JP5634566B1 - Password input method, input terminal, and input system for touch panel terminal - Google Patents

Abstract

In a touch panel terminal, even if a screen is captured by peeping or spyware, a password is prevented from being stolen. A numeric keypad that is a software keyboard for inputting a password on a touch panel terminal and a character arrangement of the keys are randomly changed. Then, the orientation (vertical / horizontal orientation) of the touch panel terminal is detected, and a password input enabled screen that allows a password to be input according to the detected terminal orientation, and a password input disabled screen that disables password input. And switch. The characters on the numeric keypad are hidden on the password input enabled screen, and the characters on the numeric keypad are displayed on the password input disabled screen to confirm the key layout. The password character string is automatically arranged on the numeric keypad so that it can be drawn with a single stroke, and even if no characters are displayed on the key, the user can enter the password character string with a single stroke from the password entry screen. You can enter. [Selection] Figure 1

Description

  The present invention relates to a password input method, an input terminal, and an input system. In particular, the present invention relates to a password input method and an input system for anti-spyware in a touch panel type terminal.

  With the recent rapid spread of the Internet, opportunities to access the Internet using terminals such as PCs and mobile phones have greatly increased, and when logging in or making payments for online banking, online shopping, access to various membership sites, etc. In many cases, passwords and passwords are entered from user terminals. In particular, financial institution sites require a login ID or account ID and password when logging in. Separately, when executing a transaction such as a transfer, a transaction password or second PIN that is different from the login time is also used. Etc. are often requested, and there are more and more opportunities to enter passwords and passwords.

  However, especially in a portable terminal, there is a risk that someone else will peep at the screen being entered, so it is tempting to enter a password or password in places where people are nearby. In addition, there is a continuing damage caused by the input operation of the terminal being read by spyware installed in the terminal, and the personal identification number and password being stolen.

  For this reason, the applicants of the present invention have proposed several methods for inputting a personal identification number and a password for countermeasures against peeping on the screen and countermeasures against spyware. For example, in Japanese Patent Application Laid-Open No. H11-260260, a key arrangement in which key values are hidden is displayed on the input screen, and when it is detected that the mouse pointer is in a predetermined area other than the keys, values assigned to the hidden keys are displayed. Displayed and detected that the mouse pointer is within the key display area, the key value is hidden, logging of key input and mouse operation and screen capture was performed by spyware etc. Even in such a case, a character input method that prevents a character input by mouse input from being stolen has been proposed.

  Further, in Patent Document 2, a plurality of character strings are displayed at random in response to the user selecting a password or password input field at the time of login, and a cursor operation and pressing of a predetermined key are performed on the plurality of character strings. Depending on the password, you can delete specific characters and send the erased characters as a PIN or password. Proposed input method.

Japanese Patent No. 4205712 JP 2012-252472 A

  By the way, for the past several years, the number of terminals adopting a touch panel method, such as smartphones and tablet terminals, has been increasing rapidly. A touch panel is a device that performs input by touching the screen with a fingertip or a dedicated pen. The display device (display) and the input device are integrated. The sensor detects the position touched by the finger, etc. Which display element is specified is specified, and the corresponding operation is performed. Touch panels can be instructed by directly touching what is visible on the screen (in recent years, non-contact types that do not require direct contact with the screen, and those that detect the movement of the user's line of sight instead of finger touch) It is widely used in smartphones, tablet terminals, portable game terminals, portable music players, car navigation systems, etc. (hereinafter simply referred to as touch panel terminals).

  However, since the touch panel normally does not have a mouse or a cursor that can move in the vertical direction, the character input methods described in Patent Document 1 and Patent Document 2 are not necessarily suitable for a touch panel terminal. Accordingly, there is a need for a new password input method that can cope with touch panel terminals that have rapidly spread in this manner. Therefore, in the present invention, in the touch panel terminal, even if the password input screen is captured by peeping or spyware, and the key operation log on the screen is acquired, the new password is prevented from being stolen. An object of the present invention is to provide a simple password input method, input terminal, and input system.

  In order to solve the above problems, the password input method of the present invention provides the following solution. Since the personal identification number is a password made up of only numbers, hereinafter, unless specifically stated otherwise, the term “password” includes the personal identification number.

The invention according to claim 1 is a computer system in which a terminal of a person to be authenticated and an authentication server are connected via a network, wherein the terminal detects its orientation, and the terminal or the authentication server depending on the number and types of characters registered password certifier the user ID, and determining the placement of the letters on the shape and keys of a key arrangement region for inputting a password from the terminal, the terminal, the terminal Switching between the first screen and the second screen on the password input screen according to the orientation; hiding characters on the keys in the key arrangement area on the first screen; Displaying a character on the key in the key arrangement area on a second screen, and inputting a password from the first screen. And wherein the door.

According to the above configuration, the key characters are hidden when entering the password in the key layout area (numeric key, alphabetic key, symbol key layout area, etc.) on the terminal screen in the password input screen. The screen and the screen for displaying and confirming the key characters can be switched depending on the orientation (tilt) of the terminal. For example, when entering a password, the terminal is tilted at a predetermined angle to hide the key characters By doing so, it is possible to make it difficult to read input characters even if someone else steals the screen. In addition, a screen for entering a password by switching the orientation (tilt) of the screen that can enter the password but does not display the key characters and the screen that displays the key characters but cannot enter the password. Since the screen for confirming the key display can be separated, it is possible to prevent the characters entered on the screen from being stolen even if the screen is stolen or captured by spyware.

According to a second aspect of the present invention, in the method according to the first aspect, in the step of determining the shape of the key arrangement area and the arrangement of characters on the key, the character string of the registered password of the authentication subject is used as the key. It is further characterized by further comprising a step of arranging in a predetermined pattern on the arrangement area.

  According to the above configuration, since the character string of the password to be input is automatically arranged so as to be arranged in a predetermined pattern (for example, one stroke pattern) on the key arrangement area, even if the character display of the key is on the screen You can easily enter your password without it.

According to a third aspect of the present invention, in the method according to the first or second aspect , the character on the key in the key arrangement area is partially replaced with another character and displayed.

  According to the above configuration, since the password character is replaced with another character on the screen that displays the key value, the spyware that captures the entire screen flow as a video can be dealt with. .

The invention according to claim 4 is a password input system comprising a terminal of a person to be authenticated and an authentication server that is network-connectable with the terminal, wherein the terminal is a terminal orientation that detects the orientation of the terminal According to the orientation of the detection unit and the terminal, switching between the first screen and the second screen in the password input screen, in the first screen to hide the characters in the key arrangement area of the terminal screen, A display control unit for displaying characters in the key arrangement area on the second screen, and the authentication server registers the user ID when receiving the user ID of the person to be authenticated from the terminal. A user ID inquiry unit that queries the database and reads the registered password of the user ID, and the shape and character arrangement of the key arrangement area according to the number of characters and the character type of the registration password A key arrangement area shape determination unit for determining and transmitting to the terminal, wherein the terminal displays the transmitted key arrangement area shape and character arrangement on the second screen, and It is possible to input a password from the screen.

The invention according to claim 5 is a terminal of a person to be authenticated who requests authentication from the authentication system via a network, and the terminal receives the input of a user ID from the person to be authenticated. A user ID pre-transmission unit that transmits the ID to the authentication server before entering the password, and a shape of a key arrangement area on the terminal screen for inputting the password based on the registered password of the user ID received from the authentication server; Key arrangement area shape determination unit for determining character arrangement, terminal orientation detection unit for detecting the orientation of the terminal, and switching between the first screen and the second screen in the password input screen according to the orientation of the terminal , Oite the first screen the a key arrangement region on the character hidden, the display control unit in the second screen to display the characters on the key arrangement region , Characterized in that it comprises a.

The invention described in claim 6 is a password input system comprising a terminal of a person to be authenticated and an authentication server that can be connected to the terminal through a network, and the authentication server receives a user ID from the terminal. A user registration password transmission unit that transmits a registration password for the user ID to the terminal, and the terminal receives the user ID input from the person to be authenticated when the terminal receives the user ID input to the authentication server. A key ID area for determining the shape and character layout of the key ID area on the terminal screen for inputting a password based on the registered password received from the authentication server and the user ID pre-transmission unit to be transmitted before password input Depending on the orientation of the terminal, the orientation determining unit for detecting the orientation of the terminal, the terminal orientation detecting unit for detecting the orientation of the terminal, Switching between a first screen that allows a word to be entered from the key layout area and a second screen that does not permit a password to be entered from the key layout area, the characters on the key layout area on the first screen And a display control unit for displaying characters on the key arrangement area on the second screen.

  According to the present invention, in the touch panel terminal, a password that prevents a password from being stolen even if a password input screen is captured by a peep or a spyware of another person and a key operation log on the screen is acquired. The input method, the input terminal, and the input system can be provided.

It is a figure which shows the concept of the input method of the password of this invention. It is a figure which shows the concept (continuation) of the input method of the password of this invention. It is a figure which shows the functional block of the password input system which concerns on 1st embodiment of this invention. It is a figure which shows the functional block of the password input system which concerns on 2nd embodiment of this invention. It is a figure which shows the functional block of the password input system which concerns on 3rd embodiment of this invention. It is a figure which shows the example of a PIN code input with a 3x4 numeric keypad. It is a figure which shows the example of a password input with a 4x4 numeric keypad. It is a figure which shows the example of a 1 stroke writing pattern (in the case of a 3 * 4 numeric keypad and a 4-character password). It is a figure which shows the example of a 1 stroke drawing pattern (in the case of a 4 * 4 numeric keypad and a 7 character password). It is a figure which shows the processing flow which concerns on 1st embodiment. It is a figure which shows the processing flow which concerns on 2nd embodiment. It is a figure which shows the processing flow which concerns on 3rd embodiment.

  DESCRIPTION OF EMBODIMENTS Hereinafter, embodiments for carrying out the present invention (hereinafter referred to as embodiments) will be described in detail with reference to the accompanying drawings. Note that the same numbers or symbols are assigned to the same elements throughout the description of the embodiment.

  FIG. 1 is a diagram showing a concept of a password input method according to the present invention. The password input method of the present invention utilizes the point that a touch panel terminal (herein, simply referred to as a terminal unless otherwise specified) can change the screen display depending on the orientation of the terminal. That is, the orientation (tilt) of the terminal is detected by an acceleration sensor built in the terminal, for example, when the screen is changed from a vertical orientation to a horizontal orientation, the screen is rotated according to the orientation, and characters or figures to be displayed are displayed. Take advantage of being able to adjust.

  Character input on a touch panel terminal is normally performed by a software keyboard, so it is effective as a countermeasure against keylogger-type spyware that steals key input history, but touched on the screen at the same time as the screen capture (screen shot) function It is difficult to defend against spyware that has a location information reading function. Therefore, the password input method of the present invention combines the following basic steps.

・ Step of detecting the orientation (tilt) of the terminal ・ The shape of the numeric keypad (including numeric keys, alphabetic keys, and symbol keys, also referred to as key layout area) and characters on the key for inputting a password from the terminal The step of determining the arrangement of the screen. The step of switching between the first screen and the second screen according to the orientation of the terminal (according to the change of the orientation). On the first screen, the characters on the numeric keypad are hidden. Step ・ Step to display characters on the numeric keypad on the second screen ・ Step to allow password entry from the first screen ・ Step to prohibit password entry from the second screen ・ Password on numeric keypad The above-mentioned “step of switching between the first screen and the second screen according to the orientation of the terminal” Depending on the constant operation (a predetermined button operation or the like), it may be replaced with the first screen and the step of switching the second screen ".

  In FIG. 1, in order to make the above steps concrete, a case where a 4-digit password is input will be described as an example. First, the shape of the numeric keypad is displayed on the screen (the screen on the left side of the figure) with the terminal in a vertical state, for example. However, all the numbers on the key at this time are hidden. In the password input method of the present invention, character key input is performed from this non-display screen. That is, the screen in this state in which input is possible but no key is displayed is referred to as a password input enabled screen (first screen).

  Next, when the terminal is tilted and changed sideways, the letters (numbers) on the keys are displayed for the first time (the center screen in the figure). The number arrangement at this time is randomly changed each time, and the user confirms and stores the position of the number of the PIN number to be input on the numeric keypad. However, you cannot enter your PIN on this screen. In other words, a screen in this state in which keys cannot be input but keys are displayed is referred to as a password input disabled screen (second screen). As shown in the center of FIG. 1, when the terminal is turned sideways, the numeric keypad may be rotated to be in the horizontal orientation, or the numeric keypad may be left in the vertical orientation without being rotated.

  When the user changes the screen vertically again, the numbers on the keys are hidden and key input is possible again (screen on the right side of the figure). The user presses the key at the number position of the password stored earlier on this password entry screen to enter the password, and then presses the predetermined “confirm” key or “send” key to the authentication destination server. Send password. The positions of the confirmation key and the transmission key may be changed every time. When the screen is returned from the vertical to the horizontal, the numbers on the keys are displayed again (returning to the password input disabled screen), so that the number arrangement on the numeric keypad can be confirmed at any time.

  Here, it is desirable that the numbers on the numeric keypad are arranged in a predetermined pattern having some regularity so as to be easily stored in the user's memory. The predetermined pattern having regularity is a pattern such as one-stroke writing (one-pass), two-stroke writing (two-pass), or three-stroke writing (three-pass). There are straight-line, “letter”, “L-shaped”, “key-shaped”, etc. for one-stroke writing, and “T-shaped”, “X-shaped”, “ni-shaped” for two-stroke writing. There are three types, "F-shaped", "H-shaped", "Kawa-shaped", "Three-shaped", "Ni-shaped". Etc. For example, in the example of the screen in the center of FIG. 1, the system automatically determines and displays the numeric keypad layout so that a four-digit number, which is a personal identification number, can be pressed in a one-stroke “L-shaped” pattern. (This is called an input function such as one-stroke writing). In this screen example, assuming that the password is “0234”, “0”, “2”, “3”, and “4” are “L-shaped” from the lower left of the numeric keypad on the horizontal screen in the upper center of FIG. Number arrangements that are arranged in order on the mold are generated and displayed by the system.

  Of course, many patterns such as one-stroke writing are prepared as will be described later, and are changed each time, and the user may change the pattern at any time. For example, when the screen is touched on the first screen (password input disabled screen), the numeric keypad shape and the number arrangement are changed to another pattern.

  By using the input method as described above, the screen (first screen) where password key entry is possible and the screen (second screen) where password key entry is impossible can be separated. Even if it is used, it becomes difficult to read the password from the captured screen and the position information touched on the screen.

  In the example of FIG. 1, only the shape of the numeric keypad is displayed even in the case of a vertical screen, but a camouflaged screen may be displayed so as not to realize that it is a password input enabled screen. In the above example, the password input enabled screen (first screen) is set to vertical and the password input disabled screen (second screen) is set to horizontal. However, it may be reversed and the rotation angle is not limited to 90 degrees. . For example, the right 45 degrees may be a password input enabled screen, and the left 45 degrees may be a password input disabled screen. This is generalized as follows.

  As shown in FIG. 2, on the password input screen, when the terminal is in the first tilt state, the numbers on the numeric keypad are not displayed, but when the terminal is changed to the second tilt state, the numbers on the numeric keypad are displayed. Is done. The user calls the personal identification number input screen in the first inclination state, confirms the number arrangement on the numeric keypad in the second inclination state, returns to the first inclination state, and inputs the personal identification number. Here, the first and second tilts are terminal orientations / angles that can be set by the user, and the first tilt is a terminal orientation (for example, left in FIG. 2) that is often used by the user. The second tilt is the direction of the terminal that is difficult to operate and is visible to you but difficult for others to see (for example, 30 degrees in the front down direction as in the center of FIG. 2). A tilted state). In addition, the first tilt may be learned and stored in a direction frequently used by the user (a direction in which the tilt for a certain period of time does not change by a predetermined value or more) as the orientation of the terminal that is easy for the user to operate. In this case, the second inclination may be defined as an inclination when there is a certain change in inclination from the first inclination.

  In the example of FIG. 1 and FIG. 2, since the PIN code is input, the numeric keypad is a 3 × 4 numeric keypad. However, by using a numeric keypad that includes letters and symbols, any number of alphanumeric characters can be included. It can also handle passwords. The shape of the numeric keypad is preferably an n × m matrix type (n and m are about 3 to 7), but may be polygonal or circular. In the case of a 6 × 6 numeric keypad, it can contain all 10 numeric characters and 26 alphabetic characters. In addition, in the case of a numeric keypad of 6 × 7 or more, several kinds of symbols can be included. Normally, such a large numeric keypad is difficult to use. However, if the input function such as the one-stroke writing described above is used, it is possible to easily input a password even with such a large numeric keypad. However, the numeric keypad for entering the password only needs to include characters used in the password, and thus does not necessarily have to be a full-sized (6 × 6 or larger) numeric keypad.

  FIG. 3 is a diagram showing functional blocks of the password input system according to the first embodiment of the present invention. In the present embodiment, the authentication server 20 side is the main configuration and can support the full function of the present invention. In the following, the arrows between the functional blocks (processing unit and database) in the figure indicate the data flow direction or the process flow direction.

  The authentication server 20 of this embodiment typically includes a communication control unit 21 that controls communication with a terminal 10 of a user (authenticated person) connected via a network, and a user ID (login ID) of a regular user. Including a user identifier such as a contractor number) and a password, a user registration DB 22 for querying the user registration DB 22 for a user ID received from a terminal, and a numeric keypad (key layout area) for entering a password ) For generating a layout of the key arrangement region shape determination unit 24, a character string arrangement unit 25 such as a single stroke for arranging each character of the password in a predetermined pattern (such as a single stroke) on the numeric keypad, and authentication by verifying the password The authentication unit 26 returns the result to the terminal 10. Note that communication between the terminal 10 and the authentication server 20 is performed using an encryption protocol such as SSL (Secure Socket Layer).

  The key arrangement area shape determination unit 24 determines the shape (number and arrangement of keys) for entering a password, and assigns and arranges characters on those keys. The numeric keypad (key layout area) here means a software keyboard for inputting a password. The characters on the numeric keypad can include not only numbers but also letters and symbols.

  In order to arrange characters on the numeric keypad, the user ID inquiry unit 23 extracts the character type included in the user registration password read from the user registration DB 22. For example, if the password is 'XYZ_2013', it includes at least 'X', 'Y', 'Z', '_', '0', '1', '2', '3', etc. Add several characters (dummy characters) on the system side. The numbers may always include '0' to '9'. Here, the sum of the characters used in the password and the added dummy characters is made to match the number of keys on the numeric keypad. However, the same character may be duplicated.

  The character string placement unit 25 such as one-stroke drawing is called from the key placement region shape determination unit 24, and is a predetermined pattern that matches the character included in the user's registered password and the shape of the numeric keypad determined by the key placement region shape determination unit 24. A pattern such as one stroke) is selected at random. And it arrange | positions so that the character string of a user's registration password may be located in a pattern, such as a selected stroke. Dummy characters are randomly placed on the other keys. Various patterns such as one-stroke writing are prepared in advance for each shape of the numeric keypad and the number of characters of the password. In the case of the above password, the numeric keypad arrangement is displayed as indicated by reference numeral 100 in FIG. 3 on a 4 × 4 numeric keypad, for example. In this example, the registered password ‘XYZ — 2013’ is arranged in a one-stroke pattern starting from the upper left of the numeric keypad. The user can easily input a password by using the input function such as one stroke even from the first screen on which the key value is not displayed.

  As a typical functional configuration, the terminal 10 of the present embodiment controls a communication control unit 11 that controls communication with the authentication server 20, a touch panel 12 that is an input / output device, and input data from the touch panel 12. Input control unit 13, display control unit 14 that controls display data on the screen of touch panel 12, other input device 15 other than the touch panel, and terminal orientation detection unit 16. In addition, although not particularly illustrated, the terminal 10 includes physical keys such as a power button and a volume button, and various sensors.

  The display control unit 14 switches between a password input enabled screen that allows a password to be input and a password input disabled screen that cannot input a password, according to the orientation (tilt) of the terminal or a predetermined operation. Predetermined operations are predetermined operations such as button operations on the touch panel, physical key operations on the terminal, operations that vibrate or give impact to the terminal (operations detected by various sensors), and combinations thereof. Input operation. Further, the display control unit 14 hides the characters on the numeric keypad on the password input enabled screen, and displays the characters on the numeric keypad on the password input disabled screen.

  The touch panel 12 includes a general contact type in which the panel is directly touched with a finger or a pen, and a non-contact type touch panel that can be input from a certain distance even if the finger or pen does not directly touch the panel. . The other input device may include a voice input device, for example, a line-of-sight input device including a web camera and an infrared LED. Further, although not shown, as an input assisting device, an acoustic output device or a vibration device that emits sound or vibration in response to a key operation may be included. The terminal orientation detection unit 16 has a function of detecting the orientation (inclination, that is, the angle and orientation with respect to the ground) of the terminal by an acceleration sensor or the like built in the terminal.

  FIG. 4 is a diagram showing functional blocks of the password input system according to the second embodiment of the present invention. In the second embodiment, the terminal side is the main configuration, and the configuration is simple with a small communication load between the terminal and the server.

  The authentication server 20A in the present embodiment may have only the configuration of a general authentication server. Similarly to the case shown in FIG. 3, the communication control unit 21 that controls communication with the terminal 10A and the user of the authorized user The user registration DB 22 storing the ID and password, the user ID inquiry unit 23 that inquires the user ID received from the terminal against the contents of the user registration DB 22, the user ID and the password are collated, and the result is sent to the terminal 10A as an authentication result. It is comprised with the authentication part 26 to which it replies. However, unlike the first embodiment, the key arrangement area shape determination unit 24 and the one-stroke writing character string arrangement unit 25 are not provided.

  The terminal 10A in this embodiment has a configuration in which a key arrangement region shape selection unit 17 is added to the terminal configuration in the first embodiment. However, the operation of the key arrangement region shape selection unit 17 is different from that of the key arrangement region shape determination unit 24 of the authentication server 20 in the first embodiment.

  The key arrangement region shape selection unit 17 has a function of allowing the user to select the shape of a numeric keypad for inputting a predetermined password. For example, in case of inputting only numbers such as a password, 3 × 4 or 4 × 4 numeric keys are selected, and in the case of a password including alphabetic and numeric passwords, 6 × 6 or 6 × 7 Ask the user to select the numeric keypad. In the case of a 6 × 7 numeric keypad, it is possible to support the case where a symbol is included in the password. In this way, the user can select an optimal numeric keypad shape that is easy to use. However, in the present embodiment, an input function such as one-stroke writing that is arranged and input so that the character string of the password is written in one stroke is not supported in a form in which the password is not stored on the terminal side. This is because it is necessary to know the password in advance on the terminal side in order to have this function. Of course, if the password is stored in the terminal, an input function such as a single stroke can be supported.

  FIG. 5 is a diagram showing a functional configuration of the password input system according to the third embodiment of the present invention. Even in this embodiment, the main function is executed on the terminal side, but it is not necessary for the user to select the shape of the numeric keypad as in the second embodiment, and it is possible to write one stroke without storing the password in the terminal. The configuration can support the input function. Only the parts different from FIG. 4 will be described below.

  The terminal 10B according to the present embodiment replaces the key arrangement area shape selection unit 17 with the key arrangement area shape determination unit 17B in the configuration of the terminal 10A according to the second embodiment. A column arrangement unit 19 is added. The key arrangement region shape determination unit 17B is the one that brings the key arrangement region shape determination unit 24 of FIG. 3 to the terminal side. Similarly, the one-stroke writing character string arrangement section 19 is obtained by bringing the one-stroke writing character string arrangement section 25 in FIG. 3 to the terminal side.

  When the user inputs a user ID on the terminal, the user ID pre-transmission unit 18 uses a dedicated protocol (for example, a registered terminal ID) in which the user ID is secured to the authentication server 20B before the password is input. The user's registered password is acquired in advance. However, authentication is not performed on the terminal side.

  When the user ID is received, the authentication server 20B is added with a user registration password transmission unit 27 that reads the registration password of the user from the user registration DB 22 and transmits it to the terminal 10B. However, the password received at the terminal side at this time is used only temporarily, and is not displayed on the screen or stored inside. When the authentication work is finished, the registered password received here is immediately discarded regardless of the authentication result.

  As described above, if the character configuration (number of characters, character type) of the user's registered password is known on the terminal side before the password is input, the key arrangement region shape determination unit 17B assigns a character key other than numerals 6 × 6 based on the registered password. It is possible for the terminal side to include the character string in the ten-key having a smaller size and to arrange the character string arrangement unit 19 such as the one-stroke writing so that the character string of the password on the numeric keypad is drawn in one-stroke drawing. That is, the full function of the present invention performed by the authentication server 20 in the first embodiment can also be performed on the terminal side.

  The functional configuration of the system described above is merely an example, and one functional block (database and function processing unit) may be further divided, or a plurality of functional blocks may be configured as one functional block. Each function processing unit reads a computer program stored in a storage device such as a ROM (Read Only Memory) or a hard disk by a CPU (Central Processing Unit) built in the device, and executes the computer program executed by the CPU. Realized. That is, in each function processing unit, this computer program reads and writes necessary data such as a table from a database (DB; Data Base) stored in a storage device or a storage area on a memory, and may be related in some cases. This is realized by controlling hardware (for example, an input / output device, a display device, and a communication interface device). Further, the database (DB) in the embodiment of the present invention may be a commercial database, but it simply means a collection of tables and files, and the internal structure of the database itself is not questioned.

  6 and 7 show simple input examples of the password and password. FIG. 6 shows an example of inputting a 4-digit password using a 3 × 4 numeric keypad, and FIG. 7 shows an example of inputting a 7-character password using a 4 × 4 numeric keypad. The dotted arrows in the figure are not actually displayed. In particular, the screens 102 to 104 in FIG. 6 show a pattern in which the number “2” appears multiple times in the password. In such a case, a plurality of numbers “2” are also arranged on the numeric keypad. In the example of the screen 104, the PIN code is “2222” in the second digit, which is not an error, but is not preferable, and there are a plurality of one-stroke writing directions.

  FIG. 8 and FIG. 9 show a simple example of a single stroke pattern as a typical example of an input function such as a single stroke. FIG. 8 is an example of a one-stroke pattern (3 × 4 numeric keypad, 4 character password), and FIG. 9 is an example of a one-stroke pattern (4 × 4 numeric keypad, 7 character password). As described above, various patterns can be conceived for the one-stroke pattern depending on the shape of the numeric keypad and the number of characters of the password. Therefore, the one-stroke-written character string arrangement unit 25 is prepared and prepared in advance as a pattern table.

  FIG. 10 is a diagram illustrating a processing flow according to the first embodiment. This flowchart shows the process between the terminal 10 and the authentication server 20 in FIG. 3 in more detail. In the following flowchart, the process flow in the terminal or server is indicated by a solid arrow, and the process flow between the terminal and the server is indicated by a dotted arrow.

  First, in step S10, the terminal 10 receives the login ID input by the user from the login screen or the like (specifically, when the user moves the touch from the user ID input field to the password input field), Is transmitted to the authentication server 20. At this stage, the password has not been entered yet.

  When receiving the user ID from the terminal 10, the authentication server 20 moves from the authentication request waiting state in step S 20 to step S 21, and checks whether or not the received user ID is registered in the user registration DB 22. If not registered, a user ID error is returned in step S22, and the process is terminated. If registered, it will progress to step S23 and will read the password registered into the said user ID from user registration DB22.

  Next, the authentication server 20 proceeds to step S24, and determines the shape of the numeric keypad and the characters to be displayed on the numeric keypad according to the number of characters and the character type of the password. For example, if the number of characters in the password is about 4 to 6 characters, a 3 × 4 matrix type is adopted as the shape of the numeric keypad, and if it is 7 characters or more, a 4 × 4 matrix type or larger is adopted. . However, as already described, the shape of the numeric keypad is not necessarily a matrix type (rectangular shape).

  In step S24, a plurality of characters to be displayed on the numeric key determined according to the character type of the password are further selected. For example, if the password is only numbers, the characters displayed on the numeric keypad may be all numbers, but if the password includes letters or symbols, all characters are displayed on the numeric keypad with a limited number of keys. Therefore, only some English letters and symbols are selected as characters to be displayed on the numeric keypad. However, numbers, letters and symbols included in the user's registered password are always selected.

  Next, the authentication server 20 moves to step S25, and selects a pattern such as a single stroke according to the determined shape of the numeric keypad and the number of characters of the password from predetermined ones. For example, an L shape, a straight line type, a check point type, and the like. Then, according to the selected one-stroke writing pattern, the arrangement of the password character string on the numeric keypad is determined so that the user password becomes a one-stroke writing pattern on the numeric keypad. Characters other than those used as passwords (called dummy characters) are also randomly placed on the numeric keypad. At this time, it is desirable to employ many characters of the same type as the dummy characters so that the characters of the password are not conspicuous. For example, if the password is composed of lowercase letters and numbers, the same kind of lowercase letters and numbers are used for the dummy characters.

  Then, the authentication server 20 moves to step S26, transmits the determined character arrangement of the numeric keypad (hereinafter referred to as the numeric keypad arrangement) to the terminal 10, and shifts to a reply waiting state from the terminal 10 itself.

  When the terminal 10 receives this numeric key layout, the terminal 10 shifts from the waiting state for the numeric key layout in step S11 to step S12. In step S12, if the orientation of the terminal 10 is the orientation of the password non-capable screen (for convenience, hereinafter, this is assumed to be horizontal), the process proceeds to step S13, and the orientation of the terminal 10 is the orientation of the password entry-capable screen (hereinafter, If this is vertical), the process proceeds to step S16.

  In step S13, a horizontal writing screen is displayed. At this time, the character assigned to the key is displayed on each key. Next, in step S14, it is checked whether or not the screen is touched in this state. The touch position may be arbitrary or a predetermined operation button. If it is detected that the screen is touched, the process proceeds to step S15, and the authentication server 20 is requested to resend the numeric keypad layout. If no touch is detected on the screen, the process returns to step S12 to check the orientation of the terminal.

  In step S12, when it is detected that the orientation of the terminal is vertical, the process proceeds to step S16, and a vertical writing screen is displayed. At this time, the characters on the key are not displayed. In this state, the key can be input, and in step S17, the input character or the input position information on the key arrangement area (for example, information that the key in the X row and the Y column is tapped on the numeric keypad array) is displayed. Remember one character at a time. When the user completes password entry and presses the send button (step S18: Y), the process proceeds to step S19, and the inputted character string or the inputted position information string on the key arrangement area is sent to the authentication server 20. Sends itself and enters an authentication waiting state.

  In the above description, it is assumed that the password characters are input by tapping the keys one by one. However, it is also possible to input the password by tracing the keys with a finger on the touch panel. In either case, however, the entered password is not displayed on the screen.

  The authentication server 20 returns to step S21 if the reply content is a resending request in the reply waiting state in step S26, but if the password is received, the process proceeds to step S28, and whether or not the received password matches the registered password. Check. If the passwords match, authentication OK is transmitted to the terminal (step S29). If the passwords do not match, authentication NG is transmitted to the terminal 10 (step S30). After transmitting the authentication result, the authentication server 20 returns to the authentication request waiting state in step S20.

  FIG. 11 is a diagram illustrating a processing flow according to the second embodiment. This flowchart shows the process between the terminal 10A and the authentication server 20A in FIG. 4 in more detail. In this figure, the same processes as in FIG. 10 are the same reference numerals and similar processes, but partially different processes add a dash (') to the original step codes, and the newly added processes are The codes are distinguished by adding “A” and “B”. Only the parts different from FIG. 9 will be described below.

  First, in step S10 ′, the terminal 10A receives an input of a user ID. Here, only the user ID is accepted (stored in the internal register), and the user ID is not transmitted to the authentication server 20 as in step S10 of FIG.

  Next, the terminal 10A moves to step S11A, asks the user to select one of ten keys having a predetermined shape, and randomly determines the character arrangement on the selected ten key. However, in this embodiment, the types of characters that can be input are limited depending on the selected numeric keypad. The subsequent processing on the terminal side is the same as in the case of FIG. 9, but the processing for requesting retransmission of the numeric keypad in step S15 in FIG. 9 is unnecessary. If there is a key touch in step S14, the process returns to S11A. Reselect the numeric keypad selection and character layout.

  In this embodiment, since the determination of the numeric keypad is all performed on the terminal 10A side, the processing from step S24 to step S27 in FIG. 10 is not required on the authentication server 20A side. Therefore, the communication between the terminal and the server for determining the numeric keypad arrangement is not required and the configuration is simple. If the password is not stored in the terminal, an input function such as one-stroke writing is not supported, but it is useful in the case of inputting a PIN code of about 4 digits.

  FIG. 12 is a diagram illustrating a processing flow according to the third embodiment. This flowchart shows the process between the terminal 10B and the authentication server 20B in FIG. 5 in more detail. In the third embodiment, the numeric keypad is arranged on the terminal 10B side, but it is configured to be able to handle characters (alphabetic characters, symbols) other than numbers as a password and to support an input function such as one-stroke writing. is there. Only the parts different from the processing of FIG. 11 will be described below.

  First, in step S10 ″, the terminal 10B receives the input of the user ID, requests the authentication server 20B to return the registered password, and enters a reply waiting state. Transmission of the request at this time is performed by a dedicated protocol in which confidentiality is ensured. The dedicated protocol used here has a mechanism that does not return the registration password even if another user impersonating the user inputs the user ID. For example, instead of returning the registration password itself, authentication with the terminal is performed in advance. Return the registration password with the encryption decided on the server, or register the ID unique to the terminal after logging in, accept the inquiry of the registration password only from the terminal of that ID, and further correspond to the terminal ID A reply is made only for the user ID. Upon receiving this request, if the received user ID is registered, the authentication server 20B reads out the registered password of the user from the user registration DB 22 and transmits it to the terminal 10B in step S23 ′.

  In terminal 10B, when the registration password is received, in step S11A, key arrangement region shape determination unit 17B determines the numeric keypad shape and the characters to be displayed on the key according to the number of characters and the character type of the password. Next, in step S11B, the one-stroke writing character string arrangement unit 19 randomly selects a pattern such as one-stroke writing according to the shape of the numeric keypad and the number of characters in the password. Then, the arrangement of characters on the numeric keypad is determined so that the password has a pattern such as a single stroke. Note that the registration password received in step S10 ″ is used only for determining the numeric keypad layout and is not displayed on the screen or stored in the terminal as described above.

  The subsequent processing from step S12 to step S19 on the terminal 10B side is exactly the same as in FIG. Further, the processing from step S20 to step S30 of the authentication server 20B is exactly the same as in the case of FIG. 11 except for step S23 ′.

  In this embodiment, it is necessary to receive a registration password from the server side in advance in order to determine the numeric keypad layout on the terminal side, but this is useful in that the full function of the present invention can be supported almost exclusively on the terminal side.

  In any of the above embodiments, for spyware that captures all of the series of screens like a movie and logs all input operations (position information on the touched part on the screen) at that time. Although it cannot be protected as it is, as a countermeasure in such a case, a part of the password character can be replaced and displayed on the password input impossible screen for confirming the key arrangement. This function can be easily realized by adding to the input control unit 13 and the display control unit 14 on the terminal side.

  For example, in the case of a password in the format of “ABCD — 0123”, the first character, the last character, the symbol “_” and the like are replaced with another character and displayed. In this case, the user decides in advance about 1 or 2 characters (such as “4” or “9”, or “I” or “l”) that will never be used in his password and registers them in the stem. Keep it. The system displays the character in place of a specific character in the password on the password input impossible screen. For example, if the character “4” is displayed on the key of the password input impossible screen, the user interprets this as “A”. If the character “I” is displayed, it is interpreted as “_”. By doing so, it is difficult to steal all characters of the password even with spyware as described above.

  As mentioned above, although this invention was demonstrated using embodiment, it cannot be overemphasized that the technical scope of this invention is not limited to the range as described in the said embodiment. It will be apparent to those skilled in the art that various modifications or improvements can be added to the above-described embodiments. Further, it is apparent from the scope of the claims that the embodiments added with such changes or improvements can be included in the technical scope of the present invention.

10 terminal (first embodiment)
10A terminal (second embodiment)
10B terminal (third embodiment)
11 Communication control unit (terminal side)
DESCRIPTION OF SYMBOLS 12 Touch panel 13 Input control part 14 Display control part 15 Other input devices 16 Terminal orientation detection part 17 Key arrangement area shape selection part 17B Key arrangement area shape determination part (terminal side)
18 User ID pre-transmission part 19 Character stroke arrangement part (terminal side)
20 Authentication server (first embodiment)
20A authentication server (second embodiment)
20B authentication server (third embodiment)
21 Communication control unit (authentication server side)
22 User registration DB
23 User ID reference part 24 Key layout area shape determination part (authentication server side)
25 One-stroke writing character string placement section (authentication server side)
26 Authentication part 27 User registration password transmission part 100-106 Password input impossible screen

Claims (6)

In a computer system in which the terminal of the person to be authenticated and the authentication server are connected via a network,
The terminal detecting its orientation;
The terminal or the authentication server determines the shape of the key arrangement area for inputting the password from the terminal and the arrangement of the characters on the key according to the number of characters and the character type of the registered password of the user ID of the user to be authenticated. Steps,
The terminal is
Switching the first screen and the second screen in the password input screen according to the orientation of the terminal;
In the first screen, the step of hiding characters on the key in the key arrangement area;
Displaying the characters on the keys in the key arrangement area on the second screen;
Entering a password from the first screen;
A password input method characterized by comprising:   In the step of determining the shape of the key arrangement area and the arrangement of characters on the key, the method further comprises the step of arranging the character string of the registered password of the authentication subject in a predetermined pattern on the key arrangement area. The password input method according to claim 1, wherein: The password input method according to claim 1 or 2 , wherein a part of characters on the key in the key arrangement area is replaced with another character for display. A password input system comprising a terminal of a person to be authenticated and an authentication server connectable to the terminal and a network,
The terminal
A terminal orientation detection unit for detecting the orientation of the terminal;
According to the orientation of the terminal, the first screen and the second screen are switched on the password input screen, the characters on the key layout area of the terminal screen are hidden on the first screen, and the second screen And a display control unit for displaying characters in the key arrangement area,
The authentication server is
When receiving the user ID of the person to be authenticated from the terminal, a user ID inquiry unit that queries the database for registration of the user ID and reads a registration password of the user ID;
A key arrangement area shape determination unit for determining the shape and character arrangement of the key arrangement area according to the number of characters and the character type of the registered password, and transmitting to the terminal;
The terminal
Displaying the transmitted key arrangement area shape and character arrangement on the second screen, allowing the password to be entered from the first screen,
A password input system characterized by that. A terminal of a person to be authenticated who requests authentication from the authentication system via a network,
The terminal
A user ID pre-sending unit that, when receiving an input of a user ID from the person to be authenticated, transmits the user ID to the authentication server before entering a password;
A key arrangement area shape determination unit for determining the shape and character arrangement of the key arrangement area on the terminal screen for inputting the password based on the registered password of the user ID received from the authentication server;
A terminal orientation detection unit for detecting the orientation of the terminal;
Depending on the orientation of the terminal, switching between the first screen and the second screen in the password input screen, Oite the first screen to hide the characters on the key arrangement region, the second On the screen, a display control unit for displaying characters on the key arrangement area;
End end you comprising: a. A password input system comprising a terminal of a person to be authenticated and an authentication server connectable to the terminal and a network,
The authentication server is
When a user ID is received from the terminal, a user registration password transmission unit that transmits a registration password of the user ID to the terminal,
The terminal
A user ID pre-sending unit that, when receiving an input of a user ID from the person to be authenticated, transmits the user ID to the authentication server before inputting a password;
Based on the registered password received from the authentication server, a key arrangement area shape determination unit for determining a key arrangement area shape and a character arrangement on the terminal screen for inputting a password;
A terminal orientation detection unit for detecting the orientation of the terminal;
According to the orientation of the terminal, a password input screen is switched between a first screen that allows a password to be entered from the key arrangement area and a second screen that does not allow a password to be entered from the key arrangement area. A display control unit configured to hide characters on the key arrangement area on one screen and display characters on the key arrangement area on the second screen;
A password input system comprising:

Images