JP6350039B2 - Authentication system, authentication information management method, portable terminal, and program for portable terminal - Google Patents

Description

  The present invention relates to an authentication system, an authentication information management method, a portable terminal, and a portable terminal program.

  Conventionally, in order to make it possible to use storage media such as IC cards used in short-range communication systems for electric field (human body) communication systems, a reader / writer that reads information from the storage medium is built into the adapter body to which the storage medium is attached. A portable terminal has been proposed (see, for example, Patent Documents 1 and 2).

Japanese Patent No. 5012830 Japanese Patent No. 5012831

  The portable terminal of the conventional example reads the authentication information stored in the storage medium by the communication antenna, and transmits the authentication information to the control device (authentication device) that controls opening / closing of the door by electric field communication. For this reason, there has been a demand for more quickly acquiring authentication information stored in a storage medium in a mobile terminal.

  An object of the present invention is to provide an authentication system, an authentication information management method, a mobile terminal, and a program for a mobile terminal that can more quickly acquire authentication information stored in a storage medium.

  The present invention solves the above problems by the following solution section. In addition, in order to make an understanding easy, although the code | symbol corresponding to embodiment of this invention is attached | subjected and demonstrated, it is not limited to this. In addition, the configuration described with reference numerals may be improved as appropriate. Moreover, you may substitute at least one part for another structure.

-1st invention is an authentication system (1) provided with the portable terminal (10) which transmits authentication information, and the authentication apparatus (20) which authenticates the authentication information transmitted from the said portable terminal, The portable terminal includes a first communication unit (11) that communicates with a storage medium that transmits authentication information, and a second communication unit (12) that communicates with the authentication device via a human body. A storage unit (13) for storing authentication information, and a control unit (16) for storing the authentication information read from the storage medium via the first communication unit in the storage unit. It is an authentication system.

-2nd invention WHEREIN: When it becomes necessary to transmit the said authentication information to the said authentication apparatus in the authentication system (1) of 1st invention, the said authentication information read from the said memory | storage part is said to be said 2nd communication part. The authentication system is characterized in that it is transmitted to the authentication device via a network.

-3rd invention is provided with the detection part (15) which detects a storage medium in the authentication system (1) of 1st or 2nd invention, The said control part (16) is the said storage medium in the said detection part. Is detected, the authentication information read from the storage medium via the first communication unit (11) is stored in the storage unit (13), and when the detection unit does not detect the storage medium, An authentication system, wherein the authentication information stored in a storage unit is deleted.

The fourth invention includes a timer (17) for measuring time in the authentication system (2) of any one of the first to third inventions, and the control unit (16A) measures time by the timer. Is read out from the storage medium via the first communication unit (11), and the same authentication information as the authentication information stored in the storage unit (13) is obtained. In the authentication system, the contents stored in the storage unit are updated when they cannot be read.

-5th invention is provided with the detection part (15) which detects a storage medium in the authentication system (2) of 4th invention, and the said control part (16A) detects the said storage medium in the said detection part. In this case, the time measurement is started by the timer, and when the storage unit is not detected by the detection unit, the time measurement is stopped by the timer.

-6th invention is the 2nd communication part which communicates between the 1st communication part (11) which communicates with the storage medium which transmits authentication information, and an authentication apparatus (20) via a human body (12) An authentication information management method for a portable terminal (10) comprising: a storage unit (13) for storing authentication information; and a control unit (16) for controlling the first communication unit and the storage unit. A method for managing authentication information, comprising: storing the authentication information read from the storage medium via the first communication unit in the storage unit.

-7th invention is the 2nd communication part which communicates between the 1st communication part (11) which communicates between the storage media which transmit authentication information, and an authentication apparatus (20) via a human body (12), a storage unit (13) that stores authentication information, and a control unit that stores the authentication information read from the storage medium via the first communication unit in the storage unit, Mobile terminal.

-8th invention authenticates via a human body with the 1st communication part (11) which communicates between the storage media which transmit authentication information as a portable terminal (10) which transmits authentication information to an authentication apparatus. A second communication unit (12) that communicates with the device (20), a storage unit (13) that stores authentication information, and a control unit (16) that controls the first communication unit and the storage unit; , A program for a mobile terminal comprising: a computer that functions as a control unit that stores the authentication information read from the storage medium via the first communication unit in the storage unit. It is the program for portable terminals characterized.

  ADVANTAGE OF THE INVENTION According to this invention, the authentication system which can acquire the authentication information memorize | stored in the storage medium more rapidly, the authentication information management method, a portable terminal, and the program for portable terminals can be provided.

1 is a block diagram showing an overall configuration of an entrance management system 1. FIG. It is an external view of the card holder 10 in which the IC card 30 is inserted. 1 is a perspective view showing an IC card 30 and a card holder 10. FIG. It is a whole block diagram of entrance management system 1A. It is a whole block diagram of the entrance management system 1B. 4 is a flowchart showing a procedure of ID information update processing executed by a terminal side control unit 16 of the card holder 10. 4 is a flowchart showing a procedure of ID information reading processing executed by a terminal side control unit 16 of the card holder 10. It is a block diagram which shows the whole structure of the entrance management system 2 in 2nd Embodiment. It is a flowchart which shows the procedure of ID information update process (1) performed by terminal side control part 16A of 10 A of card holders. It is a flowchart which shows the procedure of ID information update process (2) performed by terminal side control part 16A of 10 A of card holders.

Hereinafter, an embodiment in which an authentication system according to the present invention is applied to an entrance management system will be described.
[First Embodiment]
FIG. 1 is a block diagram showing an overall configuration of an entrance management system 1 in the first embodiment. FIG. 2 is an external view of the card holder 10 in which the IC card 30 is inserted. FIG. 3 is a perspective view showing the IC card 30 and the card holder 10.

As shown in FIG. 1, the entrance management system 1 includes a card holder 10 and an authentication device 20.
First, the configuration of the card holder 10 will be described.
The card holder 10 is a portable terminal held by a user of the room entry management system. As shown in FIG. 2, the card holder 10 includes a box frame-shaped housing 100. Inside the case 100, electronic components such as a reader / writer 11 described later are arranged. The housing 100 has a first surface 101 that can hold an IC card 30 (described later) and a second surface 102 opposite to the first surface 101.

  In the casing 100, a plurality of holding pieces 103 that hold the side surfaces of the inserted IC card 30 are provided in the outer peripheral area of the first surface 101. As shown in FIG. 3, the user of the card holder 10 holds the IC card 30 in the card holder 10 by inserting the IC card 30 from the one end side of the housing 100 along the first surface 101 in the arrow direction. Can be made. Note that a movable piece 15 a of a switch 15 (described later) protrudes from the first surface 101 of the housing 100. When the IC card 30 is inserted into the card holder 10, the movable piece 15 a is pressed by the IC card 30 and buried in the first surface 101 side.

  The IC card 30 is an IC tag in which a loop antenna, an IC chip, etc. (all not shown) are built. The loop antenna is an antenna capable of transmitting and receiving information by electromagnetic waves in the NFC (Near Field Communication) standard band. The IC chip transmits / receives information to / from a reader / writer 11 (described later) built in the housing 100 via a loop antenna. The IC chip includes a CPU, a memory, etc. (all not shown). ID information (authentication information) for identifying the user of the IC card 30 is stored in the memory of the IC chip.

  The communication between the IC card 30 and the reader / writer 11 uses, for example, an electromagnetic wave of 13.56 MHz based on NFC standards (ISO / IEC1802 (NFC IP-1), (ISO / IEC1481 (NFC IP-2)). Communication between the IC card 30 and the reader / writer 11 is possible at a distance of several millimeters to several tens of millimeters.When the IC card 30 is held by the card holder 1, the IC card 30 and the reader / writer 11 can communicate with each other. The distance from the reader / writer 11 is about several mm.

  As shown in FIG. 2, the signal electrode 121 is disposed on the second surface 102 of the housing 100. The signal electrode 121 is an electrode that induces a modulated electric field in the vicinity of a user (human body) in electric field communication. The signal electrode 121 is formed in a substantially square shape so as to substantially cover the second surface 102 of the housing 100 in plan view. The signal electrode 121 is electrically connected to a terminal-side communication unit 12 (not shown) described later built in the housing 100.

  As shown in FIG. 1, the card holder 10 includes a reader / writer 11 (first communication unit), a terminal side communication unit 12 (second communication unit), a storage unit 13, a power supply unit 14, and a switch 15 (detection). Section) and a terminal-side control unit 16.

  The reader / writer 11 is a reader / writer compliant with the NFC standard that transmits / receives information to / from an IC card 30 (described later) in a non-contact manner. When the IC card 30 is held by the card holder 10, information is transmitted and received by electromagnetic induction between the IC card 30 and the reader / writer 11, and the ID information stored in the memory of the IC card 30 is transferred by the reader / writer 11. Read. The ID information read by the reader / writer 11 is stored in the storage unit 13 (described later).

  The terminal-side communication unit 12 supplies a signal modulated according to information to be transmitted to the signal electrode 121 to induce a modulated electric field in the vicinity of the human body, and causes the human body to be connected to an external authentication device 20 (not shown) described later. The signal is transmitted by the electric field communication via. Further, the terminal side communication unit 12 receives a modulated electric field induced in the vicinity of the human body by the signal transmitted from the authentication device 20 (for example, a communication start signal) by the signal electrode 121, and receives the human body from the external authentication device 20. The signal is received by electric field communication via the. The terminal-side communication unit 12 includes an electric field communication I / F, an electric field communication control driver, and the like (all not shown).

  The storage unit 13 stores ID information read from the IC card 30 via the reader / writer 11 and various application software executed by the terminal-side control unit 16. The storage unit 13 stores, for example, a portable terminal program as application software.

  The portable terminal program requires the terminal-side control unit 16 as a computer to store the ID information read from the IC card 30 via the reader / writer 11 in the storage unit 13 and transmit the ID information to the authentication device 20. In this case, the ID information read from the storage unit 13 is a program for causing the authentication device 20 to transmit the ID information via the terminal side communication unit 12.

  The power supply unit 14 supplies power to the reader / writer 11, the terminal side communication unit 12, the storage unit 13, the terminal side control unit 16, and the like. The power supply unit 14 includes a battery main body, a battery control driver, and the like (all not shown).

  The switch 15 is a component that detects that the IC card 30 has been inserted into the card holder 10. The switch 15 is configured by a push switch. The switch 15 includes a movable piece 15a. The movable piece 15a is supported so as to be movable in the thickness direction of the casing 100, and is interlocked with an electrode contact (not shown) of the switch 15.

  As shown in FIG. 3, the movable piece 15 a protrudes from the first surface 101 by a biasing force of a spring (not shown) when the IC card 30 is not inserted into the housing 100. In this state, the electrode contact interlocked with the movable piece 15a is in a non-conductive state. On the other hand, as shown in FIG. 2, the movable piece 15 a is pressed by the IC card 30 in a state where the IC card 30 is inserted in the housing 100, so that the movable piece 15 a is against the first surface 101 against the biasing force of the spring. Buried. In this state, the electrode contact that is interlocked with the movable piece 15a becomes conductive. In addition, when the movable piece 15a protrudes from the first surface 101, the electrode contact that works with the movable piece 15a becomes conductive, and when the movable piece 15a is buried in the first surface 101, the electrode works with the movable piece 15a. A configuration in which the contact is in a non-conductive state may be used.

  The switch 15 outputs a detection signal corresponding to the non-conduction state or the conduction state to the terminal-side control unit 16. For example, when the switch 15 is in a non-conduction state, the detection signal output to the terminal-side control unit 16 is at the H (High) level. In addition, when the switch 15 is in a conductive state, the detection signal output to the terminal-side control unit 16 is at an L (Low) level.

  The terminal-side control unit 16 controls communication in the reader / writer 11 and the terminal-side communication unit 12, ID information writing and reading operations in the storage unit 13, and other operations. The terminal side control part 16 is comprised by CPU, memory, etc.

  When the IC card 30 is inserted into the card holder 10 and the detection signal output from the switch 15 becomes L level, the terminal-side control unit 16 reads ID information from the IC card 30 via the reader / writer 11, The read ID information is stored in the storage unit 13. Further, when the IC card 30 is removed from the card holder 10 and the detection signal output from the switch 15 becomes H level, the terminal side control unit 16 deletes the ID information stored in the storage unit 13.

  When the terminal-side control unit 16 needs to transmit ID information to the authentication device 20 while the IC card 30 is inserted in the card holder 10, that is, when a communication start signal (described later) is received. The ID information read from the storage unit 13 is transmitted to the authentication device 20 via the terminal side communication unit 12.

  The terminal-side control unit 16 transmits the ID information read from the storage unit 13 to the authentication device 20, stores the ID information read from the IC card 30 in the storage unit 13, or is stored in the storage unit 13. When any event occurs when the existing ID information is deleted, the power supply unit 14 is controlled to shift the card holder 10 to the sleep state. The sleep state refers to a state in which the supply of power to the terminal side communication unit 12 is stopped and the minimum necessary power is supplied to the storage unit 13 and the terminal side control unit 16. Even in the sleep state, the terminal-side communication unit 12 can receive the signal transmitted from the authentication device 20 through the electric field communication via the human body at the signal electrode 121.

Further, the terminal-side control unit 16 shifts the card holder 10 to the sleep state and then receives a communication start signal from the authentication device 20, when the IC card 30 is inserted into the card holder 10, or when the card holder 10 When any event occurs when the IC card 30 is removed from the card, the power supply unit 14 is controlled to return the card holder 10 from the sleep state. As a result, normal power is supplied from the power supply unit 14 to the terminal-side communication unit 12, the storage unit 13, and the like.
Note that the reader / writer 11 is activated when power is supplied from the power supply unit 14 when it is necessary to read ID information from the IC card 30. Further, after the ID information read from the IC card 30 is transmitted by the terminal-side communication unit 12, the reader / writer 11 stops when the supply of power from the power supply unit 14 is interrupted. The reader / writer 11 needs to read the ID information from the IC card 30 when the switch 15 detects the insertion of the IC card 30 or when the timer 17 generates a timer interrupt.

Next, the authentication device 20 will be described.
The authentication device 20 controls the unlocking and locking of the door D based on the ID information acquired from the card holder 10 by electric field communication via a human body. As shown in FIG. 1, the authentication device 20 includes an authentication side communication unit 21, a storage unit 22, an authentication side control unit 23, and a door locking management unit 24.

  The authentication-side communication unit 21 communicates with the card holder 10 (terminal-side communication unit 12) held by the user by electric field communication through the user's human body. The authentication side communication unit 21 is built in, for example, a mat laid in front of the door. As will be described later, when the user steps on the mat laid in front of the door, the user P's body is interposed between the card holder 10 and the electrode (not shown) of the authentication-side communication unit 21. The transmission / reception of the signal by the electric field communication is started. The card holder 10 can receive a communication start signal from the authentication device 20 by electric field communication via the human body of the user P. Further, the card holder 10 can transmit ID information to the authentication device 20 by electric field communication via the human body of the user P.

  The storage unit 22 stores an operating system (OS) executed by the authentication-side control unit 23, application programs, various data, and the like in addition to an ID information table that is referred to when authenticating ID information.

  The authentication side control unit 23 comprehensively controls the operation of the authentication device 20. The authentication side control unit 23 includes a CPU, a memory, and the like (all not shown). The authentication-side control unit 23 reads out and executes an operating system (OS), application program, and the like stored in the storage unit 22 and cooperates with each hardware to perform various functions related to ID information authentication described later. Is realized.

  The authentication side control unit 23 periodically transmits a communication start signal via the authentication side communication unit 21. The communication start signal is a signal that requests the card holder 10 that is a portable terminal to transmit ID information.

The authentication-side control unit 23 performs authentication (validity verification) of the ID information received from the authentication-side communication unit 21, and when it is determined that the room can be entered, the unlocking signal for unlocking the door is locked. It transmits to the management part 24.
The door locking management unit 24 manages door unlocking and locking. When receiving the unlocking signal from the authentication-side control unit 23, the door locking management unit 24 unlocks the locked door.

  Next, a specific example of the room entry management system 1 will be described. Here, an entrance management system 1A that acquires ID information from the card holder 10 by electric field communication via a human body and an entrance management system 1B that acquires ID information from the card holder 10 by non-contact short-range communication will be described. The room entry management system is a system that manages whether a person who wants to enter a room can enter the room. In the following description, the card holder 10 is used with the IC card 30 inserted into the housing 100.

  First, an entrance management system 1A that acquires ID information from the card holder 10 by electric field communication via a human body will be described. FIG. 4 is an overall configuration diagram of the room entry management system 1A. As shown in FIG. 4, the entrance management system 1 </ b> A includes a card holder 10 held by a user P and an authentication device 20. Description of the configuration of the card holder 10 and the authentication device 20 is omitted.

  As shown in FIG. 4, when the user P steps on the mat M placed in front of the door D, between the authentication side communication unit 21 and the card holder 10 (terminal side communication unit 12) built in the mat M. Thus, transmission / reception of signals by electric field communication via the human body of the user P is started. Thereby, the communication start signal emitted from the authentication side communication unit 21 of the authentication device 20 is transmitted from the authentication device 20 to the card holder 10 by electric field communication via the human body of the user P. Also, the ID information read from the IC card 30 is transmitted from the card holder 10 to the authentication device 20 by electric field communication via the user P's human body.

  The authentication side control unit 23 refers to the ID information received from the card holder 10 and the ID information table stored in the storage unit 22 to authenticate the received ID information. If the received ID information is registered in the ID information table, the authentication side control unit 23 determines that the room can be entered. On the other hand, if the received ID information is not registered in the ID information table, the authentication side control unit 23 determines that the room cannot be entered.

  The authentication-side control unit 23 transmits an unlocking signal for unlocking the door D to the door locking management unit 24 when it is determined that the room can be entered with respect to the received ID information. When the door locking management unit 24 receives the unlocking signal from the authentication-side control unit 23, the door locking management unit 24 unlocks the locked door D. Thereby, the user P can open the unlocked door D and enter the room. Moreover, the door locking management part 24 maintains the locked state, without releasing the lock | rock of the door D, when not receiving the unlocking signal from the authentication side control part 23. FIG. In this case, the authentication-side control unit 23 notifies the user P with a warning sound such as a buzzer.

  Next, the room entry management system 1B that acquires ID information from the card holder 10 by non-contact short-range communication will be described. The entrance management system 1B is different from the entrance management system 1A in that the communication between the card holder 10 and the authentication side communication unit 21 is not electric field communication via a human body but non-contact near field communication by electromagnetic induction. Different. FIG. 5 is an overall configuration diagram of the room entry management system 1B. As shown in FIG. 5, the room entry management system 1B includes a card holder 10 held by the user P and an authentication device 20A.

  In the entrance management system 1B, the basic configuration of the authentication device 20A is the same as that of the authentication device 20 shown in FIG. The entrance management system 1B is different from the authentication side communication unit 21 of the authentication device 20 shown in FIG. 1 in that the authentication side communication unit 21A is a reader / writer that transmits and receives information by electromagnetic induction.

  In the entrance management system 1B of the present embodiment, the authentication-side communication unit 21A (see FIG. 1) of the authentication device 20A transmits and receives information to and from the IC card 30 of the card holder 10 held by the user P by electromagnetic induction. It is a reader / writer. The ID information received by the authentication side communication unit 21A is transmitted to the authentication side control unit 23. Description of the unlocking and locking management of the door D in the authentication-side control unit 23 and the door locking management unit 24 is omitted.

  As shown in FIG. 5, when the user P holds the card holder 10 over the authentication-side communication unit 21A disposed in front of the door D, the IC card 30 inserted into the card holder 10 and the authentication-side communication unit 21A Information is transmitted / received between the IC card 30 and the ID information stored in the IC chip (memory) of the IC card 30 is read by the authentication-side communication unit 21A. Subsequent processing is the same as that of the embodiment shown in FIG.

  As described above, the card holder 10 in which the IC card 30 is inserted includes the entrance management system 1A that performs authentication based on the ID information acquired by electric field communication through the human body, and the ID acquired by non-contact short-range communication. It can be used for both the entrance management system 1B which authenticates based on information.

  Next, an ID information update process executed by the terminal side control unit 16 of the card holder 10 will be described. FIG. 6 is a flowchart showing the procedure of ID information update processing executed by the terminal side control unit 16 of the card holder 10. In the ID information update process shown in FIG. 6, every time the terminal side control unit 16 detects the rising edge or the falling edge of the detection signal (switch 15), that is, the card holder 10 inserts or removes the IC card 30. It is executed whenever it is done.

  In step S (hereinafter referred to as “S”) 101 illustrated in FIG. 6, the terminal-side control unit 16 determines whether or not the IC card 30 has been inserted into the card holder 10. Specifically, the terminal side control unit 16 determines whether or not the detection signal output from the switch 15 is at the L level (conduction state). If the determination in S101 is YES, the process proceeds to S102. If the determination in S101 is NO, the process proceeds to S107. In S101, whether or not the IC card 30 is inserted into the card holder 10 may be determined based on whether or not a rising edge or a falling edge of the detection signal (L level) is detected. .

In S <b> 102 (S <b> 101: YES), the terminal-side control unit 16 shifts to a power-on state and starts supplying power from the power supply unit 14.
In step S <b> 103, the terminal-side control unit 16 reads ID information from the IC card 30 via the reader / writer 11.

  In S <b> 104, the terminal-side control unit 16 determines whether or not the ID information has been successfully read from the IC card 30. If the determination in S104 is yes, the process proceeds to S105. If the determination in S104 is NO, the process proceeds to S106.

In S105 (S104: YES), the terminal-side control unit 16 causes the storage unit 13 to store the ID information read from the IC card 30.
In S <b> 106, the terminal-side control unit 16 controls the power supply unit 14 to shift to the sleep state, and ends the process of this flowchart.

  In S <b> 107 (S <b> 101: NO), the terminal-side control unit 16 determines whether or not the IC card 30 has been removed from the card holder 10. Specifically, the terminal-side control unit 16 determines whether or not the detection signal output from the switch 15 is at the H level (non-conducting state). If the determination in S107 is YES, the process proceeds to S108. If the determination in S107 is NO, the process returns to S101. In S107, whether or not the IC card 30 has been removed from the card holder 10 may be determined based on whether or not a rising edge or a falling edge of the detection signal (H level) is detected. .

In S108 (S107: YES), the terminal-side control unit 16 returns from the sleep state and starts supplying power from the power supply unit 14 to the terminal-side control unit 16 and the storage unit 13.
In S109, the terminal-side control unit 16 deletes the ID information stored in the storage unit 13.
In S <b> 110, the terminal-side control unit 16 shifts to a power-off state and stops the supply of power from the power supply unit 14. The terminal side control part 16 complete | finishes the process of this flowchart after S110.

  According to the ID information update process of the present embodiment, when the IC card 30 is inserted into the card holder 10, the ID information read from the IC card 30 is stored in the storage unit 13. When the IC card 30 is removed from the card holder 10, the ID information stored in the storage unit 13 is deleted.

  Next, an ID information reading process executed by the terminal side control unit 16 of the card holder 10 will be described. FIG. 7 is a flowchart showing a procedure of ID information read processing executed by the terminal side control unit 16 of the card holder 10. The ID information reading process shown in FIG. 7 is executed every time a communication start signal is received from the authentication device 20.

  In S201 illustrated in FIG. 7, the terminal-side control unit 16 determines whether or not a communication start signal has been received from the authentication device 20 through electric field communication via a human body. If the determination in S201 is yes, the process proceeds to S202. If the determination in S201 is NO, the process returns to S201.

In S202 (S201: YES), the terminal-side control unit 16 controls the power supply unit 14 to return from the sleep state.
In S <b> 203, the terminal side control unit 16 reads the ID information stored in the storage unit 13.

In S <b> 204, the terminal side control unit 16 starts communication including transmission of ID information with the authentication device 20. Thereafter, various message signals including transmission of ID information are transmitted / received between the card holder 10 and the authentication device 20.
In S205, the terminal-side control unit 16 determines whether communication including transmission of ID information with the authentication device 20 has been completed. If the determination in S205 is YES, the process proceeds to S206. If the determination in S205 is NO, the process returns to S205.
In S206, the terminal-side control unit 16 controls the power supply unit 14 to shift to the sleep state, and ends the process of this flowchart.

  According to the ID information reading process shown in FIG. 7, each time a communication start signal is received from the authentication device 20, the ID information read from the storage unit 13 is sent to the authentication device 20 without starting the reader / writer 11. Sent.

According to the entrance management system 1 of the first embodiment described above, the following effects can be obtained.
(1) In the card holder 10, ID information read from the IC card 30 via the reader / writer 11 is stored in the storage unit 13. Therefore, the ID information stored in the IC card 30 can be acquired more quickly.
When the card holder 10 needs to transmit ID information to the authentication device 20, the terminal-side control unit 16 reads the ID information from the storage unit 13 and transmits the ID information to the authentication device 20. Therefore, power consumption can be reduced as compared with the case where ID information is read from the IC card via the reader / writer 11. Further, in the card holder 10, the processing speed from the start of reading of ID information to transmission to the authentication device 20 can be improved.

(2) When the IC card 30 is inserted into the card holder 10, the terminal side control unit 16 stores the ID information read from the IC card 30 via the reader / writer 11 in the storage unit 13. Therefore, the user can store the ID information in the card holder 10 only by inserting the IC card 30 into the card holder 10.

(3) When the IC card 30 is removed from the card holder 10, the terminal side control unit 16 deletes the ID information stored in the storage unit 13. Therefore, when the IC card 30 is extracted from the card holder 10, no ID information remains in the card holder 10, so that security can be improved.

[Second Embodiment]
FIG. 8 is a block diagram showing the overall configuration of the room entry management system 2 in the second embodiment. In addition, since the basic structure of the entrance management system 2 in 2nd Embodiment is the same as 1st Embodiment mentioned above, it attaches | subjects the same code | symbol to the part provided with the common structure, and demonstrates suitably. Omitted. Moreover, in 2nd Embodiment, the code | symbol of "A" is attached | subjected and demonstrated to the site | part from which a structure differs with the same name.

As illustrated in FIG. 8, the room entry management system 2 includes a card holder 10 </ b> A and an authentication device 20.
The configuration of the card holder 10A will be described.
The card holder 10 </ b> A is a portable terminal held by a user of the room entry management system 2. The appearance and basic configuration of the card holder 10A are the same as those of the card holder 10 of the first embodiment. The card holder 10A of the second embodiment is different from the card holder 10 of the first embodiment in that it mainly includes a timer 17 (described later).

  As shown in FIG. 8, the card holder 10A includes a reader / writer 11 (first communication unit), a terminal-side communication unit 12 (second communication unit), a storage unit 13, a power supply unit 14, a switch 15, A terminal-side control unit 16A and a timer 17 are provided.

  The timer 17 measures a preset time (hereinafter referred to as “predetermined time”). When the time measurement reaches a predetermined time, the timer 17 causes the terminal-side control unit 16A to generate a timer interrupt. In the timer 17, the generation of the timer interrupt is repeatedly executed until the time measurement is stopped under the control of the terminal-side control unit 16A. Instead of the timer 17, a timer interrupt may be generated in the internal processing of the CPU constituting the terminal side control unit 16A.

  When the IC card 30 is inserted into the card holder 10A and the detection signal output from the switch 15 becomes L level, the terminal-side control unit 16A controls the timer 17 to start measuring time. Further, when the IC card 30 is extracted from the card holder 10 and the detection signal output from the switch 15 becomes H level, the terminal-side control unit 16A controls the timer 17 to stop time measurement.

  The terminal-side control unit 16 </ b> A reads ID information from the IC card 30 via the reader / writer 11 when the timer 17 reaches a predetermined time and a timer interrupt occurs. Then, when the same authentication information as the authentication information stored in the storage unit 13 is not read, the terminal-side control unit 16A updates the storage content of the storage unit 13.

  Specifically, when the ID information read from the IC card 30 and the ID information stored in the storage unit 13 do not match, the terminal side control unit 16A uses the ID information read from the IC card 30 to The ID information stored in the storage unit 13 is overwritten (updated). If the ID information cannot be read from the IC card 30, the terminal side control unit 16 </ b> A deletes (updates) the ID information stored in the storage unit 13. Note that the terminal-side control unit 16 </ b> A maintains the stored contents of the storage unit 13 when the ID information read from the IC card 30 matches the ID information stored in the storage unit 13.

  When it is necessary to transmit the ID information to the authentication device 20 while the IC card 30 is inserted in the card holder 10A, the terminal side control unit 16A uses the ID information read from the storage unit 13 as the terminal side communication. The data is transmitted to the authentication device 20 via the unit 12.

  The terminal-side control unit 16A transmits the ID information read from the storage unit 13 to the authentication device 20, stores the ID information read from the IC card 30 in the storage unit 13, or is stored in the storage unit 13. When any event occurs when the existing ID information is deleted, the power supply unit 14 is controlled to shift the card holder 10A to the sleep state.

  Further, after the terminal side control unit 16A shifts the card holder 10A to the sleep state, when the communication start signal is received from the authentication device 20, the timer interrupt by the timer 17 occurs, the IC card 30 is sent to the card holder 10. Is inserted, or when any event occurs when the IC card 30 is removed from the card holder 10, the power supply unit 14 is controlled to return the card holder 10 from the sleep state. As a result, normal power is supplied from the power supply unit 14 to the terminal-side communication unit 12, the storage unit 13, and the like.

  Next, the ID information update process (1) executed by the terminal side control unit 16A of the card holder 10A will be described.

  FIG. 9 is a flowchart showing the procedure of the ID information update process (1) executed by the terminal side control unit 16A of the card holder 10A. The ID information update process (1) is executed when the IC card 30 is inserted or removed from the card holder 10A.

  In S301 illustrated in FIG. 9, the terminal-side control unit 16A determines whether or not the IC card 30 has been inserted into the card holder 10A. Specifically, the terminal-side control unit 16A determines whether or not the detection signal output from the switch 15 is at the L level (conduction state). If the determination in S301 is YES, the process proceeds to S302. If the determination in S301 is NO, the process proceeds to S308.

In S302 (S301: YES), the terminal-side control unit 16A shifts to a power-on state and starts supplying power from the power supply unit 14.
In step S <b> 303, the terminal-side control unit 16 </ b> A reads ID information from the IC card 30 via the reader / writer 11.

  In S304, the terminal-side control unit 16A determines whether or not the ID information has been successfully read from the IC card 30. If the determination in S304 is YES, the process proceeds to S305. If the determination in S304 is NO, the process proceeds to S307.

In S305 (S304: YES), the terminal-side control unit 16A stores the ID information read from the IC card 30 in the storage unit 13.
In S306, the terminal-side control unit 16A controls the timer 17 to start measuring time.
In S307, the terminal-side control unit 16A controls the power supply unit 14 to shift to the sleep state, and ends the process of this flowchart.

  In S308 (S301: NO), the terminal-side control unit 16A determines whether or not the IC card 30 has been removed from the card holder 10A. Specifically, the terminal-side control unit 16A determines whether or not the detection signal output from the switch 15 is at the H level (non-conducting state). If the determination in S308 is YES, the process proceeds to S309. If the determination in S308 is NO, the process returns to S301.

In S309 (S308: YES), the terminal-side control unit 16A returns from the sleep state and starts supplying power from the power supply unit 14 to the terminal-side control unit 16A and the storage unit 13.
In S310, the terminal-side control unit 16A deletes the ID information stored in the storage unit 13.
In S311, the terminal-side control unit 16A controls the timer 17 to stop the time measurement.
In S <b> 312, the terminal-side control unit 16 </ b> A shifts to a power-off state and stops the supply of power from the power supply unit 14. After S312, the terminal-side control unit 16A ends the process of this flowchart.

  According to the ID information update process (1) shown in FIG. 9, when the IC card 30 is inserted into the card holder 10, the ID information read from the IC card 30 is stored in the storage unit 13 and the timer 17 Time measurement is started at. When the IC card 30 is removed from the card holder 10, the ID information stored in the storage unit 13 is deleted, and the timer 17 stops measuring time.

Next, the ID information update process ((2)) executed by the terminal side control unit 16A of the card holder 10A will be described.
FIG. 10 is a flowchart showing the procedure of the ID information update process (2) executed by the terminal side control unit 16A of the card holder 10A. The ID information update process (2) is a process executed when a timer interruption occurs in the card holder 10A.

  In S401 illustrated in FIG. 10, the terminal-side control unit 16A determines whether or not a timer interrupt has occurred. If the determination in S401 is YES, the process proceeds to S402. If the determination in S401 is NO, the process returns to S401.

In S402 (S401: YES), the terminal-side control unit 16A controls the power supply unit 14 to return from the sleep state.
In step S <b> 403, the terminal-side control unit 16 </ b> A reads ID information from the IC card 30 via the reader / writer 11.

  In S404, the terminal-side control unit 16A determines whether or not the ID information has been successfully read from the IC card 30. If the determination in S404 is yes, the process proceeds to S405. If the determination in S404 is NO, the process proceeds to S407.

In S405 (S404: YES), the terminal-side control unit 16A determines whether or not the ID information read from the IC card 30 matches the ID information stored in the storage unit 13. If the determination in S405 is yes, the process proceeds to S406. If the determination in S405 is NO, the process proceeds to S408.
In S406 (S405: YES), the terminal-side control unit 16A controls the power supply unit 14 to shift to the sleep state, and ends the processing of this flowchart.

In S407 (S404: NO), the terminal-side control unit 16A deletes the ID information stored in the storage unit 13. After S407, the process proceeds to S406 (described above).
In S408, the terminal-side control unit 16A shifts to a power-off state, and stops the supply of power from the power supply unit 14. After S408, the terminal-side control unit 16A ends the process of this flowchart.
In S409 (S405: NO), the terminal-side control unit 16A overwrites the ID information stored in the storage unit 13 with the ID information read from the IC card 30. After S409, the process proceeds to S406 (described above).

  According to the ID information update process (2) shown in FIG. 10, when a timer interrupt occurs in the card holder 10A, the ID information is read from the IC card 30 and the ID information stored in the storage unit 13 is stored. If it cannot be read, the ID information stored in the storage unit 13 is updated (overwritten or deleted).

  In the second embodiment, the ID information reading process executed when the communication start signal is received from the authentication device 20 by the electric field communication via the human body is the same as the first embodiment (see FIG. 7). The description is omitted.

According to the room entry management system 2 of the second embodiment described above, in addition to the effects (1) to (3) of the first embodiment, the following effects are further exhibited.
(4) When the IC card 30 is removed from the card holder 10A, even if an IC card having other ID information is inserted without the switch 15 operating normally, the IC is detected when a timer interrupt occurs. Reading of the ID information from the card is executed. When the ID information read from the IC card is different from the ID information stored in the storage unit 13 at that time, the terminal-side control unit 16A uses the ID information stored in the storage unit 13 as the read ID. Overwrite with information. Therefore, the user can use the card holder 10A without storing new ID information. Further, when the IC card 30 is removed from the card holder 10A, even if the switch 15 does not operate normally and the IC card 30 is not inserted, the ID is removed from the IC card when the timer interrupt occurs. Reading of information is executed. If the ID information cannot be read from the IC card 30 at that time, the terminal-side control unit 16A deletes the ID information stored in the storage unit 13. Therefore, the security of the card holder 10A can be improved.

(5) When the IC card 30 is inserted into the card holder 10 </ b> A, the terminal-side control unit 16 </ b> A causes the timer 17 to start measuring time. Therefore, the time measurement in the timer 17 can be started at a more accurate timing.

(6) When the IC card 30 is extracted from the card holder 10 </ b> A, the terminal-side control unit 16 </ b> A stops the time measurement in the timer 17. Therefore, the power consumption in the timer 17 can be suppressed to the minimum necessary.

  As mentioned above, although embodiment of this invention was described, this invention is not limited to embodiment mentioned above. In addition, the effects described in the embodiments are merely a list of the most preferable effects resulting from the present invention, and are not limited to those described in the embodiments. In addition, although embodiment mentioned above and the deformation | transformation form mentioned later can also be used in combination suitably, detailed description is abbreviate | omitted. The configuration of the modified embodiment described below can be applied to both the first and second embodiments in principle, except for the case where either the first or second embodiment is targeted.

[Deformation]
(1) In this embodiment, the switch 15 may function as a power switch for the card holder 10. In that case, as shown in FIG. 3, when the IC card 30 is not inserted in the card holder 10, the power of the card holder 10 is turned off. As shown in FIG. 2, when the IC card 30 is inserted into the card holder 10, the power of the card holder 10 is turned on. Thus, when the switch 15 is caused to function as a power switch for the card holder 10, the power consumption of the card holder 10 can be further reduced.

  Here, the power-on state of the card holder 10 means a state in which power is supplied from the power supply unit 14 to the terminal side communication unit 12, the storage unit 13, the terminal side control unit 16, and the like. Further, the power-off state of the card holder 10 refers to a state in which the minimum necessary power is supplied from the power supply unit 14 to the terminal-side control unit 16.

  Although not shown in the present embodiment, the card holder 10 is provided with a dedicated power switch. The user can switch the power of the card holder 10 to an on state or an off state by operating a dedicated power switch provided on the card holder 10.

(2) In the present embodiment, the configuration in which one switch 15 is provided in the housing 100 of the card holder 10 has been described. However, the present invention is not limited to this, and the switches 15 may be provided at a plurality of locations of the housing 100. In the present embodiment, an example in which a push switch is used as the switch 15 has been described. The switch 15 is not limited to this, and any switch structure may be used as long as it can detect the IC card 30 and can be mounted on the housing 100. In the present embodiment, an example in which a switch that physically detects the presence of the IC card 30 is used as the switch 15 (detection unit) has been described. Not only this but an optical sensor may be used as a detection part, and the proximity sensor which detects the approach of IC card 30 to card holder 10 may be used. Furthermore, it is good also as a structure which combined physical switches, such as a push switch, an optical sensor, a proximity sensor, etc. suitably.

(3) In this embodiment, the example which reads ID information from the IC card 30 with the non-contact reader / writer 11 was demonstrated. In addition to this example, a magnetic card may be used instead of the IC card 30. In this case, the ID information can be read from the magnetic card by bringing the magnetic card (magnetic stripe) inserted in the card holder 10 into contact with the magnetic head of the magnetic card reader built in the card holder 10.

(4) In the present embodiment, the example in which the authentication-side communication unit 21 is built in the mat M laid in front of the door D in the room entrance management system 1A that acquires ID information by electric field communication via a human body has been described. Not only this but the authentication side communication part 21 may be arrange | positioned on the wall surface near the door D, and may be integrated in a doorknob. In this case, when the user P carrying the card holder 10 touches the transmission / reception unit, information can be transmitted / received by electric field communication via the human body.

(5) In this embodiment, the example which uses the card holder 10 with an entrance management system was demonstrated. Not limited to this, it is possible to manage the entrance of the visitors to the facility by holding the card holder 10 in a commercial facility, public facility, specific management facility, etc., and installing a transmission / reception unit at the entrance of each facility. be able to. In addition, in the office, the employee can carry the card holder 10 and manage the use of the OA device by the employee by installing a transmission / reception unit in the vicinity of the OA device (for example, a multifunction device) in the office. it can.

1, 2 Entry management system 10, 10A Card holder 11 Reader / writer 12 Electric field communication unit 13 Storage unit 14 Power supply unit 15 Switch 15a Movable piece 16, 16A Terminal side control unit 17 Timer 20 Authentication device 30 IC card 100 Case 121 Signal electrode

Claims (7)

An authentication system comprising: a mobile terminal that transmits authentication information; and an authentication device that authenticates authentication information transmitted from the mobile terminal,
The portable terminal is
A first communication unit that communicates with a storage medium that transmits authentication information;
A second communication unit that communicates with the authentication device via a human body;
A storage unit for storing authentication information;
A timer for measuring time,
The authentication information read from the storage medium via the first communication unit is stored in the storage unit, and when the time measurement by the timer reaches a predetermined time, the storage medium via the first communication unit A control unit that reads the authentication information from the storage unit and updates the storage content of the storage unit when the same authentication information as the authentication information stored in the storage unit is not read .
An authentication system characterized by The authentication system according to claim 1,
A detection unit for detecting a storage medium;
The controller is
When the detection unit detects the storage medium, the timer starts measuring time, and when the detection unit does not detect the storage medium, the timer stops measuring time;
An authentication system characterized by In the authentication system according to claim 1 or 2 ,
The controller is
When the authentication information needs to be transmitted to the authentication device, the authentication information read from the storage unit is transmitted to the authentication device via the second communication unit;
An authentication system characterized by In the authentication system according to any one of claims 1 to 3 ,
A detection unit for detecting a storage medium;
The controller is
When the detection unit detects the storage medium, the authentication information read from the storage medium via the first communication unit is stored in the storage unit,
If the detection unit does not detect the storage medium, deleting the authentication information stored in the storage unit;
An authentication system characterized by A first communication unit that communicates with a storage medium that transmits authentication information, a second communication unit that communicates with an authentication device via a human body, a storage unit that stores authentication information, and a time An authentication information management method for a portable terminal comprising a timer for measuring, and a control unit for controlling the first communication unit and the storage unit,
Storing the authentication information read from the storage medium via the first communication unit in the storage unit;
When the time measurement by the timer reaches a predetermined time, the authentication information is read from the storage medium via the first communication unit, and the same authentication information as the authentication information stored in the storage unit is read. If not, the step of updating the storage content of the storage unit;
Providing
An authentication information management method characterized by the above. A first communication unit that communicates with a storage medium that transmits authentication information;
A second communication unit that communicates with the authentication device via a human body;
A storage unit for storing authentication information;
A timer for measuring time,
The authentication information read from the storage medium via the first communication unit is stored in the storage unit, and when the time measurement by the timer reaches a predetermined time, the storage medium via the first communication unit A control unit that reads the authentication information from the storage unit and updates the storage content of the storage unit when the same authentication information as the authentication information stored in the storage unit is not read .
A mobile terminal characterized by. A first communication unit that communicates with a storage medium that transmits authentication information as a portable terminal that transmits authentication information to the authentication device, and a second communication unit that communicates with the authentication device via a human body A portable terminal program for a portable terminal comprising a storage unit for storing authentication information, a timer for measuring time, and a control unit for controlling the first communication unit and the storage unit,
Computer
The authentication information read from the storage medium via the first communication unit is stored in the storage unit, and when the time measurement by the timer reaches a predetermined time, the storage medium via the first communication unit Control means for reading the authentication information from the storage unit, and when the same authentication information as the authentication information stored in the storage unit is not read out , the control means for updating the storage content of the storage unit,
A program for a portable terminal, which is made to function as:

Images