and biometric information of a user to be authenticated from an image acquired by one shooting.

According to the third aspect of the present invention, it is possible to acquire an image for specifying an authentication destination and biometric information of a user to be authenticated by a single authentication operation.

According to the fourth aspect of the present invention, it is possible to acquire an image for specifying an authentication destination and biometric information of a user to be authenticated by one imaging device.

According to the fifth aspect of the present invention, it is not necessary to take an image for specifying the authentication destination and the biometric information of the user to be authenticated so as to be included in a single image.

According to the sixth aspect of the present invention, it is possible to select and extract an image and biometric information of a user to be authenticated in order to specify an authentication destination.

According to the seventh aspect of the present invention, it is possible to authenticate the user by the biometric information specified by the authentication destination.

According to the eighth aspect of the present invention, when the motion sensor detects the approach of the user, the authentication process can be automatically executed.

According to the ninth aspect of the present invention, when the authentication by photographing is not successful, the authentication by manual input can be executed.

According to the tenth aspect of the present invention, it is possible to improve the operability for the authenticated user.

According to the eleventh aspect of the present invention, it is possible to charge the organization to which the user belongs.

According to the twelfth aspect of the present invention, when the authentication information is manually input to the computer constituting the authentication device in the authentication for using the device used by a plurality of users having different authentication destinations. In comparison, it is possible to execute an operation that easily authenticates the user.

It is an overall conceptual diagram which shows the authentication system 10 in one Embodiment of this invention. It is a hardware block diagram of the image forming apparatus 100 of this embodiment. It is a functional block diagram of the image forming apparatus 100 of this embodiment. It is a hardware block diagram of the authentication apparatus 200 of this embodiment. It is a functional block diagram of the authentication apparatus 200 of this embodiment. It is a figure which shows an example of the enterprise database stored in the authentication apparatus 200 of this embodiment. It is a flowchart which showed the operation in the image forming apparatus 100 of this embodiment. It is a figure which shows an example of the authentication guidance screen 800 in this embodiment. It is a flowchart which showed the flow of operation in the authentication apparatus 200 of this embodiment.

The authentication system 10 including the authentication device 200 of the present invention will be described as an embodiment with reference to the drawings. It should be noted that the following embodiments are for exemplifying and showing the authentication device 200 of the present invention, and are not intended to limit the present invention to the following embodiments.

FIG. 1 is an overall conceptual diagram showing an example of the authentication system 10. As shown in FIG. 1, the authentication system 10 includes an image forming apparatus 100, an authentication apparatus 200, and a plurality of authentication servers 310, 320, 330. The image forming apparatus 100, the authentication apparatus 200, and the authentication servers 310, 320, 330 are connected to each other by the Internet. In addition, although a plurality of image forming apparatus 100 may actually be installed at the same place or different places, in the present embodiment, in order to simplify the explanation, a case where only one unit is installed will be described. .. Further, in the following description, the authentication servers 310, 320, and 330 are not particularly distinguished and are simply referred to as the authentication server 300.

The image forming apparatus 100 is arranged in a so-called shared office where people belonging to a plurality of different organizations, for example, a plurality of different companies, corporations, and organizations work in one place, and is shared by people belonging to different organizations. FIG. 2 is a hardware configuration diagram of the image forming apparatus 100, and FIG. 3 is a functional block diagram of the image forming apparatus 100. As shown in FIG. 2, the image forming apparatus 100 includes a CPU 101, a memory 102, a storage device 103, an input device 104, a display device 105, an image pickup device 106, an image forming unit 107, and a communication interface 108, each of which is on a control bus 109. Be connected. The input device 104, the display device 105, and the image pickup device 106 may be installed separately from the image forming device 100, but in the present embodiment, they are installed integrally with the image forming device 100 for the sake of simplicity. The case where it is done will be explained.

The CPU 101 is a control microprocessor, and controls the operation of each part of the image forming apparatus 100 based on the control program stored in the storage apparatus 103.

The memory 102 temporarily stores an image taken by the image pickup apparatus 106. Further, the memory 102 temporarily stores the image data to be printed by the image forming unit 107 of the image forming apparatus 100.

The storage device 103 is composed of a hard disk drive (abbreviated as HDD) and a solid state drive (abbreviated as SDD), and stores a control program for controlling each part of the image forming apparatus 100.

The input device 104 is a touch panel formed on the surface of the display device 105, which will be described later. By operating the touch panel, the user accepts a login operation and performs an input operation on the menu screen when forming an image. Can be done. In addition to the touch panel, the input device 104 may include a mechanical input device such as an input keyboard or an input button provided on the main body of the image forming apparatus 100 or separately arranged from the main body of the image forming apparatus 100.

The display device 105 is a liquid crystal display provided in the image forming apparatus 100, and displays various screens including a message to the user and a menu screen for operating the image forming apparatus 100 when the authentication is successful.

The image pickup device 106 is a camera installed integrally with the image forming apparatus 100, takes an image for authentication including an image for specifying an authentication destination and an image of a user's face, and temporarily stores the image in the memory 102. .. In the following example, an image showing the organization to which the user belongs is used as an image for specifying the authentication destination. This includes an image containing information about the organization to which the user belongs, such as the company emblem, logo, motif, symbol, or an image of the entire or part of the employee ID card of the organization to which the user belongs, or an organization to which the user belongs is specified in advance. There are images specified by the user's organization, such as specific photos and illustrations.

The image forming unit 107 executes a print job transmitted from a computer terminal (not shown) used by the user, which is connected to the image forming apparatus 100 via a network, and records a document required by the user on a recording medium, for example, on paper. An image is formed on the top.

The communication interface 108 controls communication for communicating with the authentication device 200 connected via the Internet via a LAN cable (not shown) or via a wireless LAN.

Further, as shown in FIG. 3, the image forming apparatus 100 executes the control program stored in the storage apparatus 103 to display the display control unit 111, the authentication start control unit 112, the image formation control unit 113, and the billing control unit. It exerts each function of 114.

The display control unit 111 displays a login screen prompting the display device 105 to put an image showing the user's organization and a face in a predetermined position, displays a screen notifying the authentication result, and the authentication is successful. In that case, control is performed such as displaying a menu screen for operating each function of the image forming apparatus 100.

When the user performs a login operation by operating the input device 104, the authentication start control unit 112 causes the display control unit 111 to execute the login screen display process and operates the image pickup device 106 to specify the authentication destination. An image for authentication, that is, an image showing the organization to which the user belongs, and an authentication image including both a biometric information of the user, that is, a face image are taken, and the taken authentication image is transmitted to the authentication device 200.

The image formation control unit 113 sets the image formation unit 107 according to the input operation performed by the user via the input device 104 when the authentication device 200 notifies the authentication success and the user is notified that the image formation is permitted. Control and print the document.

When the image formation control unit 113 executes image formation, the charge control unit 114 generates charge information according to the content of the image formation and transmits it to the authentication device 200.

Next, the authentication device 200 will be described with reference to FIGS. 4 and 5. The authentication device 200 receives an image for specifying an authentication destination from the image forming apparatus 100 and biometric information of a user to be authenticated, and authenticates the authentication destination specified from the image for specifying the authentication destination. The biometric information of the user is transmitted to the server 300 to make an authentication request. FIG. 4 is a hardware configuration diagram of the authentication device 200, and FIG. 5 is a functional block diagram of the authentication device 200. As shown in FIG. 4, the authentication device 200 includes a CPU 201, a memory 202, a storage device 203, and a communication interface 204, and each is connected to a control bus 205.

The CPU 201 is a control microprocessor, and controls the operation of each part of the authentication device 200 based on the control program stored in the storage device 203.

The memory 202 temporarily stores the authentication image received from the image forming apparatus 100. Further, the memory 202 temporarily stores the authentication result and the user information received from the authentication server 300 described later.

The storage device 203 is composed of a hard disk drive (abbreviated as HDD) and a solid state drive (abbreviated as SDD), and stores a control program for controlling each part of the authentication device 200. Further, the storage device 203 stores the company database 215, which will be described later.

The communication interface 204 controls communication for communicating with the image forming apparatus 100 and the authentication server 300 connected via the Internet.

Further, as shown in FIG. 5, the authentication device 200 executes the control program stored in the storage device 203 to execute the authentication image extraction unit 211, the authentication destination identification unit 212, the authentication control unit 213, and the billing processing unit 214. Demonstrate each function of. Further, the company database 215 is stored in the storage device 203.

The authentication image extraction unit 211 obtains an image showing the organization to which the user belongs and biometric information of the user to be authenticated, that is, a user's face image in the present embodiment, from the authentication image received from the image forming apparatus 100. Extract.

The authentication destination specifying unit 212 collates the image showing the organization to which the user belongs, which is extracted by the authentication image extraction unit 211, with the information stored in the company database 215, and identifies the authentication destination. Specifically, the authentication destination specifying unit 212 acquires the information of the authentication destination authentication server to which the same image as the image showing the organization to which the user belongs is associated.

The authentication control unit 213 transmits the face image of the user extracted by the authentication image extraction unit 211 to the authentication server 300 of the authentication destination specified by the authentication destination identification unit 212, and makes an authentication request. Further, when the authentication control unit 213 receives the authentication success information and the user information from the authentication server in response to the authentication request, the authentication control unit 213 notifies the image forming apparatus 100 of the authentication success and permits the user to form an image. Notice.

When the billing processing unit 214 receives the billing information from the image forming apparatus 100, the billing processing unit 214 is an organization that becomes the billing destination according to the billing destination information included in the billing information or the information of the billing server registered in the company database described later. Executes billing processing for the billing server of.

FIG. 6 is a diagram showing an example of the corporate database 215 of the present embodiment. In the company database 215, the authentication destination information 216, the image 217 showing the organization to which the user belongs, and the authentication server information 218 are stored in association with each other. For example, in FIG. 6, “AAA company” corresponds to the authentication destination information 216, “image A” corresponds to the image 217 indicating the organization to which the user belongs, and “100.100.100.XXX” corresponds to the authentication server information 218. It is attached and remembered. In FIG. 6, in order to make the explanation easy to understand, the image 217 showing the organization to which the user belongs is the name of the image and the image data, and an example in which these are stored in the company database 215 has been described. Information on the storage location of the image may be stored in the company database 215. Further, in FIG. 6, an example in which an IP address is specified as the authentication server information 218 is given, but a location on the network of the authentication server may be specified by a URL. Further, although not shown in FIG. 6, in the corporate database 215, a billing server that is a billing destination to be billed when the image forming apparatus 100 executes an image forming process for each authentication destination is provided. It is assumed that the information is associated.

The authentication server 300 is connected to the authentication device 200 via the Internet, receives an authentication request including biometric information transmitted from the authentication device 200, and registers the biometric information in the authentication database stored in the authentication server 300. The user is authenticated by determining whether or not the user has been authenticated. When the biometric information received from the authentication device 200 is registered in the authentication database of the authentication server 300, the authentication server 300 approves that the user has the right to log in to the image forming apparatus 100, and outputs the authentication success information. Reply to the authentication device 200. At that time, the user information associated with the biometric information registered in the authentication device 200 is transmitted to the authentication device 200.

Next, the operation of the authentication system 10 will be described with reference to FIGS. 7 to 9. First, the flow of operation in the image forming apparatus 100 will be described with reference to FIG. 7. Note that FIG. 7 is a flowchart showing the operation of the image forming apparatus 100.

In step S701 of FIG. 7, the display control unit 111 displays the login acceptance screen on the display device 105 of the image forming apparatus 100, and waits for the login operation by the user.

In step S702, when the user performs a login operation by operating the input device 104, the display control unit 111 causes the display device 105 to display the login guidance screen 800 as shown in FIG. At the same time, the authentication start control unit 112 operates the image pickup device 106.

FIG. 8 is a diagram showing an example of the login guidance screen 800. As shown in FIG. 8, the login guidance screen 800 includes a message 810 "Please put a face in the frame" and a display area 820 for displaying an image taken by the image pickup apparatus 106, and displays the user's face. The face detection zone 830 for designating the detection range and the affiliated tissue image detection zone 840 for specifying the range for detecting the image showing the user's affiliated organization are displayed.

In step S703, when the authentication start control unit 112 determines that the user's face is shown in the face detection zone 830 of FIG. 8 and the image showing the user's belonging organization is shown in the belonging tissue image detection zone 840. The image pickup device 106 captures an authentication image including both an image showing the organization to which the user belongs and a face image, and sends an authentication request to the authentication device 200 together with the captured authentication image. The authentication image may be an image showing the organization to which the user belongs and an image of the user's face included in one image taken at one time, or may be an image taken separately. You may.

In step S704, the authentication start control unit 112 determines whether or not the authentication success notification has been received from the authentication device 200.

If the authentication error notification is received instead of the authentication success notification in step S704, that is, if the authentication process is not successful, the process proceeds to step S705, and the display control unit 111 prompts the user to manually input the authentication information. The screen is displayed on the display device 105, and the user manually inputs the authentication information. In this case, the authentication information is the authentication destination information such as the organization name and ID of the user's organization, and the individual authentication information for uniquely identifying the user such as the user ID and password and certifying whether or not the user is the person. And are included.

In the following step S706, the authentication start control unit 112 transmits the authentication information including the manually input authentication destination information and the user's individual authentication information to the authentication device 200, returns to step S704, and waits for the receipt of the authentication success. .. At this time, the user may be requested to manually input both the authentication destination information and the individual authentication information of the user as the authentication information, or may be requested to manually input only the authentication destination information. As for the individual authentication information, the biometric information may be acquired again by the imaging device 106 and transmitted to the authentication device 200.

When the notification of the authentication success is received in step S704, the process proceeds to step S707, the display control unit 111 displays on the display device 105 that the login is successful, and displays the menu screen on the display device 105 from the user. The operation is ready to be accepted. At this time, the operation screen optimized for the user may be displayed on the display device 105. For example, the information of the menu screen set for the authentication destination or the user is acquired from the authentication device 200 or the authentication server 300, and is displayed on the display device 105.

After that, in step S708, when the user gives an instruction such as image formation by operating the input device 104 while visually recognizing the menu screen displayed on the display device 105, the image formation control unit 113 causes the image formation control unit 113 according to the instruction. The 107 is controlled to execute an image forming process such as a print process.

When the image formation is completed, in step S709, the charge control unit 114 generates charge information according to the content of the executed image formation process and transmits it to the authentication device 200. In step S710, the billing control unit 114 receives the notification of the success of the billing process from the authentication device 200, and ends the process.

In the above description, the case where one image is taken by the image pickup device 106 provided in the image forming apparatus 100 has been described, but a plurality of images are continuously taken by the user in the authentication device 200. The image showing the organization to which the image belongs and the biometric information of the user to be authenticated may be extracted from each image continuously captured by the image pickup apparatus 106. Further, in the above description, there is only one image pickup device 106 provided in the image forming apparatus 100, and the case where the image showing the organization to which the user belongs and the face image are taken so as to fit in one shot image has been described. An image pickup device that captures an image indicating the organization to which the user belongs and an image pickup device that captures an image of the user's face may be provided separately, that is, a plurality of image pickup devices 106 may be provided. In that case, the image showing the organization to which the user belongs and the face image may be simultaneously photographed by separate image pickup devices 106, or may be separately photographed and extracted so as to be slightly back and forth in time.

Next, the flow of operation in the authentication device 200 will be described with reference to FIG. FIG. 9 is a flowchart showing the flow of operation in the authentication device 200.

In step S901 of FIG. 9, the authentication device 200 waits for the authentication request to be received from the image forming device 100 together with the authentication image.

In step S902, the authentication device 200 receives an authentication request from the image forming device 100. An authentication image is attached to the authentication request transmitted from the image forming apparatus 100. The received authentication image is temporarily stored in the memory 202. The authentication image includes an image showing the organization to which the user belongs and biometric information of the user to be authenticated, that is, a face image.

In step S903, the authentication image extraction unit 211 extracts an image showing the organization to which the user belongs and a face image of the user from the authentication image. The authentication image extraction unit 211 extracts an image for specifying the authentication destination, that is, an image showing the organization to which the user belongs, and a biometric information of the user, that is, a face image, from one image received from the image forming apparatus 100. .. The image showing the organization to which the user belongs and the face image are not limited to being extracted from one image, and may be extracted from different images simultaneously or sequentially received and acquired from the image forming apparatus 100. good. The image showing the organization to which the user belongs and the face image may be extracted by the authentication device 200 or may be extracted by the image forming apparatus 100.

In step S904, the authentication destination specifying unit 212 collates the image showing the organization to which the user belongs extracted by the authentication image extraction unit 211 with the information stored in the company database 215, and identifies the authentication destination. Specifically, the information of the authentication server of the authentication destination associated with the same image as the image showing the organization to which the user belongs is acquired.

In step S905, the authentication destination specifying unit 212 determines whether or not the authentication destination can be specified. If the authentication destination cannot be specified, the process proceeds to step S906, the authentication control unit 213 sends an authentication error notification to the image forming apparatus 100, and returns to step S901.

If the authentication destination can be specified in step S905, the process proceeds to step S907, and the authentication control unit 213 refers to the authentication information, that is, the authentication image extraction unit, for the authentication server 300 of the authentication destination specified by the authentication destination identification unit 212. The user's face image extracted by 211 is transmitted, an authentication request is made, and the reception of the authentication result is awaited.

In step S908, the authentication control unit 213 determines whether or not the authentication success information and the user information have been received from the authentication server 300 that has transmitted the authentication request. If the authentication success information is not received, that is, if the authentication is not successful, in step S906, the authentication control unit 213 sends an authentication error notification to the image forming apparatus 100, and returns to step S901.

On the other hand, when the authentication success information is received, that is, when the authentication is successful, the process proceeds to step S909 to notify the image forming apparatus 100 of the authentication success and transmit the user information received from the authentication server 300.

When the billing information is received from the image forming apparatus 100 in step S910, the billing processing unit 214 charges the billing destination according to the billing destination information included in the billing information when the billing information is received from the image forming apparatus 100. Execute billing processing for the server.

In step S911, the charge processing unit 214 sends a notification of the success of the charge processing to the image forming apparatus 100, and ends the process.

In the above embodiment, an example has been described in which the authentication device 200 acquires a face image as the biometric information of the user from the image forming apparatus 100 and transmits the face image as the biometric information to the authentication server 300. However, the present invention is not limited to this. The types of biometric information authenticated by each of the authentication servers 310, 320, and 330 are registered in the company database 215, first, an image for identifying the organization to which the user belongs is acquired from the image forming apparatus 100, and then the authentication apparatus. The 200 specifies the type of biometric information determined according to the authentication destination specified by the image for identifying the organization to which the user belongs, and is determined for the image forming apparatus 100 according to the authentication destination. You may be asked to acquire biometric information. In this case, it is necessary to attach a biometric information acquisition device for acquiring various biometric information to the image forming apparatus 100 in addition to the image pickup apparatus 106.

For example, biometric authentication includes, for example, fingerprint authentication, vein authentication, and iris authentication in addition to face authentication, and biometric information includes fingerprint information, vein information, and iris information in addition to the user's face image. There is. In order to utilize these biometrics, it is necessary to provide the image forming apparatus 100 with a fingerprint authentication apparatus, a vein authentication apparatus, and an iris authentication apparatus in addition to the image pickup apparatus 106.

Further, in the above description, when the user operates the input device 104 of the image forming apparatus 100 to perform a login operation, the image indicating the user's organization by the image pickup apparatus 106 and the living body of the user to be authenticated. Although the example of photographing the information has been described, the present invention is not limited to this. For example, the image forming apparatus 100 is provided with an approach sensor such as a human sensor, and when the approach sensor detects that the user is approaching, that is, the image forming apparatus 100 is within a predetermined distance range, the user can perform a login operation. The image pickup device 106 is operated without waiting, and the image is automatically acquired by taking an image showing the user's affiliation tissue worn by the user and a face image which is biometric information of the user to be authenticated. You may do so.

Further, in the above description, the case where the image showing the organization to which the user belongs is fixedly registered in the corporate database 215 in advance is described, but the present invention is not limited to this, and the image showing the organization to which the user belongs is not limited to this. May be changed on a daily basis. In that case, the image pickup device is connected to the authentication device 200, the image to be registered by the image pickup device is taken every day when the image is changed, and the image is registered in the company database 215 in association with the authentication destination. When using the shared office, the user receives a card on which an image registered associated with the authentication destination is printed, and when logging in to the image forming apparatus 100, the user holds the received card in front of the image pickup apparatus 106. , To be taken as an image showing the organization to which the user belongs.

In each of the above embodiments, the processor refers to a processor in a broad sense, and is a general-purpose processor (for example, CPU: Central Processing Unit, etc.) or a dedicated processor (for example, GPU: Graphics Processing Unit, ASIC: Application Specific Integrated). Circuit, FPGA: Field Programmable Gate Array, programmable logic device, etc.).

Further, the operation of the processor in each of the above embodiments may be performed not only by one processor but also by a plurality of processors existing at physically separated positions in cooperation with each other. Further, the order of each operation of the processor is not limited to the order described in each of the above embodiments, and may be changed as necessary.

10 Authentication system 100 Image forming device 101 CPU
102 Memory 103 Storage device 104 Input device 105 Display device 106 Image pickup device 107 Image formation unit 108 Communication interface 109 Control bus 111 Display control unit 112 Authentication start control unit 113 Image formation control unit 114 Billing control unit 200 Authentication device 201 CPU
202 Memory 203 Storage device 204 Communication interface 205 Control bus 211 Authentication image extraction unit 212 Authentication destination identification unit 213 Authentication control unit 214 Billing processing unit 215 Corporate database 300, 310, 320, 330 Authentication server

Claims (12)

Equipped with a processor
The processor accepts an image for specifying an authentication destination and biometric information of a user to be authenticated, and the living body of the user to be authenticated for the authentication destination specified by the image. An authentication device that controls to send information and make an authentication request. The authentication device according to claim 1, wherein the processor controls to extract an image for specifying the authentication destination and biometric information of a user to be authenticated from one image. The authentication device according to claim 1, wherein the processor controls the image for specifying the authentication destination and the biometric information of the user to be authenticated at the same time. Connected to the image pickup device,
The authentication according to claim 1 or 2, wherein the processor controls the image pickup device to capture an image so as to include both an image for identifying the authentication destination and biometric information of a user subject to the authentication. Device. The authentication device according to claim 1, wherein the processor controls to extract an image for specifying the authentication destination and biometric information of a user to be authenticated from separate images. Connected to the image pickup device,
The processor controls the image pickup device to continuously capture an image, and the image pickup device continuously receives an image for specifying the authentication destination and biometric information of a user to be authenticated. The authentication device according to claim 5, which controls to extract from each captured image. The authentication device according to claim 1, wherein the processor acquires biometric information determined according to an authentication destination specified by the image and controls the processor to make an authentication request. Connected to the motion sensor,
The processor controls to acquire an image for identifying the authentication destination and biometric information of the user to be authenticated when the motion sensor detects the approach of the user. Item 7. The authentication device according to any one of Items 1 to 7. Connected to the display device,
The authentication device according to any one of claims 1 to 8, wherein the processor controls to display an input screen prompting the user to input authentication information on the display device when the authentication process is not successful. Connected to the display device,
The authentication device according to any one of claims 1 to 8, wherein the processor permits the user to display an optimized operation screen on the display device when the authentication process is successful. Connected to the image forming device,
The authentication device according to any one of claims 1 to 10, wherein the processor controls to charge an authentication destination for which an authentication process is successful according to a process executed by the image forming apparatus. To the computer that configures the authentication device,
The image for specifying the authentication destination and the biometric information of the user to be authenticated are accepted, and the biometric information of the user to be authenticated is transmitted to the authentication destination specified by the image. A program that makes an authentication request.

Images