JP5592128B2 - Entrance / exit management system and card reader - Google Patents

Description

  The present invention relates to an entry / exit management technique, and more particularly to an entry / exit management system using a card, a card reader (authentication apparatus), an authentication technique using a personal identification number, and the like.

  In an entrance / exit management system, a card reader (authentication device) installed on a door (door with an electric lock) is loaded with a card (medium on which an ID or the like is recorded) such as a magnetic card or IC card possessed by a user (user). ) Is processed so that only authorized persons (users whose IDs match and match) can enter the room.

  However, in the entrance / exit management system using the above card, when a user (card authorized user) loses the card, a third party (for example, an unauthorized user) who picks up the card illegally uses the card. there is a possibility. In other words, the unauthorized card user is allowed to enter the room by checking the ID and the like by having the card reader read the picked-up card.

  As prior art examples for the above countermeasures, PIN number authentication using a numeric keypad of Japanese Patent Laid-Open No. 11-203580 (Patent Document 1) and biometric authentication using a fingerprint of Japanese Patent Application Laid-Open No. 2004-246553 (Patent Document 2). There are methods to use.

Japanese Patent Laid-Open No. 11-203580 JP 2004-246553 A

  In the above prior art examples, for example, although it is possible to prevent unauthorized use when a card is lost or the like (risk reduction) and enhance security, it is necessary to provide a numeric keypad, biometric authentication function, etc. There is a problem that an entrance / exit management system including the above becomes expensive.

  The main object of the present invention is to provide a technology that can solve the above-described problems, that is, an inexpensive card reader and a cost-effective card reader, while preventing unauthorized use when the card is lost, etc. (risk reduction) and improving security. It is to provide a technique capable of realizing an entrance / exit management system including the above.

  In order to achieve the above object, a typical embodiment of the present invention is an entrance / exit management system, a card reader (authentication device), and the like, and has the following configuration.

  In the entrance / exit management system, when the user enters the room, the user is allowed to enter the room after holding his / her card (medium such as a non-contact type card in which an ID etc. is recorded) over the card reader. / No permission is controlled (for example, unlocking the electric lock of the door). At this time, in this system, as verification, in addition to the above ID verification, confirmation by verification of the password is also performed, and whether to enter the room is controlled according to the result. The following is used as means for collation of the password.

  In the present system, the time from when the user holds the card over a card reader (for example, its detection unit) until it is released (T) is counted at a predetermined interval (K). The number (value) of the count is N. At the same time, for example, an LED is turned on by a card reader (for example, the display unit) corresponding to each count time. If N counts occur during the time T when the card is held over, the LED lights up N times. For example, when the time K is 1 second, the number of seconds of the time T is a value of N.

  In the present invention, the number N of counts is handled in association with the password. The user, for example, visually confirms (counts) the number of times (N) of counting (lights up) after holding the card, and when the number becomes the same as the personal identification number set for the card, Try to release the card. Thereby, the number N of the count is used as a personal identification number (trial value), and the personal identification number is collated (collation with the N value registered in the card reader). Depending on the result, entry is permitted. If the card user does not move the card over the time / count number (N) associated with the registered (set) personal identification number (N), collation of the personal identification number will not succeed.

  The card reader does not require an expensive numeric keypad, biometric authentication device, or the like, and includes a simple password verification means using the count number N as described above. This reduces the risk that the lost card is illegally used.

  The means for causing the user to recognize the count number N is not limited to the LED lighting display, and other means are also possible. For example, the display unit may be configured to display the count number N itself as characters, images, or the like, or may be configured to sound a sound (for example, “beep”) at each count point.

  Further, when collating the personal identification number (N), in consideration of an operation error or the like, for example, trials up to a predetermined number of trials (set to M) are allowed. For example, up to M times, the verification of the personal identification number (N) is allowed, and if M + 1 times of failure occurs, the authentication result of this card is determined to be failure (NG, entry not permitted). Then, the use of the card by the card reader is changed to a use suspended state (room entry not permitted) so that it cannot be used. For example, the card reader notifies the security management server or the like of the information and records or displays it. By doing so, control is performed such that the information can be reported to the administrator. As a result, the risk of unauthorized use of the found card is reduced.

  Further, the number of trials (M) can be set variably. Furthermore, the configuration may be such that the number of trials (M) is variably controlled according to the set value of the personal identification number (N). Of course, the set values of N and M are determined in consideration of securing a predetermined security level such as prevention of brute force attacks.

  Further, not only a configuration in which a password (N) is set (registered) for each user by one or more card readers, but also a password that is different for each user by a plurality of card readers in the system. A plurality of Ns that can be set (registered) can be configured (multi-password setting function). For example, when there are a plurality of card readers installed on a moving route of a certain user, a different personal identification number (N) is set for each card reader. In this case, security can be increased according to the number of the different passwords (N).

  Further, for example, regarding the setting of a certain user's personal identification number (N) for the same card reader, a different value (N) may be set for each time zone, and the configuration may be switched for each time zone (schedule function).

  According to a typical embodiment of the present invention, an inexpensive card reader and an input card including the same are realized while preventing unauthorized use when a card is lost or the like (risk reduction) and improving security. A withdrawal management system can be realized. For example, when a person who finds a lost card tries to illegally use the card, since the personal identification number (N) set in the card reader is not known, there is a high probability that the authentication result will fail. Therefore, the risk of unauthorized use of lost cards can be reduced.

  In addition, since it is not necessary to provide a numeric keypad, biometric authentication function, etc., it can be realized by an inexpensive card reader and an entry / exit management system (and may be used in combination with security if priority is given to cost). In particular, when there is an existing equipment such as a card reader, the system can be configured by using it as it is. That is, the means such as the LED circuit already provided in the card reader can be used as the means of this system (the means for displaying the count number N) as it is, and can be realized only by changing the control program inside the card reader. .

It is a figure which shows the structure of the entrance / exit management system of one embodiment of this invention. It is a figure which shows sequences, such as operation | movement outline between elements at the time of card | curd regular use in this entrance / exit management system. It is a figure which shows sequences, such as operation | movement outline | summary between elements at the time of card | curd illegal use (or operation mistake) in this entrance / exit management system. It is a figure which shows the flowchart of the process of the authentication including collation of the PIN code with a card reader in this entrance / exit management system. It is explanatory drawing which shows the example of the time and count number which hold | maintained the card | curd in the case of collation of the PIN code with a card reader in this entrance / exit management system.

  Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings. Note that components having the same function are denoted by the same reference symbols throughout the drawings for describing the embodiment, and the repetitive description thereof will be omitted.

<Embodiment>
In the entrance / exit management system according to the present embodiment, as a means for identity verification applied to the card reader, a method such as verification / authentication using a personal identification number that cannot be known only by the authorized card user is used. As a means for collating the personal identification number, a method is used in which a count number N such as LED lighting in a state where the card is held over a card reader is used as the personal identification number.

[Entry / exit management system]
FIG. 1 shows the overall configuration of the entrance / exit management system of the present embodiment. It includes a security management server 100, a security management terminal 101, a network 109, one or more card readers 103 (R), a door 104, and the like. As persons, there are a user (card user) 105, an administrator (system administrator) 106, and the like. For example, a door 104 and a card reader (R1) 103 associated therewith are installed in the security area A1.

  The security management server 100 is a control unit of the entrance / exit management system, and holds management information 300 in a database or the like. Management information 300 for setting and managing the entrance / exit management system is set in the security management server 100 in accordance with access from the security management terminal 101 based on the operation of the administrator 106. On the screen (GUI) of the security management terminal 101, setting operations and the like of various management information 300 (setting values and the like) are possible. The security management server 100 communicates with each card reader 103 via the network 109 to enable control. The security management server 100 can register information (such as setting values related to card authentication) to each card reader 103 via the network 109. Conversely, information (such as an authentication result) can be notified from each card reader 103 to the security management server 100.

  The user 105 (for example, U1) possesses the card 102 (for example, C1). The card 102 is a non-contact card medium or the like, and a unique ID (card ID) or the like is recorded in a built-in memory, for example. It is assumed that the card ID is also represented by C1 or the like. This card ID is used in the card ID verification process at the time of authentication.

  The card reader 103 includes, for example, a holding unit (detecting unit) 201 and an LED (display unit) 202. For example, on the front surface, the card 102 has a holding part 201 as a detection part and an LED 202 (LED lamp) as a display part. Although not shown, the card reader 103 includes a control program, a circuit, and the like (known technology), thereby performing authentication processing (FIG. 4) using the card ID (C) and the personal identification number (N). .

  The holding unit (detecting unit) 201 detects the card 102 held by the user 105 during authentication. The LED (display unit) 202 turns on / off the LED in order to report the status and information to the user 105 at the time of authentication. For example, the LED 202 can be lit with green light and red light. At the time of authentication, the LED 202 displays a count.

  The card reader 103 may include, as other means, a circuit such as a speaker that emits sound, a liquid crystal display that can display text, images, and the like in more detail. In this embodiment, the card reader 103 is not provided with a numeric keypad or a biometric authentication function.

  The administrator 106 uses the security management terminal 101 to set (register) the personal identification number (N) of the card 102 (C) of the user 105 with respect to the security management server 100 and the card reader 103. The password set in the security management server 100 (management information 300) is Ns, and the password registered (set) in the card reader 103 from the security management server 100 is correspondingly Nt. As the personal identification number (N), for example, a one-digit value (1 to 9) is set. The set personal identification number (N) is notified in advance to the user 105 of the card 102.

  When the user 105 holds the card 102 over the card reader 103, the authentication process of FIG. 4 is performed. When the card ID and the password are used to authenticate correctly (when authentication is successful), the electric lock of the door 104 is unlocked and the room can be entered. If authentication fails, including several attempts, entry is not permitted.

  A configuration example of the management information 300 is as follows. The management information for each user U (105) includes a card ID (C) and its personal identification number (Ns), a permission area (A), a permission card reader (R), and the like. For example, it is a personal identification number Ns1 set for a card (card ID is C1) possessed by a certain user U1. Further, for example, A1 to Ax are set as security areas (sections) for which the user U1 is allowed to enter, and R1 to Ry are set as card readers R that are allowed to enter and leave accordingly. Corresponding relationships such as a plurality of areas A, doors (104), and card readers R are also set and managed separately.

  As the management information (registration information) for each card reader R (103), the card ID (C), the password (Nt), and the like, which are subject to entry / exit, are included. The numerical values of Nt (registered value) and Ns (set value) are the same. For example, for a certain card reader R1 (installed in the area A1), a card ID (C1) to be permitted and its personal identification number (Nt1) are registered.

  In the present embodiment, the security management server 100 and the security management terminal 101 are provided and controlled. However, a mode in which the card reader 103 alone completes the authentication process or the like is also possible. In this case, the password (N) or the like can be registered (set) for each card reader 103 (for example, a configuration that can be manually set using a setting card).

[A. When using regular cards]
FIG. 2 shows, as a first example in the present system, a sequence such as an operation outline at the time of authentication of a card authorized user (user 105) (S indicates operation, processing, and the like).

  S201, S202: In advance, the administrator 106 performs processing for setting the card ID (C) (S201) and the corresponding password (Ns) (S202) from the security management terminal 101 to the security management server 100. (Reflected in the management information 300). Accordingly, the security management server 100 performs registration of the card ID (C) and the corresponding personal identification number (Nt) to the corresponding card reader 103 via the network 109. In a state where the setting is completed, S203 and the subsequent steps are performed.

  S203: The user 105 performs an operation of holding or releasing his / her card 102 over the card reader 103 at the time of authentication.

  S204: First, basic card ID verification is performed. If this verification is unsuccessful, the result of authentication of the card 102 is failure (NG), so that the subsequent verification of the password is not performed.

  S205: Next, the password is verified. The count number N in a state where the card 102 is held is regarded as a personal identification number (trial personal identification number (Nu)), and the result is determined by collation with the registered personal identification number (Nt) in the card reader 103. As a result of the coincidence, the result of collation of the password is successful (OK).

  S206: As a result of the verification of the card ID and the personal identification number, the result of authentication by the card 102 is successful (OK), and the card reader 103 controls entry permission. That is, the corresponding door 104 is unlocked.

  S207: The user 105 is allowed to enter the room upon successful authentication of the card 102, and enters the room.

[B. In case of unauthorized card use / operation error]
In FIG. 3, as a second example, when a card fraud user (107) such as a card picker fails authentication, or even a card authorized user (105) fails authentication due to an operation error or the like. The sequence in the case is shown. The processes up to S303 are the same as those in FIG.

  S304: Card ID verification is performed. As a result, the result of matching the card ID is successful due to the match.

  S305: Next, the personal identification number (N) is collated (one trial). Here, since the unauthorized user does not know the correct personal identification number (N) related to the card 102, it results in a failure with a high probability.

  S306: If there is a mismatch in the verification of the password (N) (one trial), the verification retry is allowed up to a predetermined number of trials (M) in consideration of an operation error or the like. For example, the card reader 103 requests (prompts) a retry (re-operation) from the user (returns to S303 and the like).

  S307, S308: If the attempt of collating the personal identification number fails beyond the predetermined number of trials (M), the overall result of the personal identification number collation is determined to be failure (NG). That is, the result of authentication by the card 102 is failure (NG). As a result, the card reader 103 executes a use stop process (change of the registered value) of the card 102 so that the verification of the illegal use card 102 cannot be retried.

  S309: The card reader 103 notifies the security management server 100 via the network 109 of information including the authentication failure result (card unauthorized use notification), and the information is stored in the security management server 100. Record. In addition, the security management server 100 notifies the security management terminal 101 of the information.

  S310: If there is another card reader 103 related to the card 102 in the system, the security management server 100 automatically stops using the card 102 for each card reader 103. Execute. As a result, each card reader 103 can also prevent unauthorized use of the card 102.

  S311: Based on the notification from the security management server 100 to the security management terminal 101, information on the card unauthorized use notification (detection) or the like is displayed on the screen of the security management terminal 101. As a result, a status report or warning is given to the administrator 106. The administrator 105 recognizes and confirms the situation, the presence / absence of unauthorized use, etc. based on the above information. For example, the card 102 and the card reader 103 subjected to the use stop processing are, for example, an operation by an unauthorized card user (107), or a failure due to an operation mistake by an authorized card user (105). Confirm that this is the case.

  S312, S313, S314; As described above, the card use is temporarily stopped (temporary stoppage), but the administrator 106 confirms that the authentication has failed due to an operation mistake or the like by the card authorized user (105). In such a case, the release process is performed based on the operation of the administrator 106 as shown in S312 and subsequent steps. That is, the security management terminal 101 performs setting / instruction to the security management server 100, and accordingly, the cancellation processing related to the use suspension processing is executed from the security management server 100 to each corresponding card reader 103. As a result, the card 102 is returned to the normal usable state.

[Card reader processing]
FIG. 4 shows a flow of authentication processing (for one trial) using the card ID (C) and the personal identification number (N) in the processing (authentication processing) by the card reader 103. The following processing is executed when the card is held over the card reader 103 (detecting unit 201) by the user (S indicates a processing step or the like).

  S401, S402: In S401, a card ID collation process is performed based on detection of the card 102 through the detection unit 201, reading of information in the card 102, and the like. That is, the card ID (C) read from the card 102 and the card ID (C) registered value in the card reader 103 are collated. If there is no match between the read card ID and the registered value in S401 (S402-NO), the process proceeds to S420, and the authentication processing result in the card 102 is determined as failure (NG), and the process is terminated. If there is a match (S402-YES), the process proceeds to S403.

  S403: The count number N is initialized (N = 0). In addition, a start signal or the like that tells the user that the count is about to start may be presented (for example, a predetermined lighting state by the LED 202, a sound guide, or the like). In the case where the operation of holding the card 102 means that the count starts immediately, no start signal is particularly necessary.

  Hereinafter, the time T when the card 102 is held over the card reader 103 is counted as a number N by a series of processes of S404 to S408.

  S404: A standby process at a constant interval K is performed. The interval K is preset. For example, K = 1 second.

  S405, S406: The card state is checked at the timing when the predetermined interval K has elapsed. That is, the detection unit 201 checks whether the card 102 is held over or released. When the card 102 is held over (when the presence of the card 102 can be detected) (S406-YES), the process proceeds to S407. Otherwise (S406-NO), it is determined that the card has been released, and the process proceeds to S409.

  S407: The LED 202 is turned on (once).

  S408: The count number N is added (+1). And it returns to S404 and the same process is repeated.

  S409: In S409, if the count number N is N = 0 or exceeds a predetermined upper limit value P (for example, P = 9) set in advance (S409-YES), this process is terminated as an error. To do. If 1 ≦ N ≦ P (S409—NO), there is no problem and the process proceeds to S410.

  S410: The count number N is determined as a trial code number (a code number to be used for a collation trial from now on). Let this trial password be Nu.

  S411: It is checked whether or not the trial password Nu is equal to the registered value (Nt) of the password in the card reader 103. If there is a match (S411-YES), the process proceeds to S412. If there is a mismatch (S411-NO), the process proceeds to S413.

  S412: As a result of the above match, the result of collation of the personal identification number is successful (OK). That is, together with the success of the card ID verification (S401, S402), the result of authentication by the card 102 is successful (OK). As a result, the card reader 103 controls entry permission. That is, the corresponding door 104 is unlocked and the process ends.

  S413, S414: Due to the above inconsistency, the result of the password collation (1 unit) is failure (NG), and the failure number is added (+1). Also, for example, the display unit 202 displays a failure message. It is confirmed whether the number of failures exceeds the set value (M) of the number of trials. If the number of failures> M (S414-YES), the process proceeds to S415, and if the number of failures ≦ M (S414-NO), the process proceeds to S416.

  S415: Since the allowable number of trials (M) has been exceeded, the result of the overall password verification is failure (NG), that is, the authentication result by the card 102 is failure (NG). Thereby, it controls to entry prohibition. Further, for example, the display unit 202 notifies the user of the failure. For example, the LED 201 turns on red light. As in S308, the card reader 103 performs card use stop processing and the like, and the process ends.

  S416: Since the number of trials (M) is not exceeded, the verification of the PIN number is allowed to be retried. For example, the card reader 103 requests a retry from the user through the display unit (predetermined lighting of the LED 202 or the like), and ends (or returns to S403 or the like). Accordingly, the user can retry.

[Supplement]
FIG. 5 shows an example of the count number N on the time axis in order to supplement the understanding. The basic card ID verification processing time (short), the start signal presentation time, etc. are omitted. Counting is started at a predetermined interval K (set value) with N = 0 when the card 102 is held over, and the LED 202 is turned on for each count. The count stops when the card 102 is released.

  The interval K is set to 1 second, for example, and the upper limit value P of the count is set to 9 for example. The set value (M) of the number of trials is set to 2, for example. If the count number N is 0 or exceeds the upper limit value P, an error is assumed.

  In this case, the range of N that can be set as the personal identification number is one digit from 1 to 9. For example, the setting value (Ns) (= registered value (Nt)) of the personal identification number is Ns = 5 seconds. The user 105 releases the card 102 at the timing when the count (lighting) at the time of authentication exceeds 5 times (within K = 1 second until the next N = 6), and the authentication result is successful. .

  By changing various setting values (N, K, M, P, etc.), the security level and convenience can be adjusted in a balanced manner.

<Other embodiment (1)>
Another embodiment (1) will be described. The basic configuration is the same as that of the above-described embodiment. For a user (for example, U1), a different PIN (N {N1, N2,..., Ny}) can be set for each of a plurality of card readers 103 (for example, R1, R2,..., Ry) in the system. The configuration is as follows. That is, this system has a function of setting a plurality of passwords.

  For example, it is assumed that there are four security areas A1 to A4 as security areas (sections) (for example, rooms) that are management targets in the present system. For example, it is assumed that there is a card reader R1 (and the door 104, etc.) between the areas A1-A2, similarly, there is a card reader R2 between A2-A3, and there is a card reader R3 between A3-A4. As a setting in the security management server 100, it is assumed that a certain user (U1) is in each area (A1 to A4) and movement between A1 → A2 → A3 → A4 is permitted as a movement route. . That is, if the card reader R1, R2, R3 successfully authenticates the card 102 (basic card ID (C) verification + password (N) verification), the above is permitted.

  At this time, in the present embodiment, different values can be set for the setting (registration) of the respective password numbers (N) of the plurality (three) of card readers R1, R2, and R3. For example, the N value of R1 is 3, the N value of R2 is 7, the N value of R3 is 5, and so on. The user (U1) remembers these passwords {3, 7, 5} (for example, remembers “375”). When the user moves from the area A1 to the area A4, the user performs a password verification operation with three authentications.

  With the above configuration, the security level can be increased as compared with the case of authentication with one card reader 103. For example, when an unauthorized card user (107) tries to move from the area A1 to A4, since a different password is set in the three authentications, the first password in the first card reader R1 is assumed. Even if the verification (authentication) by number succeeds by chance, there is a high possibility that the verification (authentication) by a different password in the next card reader R2 will fail.

<Other embodiment (2)>
As another embodiment (2), regarding the setting (registration) of the personal identification number (N) for each user, a plurality of different personal identification numbers (N) can be set for each time zone. That is, this system has a schedule function related to the application of a password. For example, two types of passwords (N1, N2) are set for a certain card 102 and card reader 103 in the morning and afternoon. Similarly, a personal identification number may be set for each of a plurality of time zones. As a result, the security level can be increased.

  As mentioned above, the invention made by the present inventor has been specifically described based on the embodiment. However, the present invention is not limited to the embodiment, and various modifications can be made without departing from the scope of the invention. Needless to say. For example, in the above-described embodiment, an inexpensive card reader 103 and system that do not include a numeric keypad or a biometric authentication function are used, but, of course, a configuration that is applied in combination with those that include those means is also possible.

  The present invention can be used for an entrance / exit management system and the like.

  DESCRIPTION OF SYMBOLS 100 ... Security management server, 101 ... Security management terminal, 102 ... Card, 103 ... Card reader, 104 ... Door (door with electric lock), 105 ... User (card regular user), 106 ... Administrator, 107 ... Card Unauthorized user, 109 ... network, 201 ... holding part (detecting part), 202 ... LED (display part), 300 ... management information.

Claims (7)

An entry / exit management system that authenticates with a card reader using a user's card,
A plurality of card readers and a security management server are connected via a network,
In the authentication, the card reader treats the count number of the state from when the user holds the card to the card reader until it is released as a personal identification number, and verifies the personal identification number. Performing the authentication according to the verification result, controlling the entry / exit according to the authentication result ,
The card reader counts the time from when the card is held up until it is released with a set value at a predetermined interval, and the count number is the password.
The card reader turns on an LED, displays a count number, or generates a sound for each count,
When the card is held over the card reader by the user, the card reader performs collation using the ID of the card. If the result is successful, the card reader starts the count and the password Is verified,
If the result of the verification of the password is unsuccessful, the card reader notifies the security management server of this, and causes the card reader to stop using the card,
Room access management system for each of the user, to the plurality of card readers, to have the ability to apply different said personal identification number, characterized by. An entry / exit management system that authenticates with a card reader using a user's card,
A plurality of card readers and a security management server are connected via a network,
In the authentication, the card reader treats the count number of the state from when the user holds the card to the card reader until it is released as a personal identification number, and verifies the personal identification number. Performing the authentication according to the verification result, controlling the entry / exit according to the authentication result,
The card reader counts the time from when the card is held up until it is released with a set value at a predetermined interval, and the count number is the password.
The card reader turns on an LED, displays a count number, or generates a sound for each count,
When the card is held over the card reader by the user, the card reader performs collation using the ID of the card. If the result is successful, the card reader starts the count and the password Is verified,
If the result of the verification of the password is unsuccessful, the card reader notifies the security management server of this, and causes the card reader to stop using the card,
An entry / exit management system characterized by having a function of applying different passwords to the card reader for each user for each time period. In the entrance / exit management system according to claim 1 or 2 ,
The card reader is set with the number of trials related to the verification of the password.
If the number of PIN verification failures is within the number of trials, the personal identification verification is allowed to be retried, and if the number of trials is exceeded, the PIN verification result is determined to be a failure. An entrance / exit management system. In the entrance / exit management system according to claim 1 or 2 ,
The card reader checks whether or not the card is held over for each count, and continues counting if the card is held over, and otherwise determines that the card is released. An entrance / exit management system characterized by stopping counting. In the entrance / exit management system according to claim 1 or 2 ,
An entry / exit management system, wherein the card reader is set with an upper limit value of the count number, and when the count number is 0 or exceeds the upper limit value, the card reader ends as an error. A card reader that configures an entrance / exit management system in which a plurality of card readers and a security management server are connected via a network and performs authentication using a user's card,
In the authentication, the card reader treats the count number of the state from when the user holds the card to the card reader until it is released as a personal identification number, and verifies the personal identification number. And determining the authentication result according to the result of the verification ,
The time from when the card is held up until it is released is counted by a set value of a predetermined interval, and the count number is the password.
The card reader turns on an LED, displays a count number, or generates a sound for each count,
When the card is held over the card reader by the user, the card reader performs collation using the ID of the card. If the result is successful, the card reader starts the count and the password Is verified,
If the result of the verification of the password is unsuccessful, the card reader notifies the security management server of this, and causes the card reader to stop using the card,
Wherein for each user, to the plurality of card readers, to have the ability to apply different the PIN, the card reader characterized by. A card reader that configures an entrance / exit management system in which a plurality of card readers and a security management server are connected via a network and performs authentication using a user's card,
In the authentication, the card reader treats the count number of the state from when the user holds the card to the card reader until it is released as a personal identification number, and verifies the personal identification number. And determining the authentication result according to the result of the verification,
The time from when the card is held up until it is released is counted by a set value of a predetermined interval, and the count number is the password.
The card reader turns on an LED, displays a count number, or generates a sound for each count,
When the card is held over the card reader by the user, the card reader performs collation using the ID of the card. If the result is successful, the card reader starts the count and the password Is verified,
If the result of the verification of the password is unsuccessful, the card reader notifies the security management server of this, and causes the card reader to stop using the card,
A card reader characterized by having a function of applying a different password for each user to each time zone with respect to the card reader.

Images