JP4827392B2 - System and method for preventing unauthorized use of computer - Google Patents

Description

  The present invention relates to a system for preventing unauthorized use of a computer and a method thereof for preventing unauthorized use of a computer by a third party who does not have use authority.

  2. Description of the Related Art Conventionally, as a technique for preventing unauthorized use of a computer by a third party who does not have use authority, an information storage medium such as an IC card in which ID information for authenticating the person in advance is stored when the computer is used There is already known a security technology that makes it possible to use a computer on the condition that authentication is performed by collation processing by, and personal authentication is established. (For example, see Patent Document 1)

In these security technologies, authentication processing of the person is performed based on ID information stored in an information storage medium such as an IC card.
In addition, these information storage media are not always owned by the person himself / herself, and must be stored in a drawer of a desk placed in a room equipped with a computer or the like of a company. However, there is a problem in that there is a risk that a third party who attempts to act illegally enters a room, searches for these information storage media, and performs various illegal acts using a computer.
JP 2003-30155 A

  The present invention prevents a computer from being used even when a third party who does not have the authority to use it illegally obtains an information storage medium such as an IC card of another person and performs an authentication process to use the computer. Thus, there are provided an unauthorized use prevention system for a computer and a method for ensuring the security of the computer.

  An unauthorized use prevention system for a computer according to the present invention is a computer unauthorized use prevention system for preventing unauthorized use of a computer by a third party who does not have use authority. And an information storage medium provided with a memory having at least a flag storage area, and means for writing a flag indicating entry into the flag storage area of the information storage medium provided near a doorway of a room in which the computer is provided. A first device, a second device provided to be capable of transmitting information to and from the computer, and having a reading means for reading the presence or absence of a flag in a flag storage area of the information storage medium; and the information storage medium from the second device Flag confirmation means for confirming whether or not a flag is written in the flag storage area, If it is confirmed that the flag lug confirmation means is written, characterized by comprising, with the computer and means for controlling the state that allows the process execution of the computer.

  In the unauthorized use prevention system for a computer according to the present invention, the memory of the information storage medium has a unique information storage area in which unique information that can identify an individual is stored, and the first device includes the unique information storage area. Reading means for reading unique information, storage means for storing information to be checked against the unique information, checking means for checking the unique information read by the reading means with information stored in the storage means, and the checking And means for writing a flag indicating entry into the flag storage area of the information storage medium when the matching is confirmed by the matching processing by the means.

  Furthermore, the computer unauthorized use prevention system of the present invention is a computer unauthorized use prevention system for preventing unauthorized use of a computer by a third party who does not have use authorization, and is a user having authority to use the computer. An information storage medium having a memory having at least a flag storage area in which a flag is stored, and a vicinity of a doorway of a room in which the computer is provided, and stored in the flag storage area of the information storage medium A first device having a means for clearing a flag, a second device provided with a means for transmitting information to and from the computer, and having a reading means for reading the presence or absence of a flag in a flag storage area of the information storage medium, The computer writes a flag from the second device to the flag storage area of the information storage medium. Flag confirming means for confirming whether or not the flag is written, and means for controlling the computer to execute a process when it is confirmed that the flag is not written by the flag confirming means. It is characterized by doing.

  In the unauthorized use prevention system for a computer according to the present invention, the memory of the information storage medium has a unique information storage area in which unique information that can identify an individual is stored, and the first device includes the unique information storage area. Reading means for reading unique information, storage means for storing information to be checked against the unique information, checking means for checking the unique information read by the reading means with information stored in the storage means, and the checking And a means for clearing the flag indicating entry into the flag storage area of the information storage medium when the matching is confirmed by the matching processing by the means.

  Furthermore, the system for preventing unauthorized use of a computer according to the present invention is characterized in that the information storage medium is a contact IC card.

  In the unauthorized use prevention system for a computer according to the present invention, the information storage medium is a non-contact IC card.

  Furthermore, in the computer unauthorized use prevention system of the present invention, the information storage medium is a mobile phone.

  Also, the method for preventing unauthorized use of a computer according to the present invention is a method for preventing unauthorized use of a computer for preventing unauthorized use of a computer by a third party who does not have the authority to use the computer. When entering the room from the entrance, the step of writing the flag in the flag storage area of the information storage medium possessed by the user having the authority to use the computer by the first device and the processing by the computer And a step of identifying whether or not a flag is written to the information storage medium, and a step of enabling processing by the computer on condition that the flag is written to the information storage medium. It is characterized by.

  Furthermore, the method for preventing unauthorized use of a computer according to the present invention is stored in an information storage medium possessed by a user who has authority to use the computer when entering the room from the entrance of the room in which the computer is provided. A step of reading the unique information, a step of collating the unique information, and a step of writing a flag in the flag storage area in the first device when collation is matched in the collation process. It is characterized by.

  Also, the method for preventing unauthorized use of a computer according to the present invention is a method for preventing unauthorized use of a computer for preventing unauthorized use of a computer by a third party who does not have the authority to use the computer. When entering the room from the entrance, the first device erases the flag written in the flag storage area of the information storage medium possessed by the user having the authority to use the computer, and the processing by the computer When performing, identifying whether a flag is written to the information storage medium, enabling processing by the computer on the condition that no flag is written to the information storage medium, It is characterized by comprising.

  Further, when entering the room from the entrance of the room equipped with the computer, the step of reading the unique information stored in the information storage medium possessed by the user having the authority to use the computer, and the unique information And a step of writing a flag by the first device in the flag storage area when the collation is matched in the collation process.

  Further, the method for preventing unauthorized use of a computer according to the present invention is a computer unauthorized use prevention system for preventing unauthorized use of a computer by a third party who does not have use authority, wherein the user has authority to use the computer. An information storage medium possessed by the computer, a first device provided near a doorway of a place where the computer is provided, and having means for writing location specifying information of the place where the user enters the information storage medium, A second device having a reading means for reading the location specifying information stored in the information storage medium and capable of transmitting information to a computer; and a storage means storing the location specifying information of the location provided with the computer And the location specifying information read by the second device and the location specifying information stored in the storage means And specific information checking means, when the comparison result at said location identifying information collating means matches, characterized by comprising: a computer having a means for controlling the bootable the computer.

  Furthermore, in the method for preventing unauthorized use of a computer according to the present invention, the computer includes an erasing unit that erases the location specifying information stored in the information storage medium when the computer starts up normally. Features.

  Further, the method for preventing unauthorized use of a computer according to the present invention is a computer unauthorized use prevention system for preventing unauthorized use of a computer by a third party who does not have use authority, wherein the user has authority to use the computer. An information storage medium possessed by the computer, a first apparatus provided near a doorway of a room in which the computer is provided, and means for writing the user's entry time information to the information storage medium, the computer and the information A second device having means for reading entry time information stored in the information storage medium and capable of transmitting; storage means for storing time zone information capable of starting the computer; and the second device. It is verified whether or not the entry time of the entry time information read in is within the time zone information stored in the storage means. And a computer having time verification means and means for controlling the computer so that it can be activated when it is determined that the verification result by the time verification means is within a time zone. To do.

  Furthermore, in the method for preventing unauthorized use of a computer according to the present invention, the computer is provided with an erasure unit that erases the entry time information stored in the information storage medium when the computer is normally started. Features.

In the computer fraud prevention system and method according to the present invention, the computer can be used only when the computer user enters the room from the entrance of the room where the computer is provided. Even if a third party who does not have the authority to use illegally obtains an information storage medium such as a non-contact IC card of another person, illegally enters the room where the computer is provided and tries to use the computer. However, the locked state of the computer cannot be released, and the security of the computer can be maintained.
In addition, once the use of the computer is terminated, the computer cannot be used unless it is again subjected to the verification process at the time of entering the room. Even if an information storage medium such as an IC card is used without permission, the computer does not function, so that the security of the computer can be ensured.

In addition, the present invention provides a computer in which the room information written in the information storage medium and the room information stored in the computer do not match when entering from the entrance of the room equipped with the computer. Can not be started, so it is possible to manage computer users in each room equipped with computers, so that the use of computers can be restricted according to the use authority of computers for each user. There is an effect that it is possible to prevent unauthorized use of a computer of a person who does not.
Furthermore, since the room information stored in the information storage medium is deleted when the computer starts up normally, the computer cannot be illegally started up again by using the information storage medium in which the room information is already stored. Therefore, there is an effect that unauthorized use can be prevented.

Furthermore, the present invention is based on the time of bootable time zone information stored in the computer based on the entrance time information written in the information storage medium when entering from the entrance of the room equipped with the computer. Since the computer cannot be started even if it enters the room illegally in the middle of the night and tries to use the computer, there is an effect that it is possible to prevent unauthorized use of the computer by a person who does not have use authority. .
Furthermore, when the computer starts normally, the entry time information stored in the information storage medium is erased. Therefore, the entry time information in which the room information is already stored can be used again to start the computer illegally. Since this is not possible, there is an effect that unauthorized use can be prevented.

DESCRIPTION OF THE PREFERRED EMBODIMENTS Hereinafter, an unauthorized use prevention system and method for a computer according to an embodiment of the present invention will be described in detail with reference to the drawings.
FIG. 1 is a diagram for explaining an outline of a computer unauthorized use prevention system according to a first embodiment of the present invention, FIG. 2 is a plan view of a non-contact IC card, and FIG. 3 is a cross-sectional view taken along line AA in FIG. 4 is a plan view of an IC tag built in a contactless IC card, FIG. 5 is a system block diagram of an unauthorized use prevention system for a computer according to the first embodiment of the present invention, and FIG. FIG. 7 is a flowchart for explaining a processing procedure and a computer unauthorized use prevention method in the computer unauthorized use prevention system according to the first embodiment of the invention. FIG. 7 is an overview of the computer unauthorized use prevention system according to the second embodiment of the invention. FIG. 8 is a system block diagram of an unauthorized use prevention system for a computer according to the second embodiment of the present invention, and FIG. 9 is a computer according to the second embodiment of the present invention. FIG. 10 is a diagram for explaining the outline of the unauthorized use prevention system for computers according to the third embodiment of the present invention, and FIG. 11 is the third embodiment of the present invention. FIG. 12 is a flowchart for explaining a processing procedure in the unauthorized use prevention system for computers according to the third embodiment of the present invention.

First, an outline of the unauthorized use prevention system for a computer according to the first embodiment of the present invention will be described with reference to FIG.
A computer 1 for preventing unauthorized use according to the present invention is placed in a room 4 where identity verification is performed by ID verification using a non-contact IC card 3 as an information storage medium when a user 2 enters the room. It is.
The entrance / exit 5 of the room 4 is provided with an entrance management device 6 as a first device. The entrance / exit management device 6 controls the open / close state of the automatic door 7 provided in the entrance / exit 5 and has the authority to enter the room. It is managed to prevent unauthorized entry by unauthorized third parties.
The entrance management device 6 is configured to be able to transmit information wirelessly to and from the non-contact IC card 3, read information stored in the non-contact IC card 3, and read information to the non-contact IC card 3. It is possible to write information.

Further, the computer 1 is provided with an IC card reader / writer 9 as a second device so that information can be transmitted to the computer 1.
The IC card reader / writer 9 is configured to be able to transmit information wirelessly to and from the non-contact IC card 3, read information stored in the non-contact IC card 3, and send information to the non-contact IC card 3. The information reading process and the writing process can be controlled by a control signal from the computer 1.

The non-contact IC card 3 which is an information storage medium has a configuration in which a non-contact IC tag 8 is built in the card bases 3a and 3b, for example, as shown in FIGS.
The non-contact IC tag 8 is also referred to as, for example, a non-contact data carrier or RFID. As shown in FIG. 4, a transmission / reception means 88 formed of a coil pattern is formed on a base material 81 such as plastic, and the coil, capacitive element, Thus, a resonance circuit is formed so as to receive and transmit radio waves having a constant frequency.
As another method, power transmission and data transmission may be performed by electromagnetic induction of a carrier wave from a reader / writer.
Generally, a frequency band of 135 kHz (medium wave), 13.56 MHz, and 2.45 GHz (microwave) is used.

In the case of the illustrated example, the transmission / reception means 88 formed of a coil pattern forms a jumping circuit on the back surface of the substrate 81 by the conductive member 84 and is connected to the bumps on the back surface of the IC chip 82 by the coil connection terminals 88C.
The IC chip 82 is provided with a CPU as a control means and a memory as a storage means.

In the illustrated example, the capacitive element is built in the IC chip 82.
Such a non-contact IC tag 8 is formed by forming a coil pattern by photo etching or etching after resist printing on a metal foil such as an aluminum foil laminated on a resin base material, mounting an IC chip 82, and providing a protective coating. It can be formed by providing.
The size can also be set to about 30 mm × 30 mm or less.

As the resin base material 81 used for the non-contact IC tag 8, various materials such as PET, polypropylene, polyethylene, polystyrene, and nylon can be used, and paper may be used.
A thickness of 15 to 300 μm can be used, but 20 to 100 μm is more preferable from the viewpoint of strength, workability, cost, and the like.
Although copper foil, aluminum foil, or iron foil can be used as the metal foil, aluminum foil is preferable from the viewpoint of cost and workability, and the thickness is preferably about 6 to 50 μm.

In reading and writing information recorded on these non-contact IC tags 8, a calling signal that resonates from the IC card reader / writer 9 to the non-contact IC tag 8 is transmitted at a distance of several centimeters to several tens of centimeters. A response signal from the non-contact IC tag can be read, and information recorded in a memory that is a storage unit of the IC chip 82 of the non-contact IC tag 8 can be read or information can be written.
Further, ID information for authenticating the person himself / herself is registered in advance in the memory that is a storage unit of the IC chip 82.

Next, the system configuration of the unauthorized computer use prevention system according to the first embodiment of the present invention will be described with reference to FIG.
The entrance management device 6, which is a first device provided near the entrance / exit 5 of the room 4 provided with a computer, includes a transmission / reception means 10, a collation means 11, a door opening / closing means 12, a flag writing means 13, and a storage means. 14 and control means 15.
The transmission / reception means 10 is an antenna that performs wireless transmission / reception of information with the transmission / reception means 88 of the non-contact IC card 3.
The collating unit 11 has a function of collating the ID information received from the non-contact IC card 3 with the collating ID information stored in the storage unit 14 in advance. If they match in the process, the door opening / closing means 12 functions to open the automatic door 7.

Further, the flag writing means 13 is provided in the storage means 90 of the non-contact IC card 3 with respect to the transmission / reception means of the non-contact IC card 3 when the flag writing means 13 matches in the verification processing by the verification means 11. It has a function of transmitting flag writing information so that a flag indicating entry into the flag storage area is written.
The storage means 14 stores verification ID information for verification with the ID information received from the non-contact IC card 3.

Next, the computer 1 is provided with display means 16, flag confirmation means 17, computer lock control means 18, flag erasure means 19, storage means 20, input means 21, control means 22, and the like.
The flag confirmation means 17 transmits a signal from the IC card reader / writer 9 to the non-contact IC card 3, and whether the flag is written in the flag storage area provided in the storage means 90 of the non-contact IC card 3. It has a function to confirm whether or not.

The computer lock control means 18 has a function of controlling the computer 1 in a usable state and an unusable locked state according to the flag writing state in the flag confirmation means 17. Only when it is confirmed that data is written in the flag storage area provided in the storage means 90 of the contact IC card 3, the computer 1 is controlled to be usable.
In addition, when the use of the computer 1 is terminated, the computer 1 has a function of controlling the computer 1 again so that the computer 1 cannot be used.

The flag erasing means 19 is provided in the storage means 90 of the non-contact IC card 3 by transmitting a signal from the IC card reader / writer 9 to the non-contact IC card 3 when the use of the computer 1 is terminated. A function of erasing the flag written in the flag storage area.
When the flag in the flag storage area is erased, the user of the computer 1 once exits from the entrance / exit 5 of the room 4 where the computer 1 is installed, and is again provided near the entrance / exit 5 of the room 4. The entrance management device 6 as the first device needs to perform collation processing based on the ID information of the non-contact IC card 3 by the collation means 11, and the collation processing using the non-contact IC card 3 at the entrance 5 of the room 4 Thus, the system is configured so that the computer 1 cannot be used when the matching is not performed.

  In addition, when the use of the computer 1 is terminated, the ID information stored in the non-contact IC card 3 when the computer 1 is re-entered from the entrance / exit 5 of the room 4 by bringing the computer 1 into a locked state again. Can be saved by the IC card reader / writer 9 or the room entrance management device 6.

In the unauthorized use prevention system for a computer according to another embodiment of the present invention, a flag may be written in advance in the flag storage area of the information storage medium.
In the case of this system, a means for deleting the flag stored in the flag storage area of the information storage medium is provided in the room entrance management device, which is the first device, in the case where collation coincides in the collation processing by the collation means.
Further, the computer confirms whether or not a flag is written in the flag storage area of the information storage medium, and the computer confirms that the flag is written by the flag confirmation unit. And a means for controlling to a state in which the process can be executed.

Next, the processing procedure of 1st Embodiment of this invention is demonstrated based on the flowchart of FIG.
First, when a user who intends to use the computer 1 enters the room from the entrance of a room equipped with the computer, the user contacts the non-contact IC card 3 as an information storage medium with the room entrance management device 6. Then, the room entry management device 6 reads the ID information stored in the storage means 90 of the non-contact IC card 3. (Step S1)
The collation means 11 of the room entry management device 6 performs collation processing between the read ID information and the ID information registered in advance in the storage means 14 of the room entry management device 6. (Step S2)

If there is a match in this check process, a signal for writing a flag is transmitted from the transmission / reception means 10 to the non-contact IC card 3 by the flag writing means 13 of the room entry management device 6. A flag is written in the flag storage area. (Step S3)
At substantially the same time, the automatic door 7 is opened by the door opening / closing means 12 so that the room can be entered. (Step S4)

Then, the user who enters the room from the entrance next brings the non-contact IC card 3 close to the IC card reader / writer 9 provided in the computer 1 and writes the flag from the write state of the flag storage area of the non-contact IC card 3. Or not. (Step S5)
Here, if it is determined that the flag is written in the flag storage area, the computer lock control means 18 unlocks the computer, and the computer is ready for use. (Step S6)

  If it is determined that no flag is written in the flag storage area, the computer lock control means 18 does not unlock the computer and the user cannot use the computer. Quit the computer without using it.

  Further, in the verification process with the ID information in step S2, if the verification does not match, the flag writing unit 13 of the room entry management device 6 writes a flag from the transmission / reception unit 10 to the non-contact IC card 3. No signal is transmitted, the automatic door 7 remains closed, and the process is terminated without entering the room.

Next, when the user of the computer 1 ends the use of the computer 1, the flag erasing unit 19 causes the IC card reader / writer 9 to store the non-contact IC card 3 in the flag storage area of the non-contact IC card 3. A signal for erasing the written flag is transmitted and the flag is erased in the flag storage area, so that the computer 1 cannot be used. (Step S7)
By this process, when the user uses the computer 1 again, it is necessary to perform the verification process based on the ID information at the entrance again, so that the computer 1 can only be used by a regular occupant. It is managed.
Furthermore, if the verification is not permitted in the time information verification process in the computer 1, an alarm sound may be generated or an e-mail may be transmitted to notify the fraud.

If the flag is written in advance in the flag storage area of the information storage medium, the collation process is performed by the collating means, and when the collation is matched, the flag is stored in the flag storage area of the information storage medium. This step is to erase the existing flag.
Then, the computer confirms whether or not the flag is written in the flag storage area of the information storage medium, and when the flag confirmation means confirms that the flag is written, the computer can execute the process. Control to the state to do.

  The information storage medium is not limited to a non-contact IC card, and may be a contact IC card or a mobile phone.

Next, an outline of the unauthorized computer use prevention system according to the second embodiment of the present invention will be described with reference to FIG.
The computer 1 that prevents unauthorized use according to the second embodiment of the present invention is provided in a predetermined place such as a room, a store, a floor, or a building.
For example, in the case of preventing fraud of the computer 1 provided in a predetermined room, when the user 2 enters the room, identity verification is performed by an ID collation process using a non-contact IC card 3 which is an information storage medium. It is placed inside the room 4.
The entrance / exit 5 of the room 4 is provided with an entrance management device 6 as a first device. The entrance / exit management device 6 controls the open / close state of the automatic door 7 provided in the entrance / exit 5 and has the authority to enter the room. It is managed to prevent unauthorized entry by unauthorized third parties.
The entrance management device 6 is configured to be able to transmit information wirelessly to and from the non-contact IC card 3, read information stored in the non-contact IC card 3, and read information to the non-contact IC card 3. It is possible to write information.

Further, the computer 1 is provided with an IC card reader / writer 9 as a second device so that information can be transmitted to the computer 1.
The IC card reader / writer 9 is configured to be able to transmit information wirelessly to and from the non-contact IC card 3, read information stored in the non-contact IC card 3, and send information to the non-contact IC card 3. The information reading process and the writing process can be controlled by a control signal from the computer 1.
In addition, ID information for authenticating the identity of the person is registered in advance in a memory that is a storage unit of the non-contact IC card 3.

Next, a system configuration of a computer unauthorized use prevention system according to the second embodiment of the present invention will be described with reference to FIG.
The entrance management device 6, which is a first device provided near the entrance / exit 5 of the room 4 provided with the computer, includes a transmission / reception means 10, a collation means 11, a door opening / closing means 12, a room identification information writing means 23, The storage unit 14 and the control unit 15 are included.
The transmission / reception means 10 is an antenna that performs wireless transmission / reception of information with the transmission / reception means 88 of the non-contact IC card 3.
The collating unit 11 has a function of collating the ID information received from the non-contact IC card 3 with the collating ID information stored in the storage unit 14 in advance. If they match in the process, the door opening / closing means 12 functions to open the automatic door 7.

Further, the room identification information writing unit 23 can identify the room in which the transmission / reception unit 10 enters the room with respect to the transmission / reception unit of the non-contact IC card 3 when the verification processing by the verification unit 11 matches. By transmitting the room specifying information such as, the room specifying information is stored in the storage means 90 of the non-contact IC card 3.
The storage means 14 stores verification ID information for verification with the ID information received from the non-contact IC card 3.

Next, the computer 1 is provided with a display means 16, a computer lock control means 18, a storage means 20, an input means 21, a control means 22, a room specific information collating means 24, a room specific information erasing means 25, and the like.
In the storage unit 20, room identification information such as a room number that can identify the room in which the computer 1 is installed is registered in advance.
The room identification information collating unit 24 has a function of performing a collation process between the room identification information read from the non-contact IC card 3 by the IC card reader / writer 9 and the room identification information registered in the storage unit 20 in advance. Yes.

The computer lock control means 18 has a function of controlling the computer 1 in a usable state and an unusable locked state based on the result of the collation processing by the room specific information collating means 24. In the process, the computer 1 is controlled so that it can be used only when collation coincides.
In addition, when the use of the computer 1 is terminated, the computer 1 has a function of controlling the computer 1 again so that the computer 1 cannot be used.

When the use of the computer 1 is terminated, the room identification information erasing unit 25 transmits a signal from the IC card reader / writer 9 to the non-contact IC card 3 and writes it in the storage unit 90 of the non-contact IC card 3. It has a function to delete the room specific information.
When the room specifying information is deleted, the user of the computer 1 once exits from the entrance / exit 5 of the room 4 in which the computer 1 is installed, and then again the first information provided near the entrance / exit 5 of the room 4. It is necessary to perform verification processing based on the ID information of the non-contact IC card 3 by the verification means 11 by the entrance management device 6 which is the first device, and in the verification processing using the non-contact IC card 3 at the entrance 5 of the room 4 The system is configured so that the computer 1 cannot be used when the collation is not matched.

  In addition, when the use of the computer 1 is terminated, the ID information stored in the non-contact IC card 3 when the computer 1 is re-entered from the entrance / exit 5 of the room 4 by bringing the computer 1 into a locked state again. Can be saved by the IC card reader / writer 9 or the room entrance management device 6.

Next, the processing procedure of 2nd Embodiment of this invention is demonstrated based on the flowchart of FIG.
First, when a user who intends to use the computer 1 enters the room from the entrance of a room equipped with the computer, the user contacts the non-contact IC card 3 as an information storage medium with the room entrance management device 6. Then, the room entry management device 6 reads the ID information stored in the storage means 90 of the non-contact IC card 3. (Step S8)
The collation means 11 of the room entry management device 6 performs collation processing between the read ID information and the ID information registered in advance in the storage means 14 of the room entry management device 6. (Step S9)

If there is a match in this check process, the room specifying information writing means 23 of the room entry management device 6 sends a signal for writing the room specifying information from the transmitting / receiving means 10 to the non-contact IC card 3. Room identification information is written to the contact IC card 3. (Step S10)
At substantially the same time, the automatic door 7 is opened by the door opening / closing means 12 so that the room can be entered. (Step S11)

Then, the user who has entered the room from the entrance brings the non-contact IC card 3 close to the IC card reader / writer 9, reads the room specifying information stored in the storage means of the non-contact IC card 3, and stores the room specifying information in the computer 1. Send to. (Step S12)
Next, in the computer 1, the room identification information read by the IC card reader / writer 9 and the room identification information registered in the storage unit 20 are collated. (Step S13)

As a result of the collation processing, when the collation coincides, the computer lock control means 18 is unlocked and the computer is controlled so that it can be used. (Step S14)
If the collation does not match as a result of the collation process, the computer cannot be used and the user cannot use the computer.

  Further, in the collation process with the ID information in step S9, if the collation does not match, the room identification information writing unit 23 of the room entry management device 6 sends the room identification information from the transmission / reception unit 10 to the non-contact IC card 3. Is not transmitted, the automatic door 7 remains closed, and the process is terminated without entering the room.

Next, when the user of the computer 1 terminates the use of the computer 1, the storage means for the non-contact IC card 3 is transferred from the IC card reader / writer 9 to the non-contact IC card 3 by the room specific information erasing unit 25. A signal for erasing the room specifying information written in 90 is transmitted to make the computer 1 unusable. (Step S15)
By this process, when the user uses the computer 1 again, it is necessary to perform the verification process based on the ID information at the entrance again, so that the computer 1 can only be used by a regular occupant. It is managed.

Further, when the room specifying information written in the storage means 90 of the non-contact IC card 3 is erased, an IC card reader / writer is provided at the exit of the room 4 instead of using the computer 1 to When the user leaves the room, the room specifying information written in the storage means 90 of the non-contact IC card 3 may be erased.
Further, in the room identification information collating process in the computer 1, if the collation does not match, an alarm sound may be generated or an e-mail may be transmitted to notify the fraud.
In the above description of the second embodiment, a room has been described as an example of a place. However, a similar system can be used even if the place is, for example, a store, a floor, or a building. .

Next, an outline of a computer unauthorized use prevention system according to the third embodiment of the present invention will be described with reference to FIG.
A computer 1 for preventing unauthorized use according to the present invention is placed in a room 4 where identity verification is performed by ID verification using a non-contact IC card 3 as an information storage medium when a user 2 enters the room. It is.
The entrance / exit 5 of the room 4 is provided with an entrance management device 6 as a first device. The entrance / exit management device 6 controls the open / close state of the automatic door 7 provided in the entrance / exit 5 and has the authority to enter the room. It is managed to prevent unauthorized entry by unauthorized third parties.
The entrance management device 6 is configured to be able to transmit information wirelessly to and from the non-contact IC card 3, read information stored in the non-contact IC card 3, and read information to the non-contact IC card 3. It is possible to write information.

Further, the computer 1 is provided with an IC card reader / writer 9 as a second device so that information can be transmitted to the computer 1.
The IC card reader / writer 9 is configured to be able to transmit information wirelessly to and from the non-contact IC card 3, read information stored in the non-contact IC card 3, and send information to the non-contact IC card 3. The information reading process and the writing process can be controlled by a control signal from the computer 1.
In addition, ID information for authenticating the identity of the person is registered in advance in a memory that is a storage unit of the non-contact IC card 3.

Next, a system configuration of a computer unauthorized use prevention system according to a third embodiment of the present invention will be described with reference to FIG.
The entrance management device 6, which is a first device provided near the entrance / exit 5 of the room 4 provided with the computer, includes a transmission / reception means 10, a collation means 11, a door opening / closing means 12, an entrance time information writing means 26, The storage unit 14 and the control unit 15 are included.
The transmission / reception means 10 is an antenna that performs wireless transmission / reception of information with the transmission / reception means 88 of the non-contact IC card 3.
The collating unit 11 has a function of collating the ID information received from the non-contact IC card 3 with the collating ID information stored in the storage unit 14 in advance. If they match in the process, the door opening / closing means 12 functions to open the automatic door 7.

The room entry time information writing unit 26 transmits the time information when the transmission / reception unit 10 enters the room to the transmission / reception unit of the non-contact IC card 3 in the case of a match in the verification process by the verification unit 11. It has a function of writing room entry time information to the storage means 90 of the IC card 3.
The storage means 14 stores verification ID information for verification with the ID information received from the non-contact IC card 3.

Next, the computer 1 includes a display unit 16, a computer lock control unit 18, a storage unit 20, an input unit 21, a control unit 22, a time verification unit 27, an entry time information erasing unit 28, and the like.
In the storage unit 20, time zone information capable of starting the computer 1 is registered in advance.
The time verification means 27 collates the room entry time information read from the non-contact IC card 3 by the IC card reader / writer 9 with the time zone information registered in the storage means 20 in advance, and It has a function of verifying whether or not the room entry time is within the time zone of the time zone information registered in advance in the storage means 20.

  The computer lock control means 18 has a function of controlling the computer 1 in a usable state and a locked state in which the computer 1 cannot be used according to the result of verification by the time verification means 27. The computer 1 is controlled so that it can be used only when it is within the time zone information registered in advance 20, and when the use of the computer 1 is terminated, the computer 1 is used again. It has a function to control to a locked state that cannot.

When the use of the computer 1 is terminated, the entry time information erasure unit 28 transmits a signal from the IC card reader / writer 9 to the non-contact IC card 3 and writes it in the storage unit 90 of the non-contact IC card 3. It has a function to delete the entry time information.
When the entry time information is erased, the user of the computer 1 once exits from the entrance / exit 5 of the room 4 in which the computer 1 is installed, and then again the first entry provided near the entrance / exit 5 of the room 4. It is necessary to perform verification processing based on the ID information of the non-contact IC card 3 by the verification means 11 by the entrance management device 6 which is the first device, and in the verification processing using the non-contact IC card 3 at the entrance 5 of the room 4 The system is configured so that the computer 1 cannot be used when the collation is not matched.

  In addition, when the use of the computer 1 is terminated, the ID information stored in the non-contact IC card 3 when the computer 1 is re-entered from the entrance / exit 5 of the room 4 by bringing the computer 1 into a locked state again. Can be saved by the IC card reader / writer 9 or the room entrance management device 6.

Next, the processing procedure of 3rd Embodiment of this invention is demonstrated based on the flowchart of FIG.
First, when a user who intends to use the computer 1 enters the room from the entrance of a room equipped with the computer, the user contacts the non-contact IC card 3 as an information storage medium with the room entrance management device 6. Then, the room entry management device 6 reads the ID information stored in the storage means 90 of the non-contact IC card 3. (Step S16)
The collation means 11 of the room entry management device 6 performs collation processing between the read ID information and the ID information registered in advance in the storage means 14 of the room entry management device 6. (Step S17)

When the collation coincides with this collation processing, a signal for writing the entry time information is transmitted from the transmission / reception means 10 to the non-contact IC card 3 by the entry time information writing means 26 of the entry management device 6. The room entry time is written to the contact IC card 3. (Step S18)
At substantially the same time, the automatic door 7 is opened by the door opening / closing means 12 so that the room can be entered. (Step S19)

Then, the user who has entered the room from the entrance brings the non-contact IC card 3 close to the IC card reader / writer 9 and reads the room entry time information stored in the storage means of the non-contact IC card 3. Send to. (Step S20)
Next, in the computer 1, the room entry time information read by the IC card reader / writer 9 is compared with the time zone information registered in the storage means 20, and the room entry time is within the time zone. It is verified whether it is time. (Step S21)

As a result of the verification process, when it is authenticated that the room entry time is within the time zone, the computer lock is released by the computer lock control means 18 so that the computer can be used. Be controlled. (Step S22)
If it is determined as a result of the verification process that the room entry time is outside the time zone, the computer is not usable and the user is not allowed to use the computer. It is like that.

  Further, in the collation process with the ID information in step S17, when the collation does not match, the entry time information is sent from the transmission / reception means 10 to the non-contact IC card 3 by the entry time information writing means 26 of the entry management device 6. Is not transmitted, the automatic door 7 remains closed, and the process is terminated without entering the room.

Next, when the user of the computer 1 finishes using the computer 1, the storage means of the non-contact IC card 3 from the IC card reader / writer 9 to the non-contact IC card 3 by the entry time information erasure unit 28. A signal for erasing the entry time information written in 90 is transmitted to make the computer 1 unusable. (Step S23)
By this process, when the user uses the computer 1 again, it is necessary to perform the verification process based on the ID information at the entrance again, so that the computer 1 can only be used by a regular occupant. It is managed.

Further, when erasing the time information written in the storage means 90 of the non-contact IC card 3, instead of erasing it using the computer 1, an IC card reader / writer is provided at the exit of the room 4 so that the user can When leaving the room, the time information written in the storage means 90 of the non-contact IC card 3 may be erased.
Furthermore, if the verification is not permitted in the time information verification process in the computer 1, an alarm sound may be generated or an e-mail may be transmitted to notify the fraud.

It is a figure explaining the outline | summary of the unauthorized use prevention system of the computer which concerns on 1st Embodiment of this invention. It is a top view of a non-contact IC card. It is the sectional view on the AA line of FIG. It is a top view of the IC tag built in the non-contact IC card. It is a system block diagram of the unauthorized use prevention system of the computer concerning a 1st embodiment of the present invention. It is a flowchart explaining the processing procedure in the unauthorized use prevention system of the computer which concerns on 1st Embodiment of this invention, and the unauthorized use prevention method of a computer. It is a figure explaining the outline | summary of the unauthorized use prevention system of the computer which concerns on 2nd Embodiment of this invention. It is a system block diagram of the unauthorized use prevention system of the computer which concerns on 2nd Embodiment of this invention. It is a flowchart explaining the process sequence in the unauthorized use prevention system of the computer which concerns on 2nd Embodiment of this invention. It is a figure explaining the outline | summary of the unauthorized use prevention system of the computer which concerns on 3rd Embodiment of this invention. It is a system block diagram of the unauthorized use prevention system of the computer which concerns on 3rd Embodiment of this invention. It is a flowchart explaining the process sequence in the unauthorized use prevention system of the computer which concerns on 3rd Embodiment of this invention.

Explanation of symbols

1 computer
2 users
3 Non-contact IC card
3a, 3b Card base material
4 rooms
5 doorway
6 Entrance management device
7 Automatic door
8 Non-contact IC tag
9 IC card reader / writer
10,88 transmission / reception means
11 Verification means
12 Door opening and closing means
13 Flag writing means
14, 20, 90 storage means
15, 22, 89 Control means
16 Display means
17 Flag confirmation means
18 Computer lock control means
19 Flag erasing means
21 Input means
23 Room specific information writing means
24 Room specific information verification means
25 Room specific information deletion means
26 Entry time information writing means
27 Time verification means
28 Entering time information erasing means
81 substrate
82 IC chip
84 Conducting member
88C Coil connection terminal

Claims (5)

A system for preventing unauthorized use of a computer for preventing unauthorized use of a computer by a third party who does not have usage rights,
An information storage medium comprising a memory possessed by a user having authority to use the computer and having at least a flag storage area;
A first device provided near a doorway of a room provided with the computer and having means for writing a flag indicating entry into a flag storage area of the information storage medium;
A second apparatus provided with the computer so as to be able to transmit information, and having a reading means for reading the presence or absence of a flag in a flag storage area of the information storage medium;
Based on information from the reading means of the second device, flag confirmation means for confirming whether or not a flag is written in the flag storage area of the information storage medium, and the flag is written by the flag confirmation means A personal computer lock control means for controlling the computer to execute a process when it is confirmed that the computer has been used, and the erasure means of the second device when the use of the computer is terminated. A flag erasing means for erasing the flag using the computer,
A system for preventing unauthorized use of a computer, comprising:   The memory of the information storage medium has a unique information storage area in which unique information that can identify an individual is stored, and the first device includes reading means for reading the unique information, and information for collating with the unique information Is stored in the storage unit, the verification unit that collates the unique information read by the reading unit with the information stored in the storage unit, and the information storage medium The unauthorized use prevention system for a computer according to claim 1, further comprising means for writing a flag indicating entry into the flag storage area. The system for preventing unauthorized use of a computer according to claim 1 or 2, wherein the information storage medium is a contact IC card, a non-contact IC card, or a mobile phone. A method for preventing unauthorized use of a computer for preventing unauthorized use of a computer by a third party without use authority,
  Writing a flag with the first device into a flag storage area of an information storage medium possessed by a user having the authority to use the computer when entering the room from the entrance of the room equipped with the computer; ,
  Identifying whether a flag is written in the information storage medium in a second device when performing the processing by the computer; and
  Enabling the processing by the computer on the condition that a flag is written in the information storage medium;
  Erasing the flag in the second device when use of the computer is terminated;
  A method for preventing unauthorized use of a computer, comprising: Reading specific information stored in an information storage medium possessed by a user having the authority to use the computer when entering from the entrance of a room equipped with the computer; and
  Collating the unique information;
  5. The method of preventing unauthorized use of a computer according to claim 4, wherein the flag is written by the first device to the flag storage area on the condition that the matching is matched in the matching process.

Images