JP5567753B1 - Authentication apparatus, financial transaction apparatus, communication terminal, information processing apparatus, and program - Google Patents

Abstract

An object of the present invention is to improve the accuracy of authentication of a user who uses an apparatus while suppressing an increase in the burden on the user.
An authentication apparatus according to the present invention includes a communication terminal that transmits measurement information indicating a physical quantity of motion of an input device generated by a user's input operation and user input information including operation information indicating the input operation. A receiving unit that receives input information, an authentication unit that authenticates the user according to the collation result by collating the received user input information with collation information for authenticating the user, and information according to the user authentication result Is transmitted to the communication terminal.
[Selection] Figure 7

Description

  The present invention relates to a technique for authenticating a user.

  In recent years, electronic transactions such as Internet banking have been conducted. Such an electronic transaction is performed using a communication terminal. It is necessary to confirm whether a legitimate user who conducts electronic transactions uses the communication terminal. Generally, a user is authenticated by collating with data recorded on a server using an ID and a password for identifying the user. At this time, in order to improve the accuracy of user authentication, a unique ID of the communication terminal may be used in addition to the user ID and password.

  Such a communication terminal is often a portable communication terminal (mobile terminal) such as a smartphone. Therefore, if a mobile terminal is used by a third party due to loss, theft, etc., if the original user's user ID and password are leaked, user authentication based on the mobile terminal's unique ID makes sense. Do not do.

  Therefore, a technique for performing user authentication by adding information that only a user can know is being studied. For example, when a portable terminal having a built-in sensor (for example, an acceleration sensor) that outputs a signal according to the movement of the terminal is used, the signal is output from the sensor when the user moves the terminal in a predetermined pattern. Techniques for authenticating a user using information are disclosed (for example, Patent Documents 1 and 2).

US Patent Application Publication No. 2012/0102214 Special table 2012-507802 gazette

  When the user authenticates the user by moving the terminal as in the techniques disclosed in Patent Documents 1 and 2, there is a possibility that the user is imitated when viewed from a third party where the user is moving the terminal. is there. Therefore, high reproducibility is required for the operation given to the terminal so as not to be easily disguised by imitation by a third party. On the other hand, if the reproducibility of the operation on the terminal is required with a very high accuracy, it is difficult for even the original user to reproduce the operation, and it is difficult to determine that the user is a legitimate user. Therefore, the higher the user authentication accuracy, the greater the burden on the user, for example, the user needs to practice so that the operation given to the terminal can be reproduced with high accuracy.

  An object of the present invention is to improve the authentication accuracy of a user who uses an apparatus while suppressing an increase in the burden on the user.

  According to one embodiment of the present invention, the user input information is transmitted from the communication terminal that transmits the measurement information indicating the physical quantity of the movement of the input device caused by the input operation of the user and the user input information including the operation information indicating the input operation. A receiving unit that receives the received information, a verification unit that verifies the received user input information and verification information for authenticating the user, and authenticates the user according to the verification result, and according to the authentication result of the user An authentication device is provided that includes a transmitter that transmits the received information to the communication terminal.

  According to an embodiment of the present invention, a notification unit that notifies a user of a request for an input operation, an input reception unit that receives an input operation by a user's contact with the input device, and a physical quantity of exercise that has occurred in the input device A sensor unit that outputs a measurement signal, measurement information based on the measurement signal output from the sensor unit in accordance with the movement of the input device caused by the input operation received in response to the request, and the input operation. Provided by a communication terminal comprising: a transmission unit that transmits user input information including operation information to the authentication device; and a reception unit that receives information corresponding to the authentication result of the user as a response to the transmitted user input information Is done.

  According to an embodiment of the present invention, a notification unit that notifies a user of a request for an input operation, an input reception unit that receives an input operation by a user's contact with the input device, and a physical quantity of exercise that has occurred in the input device A sensor unit that outputs a measurement signal, measurement information based on the measurement signal output from the sensor unit in accordance with the movement of the input device caused by the input operation received in response to the request, and the input operation. An information processing apparatus is provided that includes user input information including operation information to be shown and verification information for authenticating a preset user, and an authentication unit that authenticates the user according to a verification result.

  According to an embodiment of the present invention, a sensor unit that outputs a measurement signal indicating a physical quantity of motion generated in an input device for inputting an instruction to control a predetermined device, and a measurement signal output from the sensor unit. An information processing apparatus is provided that includes user input information including measurement information based thereon and verification information for authenticating a preset user, and an authentication unit that authenticates the user according to a verification result.

  According to one embodiment of the present invention, from a communication terminal that transmits to a computer measurement information indicating a physical quantity of movement of an input device generated by a user input operation and user input information including operation information indicating the input operation. A function of receiving the user input information, a function of verifying the received user input information and verification information for authenticating the user, and authenticating the user according to a verification result, and an authentication result of the user A program for realizing a function of transmitting information corresponding to the communication terminal to the communication terminal is provided.

  According to one embodiment of the present invention, in a computer provided with an input receiving unit that is provided in an input device and receives an input operation by a user's contact, and a sensor unit that outputs a measurement signal indicating a physical quantity of exercise generated in the input device. A function for notifying a request for an input operation of a user, measurement information based on a measurement signal output from the sensor unit in accordance with the movement of the input device caused by the input operation received in response to the request, and To realize a function of transmitting user input information including operation information indicating the input operation to the authentication device and a function of receiving information corresponding to the authentication result of the user as a response to the transmitted user input information Programs are provided.

  According to one embodiment of the present invention, in a computer provided with an input receiving unit that is provided in an input device and receives an input operation by a user's contact, and a sensor unit that outputs a measurement signal indicating a physical quantity of exercise generated in the input device. A function for notifying a request for an input operation of a user, measurement information based on a measurement signal output from the sensor unit in accordance with the movement of the input device caused by the input operation received in response to the request, and A program for realizing a function of collating user input information including operation information indicating the input operation and collation information for authenticating a preset user and authenticating the user according to a collation result Provided.

  ADVANTAGE OF THE INVENTION According to this invention, the authentication precision of the user who utilizes an apparatus can be improved, suppressing the increase in a user's burden.

It is a block diagram which shows the structure of the authentication system 1 which concerns on 1st Embodiment of this invention. It is the schematic which shows the external appearance of the communication terminal 10 which concerns on 1st Embodiment of this invention. It is a block diagram which shows the function structure of the authentication system 1 which concerns on 1st Embodiment of this invention. It is a figure explaining collation information concerning a 1st embodiment of the present invention. It is a figure explaining the operation information which concerns on 1st Embodiment of this invention. It is a figure explaining the measurement information which concerns on 1st Embodiment of this invention. It is a communication flow figure showing processing of authentication system 1 concerning a 1st embodiment of the present invention. It is a figure explaining the authentication screen which concerns on 1st Embodiment of this invention. It is a figure explaining the registration screen which concerns on 1st Embodiment of this invention. It is a figure explaining the determination method of the determination information which concerns on 1st Embodiment of this invention. It is a figure explaining the login screen which concerns on 2nd Embodiment of this invention. It is the schematic which shows the external appearance of 10 A of communication terminals which concern on 3rd Embodiment of this invention. It is a figure explaining the signature screen which concerns on 3rd Embodiment of this invention. It is a block diagram which shows the function structure of the communication terminal 10B which concerns on 4th Embodiment of this invention. It is a figure explaining the lock screen concerning a 4th embodiment of the present invention. It is a block diagram which shows the function structure of 1 C of financial transaction systems which concern on 5th Embodiment of this invention.

  Hereinafter, an authentication system according to an embodiment of the present invention will be described in detail with reference to the drawings. The following embodiments are examples of the embodiments of the present invention, and the present invention is not limited to these embodiments. Note that in the drawings referred to in this embodiment, the same portion or a portion having a similar function is denoted by the same reference symbol or a similar reference symbol (a reference symbol simply including A, B, etc. after a number) and repeated. The description of may be omitted. In addition, the dimensional ratio in the drawing may be different from the actual ratio for convenience of explanation, or a part of the configuration may be omitted from the drawing.

<First Embodiment>
An authentication system according to a first embodiment of the present invention will be described in detail with reference to the drawings.

[Overview]
FIG. 1 is a block diagram showing a configuration of an authentication system 1 according to the first embodiment of the present invention. The authentication system 1 includes a communication terminal 10 and an authentication device 20 connected to a network NW such as the Internet or a communication line. The communication terminal 10 in this embodiment is a smartphone. The communication terminal 10 may be a mobile terminal that can be connected to the network NW and can communicate with other devices, and may be, for example, a mobile phone or a portable game machine. The authentication device 20 is a server or the like.

  A user may operate the communication terminal 10 to connect to another device via a network NW and receive a service from another device. The authentication system 1 is a system for authenticating the user of the communication terminal 10 in the authentication device 20 in such a case. The authentication system 1 which concerns on 1st Embodiment will authenticate the user of the communication terminal 10 using the information obtained by this input, if a predetermined character etc. are input by handwriting into the communication terminal 10 by the user. In the following description, even if it is referred to as “character”, it is not limited to characters used in languages such as kanji, hiragana, katakana, and alphabet, but symbols, figures, etc. (circle, star, wavy line) Etc.). Hereinafter, a user authentication method in the authentication system 1 and a configuration for realizing the method will be described.

[Hardware configuration of communication terminal 10]
FIG. 2 is a schematic diagram showing an appearance of the communication terminal 10 according to the first embodiment of the present invention. The communication terminal 10 has a main body 100. A control unit 11, an acceleration sensor 12, and a communication module 18 are provided inside the main body 100, and a display 14 and operation buttons 17 are provided on one surface side of the main body 100. The display 14 is provided with a touch sensor 16 on the surface side, and the display 14 and the touch sensor 16 constitute a touch panel. Note that the operation button 17 may not be provided. Although not shown in FIG. 2, the communication terminal 10 may be provided with other configurations such as a microphone, a speaker, a headphone terminal, and a memory card slot.

  The control unit 11 includes an arithmetic processing circuit such as a CPU (Central Processing Unit) and a storage device such as a nonvolatile memory. The control unit 11 causes the CPU to execute a program stored in the memory and realizes various functions in the communication terminal 10. Depending on the realized function, signals output from the components of the communication terminal 10 are used.

  In this example, the acceleration sensor 12 measures the triaxial acceleration generated by the movement given to the main body 100, and outputs a measurement signal indicating the measurement result. In the following description, the three-axis direction may be referred to as the x direction shown in FIG. And z direction (also sometimes referred to as “terminal longitudinal direction”).

  The communication module 18 is connected to the network NW under the control of the control unit 11 and transmits / receives information to / from other devices such as the authentication device 20 connected to the network NW.

  The display 14 is a display device such as a liquid crystal display or an organic EL display, and displays various screens under the control of the control unit 11.

  The touch sensor 16 is a device that receives an input operation from a user and outputs a signal corresponding to the input operation. An input operation from the user is accepted by the touch sensor 16 by contact with a pointing device 101 called a stylus pen or the like, a user's finger or the like. For this reason, the touch sensor 16 uses a sensor such as a resistive film type, a capacitance type, an ultrasonic type, or a surface acoustic wave type. Similar to the touch sensor 16, the operation button 17 receives an input operation from the user and outputs a signal corresponding to the input operation.

  In this example, the main body 100 and the touch sensor 16 are input devices that receive user input. The input device is desirably large enough to be held by hand. Each component of the communication terminal 10 is provided in one main body 100. Therefore, the communication terminal 10 is formed by the same main body 100 as the input device. However, the communication terminal 10 may be formed of a plurality of main bodies, and in this case, one of the main bodies functions as an input device. A specific configuration will be described later as another embodiment.

[Hardware Configuration of Authentication Device 20]
The authentication device 20 is a server or the like as described above, and includes a control unit, a communication module, and the like. The control unit of the authentication device 20 includes an arithmetic processing circuit such as a CPU and a storage device such as a hard disk, and executes various programs in the authentication device 20 by executing a program stored in the memory by the CPU. The communication module of the authentication device 20 is connected to the network NW and transmits / receives information to / from other devices such as the communication terminal 10 connected to the network NW under the control of the control unit of the authentication device 20.

  The program executed in the communication terminal 10 or the authentication device 20 may be provided in a state stored in a computer-readable recording medium such as a magnetic recording medium, an optical recording medium, a magneto-optical recording medium, or a semiconductor memory. Each program may be downloaded via the network NW.

[Functional configuration of authentication system 1]
FIG. 3 is a block diagram showing a functional configuration of the authentication system 1 according to the first embodiment of the present invention. The functional configuration in the authentication system 1 is realized by a function realized in the communication terminal 10 and a function realized in the authentication device 20. The communication terminal 10 includes a sensor unit 120, a notification unit 140, an input reception unit 160, a transmission unit 181, and a reception unit 182. The authentication device 20 includes a designation unit 201, an authentication unit 203, a generation unit 205, a storage unit 250, a transmission unit 281, and a reception unit 282.

[Functional configuration of communication terminal 10]
First, the functional configuration of the communication terminal 10 will be described.

  The sensor unit 120 outputs a measurement signal indicating the physical quantity of the motion generated in the main body 100 (input device) of the communication terminal 10. In this example, the sensor unit 120 outputs a measurement signal indicating acceleration in three axis directions by the acceleration sensor 12. Therefore, in this example, the physical quantity of motion indicates acceleration. Any physical quantity of motion may be used, for example, an angular velocity measured by a gyro sensor.

  In this example, the sensor unit 120 outputs at least a measurement signal related to a motion generated by an input operation to the input device. For example, when the user inputs handwritten characters to the touch sensor 16 with the pointing device 101 or the like, when the pointing device 101 touches the touch sensor 16, or when the pen pressure changes, the terminal longitudinal direction ( Acceleration in the z-axis direction is likely to occur. Further, when the pointing device 101 is moved in contact with the touch sensor 16, the acceleration in the left-right direction of the terminal is determined from the balance between the frictional force between the pointing device 101 and the touch sensor 16 and the support of the input device by hand. Acceleration is also likely to occur in the vertical direction. In any case, besides the handwriting, a measurement signal corresponding to the user's writing habit is obtained. The input device is not limited to support by hand, and the input operation may be performed while being placed on a desk or the like. However, it is desirable that the input device is supported in a state in which it is moved by a user input operation so that the output of the measurement signal from the acceleration sensor 12 is increased. Note that the sensor unit 120 may output a measurement signal indicating the magnitude of pressure applied to the touch sensor 16 by the pointing device 101 or the like.

  The notification unit 140 notifies a request for an input operation for authenticating the user. In this example, the notification unit 140 notifies the user of an input operation request for authenticating the user by causing the display 14 to display an authentication screen (see FIG. 8) or the like. The notification of the input operation request to the user is not limited to the display on the display 14. For example, the user may be notified by emitting sound with a speaker, vibrating the main body 100 with a vibration motor, or turning on a light emitting element that emits visible light.

  Further, the notification unit 140 notifies an input operation request for registering verification information. The collation information is information used when the authentication apparatus 20 performs user authentication, and details will be described later. Furthermore, the notification unit 140 notifies information indicating a user authentication result in the authentication device 20. The notification of information indicating the user authentication result is not limited to display on the display 14. For example, the user may be notified by emitting sound with a speaker, vibrating the main body 100 with a vibration motor, or turning on a light emitting element that emits visible light.

  The input receiving unit 160 receives an input operation by a user's contact with the input device (main body 100). In this example, the input receiving unit 160 receives an input operation by a user's contact with the touch sensor 16 provided in the main body 100.

  The transmission unit 181 transmits measurement information based on the measurement signal output from the sensor unit 120 and user input information including operation information indicating the input operation received by the input reception unit 160 to the authentication device 20. At this time, a user ID, a password, and the like for identifying the user may be transmitted from the communication terminal 10 in association with the user input information. Note that a user ID or the like may be transmitted at another timing of transmission / reception of a series of information.

  In this example, the operation information is information (see FIG. 5) indicating coordinates according to the contact position of the touch sensor 16. In this example, the measurement information is information (see FIG. 6) indicating a waveform envelope (envelope) obtained from the measurement signal. The measurement information may be information obtained based on the measurement signal. For example, the measurement information may be the measurement signal itself, or may be obtained by analyzing the frequency distribution (converted into the frequency domain) of the measurement signal for a predetermined period. Information obtained by FFT (Fast Fourier Transform), wavelet transform, or the like, or information obtained by arranging frequency distributions for each predetermined period in time series. Note that, as in this example, when the frequency component of the measured signal to be observed is displaced over time, it is preferable to use wavelet transform or diffusion wavelet transform processing. It may be a feature parameter that defines a wavelet function obtained when The feature parameter here may be a position parameter and a decompression parameter that define the mother wavelet.

  Measurement information and operation information are associated with each other in time series. Therefore, the measurement information and the operation information can understand the relationship between the elapsed time from the reference and the data value with a predetermined timing as a reference.

  In this example, the predetermined timing is a timing when the user starts an input operation, that is, a timing when an input (contact) is first made in a predetermined area of the touch sensor 16 after the input operation request is notified. . In this example, the measurement information and the operation information include information until the input operation by the user is completed. The end of the input operation may indicate a case where an input operation is not accepted for a certain period of time, or an operation indicating the end of the input operation (for example, an operation of the authentication button shown in FIG. 8) is performed. Note that the measurement information and the operation information may include information from when the user starts an input operation until a predetermined time has elapsed.

  The receiving unit 182 receives user input information from the transmitting unit 181 to the authentication device 20, and receives information corresponding to the authentication result of the user in the authentication device 20 as a response. In addition, the receiving unit 182 receives information specifying an operation to be input to authenticate the user, a request for an input operation necessary to generate collation information for authenticating the user, and the like.

[Functional Configuration of Authentication Device 20]
Next, the functional configuration of the authentication device 20 will be described. In addition, about the function structure demonstrated below, it is not restricted to the case where it implement | achieves with one server, You may implement | achieve cooperatively in the some server connected via the network NW. For example, the storage unit 250 may be realized by a different server from a server that realizes a functional configuration other than the storage unit 250.

  The receiving unit 282 receives user input information and the like from the communication terminal 10. The storage unit 250 stores verification information for authenticating the user.

  FIG. 4 is a diagram illustrating collation information according to the first embodiment of the present invention. In the verification information, operation information and measurement information are associated with a user ID that identifies the user. In this example, determination information is further associated. In some cases, a plurality of operation information and a plurality of measurement information are associated with one user ID. In the example of FIG. 4, for example, the user ID “abc12345” includes a first set of operation information Lc1-1, measurement information Vc-1, and determination information Jc-1, operation information Lc1-2, measurement information Vc−. 2 and the second set of determination information Jc-2 are associated with each other.

  FIG. 5 is a diagram for explaining operation information according to the first embodiment of the present invention. As shown in FIG. 5A, the operation information is information indicating a time change of handwriting coordinates (x, y). The handwriting coordinates are coordinates based on a predetermined position on the screen and indicate the coordinates detected by the touch sensor 16. Accordingly, when the handwriting coordinates (Za0, Za1, Za2,... Zan) of the operation information are arranged in time series, for example, a predetermined character or the like is input by the user on the touch sensor 16 as shown in FIG. Information indicating the operation to be performed. “XX: YY” of “Elapsed time” is XX. YY seconds are shown. Thus, in the example of FIG. 5, the coordinates of the handwriting on which the character “a” is written are shown. It should be noted that the operation information may have any data structure as long as the handwriting can be understood. The handwriting coordinates may be expressed with reference to the first coordinates. In this example, the character represented by the handwriting is associated with the operation information. The handwriting indicated by the operation information may not be one character but may be a plurality of characters. For example, it may be the name of the user.

  FIG. 6 is a diagram for explaining measurement information according to the first embodiment of the present invention. As shown in FIG. 6A, the measurement information is information indicating a temporal change in the envelope values (x, y, z) of the measurement signal in the three-axis directions. An envelope is a waveform envelope. For example, as shown in FIG. 6B, in the case of the spectrum S2 of the measurement signal of acceleration in the z-axis direction, the envelope is represented by the spectrum S1. “XX: YYY” of “Elapsed time” is XX. YYY seconds are shown. As described above, the operation information and the measurement information may have different time resolutions or the same information. Note that the measurement information may be generated after subjecting the measurement signal to predetermined signal processing. The signal processing may be realized by a filter that extracts a part of the frequency. In this case, measurement information to be compared is generated based on a measurement signal in a specific frequency band. Further, the signal processing may be processing for removing noise. A known method may be used as the noise removal method.

  The operation information and the measurement information are associated with each other by time information, and the envelope value of the measurement signal when a specific part of the handwriting is written can be known. It should be noted that the relationship between the operation information and the measurement information in each part of the handwriting does not have to be associated with time information, but may be associated with some information.

  In this example, the operation information and the measurement information included in the user input information are in the data format of the operation information shown in FIG. 5 and the measurement information shown in FIG. Note that the operation information and the measurement information may have different data formats depending on whether they are included in the user input information or the verification information. In that case, a process of matching the data format may be performed before collation.

  The determination information is information used to authenticate the user by comparing the user input information and the verification information, and is information indicating a determination criterion as to whether or not the user is a valid user, and may be information that is different for each user. . The determination information may be, for example, information that defines an allowable range when determining that the user is a valid user as a result of verifying the user by comparing the user input information and the verification information. The determination information may be information that defines a range to be collated (for example, a specific part of the handwriting, that is, a period corresponding to a specific input operation (specific operation information)). At this time, only measurement information may be collated within the range, or measurement information and operation information may be collated within the range. When the range to be collated is limited, it may be determined according to a predetermined algorithm regardless of the determination information. The predetermined algorithm includes a case where it is determined at random. Note that the determination information may be information that is collated outside the range to be collated, and is determined so that the criterion (allowable range) is different between the collated range and the other range.

  Returning to FIG. 3, the description will be continued. The designation unit 201 designates a character associated with the operation information of the above-described verification information as an operation to be input by the user. The operation to be input may be specified by the handwriting itself indicated by the operation information. In this case, no character may be associated with the operation information. Moreover, when there are a plurality of pieces of collation information corresponding to the user ID, the designation unit 201 selects and designates one of them. The designation unit 201 selects collation information according to a predetermined algorithm. For example, the designated collation information may be selected in a predetermined order from a plurality of pieces of collation information corresponding to one user ID, or may be selected at random.

  The authentication unit 203 collates the user input information received by the reception unit 282 with the collation information stored in the storage unit 250, and authenticates the user according to the collation result. In this verification, various algorithms can be used. An example will be described below.

  The authentication unit 203 compares operation information included in user input information (hereinafter referred to as user operation information) with operation information included in verification information (hereinafter referred to as verification operation information). In this comparison, the user operation information and the collation operation information are expanded or contracted by using pattern matching such as DP (Dynamic Programming) matching, and the input operation (user The correspondence between each part of the handwriting) and each part of the collation input operation (collation handwriting) is determined. The pattern matching is not limited to this example, and various known techniques can be used.

  And the authentication part 203 compares the measurement information (henceforth user measurement information) contained in user input information, and the measurement information (henceforth collation measurement information) contained in collation information. When this comparison is made, the correspondence relationship between the user measurement information and the collation measurement information is adjusted in accordance with the time expanded or contracted in the pattern matching of the operation information. Thereby, the measurement information can be compared based on the correspondence between the user measurement information and the collation measurement information in each part of the handwriting. In the comparison of measurement information, pattern matching using various known techniques can be applied. For example, when the characteristic parameters using the wavelet transform described above are used in the measurement information, the characteristic parameter group of the measurement information is compared with the characteristic parameter group registered in advance. The distance between the feature parameter group of the measurement information and the previously registered feature parameter group is calculated by comparison. In this distance measurement, the distance in the space formed by the feature parameter group is considered, and therefore the distance is calculated using a Gaussian function instead of the Euclidean distance. In this case, the determination information defines a distance range for determination as a valid user. Although the operation information and the measurement information are compared with each other, they may be compared independently. For example, the operation information may be matched by DP matching, and the measurement information may be matched regardless of the operation information matching.

  After performing these comparisons, the authentication unit 203 authenticates the user based on collation by comparison of operation information and collation by comparison of measurement information. As a result of the collation, the authentication unit 203 determines that the user of the communication terminal 10 is a valid user when the determination criteria indicated by the determination information are satisfied even if there are different portions. In addition, although the comparison of operation information is a comparison of handwriting, it is not restricted to the comparison of a pattern, The comparison of handwriting speed may be included. In the comparison of the handwriting speed, for example, the elapsed time in the user operation information corresponding to the first position to the second position of the handwriting may be compared with the elapsed time in the collation operation information.

  When the authentication unit 20 registers a user to be authenticated, the generation unit 205 performs processing for generating verification information corresponding to the user. For example, in order to acquire operation information and measurement information to be registered in the collation information, the communication terminal 10 requests a user input operation, and the collation information is based on the operation information and measurement information transmitted from the communication terminal 10. Is generated. The generated collation information is stored in the storage unit 250.

  The transmission unit 281 transmits information corresponding to the user authentication result in the authentication unit 203 to the communication terminal 10. In addition, the transmission unit 281 sends information indicating an operation to be input by the user specified by the specifying unit 201, a request for an input operation necessary to generate collation information for authenticating the user, and the like to the communication terminal 10. Send.

[Operation of Authentication System 1]
Next, an operation realized in the functional configuration of the authentication system 1 will be described using a communication flow shown in FIG.

  FIG. 7 is a communication flow diagram showing processing of the authentication system 1 according to the first embodiment of the present invention. First, the user of the communication terminal 10 applies for user authentication to receive a predetermined service (step S110). At this time, a user ID, a password, and the like are input on a login screen of a predetermined service. In this example, the user ID, password, and the like can be input using a software keyboard displayed on the display 14 or a hardware keyboard such as the operation buttons 17. Thereby, a request for user authentication (including information such as a user ID) is transmitted from the communication terminal 10 to the authentication server 20 (step S120).

  The application for user authentication is performed, for example, by accessing a server that provides a predetermined service. In this example, the server that provides the service is described as having the function of the authentication device 20. If the server providing the service and the authentication device 20 are different servers, a user authentication request may be transferred to the authentication device 20, and after the user authentication, the service is used using the authentication result. It may be provided to the user.

  The authentication device 20 refers to the collation information and designates an operation to be input by the user corresponding to the user ID (step S210). At this time, if there are a plurality of pieces of collation information corresponding to the user ID, any one is selected and designated. Here, an example in which an input operation of the character “a” is designated is shown. The authentication device 20 transmits a request for the designated input operation (input operation of the character “a”) to the communication terminal 10 (step S220). Upon receiving the input operation request, the communication terminal 10 notifies the user of the input operation request by displaying an authentication screen on the display 14 (step S130).

  FIG. 8 is a view for explaining an authentication screen according to the first embodiment of the present invention. The authentication screen displayed on the display 14 includes an input frame AW as shown in FIG. This authentication screen also displays an operation request for inputting the character “a” designated in step S210 to the user by handwriting.

  Note that, instead of the designated character “a”, a handwriting indicated by the collation operation information may be displayed on the authentication screen. The handwriting may be displayed in the part “a” shown in FIG. 8 or may be displayed in the input frame AW and traced by the user. In addition, since it is only necessary to remember a character to be input by the user, there is no need to display the designated character. In this case, the login screen described in step S110 and the authentication screen may be shared.

  As shown in FIG. 8B, the user inputs the requested character “a” into the input frame AW with the pointing device 101, a finger, or the like. Note that a user ID, a password, or the like may be displayed on the authentication screen. If a user ID, password, or the like is displayed, these may be corrected. In this example, when an area in which a user ID and a password are displayed is operated, a software keyboard is displayed on the lower side of the screen, for example. The user may operate the software keyboard to rewrite the user ID and password and operate the correction button B1. An authentication screen with a new user ID is displayed on the display 14.

  Returning to FIG. 7, the description will be continued. The communication terminal 10 accepts a user input operation (handwriting input to the input frame AW) (step S140). The communication terminal 10 generates operation information based on the input operation. At this time, when receiving an input operation from the user, the communication terminal 10 moves with the force given by the input operation, and therefore generates the measurement information that represents this movement as acceleration. And the communication terminal 10 produces | generates the user input information containing operation information and measurement information (step S150). When the authentication button B2 shown in FIG. 8 is operated by the user, the communication terminal 10 transmits user input information to the authentication device 20 (step S160).

  Upon receiving the user input information, the authentication device 20 collates the user input information with the collation information corresponding to the user ID of the user (step S230). At this time, if there are a plurality of pieces of collation information (a set of collation operation information and collation measurement information) corresponding to the user ID and one of them is selected in step S210, the selected collation information is set as a collation target. Is done.

  The authentication device 20 compares the user operation information with the collation operation information according to a predetermined algorithm, and compares the user measurement information with the collation measurement information to authenticate the user (step S240). The authentication device 20 determines that the user is a legitimate user when these comparison results satisfy the determination criteria defined in the determination information, and determines that the user is a camouflaged user when the comparison results are not satisfied. To authenticate the user. Thereby, the user can be authenticated using the handwriting by the input operation of the character “a” by the user and the movement of the communication terminal 10 (input device) generated by the input operation.

  This movement at the communication terminal 10 is caused by a force applied to the touch sensor 16 during an input operation, that is, a force such as writing pressure. Even if the user supports the communication terminal 10 (main body 100) with one hand (for example, the left hand) and performs an input operation with the other hand (for example, the right hand), the position of the hand that supports the communication terminal 10 is completely fixed. It is not done. Therefore, the communication terminal 10 can acquire the wrinkle element of the user's writing as measurement information in the user's input operation.

  In this way, not only authentication by collating the handwriting when the user inputs characters, but also using the physical quantity (acceleration in this example) corresponding to the motion given to the communication terminal 10 by the writing pressure, etc. It is possible to authenticate a user with higher accuracy than the above verification. On the other hand, since the user only has to write the required characters in the usual manner of writing, the registered handwriting (corresponding to the coordinates) and the writing style (the force applied to the input device: corresponding to the acceleration) can be reproduced. Even if you don't practice enough, you can reproduce with high accuracy. Therefore, even if the determination criterion for user authentication requires high-precision reproduction, the burden on the user can be suppressed. In addition, a third party can visually check the handwriting and imitate it by performing sufficient practice to reproduce it, but imitation of the user's writing style is not easy.

  The authentication device 20 transmits the user authentication result determined in this way to the communication terminal 10 (step S250). When the service that the user wants to receive is provided by a server or the like different from the authentication device 20, the authentication result may be transmitted to the communication terminal 10 via the server.

  Upon receiving the authentication result, the communication terminal 10 displays the authentication result on the display 14 and notifies the user (step S170). Note that the authentication result is not limited to the case where the content is directly displayed on the display 14, but may be notified to the user when the provision of the service is started. When the user of the communication terminal 10 is authenticated as a legitimate user, information is transmitted and received between the communication terminal 10 and the authentication device 20 (or another server that provides the service), and the service is provided to the user. It starts (Step S300). Each operation | movement in these communication flows is implement | achieved using the function structure of the authentication system 1 mentioned above, for example. The above is the description of the operation when the authentication system 1 performs user authentication.

[Register verification information]
Next, an example in which new verification information is registered in the authentication device 20 will be described. The user operates the communication terminal 10 to request registration for causing the authentication device 20 to authenticate itself. When the communication terminal 10 receives a response from the authentication device 20, a registration screen is displayed on the display 14.

  FIG. 9 is a diagram illustrating a registration screen according to the first embodiment of the present invention. First, on the registration screen displayed on the display 14, the user ID and password can be input. In this example, three input frames RW1, RW2, and RW3 are displayed on the registration screen, and designation of a character to be input (“a” in the example of FIG. 9) is displayed. Note that the designated character may be changeable by the user.

  The user inputs the designated character “a” in the input frames RW1, RW2, and RW3 by hand using the pointing device 101, a finger, or the like. With the input of characters, corresponding to each of the three inputs, operation information corresponding to the handwriting (hereinafter referred to as registered operation information), and measurement information corresponding to the exercise given to the communication terminal 10 at the time of input (hereinafter referred to as the following) User input information including registration measurement information).

  FIG. 9B is an example of a registration screen display after handwriting input. When the user operates the registration button B <b> 3 after completing the handwritten input, the user input information regarding the three inputs described above is transmitted from the communication terminal 10 to the authentication device 20. In the authentication device 20, user input information for three inputs is analyzed to generate collation information, and is stored in the storage unit 250 in association with the user ID. Further, the determination information is determined based on user input information of three inputs. For example, the determination information is determined based on the stability of handwriting and the like by three inputs by the user. In other words, a portion where the handwriting is stable over a plurality of times has high reproducibility by the user, so that the criterion is strict, and a portion where the handwriting is unstable may be loosened.

  Hereinafter, an example of generating collation information will be described. First, the authentication device 20 performs an analysis for confirming the stability of the handwriting by three inputs. For example, with respect to the handwriting of three times, adjustment is performed so that the number of coincident points is increased as much as possible. Also, adjustment such as enlargement / reduction may be performed.

  FIG. 10 is a diagram illustrating a determination information determination method according to the first embodiment of the present invention. The handwriting shown in FIG. 10 is described in a superimposed manner after adjusting the handwriting obtained by three times of input. When the adjustment range WL is adjusted in this way, if there is a matching range WL in which a match is found within a certain standard, the determination criterion is determined to be stricter as a part where the reproducibility of the user is high. For other portions, the determination criterion is determined by reflecting the error range WE. Determination information included in the collation information is generated using the determination criterion determined in this way.

  Further, the operation information included in the collation information may be, for example, coordinates representing the middle (for example, the handwriting corresponding to the average) of the three handwritings adjusted as shown in FIG. The measurement information included in the collation information may also be a value representing the middle of the three accelerations in each axial direction, similar to the operation information.

  In the determination of the determination criterion, if the stability in the three handwritings is too bad and the determination criterion becomes too loose (when it becomes looser than a predetermined reference value), the authentication device 20 changes another character. What is necessary is just to make a new designation and to request handwritten input of the newly designated character. In this case, the registration screen corresponding to FIG. 9A may be displayed again on the display 14 of the communication terminal 10.

  In the above registration example, the user is requested to input three times. However, the number may be more or less, or may be once. The determination information may be a predetermined determination criterion, or may allow the user to determine the degree of severity of the determination criterion.

Second Embodiment
In the second embodiment, a case where the user ID is input by handwriting will be described. In this case, the operation information is information indicating the handwriting of the user ID. The authentication unit 203 of the authentication device 20 recognizes the user ID by performing character recognition from the handwriting.

  FIG. 11 is a diagram for explaining a login screen according to the second embodiment of the present invention. As shown in FIG. 11, when a request for inputting a user ID and password from the authentication device 20 is transmitted to the communication terminal 10, the communication terminal 20 displays a login screen for requesting input of the user ID and password on the display 14. To do. On the login screen, an input frame UW for inputting the user ID by handwriting is provided. When the user inputs a user ID into the input frame UW using the pointing device 101 or the like and operates the login button B4, user input information related to the input is transmitted to the authentication device 20.

  And the authentication apparatus 20 recognizes a user ID by character recognition from the handwriting which operation information shows, collates the collation information corresponding to the user ID, and user input information, and authenticates the user.

  In addition, the character input by handwriting may be not a user ID but a password, and may be both a user ID and a password. Further, when the operation information is used as the user ID in this way, the comparison between the user input information and the collation information may not be performed by comparing the operation information as a comparison with the measurement information.

<Third Embodiment>
In the third embodiment, a communication terminal 10A having a plurality of main bodies, one of which has the function of an input device will be described.

  FIG. 12 is a schematic diagram showing an appearance of a communication terminal 10A according to the third embodiment of the present invention. The communication terminal 10A includes a first main body 100aA and a second main body 100bA. The first main body 100aA and the second main body 100bA are connected by a communication cable C1. In this example, a reading device 30 that reads information recorded on a credit card or the like is connected to the second main body 100bA of the communication terminal 10A by a communication cable C2. Note that the portion connected by the communication cables C1 and C2 may be wireless communication instead of wired communication. The reading device 30 may be integrated with the first main body 100aA or the second main body 100bA.

  The first main body 100aA is provided with an acceleration sensor 12A, a display 14A, and a touch sensor 16A. Therefore, in this example, among the communication terminals 10A, the first main body 100aA corresponds to the input device. Since the first main body 100aA corresponds to the input device, it is desirable that the first main body 100aA has a size that can be held by hand. The second main body 100bA is provided with a control unit 11A and a communication module 18A. Of the components, detailed descriptions of components having functions similar to those of the components of the communication terminal 10 in the first embodiment are omitted.

  10 A of communication terminals acquire the information (for example, card number) of the card | curd read in the reader 30 in the payment of a credit card, etc., and handle the information as information equivalent to the user ID in 1st Embodiment. Then, on the display 14A, a screen (signature screen) for requesting a signature from a user (for example, a card owner) is displayed.

  FIG. 13 is a view for explaining a signature screen according to the third embodiment of the present invention. The user inputs a signature in the signature field of the signature screen with the pointing device 101A, a finger, or the like. When the settlement button B5 is operated, user input information including operation information and measurement information is generated. The settlement button B5 is not limited to the software key displayed on the display 14, and a hardware key may be used. The hardware key may be provided on the main body 100aA, the main body 100bA, or the reading device 30.

  The mobile terminal 10 </ b> A transmits the user input information and the card information read by the reading device 30 to the authentication device 20. The authentication device 20 authenticates the user by comparing the verification information corresponding to the card information (user ID) with the user input information. Then, processing such as credit card settlement may be executed in accordance with the user authentication result.

  Such a communication terminal 10 </ b> A can be used for settlement of credit cards at a store or settlement when mail order such as the Internet is performed. Further, the communication terminal 10A can be applied to a security device such as an ATM (Automatic teller machine) or a door with an electronic lock. For example, in a general ATM, the communication terminal 10A can be applied by attaching a configuration corresponding to the input device.

<Fourth embodiment>
In the fourth embodiment, a case where the communication terminal and the authentication device are integrally configured will be described. That is, a part of each function of the authentication device can be realized in the control unit of the communication terminal.

  FIG. 14 is a block diagram showing a functional configuration of a communication terminal 10B according to the fourth embodiment of the present invention. As illustrated in FIG. 14, the communication terminal 10B includes a sensor unit 120B, a notification unit 140B, an input reception unit 160B corresponding to the function of the communication terminal 10 in the first embodiment, and a designation unit 101B corresponding to the function of the authentication device 20. , An authentication unit 103B, a generation unit 105B, and a storage unit 150B. When the user of the communication terminal 10B is a predetermined one, the collation information stored in the storage unit 150B may not be determined corresponding to the user ID. Of the components, the detailed description of the components having the same functions as the components of the communication terminal 10 and the authentication device 20 in the first embodiment will be omitted.

  A user who uses such a communication terminal 10B can lock the communication terminal 10B so that the communication terminal 10B is not used by a third party. The lock indicates that the execution of each function of the communication terminal 10B is restricted. The unlocking is performed on the lock screen, for example. For example, in a general smartphone or the like, when a user turns on the power, a lock screen is displayed on the display, and the lock can be released by a predetermined operation and password input. In the communication terminal 10 </ b> B, the lock can be released using user input information generated by the user inputting a character designated by handwriting.

  FIG. 15 is a diagram illustrating a lock screen according to the fourth embodiment of the present invention. An input frame LW is displayed on the lock screen. When the user inputs the designated character into the input frame LW by handwriting and the release button B6 is operated, the user input information related to this input is collated with the collation information, and the user is authenticated according to the collation result. The If it is determined that the user of the communication terminal 10B is a valid user, the lock is released, and the user can freely use the functions restricted in the communication terminal 10B. Note that the communication terminal 10B does not necessarily have a communication module. Therefore, this embodiment can be applied not only to the presence or absence of a communication module but also to various information processing apparatuses.

<Fifth Embodiment>
In the fifth embodiment, a case will be described in which the service that the user of the communication terminal 10 intends to use is a financial transaction (balance inquiry, deposit, transfer, transfer, securities transaction, etc.) provided from a financial transaction apparatus.

  FIG. 16 is a block diagram showing a functional configuration of a financial transaction system 1C according to the fifth embodiment of the present invention. 1 C of financial transaction systems have the financial transaction apparatus 50 connected with the communication terminal 10 via the network NW. The financial transaction device 50 includes the authentication device 20 and the transaction unit 25 in each of the above-described embodiments. The transaction unit 25 uses the authentication result of the user in the authentication device 20 to execute a financial transaction process based on an instruction from the communication terminal 10 when the user of the communication terminal 10 is a valid user. At this time, the processing of the financial transaction executed by the transaction unit 25 may be an instruction for processing to an external device such as another database server. Note that the financial transaction device 50 is not limited to being realized by a single server, as with the authentication device 20, and may be realized in cooperation with a plurality of servers connected via the network NW.

<Sixth Embodiment>
In each of the above-described embodiments, the user is authenticated by the handwriting, writing pressure, etc. of the operation when the content (user ID, password, predetermined character, etc.) specified by the specifying unit 201 is input by the user. It was. In the sixth embodiment, a case will be described in which a user is authenticated by handwriting, writing pressure, or the like of an operation when input by the user regardless of designation by the designation unit 201. Here, as an operation input by the user regardless of the designation of the designation unit 201, a case where the user designates the amount of transfer when a financial transaction is performed as in the fifth embodiment will be described as an example.

  In this example, operation information, measurement information, and determination information corresponding to the numbers “0” to “9” are associated with each user ID in the verification information. When a screen for designating the transfer amount is displayed on the display 14 of the communication terminal 10 used by the user, the user's input operation is requested. In response to this request, when the user inputs the transfer amount by handwriting with a pointing device, a finger, etc., user input information for each digit of the transfer amount is transmitted from the communication terminal 10 to the authentication device 20.

  In the authentication device 20, the authentication unit 103 identifies a number input by the user based on operation information included in the user input information. And the authentication part 103 uses the operation information, measurement information, and determination information corresponding to the identified number among collation information in the collation performed at the time of user authentication. At this time, only some of the digits (the largest digit, the smallest digit, etc.) of the transfer amount designated by the user may be subject to collation.

  Note that the transfer amount input by the user may not be input by handwriting. For example, the input may be performed using a software keyboard or the operation button 17. In this case, the operation information indicates an input operation. If it is a software keyboard, it is a position on the screen where a key for inputting each number is displayed, and if it is an operation button 17, a number is input. Any information may be used as long as it indicates the operation content. And the measurement information should just be information which shows the physical quantity according to the exercise | movement given to the communication terminal 10 when a number is input with the software keyboard or the operation button 17. FIG.

  In the above example, the case where the user performs a numeric input operation has been described. For example, the present invention can be applied even when a search keyword is input at a site that provides a search service. Further, the present invention is not limited to inputting numbers and characters, and can also be applied to an input operation by touching an icon (for example, the correction button B1 or the authentication button B2 shown in FIG. 8) displayed on the display 14. is there. In this case, the user can be authenticated based on the user's habit when touching the icon.

  As described above, the authentication is not limited to the case where the content designated by the designation unit 201 is input on the login screen or the like, and the user is authenticated during various input operations when using various services. It can also be done.

<Seventh embodiment>
As described in the first embodiment, the collation information may not be associated with operation information, measurement information, and determination information registered in advance. In the seventh embodiment, the collation information is determined based on operation information and measurement information when the same operation has been performed in the past. The past operation may be an input operation when the same service was received last time. It may be determined based not only on the previous time but also on several input operations. In the case where the input operation is performed several times, the operation information and the like may be determined by the same method as in the case where a plurality of inputs are requested at the time of registration in the first embodiment.

  In the first embodiment, the user has previously performed an operation for registering operation information and the like for use in collation. However, in the case of the seventh embodiment, the past operation itself corresponds to the registration operation. Will do. In this way, when an input operation is performed with handwriting or writing pressure that is significantly different from the previous input operation, the user who performed the input operation immediately before and the user who performed the current input operation are different users. It can be determined that there is.

  In such a case, there is a high possibility that the user who performed the input operation this time is not a valid user, while the possibility that the user who performed the input operation immediately before is not a valid user remains. Therefore, the user who performed the input operation this time may be authenticated by another method. For example, other known authentication methods such as authentication performed by the user inputting a pre-registered answer may be combined with a pre-registered question. If it is determined that the user is a legitimate user by performing another method of user authentication, the user's past input operation may have fluctuated, or the past input operation may have been performed by another user. Therefore, the display 14 may be displayed to call attention to the user.

  As in the first embodiment, operation information and the like for use in collation are registered in advance as initial values, and the operation information and measurement information associated with the collation information are corrected by subsequent user input operations. May be. This correction is performed when it is determined that the user is valid based on this input operation. In this way, even if the user's input operation changes little by little, the user can be authenticated in response to the change, so that the authentication accuracy can be improved.

<Eighth Embodiment>
In the above-described embodiment, the authentication unit 203 (103B) performs user authentication based on both the collation result between the user operation information and the collation operation information and the collation result between the user measurement information and the collation measurement information. However, in the eighth embodiment, the user may be authenticated based on the collation result between the user measurement information and the collation measurement information without using the user operation information.

<Ninth Embodiment>
In the embodiment described above, the authentication unit 203 (103B) has different portions in the collation result between the user operation information and the collation operation information and the collation result between the user measurement information and the collation measurement information. When the determination criteria indicated by the determination information are not satisfied, it is determined that the user is not a valid user. In the ninth embodiment, in addition to this, user operation information or user measurement information generated in the past is stored in the authentication device, and the user operation information or user measurement information to be verified is stored in the past user operation information or Even when it completely matches the user measurement information, it may be determined that the user is not a valid user.

  This can be used as a defense against unauthorized access by impersonating the user. For example, an unauthorized accessor obtains information generated in the past in advance from a communication terminal or the like regarding at least one of user operation information and user measurement information, disguises it as information generated at the time of authentication, It is assumed that the acquired information is transmitted from the communication terminal. Here, the probability that the user operation information and user measurement information newly generated as described in each embodiment will be exactly the same as information generated in the past is extremely small. Therefore, when the user operation information and the user measurement information generated at the time of authentication completely match the past user operation information or the user measurement information (one of them when there are a plurality of records). Since it is determined that the unauthorized user impersonates the user himself / herself as an unauthorized user, it is possible to defend against such an unauthorized user. Further, it may be notified that an unauthorized access has been made to a predetermined contact (a terminal owned by the original user, a terminal of an administrator, etc.).

<Tenth Embodiment>
In the tenth embodiment, an example will be described in which the user interrupts the input of information to the communication terminal 10 after receiving the notification of the input operation request and before receiving the notification of the authentication result.

  When the user ID and password input by the user are input and a request for user authentication is transmitted from the communication terminal 10 to the authentication device 20 (step S120 in FIG. 7), the authentication displayed on the display 14 as shown in FIG. A screen is displayed. At this time, if there is no user input operation within a predetermined time, the authentication screen on the display 14 is not displayed. On the other hand, information necessary for displaying the authentication screen is cached in the memory of the communication terminal 10 or the memory of the authentication device 20. Note that the information to be hidden may be only information input by the user. The authentication screen or the like displayed on the display 14 may be hidden when the next input operation is not performed within a predetermined time after the last input operation.

  When a predetermined exercise (hereinafter referred to as a return exercise) is given to the communication terminal 10 by the user, the cached information is read, the authentication screen is redisplayed on the display 14, and the user's input operation is accepted again. It becomes a state that can be. On the other hand, if it is not possible to detect the return movement even after a predetermined time has passed since the user gave exercise to the communication terminal 10, the cached information is discarded and the user ID and password must be entered again. It will be.

  Whether or not the exercise given to the communication terminal 10 is a return exercise is similar to the case where the user measurement information and the collation measurement information described in the above embodiment are collated to authenticate the user. The determination is made at the terminal 10 or the authentication device 20. That is, user measurement information indicating the exercise given to the communication terminal 10 is generated, collation measurement information indicating the return exercise registered in advance and user measurement information are collated, and based on the collation result and the determination information Then, it is determined whether the exercise given to the communication terminal 10 by the user is a return exercise.

  In this way, by hiding the authentication screen or the like displayed on the display 14 after a certain period of time and considering the case where the communication terminal 10 is misplaced, it is preferable from the viewpoint of preventing information leakage. Further, even if a third party uses this communication terminal 10 in this case, since a movement that is not a return movement is given to the communication terminal 10, the cached information is deleted, and further Information security can be improved by prohibiting the input operation to the communication terminal 10 after the lockout. To release the lockout, for example, a predetermined password may be input or a predetermined exercise may be given to the communication terminal 10.

  On the other hand, if the user just interrupts the input operation due to circumstances, if the user gives a return movement to the communication terminal 10, the user can return to a state of accepting the next input operation without inputting the input contents so far. Thus, the user's operation is simplified, which is efficient and convenient. In addition, what is necessary is just to be registered by the user beforehand about a return movement, and the change of the content is also possible. As a result, it is necessary to give the communication terminal 10 a return movement that only the user can know, and this can lead to an improvement in information security.

<Eleventh embodiment>
In the above-described embodiments, the main body 100 of the communication terminal 10 such as a smartphone has been described as an example of the input device. Specifically, the input device has a touch sensor 16 and various types of information are input by a user input operation to the touch sensor 16. The input device may be applied not only as a device used for inputting such various types of information, but also as a device for inputting an instruction to control another device. For example, if the other device is a vehicle, a steering wheel, an accelerator pedal, a brake pedal, and the like for inputting an instruction for controlling the vehicle correspond to the input device. If the information processing apparatus described in the fourth embodiment is incorporated in a vehicle and this input device is applied as a handle or the like, the driver of the vehicle can be authenticated.

  As described above, when the information processing apparatus is incorporated in an automobile using the input device as a handle and applied, the driver's driving habit can be acquired from the measurement information while the driver is driving. At this time, a driving habit when a predetermined handle operation (for example, an operation of turning the handle to the right) is registered in advance as reference measurement information, and when the driver operates the handle, for example, user operation information What is necessary is just to collate the measurement information (user measurement information) obtained when it became predetermined operation information, and collation measurement information.

  As a result of authenticating the driver based on the collation result, if it cannot be determined that the driver is a valid driver, a predetermined contact information (terminal owned by the original driver, terminal of the administrator) Or the like) may be notified that a different driver is driving the vehicle. In addition, when it cannot be determined that the driver is a valid driver, an operation different from the normal operation such as limiting the operation of the automobile may be performed. As an operation different from normal, for example, you can gradually decelerate and stop the car, lock the door of the car so that it can only be opened from the outside, blink the light, sound the horn, It is desirable that the operation is such that some kind of notification is given outside the automobile.

DESCRIPTION OF SYMBOLS 1 ... Authentication system, 1C ... Financial transaction system, 10, 10A, 10B ... Communication terminal, 11, 11A ... Control part, 12, 12A ... Acceleration sensor, 14, 14A, 14B ... Display, 16, 16A ... Touch sensor, 18 , 18A ... communication module, 20 ... authentication device, 25 ... transaction unit, 30 ... reading device, 50 ... financial transaction device, 100 ... main body, 101, 101A, 101B ... pointing device, 120, 120B ... sensor unit, 140, 140B ... notification unit, 160, 160B ... input reception unit, 181 ... transmission unit, 182 ... reception unit, 201,101B ... designation unit, 203,103B ... authentication unit, 205,105B ... generation unit, 250,250B ... storage unit, 281: Transmitter, 282: Receiver

Claims (16)

A receiving unit that receives the user input information from the communication terminal that transmits the measurement information indicating the physical quantity of the movement of the input device caused by the user's input operation and the user input information including the operation information indicating the input operation;
An authentication unit for verifying the received user input information and verification information for authenticating the user, and authenticating the user according to a verification result;
An authentication device comprising: a transmission unit that transmits information corresponding to the authentication result of the user to the communication terminal.   The authentication apparatus according to claim 1, further comprising a designation unit that transmits information designating an operation to be input by the user to the communication terminal.   The authentication device according to claim 1, wherein the receiving unit receives the user input information including a plurality of the measurement information generated by performing the input operation a plurality of times in the input device. The measurement information and the operation information included in the user input information are associated in time series,
The said authentication part collates the said measurement information of the period corresponding to the said specific operation information among the said measurement information contained in the said user input information with the said collation information. The authentication device described.   The authentication apparatus according to claim 4, wherein the specific operation information is determined corresponding to the user.   The input operation for determining the specific operation information is requested to the communication terminal a plurality of times, and the specific operation is performed based on the plurality of user input information received from the communication terminal as a response to the request of the plurality of times. The authentication device according to claim 4, further comprising a generation unit that determines operation information and generates the collation information associated with the specific operation information.   Based on a plurality of user input information received from the communication terminal as a response to a plurality of requests, an input operation for obtaining the verification information to be generated is requested to the communication terminal a plurality of times. The authentication apparatus according to claim 1, further comprising a generation unit that generates The measurement information includes a measurement signal indicating the physical quantity,
The said authentication part collates with the said measurement information with the said measurement signal of a specific frequency band among the said measurement signals contained in the said measurement information, The said verification information is characterized by the above-mentioned. Authentication device. The communication terminal further includes a display that displays information input by the user, and a memory that caches information input by the user,
The information displayed on the display is cached in the memory and hidden when an input operation by the user is not performed for a predetermined time,
9. The authentication device according to claim 1, wherein when a predetermined motion is given to the communication terminal, information cached in the memory is referred to and displayed again on the display. An authentication device according to any one of claims 1 to 9,
A financial transaction apparatus comprising: a transaction unit that executes a financial transaction process based on an authentication result of the user in the authentication unit. A notification unit for notifying a user's input operation request;
An input receiving unit that receives an input operation by a user's contact with the input device;
A sensor unit that outputs a measurement signal indicating a physical quantity of motion generated in the input device;
User input information including measurement information based on a measurement signal output from the sensor unit and operation information indicating the input operation in accordance with the movement of the input device caused by the input operation received in response to the request. A transmitter for transmitting to the authentication device;
A communication terminal comprising: a receiving unit that receives information according to the authentication result of the user as a response to the transmitted user input information. A notification unit for notifying a user's input operation request;
An input receiving unit that receives an input operation by a user's contact with the input device;
A sensor unit that outputs a measurement signal indicating a physical quantity of motion generated in the input device;
User input information including measurement information based on a measurement signal output from the sensor unit and operation information indicating the input operation in accordance with the movement of the input device caused by the input operation received in response to the request; An information processing apparatus comprising: an authentication unit that collates with collation information for authenticating a preset user and authenticates the user according to a collation result. A sensor unit that outputs a measurement signal indicating a physical quantity of motion generated in an input device for inputting an instruction to control a predetermined device;
An authentication unit for verifying user input information including measurement information based on a measurement signal output from the sensor unit and verification information for authenticating a preset user, and authenticating the user according to a verification result; An information processing apparatus comprising: On the computer,
A function of receiving the user input information from a communication terminal that transmits measurement information indicating the physical quantity of movement of the input device generated by the user's input operation and user input information including the operation information indicating the input operation;
A function of verifying the received user input information and verification information for authenticating the user, and authenticating the user according to a verification result;
A program for realizing a function of transmitting information according to the authentication result of the user to the communication terminal. A computer provided with an input receiving unit that is provided in an input device and receives an input operation by a user's contact, and a sensor unit that outputs a measurement signal indicating a physical quantity of exercise generated in the input device,
A function for notifying user input operation requests;
User input information including measurement information based on a measurement signal output from the sensor unit and operation information indicating the input operation in accordance with the movement of the input device caused by the input operation received in response to the request. A function to send to the authentication device;
A program for realizing a function of receiving information according to the authentication result of the user as a response to the transmitted user input information. A computer provided with an input receiving unit that is provided in an input device and receives an input operation by a user's contact, and a sensor unit that outputs a measurement signal indicating a physical quantity of exercise generated in the input device,
A function for notifying user input operation requests;
User input information including measurement information based on a measurement signal output from the sensor unit and operation information indicating the input operation in accordance with the movement of the input device caused by the input operation received in response to the request; A program for realizing a function of collating with collation information for authenticating a preset user and authenticating the user according to a collation result.

Images