JP5520660B2 - Access control system - Google Patents

Description

  The present invention relates to an entry / exit management system for managing entry / exit of a user into / from a building, entry / exit in a building, and the like, and in particular, an entry / exit management system capable of confirming whether or not users have user qualifications. About.

  Conventionally, an entrance / exit management system is configured by an authentication device that is installed near an entrance and that authenticates user qualifications and an access control device that controls locking and unlocking of a door according to the authentication result of the authentication device. The entrance and exit of the room was managed. (Patent Document 1)

  In recent years, the ID card carried by each user has a function that can display the presence or absence of user qualifications in the room where the user is located. An entrance / exit management system with a people monitoring function that confirms the qualification of the person in charge has been proposed. (Patent Document 2)

JP 06-004536 A JP2009-99052A

  By the way, depending on the company that has already introduced the entrance / exit management system that does not have the people monitoring function as in Patent Document 1, the existing entrance / exit management system is renovated and the people monitoring function is applied to all places / users. Instead, there was a need to apply the crowd monitoring function only to a specific place / user. The above needs provide an ID card holder or an admission badge that is used in combination with an ID card on a daily basis to provide a display function that allows neighboring users to mutually confirm user qualifications, and this requires a crowd monitoring function. It can be satisfied by using it in places.

  However, in such an entry / exit management system, there is a possibility that an unauthorized user who has picked up or stealed another user's ID card may misuse the ID card and perform an illegal entry operation. Furthermore, in this case, it may be assumed that the unauthorized user avoids the people monitoring function of the access control system by wearing a forged ID card holder to deceive surrounding users. Therefore, it is desirable that such an unauthorized user can be automatically detected by the access control system and a warning can be given to the user and the surrounding users.

  Moreover, even if it is a user who entered regularly, the case where an own ID card holder etc. will be removed after entering due to annoyance etc. may be assumed. If people monitoring is assumed, a person who does not have such an ID card holder or the like will be detected by surrounding users as an unauthorized user. However, in order for people monitoring to function more effectively, not only the surrounding users can detect users who do not have ID card holders as described above, but also the access control system automatically It is desirable to be able to detect and alert the user and the surrounding users.

  Therefore, an object of the present invention is to enable an entry / exit management system to automatically detect an unauthorized user so that a predetermined warning can be given to an unauthorized user who does not have an ID card holder or the like and surrounding users. It is what

  In order to solve this problem, a user management device, a portable medium possessed by the user, and a location detection device that detects the presence of the portable medium in a predetermined area and notifies the user management device And an authentication management system configured to authenticate whether or not the user has a traffic qualification and notify the user management device, wherein the user management device includes the user and the mobile device. A storage unit that stores correspondence information indicating a correspondence relationship with a medium, and when the user can be authenticated by the authentication device, the portable medium corresponding to the user is detected in the predetermined area. If there is not, the authentication device includes a determination unit that determines that the user does not have the medium, and a notification unit that notifies that the medium is not owned when the determination unit determines that the user does not have the medium. Included in the predetermined area Providing access control system, characterized in that the installed so that only the authenticating user who is in that area.

  With the above configuration, when a user in the predetermined area is authenticated as having eligibility for entry and exit, if the user's portable medium is present in the predetermined area, it is determined that the user does not have the medium, and the notification means carries it. Notification that the medium is not owned can be performed. As a result, a user who does not have a portable medium such as an ID card holder despite being a user who is qualified to enter the room becomes an unauthorized user who does not own the portable medium by notification. You can notice that. In addition, an unauthorized user who tries to enter a room by exploiting another user's ID card or the like by picking up or stealing can be detected by surrounding users who have noticed the presence of the unauthorized user by notification.

  Further, in the access management system, the portable medium has a display unit that changes a display according to a control signal from the user management device, and the location detection devices are installed in the predetermined areas at a plurality of locations, The user management device has a function of detecting the presence of the portable medium in a predetermined area, and the user management device has the portable medium corresponding to the user determined to have no medium by the determination unit, If it is detected in the predetermined area different from the user, it has a function of determining an unauthorized use state, and the display unit of the portable medium determined to be an unauthorized use state by the determination means is unauthorized by non-contact communication. Display control means for displaying the usage state is provided.

  With the above configuration, when it is determined that the user does not have a portable medium such as an ID card holder, when an ID card holder or the like associated with the user is detected in another predetermined area, The ID card holder can be changed to a display indicating that it is in an unauthorized use state. As a result, a legitimate user who has a portable medium such as an ID card holder and who has lost the ID card or the like confirms the display so that the ID card or the like is illegally used in other areas. You can notice. Therefore, a legitimate user can be aware of the fraudulent act at an early stage, and can further prevent damage from the fraudulent act at an early stage by performing an expiration procedure for an ID card or the like. Conversely, a legitimate user who possesses an ID card or the like and loses the ID card holder or the like is determined to have no ID card holder or the like by an authentication operation using the ID card or the like. An ID card holder or the like corresponding to the ID card or the like detected in another predetermined area can be changed to a display indicating an unauthorized use state. Therefore, it is possible to prevent an unauthorized user who has illegally used the ID card holder or the like from continuing to use it illegally.

  Further, in a preferred aspect of the present invention, the authentication device includes an ID storage unit in which an identification code of a user having traffic qualification is stored in advance, and the identification code stored in an ID card possessed by the user. A card reader, and a collating means for collating the identification code read by the card reader with the identification code in the ID storage unit, and at least the card reader installed in the predetermined area System.

  Moreover, in a preferred aspect of the present invention, the authentication device includes a face image storage unit in which a face image of a user having a traffic qualification is stored in advance, an imaging unit that acquires the user image, and an acquired image. An image collating unit that extracts the face image of the user from the image and collates the face image with the face image stored in the face image storage unit, and at least the imaging unit includes an image in the predetermined area. The above entry / exit management system is acquired.

  As described above, the access management system of the present invention can detect an unauthorized user who does not have an ID card holder or the like and can give a predetermined warning.

The figure which showed typically the composition and operational image of the access control system which concerns on an Example Block diagram showing the configuration of the access control device Block diagram showing configuration of ID card holder Block diagram showing the configuration of the management device Block diagram showing the configuration of the notification device Diagram showing holder status table Figure showing the monitoring area table Flow chart showing processing in the access control apparatus The flowchart which shows the process in the management apparatus which detected the ID card holder The flowchart which shows the process in the management apparatus which received the authentication result The flowchart which shows the process in the ID card holder of a normal state Overview of ID card holder according to the embodiment

  Hereinafter, as an embodiment of the present invention, an example in which the access control system according to the present invention is applied to a building having a plurality of rooms will be described with reference to the drawings.

  FIG. 1 is a diagram schematically illustrating the configuration and operation image of the access control system according to the present embodiment. In FIG. 1, a building is divided into a common passage shared by users of each room, a room A limited to a specific user, and a room B. Doors D1 and D2 with electric locks are provided between the room A and the room B and the common passage, respectively, and entry into the room A or the room B from the common passage is restricted. The doors D1 and D2 with electric locks are electric locks only when it is possible to authenticate with a user having room entry qualification based on a signal read from the ID card 3 carried by the user with the card readers CR1 and CR2. Is controlled by the access control devices M1 and M2. In addition, the doors D1 and D2 with electric locks are normally maintained in a locked state.

  The ID card 3 is stored in an ID card holder 30 having a display unit 34 that can display three types of display, that is, no display, room entry permission state, room entry permission state, and unauthorized use state. The ID card holder 30 can display a plurality of states at the same time.

  The management device 1 is installed in a security room or a management room, for example, and is connected to the access control devices M1, M2, the transmission / reception devices R1, R2 and the notification devices S1, S2 via the communication network 2, and the transmission / reception devices R1, R2, Display control of the display unit 34 is performed on the ID card holder 30 by wireless communication via R2. Note that the transmission / reception devices R1 and R2 use only the monitoring areas C1 and C2, which are areas in the vicinity of the entrance / exit, as areas where wireless communication with the ID card holder 30 is possible.

  The ID card readers CR1 and CR2 are installed at positions where only the users in the monitoring areas C1 and C2 can operate the card.

Next, an outline operation of the access control system will be described.
In FIG. 1, a user X is a person who has a room entry qualification and has an ID card 3 and an ID card holder 30 corresponding to the user X. User Y has a qualification to enter room A but does not have a qualification to enter room B, and has ID card 3 and ID card holder 30 corresponding to user Y. . The user A is a person who has a qualification to enter the room A and has the ID card holder 30 corresponding to the user A but does not have the ID card 3. The user Z is a person who has the ID card 3 corresponding to the user A who has the qualification to enter the room A but does not have the ID card holder 30.

  A case where the user X enters the room A from the shared passage will be described. As a premise, the display unit 34 of the ID card holder 30 is basically in a non-display state because there is no particular restriction on the users located in the shared passage. For this reason, the display part 34 of the ID card holder 30 possessed by the user X before entering the room A is not displayed.

  First, the ID card holder 30 carried by the user X transmits its own holder ID assigned to each ID card holder 30 to the transmitter / receiver R1 when entering the inside of the monitoring area C1. The transmission / reception device R1 that has received the holder ID transmits the holder ID to the management device 1 via the communication network 2. The management apparatus 1 that has received the holder ID detects that the ID card holder 30 of the user X has entered the monitoring area C1.

  In order to unlock door D1 with an electric lock, user X holds ID card 3 he holds over card reader CR1 provided on the external wall surface in the common passage, and authenticates the entrance qualification of ID card 3 Request. The card reader CR1 requested to authenticate from the ID card 3 transmits the identification code read from the ID card 3 possessed by the user X to the connected access control device M1. The entrance / exit control device M1 collates whether or not the received identification code is an identification code that is permitted to enter the room in advance. In other words, an identification code that has been stored in advance and that has been permitted to enter the room is compared with an identification code received from the card reader CR1, and if they match, it is authenticated that there is a room entry qualification. Here, since the user X is qualified to enter the room A, the user X transmits an unlock signal to the connected door D1 with an electric lock. The entrance / exit control device M1 controls the unlocking of the door D1 with an electric lock, and transmits an authentication result (authentication OK) to the management device 1 from the communication network 2 to the effect that it is a room entry permitter.

  The door D1 with an electric lock unlocks the electric lock for a predetermined time when an unlock signal is received from the access control device M1.

  On the other hand, when the management apparatus 1 receives the authentication result from the access control apparatus M1, the management apparatus 1 determines whether or not the authentication result is authentication OK. As described above, the authentication result from the access control apparatus M1 is authentication OK. The management device 1 that has determined that the authentication is OK confirms whether or not the ID card holder 30 of the user X exists in the monitoring area C1. As described above, the management device 1 that has detected the presence of the ID card holder 30 of the user X in the monitoring area C1 displays the permission to enter the ID card holder 30 corresponding to the identification code of the ID card 3. The command is transmitted via the transmission / reception device R1, and the entry permission state is displayed on the display unit 34 of the ID card holder 30 for a predetermined time. The correspondence relationship between the identification code of the ID card 3 and the holder ID of the ID card holder 30 is stored in advance in the management device 1 as will be described later.

  In this way, when the user X enters the room A, the user X is authenticated as a room permitter and the electric lock is unlocked for a certain period of time. At this time, the ID card holder 30 of the user X is lit with a lamp indicating a room entry permission state. As a result, the user X can clearly indicate to the surrounding users that he / she is permitted to enter the room A, and the user X himself / herself has the authority to enter the room A. can do.

  Next, an operation when the user Y who does not have the qualification to enter the room B tries to enter the room B will be described.

  First, the ID card holder 30 carried by the user Y transmits the holder ID assigned to each ID card holder 30 to the transmission / reception device R2 when entering the inside of the monitoring area C2. The transmission / reception device R2 that has received the holder ID transmits the holder ID to the management device 1 via the communication network 2. The management apparatus 1 that has received the holder ID detects that the ID card holder 30 of the user Y has entered the monitoring area C2.

  The user Y holds the ID card 3 possessed by the user Y over the card reader CR2 and requests authentication of entry qualification. The card reader CR2 reads the identification code stored in the ID card 3 possessed by the user Y and transmits it to the access control device M2. The access control device M2 collates the identification code of the user Y read by the card reader CR2, and since the user Y does not have the qualification to enter the room B, the electric lock is not unlocked, and the management device 1 The authentication result (authentication NG) is transmitted via the communication network 2.

  When the management apparatus 1 receives an authentication result (authentication NG) indicating that the user Y is not permitted to enter the room B from the entrance / exit control apparatus M2, the management apparatus 1 stores the identification card in the ID card holder 30 corresponding to the identification code of the ID card 3. On the other hand, an entry prohibition display command is transmitted via the transmission / reception device R2, and the entry prohibition state is displayed on the display unit 34 of the ID card holder 30 for a certain period of time.

  As a result, it is possible to clearly indicate to the surrounding users that the user Y has not received permission to enter the room B, and the user Y himself does not have the authority to enter the room B. I can recognize that.

  Next, the operation when the user Z who does not have the ID card holder 30 tries to enter the room A by misusing the ID card 3 corresponding to the user A who has the eligibility to enter the room A Will be described.

  The user Z holds the ID card 3 possessed by the user Z over the card reader CR1 and requests authentication of entrance qualification. The card reader CR1 reads the identification code stored in the ID card 3 possessed by the user Z and transmits it to the access control device M1. The access control device M1 collates the identification code of the user Z read by the card reader CR1. As described above, since the user Z operates the card using the ID card 3 corresponding to the user A who has the qualification to enter the room A, the identification code is successfully verified. Therefore, the entrance / exit control device M1 authenticates that the user X pretending to be the user A is a user who has entry qualifications, unlocks the electric lock, and communicates the authentication result (authentication OK) to the management device 1. Send via network 2

  When receiving the authentication result from the access control device M1, the management device 1 determines whether or not the authentication result is authentication OK. As described above, the authentication result from the access control apparatus M1 is authentication OK. The management apparatus 1 that has determined that the authentication is OK confirms whether or not the ID card holder 30 of the authenticated user A exists in the monitoring area C1. As described above, even though the user Z has the ID card 3 of the user A, the user Z does not have the ID card holder 30 of the user A. Therefore, the management device 1 that cannot confirm the presence of the ID card holder 30 of the user A transmits a notification command for notifying the notification device S1 that it is not attached via the communication network 2.

  When the notification device S1 receives the notification command from the management device 1, the notification device S1 notifies a warning message indicating that the ID card holder 30 is not provided. Thereby, the surrounding users can notice that the user Z does not have the ID card holder 30. Therefore, the user Z can restrict the unauthorized use of the other person's ID card 3.

  Next, when the user Z is informed that he / she does not have the ID card holder 30 as described above, the user A who owns his / her ID card holder 30 exists in the other monitoring area C2. An outline of the operation in the case of the above will be described.

  When the user A who owns the ID card holder 30 enters the monitoring area C2, the holder ID of the ID card holder 30 is transmitted to the management apparatus 1 via the transmission / reception apparatus R2 and the communication network 2. Therefore, the management apparatus 1 detects that the user A's ID card holder 30 exists in the monitoring area C2.

  On the other hand, as will be described later, the management apparatus 1 stores in advance that the ID card reader CR1 exists in the monitoring area C1. Therefore, it is detected that the person (user Z) who operates the card using the ID card 3 of the user A exists in the monitoring area C1.

  Therefore, the management apparatus 1 determines that the ID card holder 30 corresponding to the identification code of the ID card 3 exists in a different area from the person who has been authenticated (user Z). In this case, the management device 1 transmits an unauthorized use display command to the ID card holder 30 via the transmission / reception device R2, and causes the display unit 34 of the ID card holder 30 to display the unauthorized use state for a certain period of time. .

  In this way, the user A who notices that the display of his / her ID card holder 30 is in an unauthorized use state may notice that his / her ID card 3 is illegally abused elsewhere. it can. Therefore, since the user A can perform the revocation procedure of the ID card 3 at an early stage, it is possible to prevent the damage caused by the fraudulent act by the user Z.

  Next, each component in the access control system of a present Example is demonstrated in detail with reference to FIGS. 2-7 and FIG.

  In the following description, the doors D1, D2 with electric locks are collectively referred to as doors D with electric locks, the card readers CR1, CR2 are collectively referred to as card readers CR, and the access control devices M1, M2 are collectively referred to. Is referred to as the entry / exit control device M, referred to as the transmission / reception device R when collectively referred to as the transmission / reception devices R1, R2, and as the notification device S when referred to collectively as the notification devices S1, S2.

  In addition, in the structure of FIG. 1, the entrance / exit control apparatus M is provided for every door D with an electric lock. However, one access control device M may be configured to centrally manage a plurality of doors D with electric locks.

  FIG. 4 shows the configuration of the management apparatus 1. The management device 1 has a computer function and is connected to the communication network 2 and connected to the communication network 2 and a control unit 40 configured by an MPU, a storage unit 41 that stores management information, processing programs, various parameters, data, and the like. A LAN communication I / F 42 that communicates with the access control device M and the transmission / reception device R is provided. The storage unit 41 stores a holder state table 46 and a monitoring area table 47 as management information.

  As shown in FIG. 6, the holder state table 46 includes a holder ID that can individually identify each ID card holder 30, an identification code of a user lent to each ID card holder 30, and each ID card holder 30. It is a table which matches a holder state and the identification name of the monitoring area | region where each ID card holder 30 was detected. The correspondence between each ID card holder 30 and the user's identification code is registered by the administrator when the ID card holder 30 is lent to the user.

  The holder state includes “normal state”, “room entry permitted state”, “room entry not permitted state”, and “unauthorized use state”. The “normal state” is a state given to the ID card holder 30 possessed by the user who has entered the room normally. The “room entry permission state” is a state given to the ID card holder 30 possessed by the user who is determined to be authenticated by the card operation and permitted to enter the room, and returns to the normal state after a certain period of time. The “room entry not permitted state” is a state given to the ID card holder 30 possessed by the user who is determined to be authenticated NG by the card operation and is not permitted to enter the room, and returns to the normal state after a certain period of time. The “illegal use state” is a state given to the ID card holder 30 corresponding to the user, which is detected in the monitoring area C different from the authenticated user. Return.

  A plurality of holder states can be registered in the holder state field of the holder state table 46.

  As shown in FIG. 7, the monitoring area table 47 can be operated only by users in the monitoring area C, the address code of each transmitting / receiving apparatus R, the identification name of the monitoring area C monitored by each transmitting / receiving apparatus R, and so on. It is a table which matches the address code of the card reader CR installed at the position with the address code of the notification device S installed near each monitoring area.

  The control unit 40 is configured to update the holder state table 46 and the monitoring area table 47 of the storage unit 41 from information from the access control device M and the transmission / reception device R, and the ID card holder 30 via the transmission / reception device R. Display control means 44 for controlling display of the holder state, and notification control means 49 for outputting notification to the notification device S are provided.

  The determination unit 43 updates the holder state of the holder state table 46 based on the authentication result received from the access control device M via the LAN communication I / F 42 and the detection information of the ID card holder 30 received from the transmission / reception device R. A notification command is transmitted to the notification device S. That is, if the authentication result received from the access control apparatus M is the identification code of the user who has been authenticated, and the corresponding ID card holder 30 exists in the same monitoring area C, the corresponding state in the holder state table 46 The holder state corresponding to the user's identification code is updated to the room entry permission state.

  Further, the determination unit 43 performs LAN communication with the notification device S if the authentication result received from the access control device M is authentication OK and the corresponding ID card holder 30 does not exist in the same monitoring area C. A notification command is transmitted via the I / F 42 and the communication network 2.

  Further, the determination means 43 refers to the holder state table 46 if the authentication result received from the access control apparatus M is authentication OK and the corresponding ID card holder 30 exists in another monitoring area C. The holder state corresponding to the holder ID of the ID card holder 30 is updated to the unauthorized use state.

  On the other hand, if the authentication result received from the entry / exit control device M is the identification code of the user who is authenticated NG, the holder status corresponding to the corresponding user identification code in the holder status table 46 is updated to the entry prohibition status. .

  The determination unit 43 receives information detected by the transmission / reception device R that the ID card holder 30 has entered or exited the monitoring area C via the LAN communication I / F 42, and the monitoring detected by the holder state table 46. The area identifier is registered.

  The display control means 44 always refers to the holder state table 46 and controls the display unit 34 of the ID card holder 30 whose state has changed via the LAN communication I / F and the transmitting / receiving device R when the holder state changes. For example, when the holder state changes from the normal state to the room entry permission state, a room entry permission display command is transmitted to the ID card holder 30. Alternatively, when the normal state changes to the unauthorized use state, an unauthorized use display command is transmitted to the ID card holder 30.

  FIG. 5 shows the configuration of the notification device S. The notification device S has a computer function, is configured by an MPU or the like, and controls the entire notification device S based on various programs, and an address code, management information, and processing program for identifying each notification device S A storage unit 61 that stores various parameters, data, and the like, a LAN communication I / F 62 that is connected to the communication network 2 and communicates with the management apparatus 1, and an output unit 63 that includes a speaker, a buzzer, and the like. .

  When receiving the notification command from the management device 1, the control unit 60 reads predetermined notification output information stored as data in the storage unit 61, and based on the notification output information for a certain period of time with respect to the output unit 63. Sound output.

  The output unit 63 may be configured by a warning light, an electric bulletin board, or the like. Moreover, it is good also as a structure which uses a speaker, a buzzer, etc. and a warning lamp together.

  The transmission / reception device R is wired to the management device 1 and has an interface that wirelessly communicates with the communication I / F 33 of the ID card holder 30. A display command from the management device 1, a holder ID from the ID card holder 30, etc. Relay the signal. Further, when the ID card holder 30 enters the monitoring area C in the vicinity of the entrance / exit, the transmission / reception device R starts wireless communication, and the ID card holder 30 enters the monitoring area C when wireless communication with the ID card holder 30 has been made. It is determined that the ID card holder 30 is out of the monitoring area C when wireless communication is disabled, and a detection signal of the ID card holder 30 is transmitted to the management device 1.

  FIG. 2 shows the configuration of the access control apparatus M. The entry / exit control device M has a computer function, and is configured by an MPU or the like, and controls the entire entry / exit control device M based on various programs, an address code for identifying each entry / exit control device M, and management information , A storage unit 21 that stores processing programs, various parameters, data, and the like, an authentication device I / F 25 that is connected to the card reader CR to be managed and performs communication, and another access control device M that is connected to the communication network 2 and management A LAN communication I / F 22 that communicates with the device 1 and an electric lock I / F 27 connected to the door D with an electric lock are provided.

  The storage unit 21 stores an ID table 26 as management information. The ID table 26 is a table that stores all identification codes of ID cards carried by users who have entry qualifications for rooms managed by the access control device M. The ID table 26 is used for collation of the identification code read by the card reader CR.

  The control unit 20 collates the identification code of the ID card 3 received from the card reader CR with the identification code stored in the ID table 26, and determines whether or not the user can pass depending on whether or not the identification codes match. It has the determination means 23 to do. The determination unit 23 transmits an authentication result, which is a result of the determination, to the management apparatus 1 via the LAN communication I / F 22. In addition, the control unit 20 includes an electric lock control unit 24 that unlocks the door D with the electric lock via the electric lock I / F 27 when the determination unit 23 permits the passage of the user.

  FIG. 12 shows an overview of the ID card holder 30. The ID card 3 is inserted from the side of the ID card holder 30 and stored in a card storage space 38 provided in the ID card holder 30. The ID card holder 30 is attached to a user's clothes or the like so that other users can visually recognize the display unit 34 by a clip 39 attached to the upper part of the ID card holder 30.

  FIG. 3 shows the configuration of the ID card holder 30. The ID card holder 30 has a computer function, and is configured by an MPU or the like to control the entire ID card holder 30, a holder ID for identifying each ID card holder 30, a processing program, various parameters, and the like Is stored, a communication I / F 33 for wirelessly communicating with the transmission / reception device R, and a display unit 34 including LEDs and the like.

  The ID card 3 is a non-contact IC card that stores an identification code that can identify a carrying user. Note that any card such as a magnetic card or a wireless tag may be used as long as it can identify the user. From the viewpoint of system convenience, a non-contact type IC card is used in this embodiment.

  Next, processing of the access control system will be described with reference to the flowcharts of FIGS.

  First, processing performed by the access control apparatus M will be described with reference to the flowchart of FIG. As shown in FIG. 8, the control unit 20 of the access control apparatus M determines whether an authentication request is received from the card reader CR (S10). If the authentication request has not been received (S10-No), step S10 is repeated. When the user performs a card operation, the card reader CR reads the identification code and transmits it to the control device M, thereby determining Yes in step S10. And the determination means 23 collates the identification code contained in an authentication request (S12). Here, the determination unit 23 refers to the ID table 26 of the storage unit 21 and collates whether or not the received identification code is registered.

  If an identification code that matches the received identification code is registered in the ID table 26 (step S14-Yes), the authentication result is OK, and unlocking permission processing is performed (S16). In the unlocking permission process, the access control device M performs unlocking control. In the unlock control, the electric lock control means 24 functions and an unlock signal is sent to the door D with the electric lock. In the door D with the electric lock, the electric lock is unlocked according to the unlock signal. Further, the control unit 20 sends an authentication result to the management apparatus 1 via the LAN communication I / F 22. When the unlocking permission process is performed in S16, the process proceeds to END, and the process of the access control apparatus M is terminated.

  If the received identification code does not match the identification code in the ID table 26 in step S12, the authentication result is NG (S14-No), and unlocking disapproval processing is performed (S18). In the unlocking disapproval process, the electric lock is not unlocked, and the authentication result is transmitted to the management apparatus 1 by the control unit 20 via the LAN communication I / F 22. When the unlocking disapproval process is performed in S18, the process proceeds to END, and the process of the access control apparatus M is terminated.

  Next, processing performed in the management apparatus 1 will be described with reference to the flowcharts of FIGS. FIG. 9 is a flowchart showing processing in the management apparatus 1 that has detected the ID card holder 30 in the monitoring area C.

  The management device 1 performs the following detection process of the ID card holder 30 in the determination unit 43. When the ID card holder 30 enters the monitoring area C that is a range in which communication with the transmission / reception device R is possible, the ID card holder 30 transmits its own holder ID to the transmission / reception device R. The transmission / reception device R that has received the holder ID transmits the holder ID and the address code of the transmission / reception device R itself as a detection signal to the management device 1. When the management device 1 receives the detection signal, the determination unit 43 refers to the monitoring region table 47 stored in the storage unit 41, and monitors the monitoring region C corresponding to the address code of the transmission / reception device R included in the detection signal. It is determined that the ID card holder 30 corresponding to the holder ID included in the detection signal is detected.

  When the ID card holder 30 is detected in the monitoring area C, an approach process is performed (S20). In the entry process, the determination unit 43 refers to the holder state table 46 and writes the identification name of the detected monitoring area C in the detected monitoring area field of the detected holder ID.

  When the entry process is performed in step S22, the determination unit 43 continues to determine whether or not the ID card holder 30 has moved out of the detected monitoring area C (S22). That is, the determination unit 43 monitors the communication state between the transmission / reception device R and the ID card holder 30, and determines that the ID card holder 30 has moved to the outside of the monitoring area C when communication between the two is interrupted. Specifically, the determination unit 43 periodically polls the ID card holder 30 via the transmission / reception device R, and if the response from the ID card holder 30 is not obtained, the ID card holder 30 is in the monitoring area C. It is determined that it has moved outside. Alternatively, when the transmission / reception device R periodically polls the ID card holder 30 and the response from the ID card holder 30 cannot be obtained, the determination unit 43 transmits the result to the management device 1 to thereby determine the determination unit 43. It may be determined that the ID card holder 30 has moved outside the monitoring area C.

  When it is determined that the ID card holder 30 has moved out of the detected monitoring area C (S22-Yes), an exit process is performed (S24). In the leaving process, the determination unit 43 refers to the holder state table 46 and clears the detected monitoring area field in the holder ID of the ID card holder 30.

  When the exit process is performed in S24, the process proceeds to END and the process is terminated.

  FIG. 10 is a flowchart showing processing in the management apparatus 1 that has received the authentication result from the access control apparatus M.

  When receiving the authentication result from the access control apparatus M, the determination unit 43 determines whether or not the authentication result is authentication OK (S30). When it is determined that the authentication result is OK (S30-Yes), the ID card holder 30 corresponding to the user identification code included in the authentication result is a monitoring area corresponding to the card reader CR included in the authentication result It is determined whether or not it exists in C (S32). That is, the determination unit 43 reads the address code of the card reader CR from the authentication result, and reads the identification name of the monitoring area C corresponding to the address code by referring to the monitoring area table 47. Then, the determination unit 43 refers to the holder state table 46 to determine whether or not there is a holder ID corresponding to the identification code read from the authentication result in the monitoring area C.

  When it is determined that the ID card holder 30 corresponding to the identification code included in the authentication result does not exist in the monitoring area C corresponding to the card reader CR included in the authentication result (S32-No), the notification process is performed. Performed (S34). In the notification process, the determination unit 34 transmits a notification command to the notification device S via the LAN communication I / F 42 and the communication network 2. In addition, the alerting | reporting apparatus S which received the alerting | reporting command performs predetermined alerting | reporting output for a fixed time.

  When the notification process is performed in step S34, the determination unit 43 determines that the ID card holder 30 corresponding to the user identification code included in the authentication result is the monitoring area C corresponding to the card reader CR included in the authentication result. It is determined whether or not they exist in different monitoring areas C (S36).

  When it is determined that the ID card holder 30 corresponding to the user identification code included in the authentication result exists in a monitoring area C different from the monitoring area C corresponding to the card reader CR included in the authentication result , (S36-Yes), a transition process to the unauthorized use state is performed (S38). In the transition process to the unauthorized use warning state, the determination unit 34 refers to the holder state table 46 and sets the holder state field of the ID card holder 30 corresponding to the user identification code included in the authentication result to “unauthorized use state”. To "". Moreover, the display control means 44 always refers to the holder state table 46, and reads the identification name of the detected monitoring area of the record corresponding to the holder ID. Next, the display control unit 44 refers to the monitoring area table 47, reads the address code of the transmission / reception device R corresponding to the read identification name of the monitoring area, and reads the address code of the read address code via the LAN communication I / F 42. An “unauthorized display instruction” addressed to the ID card holder 30 of the holder ID is transmitted to the transmission / reception device R. The transmission / reception apparatus R that has received the display instruction for the correspondence warning from the management apparatus 1 confirms the holder ID that is the destination, and transmits an “unauthorized use display instruction” to the ID card holder 30 of the holder ID.

  In step S36, the ID card holder 30 corresponding to the user identification code included in the authentication result does not exist in the monitoring area C different from the monitoring area C corresponding to the card reader CR included in the authentication result. If it is determined (S36-No), or if the transition process to the unauthorized use state is performed in step S38, the process proceeds to END and the process is terminated.

  When it determines with an authentication result being authentication NG in step S30 (S30-No), the transfer process to an entrance prohibition state is performed (S42). In the transition processing to the entry prohibition state, the determination unit 43 refers to the holder state table 46 and sets the holder state field corresponding to the user identification code determined as authentication NG in step S30 to “entrance not permitted state”. Update to. Then, the display control means 44 transmits a “room entry non-permission display command” to the ID card holder 30 of the holder ID corresponding to the identification code via the LAN communication I / F 42. The transmission / reception device R that has received the display instruction not permitting entry from the management device 1 confirms the holder ID as a destination, and issues a “display instruction not permitting entry” to the ID card holder 30 of the holder ID. Send.

  If it is determined in step S32 that the ID card holder 30 corresponding to the identification code included in the authentication result is present in the monitoring area C corresponding to the card reader CR included in the authentication result, (S32- Yes), a transition process to the entry permission state is performed (S40). In the transition processing to the room entry permission state, the determination unit 43 refers to the holder state table 46 and sets the holder state field of the record corresponding to the user identification code determined to be authentication OK in step S30 to “room entry permission state”. Update to. Then, the display control means 44 transmits a “room entry permission display command” to the ID card holder 30 of the holder ID corresponding to the identification code via the LAN communication I / F 42.

  When the transition process to the entry permission state is performed in step S40 or when the transition process to the entry non-permission state is performed in step S42, the process proceeds to END and the process ends.

Next, processing performed in the ID card holder 30 in the normal state will be described with reference to the flowchart of FIG.
As shown in FIG. 11, the control unit 31 of the ID card holder 30 determines whether or not the ID card holder 30 has moved to the inside of the monitoring area C (S60). That is, the control unit 31 monitors the state of communication with the transmission / reception device R, and determines that the ID card holder 30 has moved to the inside of the monitoring area C when communication with the transmission / reception device R is started.

  When it is determined that the ID card holder 30 has moved to the inside of the monitoring area C (S60-Yes), an entry process is performed (S62). In the approach process, the control unit 31 transmits the holder ID stored in the storage unit 32 to the transmission / reception device R, and sets the in-monitoring area flag stored in the storage unit 32 to ON. If the ID card holder 30 does not move inside the monitoring area C (S60-No), the process of step S60 is repeated.

  In response to the flag in the monitoring area being turned ON, the control unit 31 determines whether or not a holder state display command has been received from the transmission / reception device R (S64). Without receiving the holder state display command from the transmission / reception device R (S64-No), the process of steps S64 and S66 is repeated while the movement outside the monitoring area C is not determined (S66-No).

  On the other hand, when the display command of the holder state is not received from the transmission / reception device R (S64-No) and the movement outside the monitoring area C is determined (S66-Yes), the exit process is performed (S68). In the exit process, the control unit 31 turns off the monitoring area flag stored in the storage unit 32. When the exit process is performed, the process returns to step S60.

  If it is determined in step 64 that a display command for the holder state has been received (S64-Yes), the control unit 31 determines whether the display command is a “display command for permitting entry” (S70). . When the change information is “display instruction for entry permission” (S70-Yes), the flag indicating the entry permission state stored in the storage unit 32 is turned ON, and the “entry permission state” is displayed on the display unit 34. The lamp representing is turned on (S72).

  When the display instruction of the holder state received in step 64 is “display instruction not permitting entry” (S70-No, S74-Yes), the control unit 31 stores the entry prohibition state stored in the storage unit 32. Is turned on, and a lamp indicating "room entry not permitted" is lit on the display unit 34 (S76).

  When the holder state display command received in step 64 is an “illegal use display command” (S70-No, S74-No), the control unit 35 indicates the corresponding warning state stored in the storage unit 32. The flag is turned on, and a lamp indicating “unauthorized use state” is turned on on the display unit 34 (S78). It should be noted that the “entry permitted state”, “entry denied state”, and “unauthorized use state” display is turned off after a certain time.

  In step S72, step S76, and step S78, when the lamps representing the respective states are turned on, the process is terminated.

The embodiment of the present invention has been described above.
In the present embodiment, the management device 1, the access control device M, the card reader CR, the transmission / reception device R, and the notification device S function as the user management device of the present invention. The ID card holder 30 functions as a portable medium of the present invention. Further, the transmission / reception device R functions as a location detection device of the present invention. The storage unit 41 of the management device 1 functions as the storage unit of the present invention. Further, the determination means 23 and the card reader CR of the access control apparatus M function as the authentication means of the present invention. Moreover, the determination means 43 of the management apparatus 1 functions as the determination means of the present invention. Further, the notification device S functions as the notification means of the present invention. Further, the display unit 34 of the ID card holder 30 functions as the display unit of the present invention. Moreover, the display control means 44 of the management apparatus 1 functions as the display control means of the present invention. The ID table 26 of the access control device M functions as an ID storage unit of the present invention. Moreover, the determination means 23 of the access control apparatus M functions as a collation means of the present invention.

  The present invention is not limited to the above-described embodiments, and may be implemented in various different embodiments within the scope of the technical idea described in the claims. Moreover, the effect described in the Example is not limited to this.

  In the above-described embodiment, the lamp indicating the room entry permission state, the room entry non-permission state, or the unauthorized use state is lit for a certain period of time on the display unit 34 of the ID card holder 30 based on the authentication result. It is not a thing. For example, the transmission / reception device R is further installed in the room A and the room B, and the management device 1 and the ID card holder 30 detect whether the user has entered the room. And in the said room, you may leave the lamp which shows a room entry permission state, a room entry permission state, or an unauthorized use state with respect to the display part 34 of the said user's ID card holder 30 being lighted. Thereby, it can always be clearly shown with respect to the surrounding users who are indoors that the said user is an entrance permission person etc.

  In the above embodiment, the ID card holder 30 lights only the lamp indicating the unauthorized use state in step S78. However, the present invention is not limited to this, and a buzzer or the like may be sounded. In this case, the ID card holder 30 is provided with a buzzer unit together with the display unit 34 and is connected to the control unit 31. As a result, a user who only holds the ID card holder 30 without wearing it on the body can notice that his / her ID card or the like is illegally used in another monitoring area C.

  In the above embodiment, the display unit 34 of the ID card holder 30 possessed by the user displays the room entry permission state, the room entry non-permission state, and the unauthorized use state. However, the present invention is not limited to this. For example, the entrance permission status or the like may be displayed by providing a display unit on an entrance badge, an employee badge, or the like.

  In the above embodiment, the ID card holder 30 existing inside the monitoring area C is detected by the transmission / reception device R, and further the contactless communication with the ID card holder 30 is performed. However, the present invention is not limited to this. For example, the ID card holder 30 existing inside the monitoring area C may be detected by a monitoring camera connected to the management apparatus 1 and shooting an area including the monitoring area C. Then, non-contact communication with the ID card holder 30 may be performed by a non-contact communication device different from the transmission / reception device R.

  In the above embodiment, the identification code of the user is obtained from the ID card 3 by the card reader CR, and the identification code and the identification code registered in the ID table 26 are collated by the judging means 23 of the access control apparatus M. Thus, it is authenticated whether or not the user has the entry qualification, but the present invention is not limited to this. For example, a face image storage unit including a storage device such as a memory or a HDD in which face images of users who have entry qualifications are stored in advance, and a user who exists in the monitoring area C are set and set to be photographed. Image capturing means for acquiring a user's image by a camera or the like, and image verification for extracting the user's face image and comparing the extracted face image with a face image of a user who has registered in advance An image recognition device having a means may be used. In this case, if the face image registered in advance in the face image storage unit and the extracted face image can be collated, authentication is OK, and the determination in step S14 is Yes. On the other hand, when it cannot collate, it becomes authentication NG and the determination in step S14 becomes No.

  In the above embodiment, the user identification code is acquired from the ID card 3 by the card reader CR. However, the present invention is not limited to this, and the identification code may be acquired from an object other than the ID card. For example, the user's own biometric information such as a personal fingerprint, palm print, voice print, iris, etc. may be acquired and used as an identification code for identifying the individual. At this time, of course, the biological information may be converted into an appropriate identification code. Further, a plurality of identification codes for identifying the user may be obtained from the above ID card or biometric information, and these may be used in combination. For example, the identification code of the ID card 3 and the biological information as the identification code may be used in combination. In this case, a fingerprint reader or the like is provided together with the card reader CR. Note that the ID card reader CR, the fingerprint reader, and the like are installed at a position where only a user in the monitoring area C can be authenticated.

  In the above embodiment, the monitoring area C is an area in which the transmission / reception device R can communicate with the ID card holder 30, but is not limited thereto. For example, the monitoring area C may be an area in a range where the radio wave intensity of the ID card holder 30 detected by the transmission / reception device R is equal to or greater than a predetermined threshold. Thereby, the range of the monitoring area | region C can be adjusted to an appropriate range according to the building environment etc. which implement this invention by adjusting the said threshold value.

  In the above embodiment, the monitoring area C is an area near the entrance / exit, but the present invention is not limited to this. For example, the monitoring area C may be an area such as a hallway or a staircase, or the entire room. As a result, a user who is passing through a corridor or the like is identified by a walk-through type face recognition device or the like, and whether or not he / she is qualified to pass through the area is automatically authenticated. And whether the said user has ID card holder 30 can also be detected by the entrance / exit management system of this invention. In this case, the range where the user can be authenticated needs to be within the range where the ID card holder 30 can be detected. That is, it is necessary to install and set the face recognition device and the like so that only users in the monitoring area C can be authenticated.

X, Y, Z, A ... User D ... Door with electric lock CR ... Card reader M ... Access control device R ... Transmission / reception device S ... Notification device C ... Monitoring Area 1 ... Management device 2 ... Communication network 3 ... ID card 20 ... Control unit 21 ... Storage unit 22 ... LAN communication I / F
23 ... Determination means 24 ... Electric lock control means 25 ... Authentication device I / F
26 ... ID table 27 ... Electric lock I / F
30 ... ID card holder 31 ... Control unit 32 ... Storage unit 33 ... Communication I / F
34 ... Display unit 40 ... Control unit 41 ... Storage unit 42 ... LAN communication I / F
43 ... Determining means 44 ... Display control means 46 ... Holder state table 47 ... Monitoring area table 60 ... Control unit 61 ... Storage unit 62 ... LAN communication I / F
63 ... Output section

Claims (3)

A user management device, a portable medium possessed by the user, a location detection device for detecting the presence of the portable medium in a predetermined area and notifying the user management device; and An authentication management system configured to authenticate whether or not to have and notify the user management device,
The user management device includes a storage unit storing correspondence information indicating a correspondence relationship between the user and the portable medium;
When the authentication device can authenticate the user, if the portable medium corresponding to the user is not detected in the predetermined area, a determination unit that determines that the user does not possess the medium;
When it is determined that the medium is not possessed by the judging means, the information means for notifying that the medium is not possessed,
The authentication device is installed so as to authenticate only a user in an area included in the predetermined area ,
The portable medium has a display unit that changes a display by a control signal from the user management device,
The location detection device is installed in a plurality of the predetermined areas, and has a function of detecting the presence of the portable medium in each predetermined area;
The user management apparatus determines an unauthorized use state if the portable medium corresponding to the user determined to have no medium by the determination means is detected within the predetermined area different from the user. Has function,
An entry / exit management system comprising display control means for displaying an unauthorized use state by non-contact communication on the display unit of the portable medium determined to be an unauthorized use state by the determination means . The authentication device
An ID storage unit in which an identification code of a user having traffic qualification is stored in advance;
A card reader for reading the identification code stored in the ID card possessed by the user;
2. The apparatus according to claim 1, further comprising collating means for collating the identification code read by the card reader with the identification code of the ID storage unit, wherein at least the card reader is installed in the predetermined area. The entry / exit management system described. The authentication device
A face image storage unit in which face images of users having traffic qualifications are stored in advance;
Imaging means for obtaining an image of the user;
An image collating unit that extracts a user's face image from the acquired image and collates the face image with the face image stored in the face image storage unit, and at least the imaging unit includes the predetermined area; The entrance / exit management system according to claim 1, further comprising: