JP6566456B1 - Display control system, communication apparatus, display control method, and display control program - Google Patents

Abstract

An object of the present invention is to provide information according to a position of a mobile device or a user in a secure manner. A display control system includes a communication device and an authentication device that perform wireless communication with each other. In addition, the communication device includes an authentication processing unit that performs an authentication process with the authentication device, and when authentication is successful, according to a user of the communication device or at a position where the communication device or the authentication device exists. And a display control unit that changes information to be displayed on the display unit of the communication device. [Selection] Figure 2

Description

  The present invention relates to a display control system, an authentication server, a display control method, and a display control program.

  Conventionally, a method for providing a location-based advertising campaign for a wireless portable device based on the geographical location of the wireless portable device has been proposed (for example, Patent Document 1).

JP 2007-265422 A

  When providing not only location information but also information according to the user, especially when dealing with information that requires safety, such as electronic money, it is simply impossible to provide information according to location information. There was a problem.

  Accordingly, an object of the present invention is to securely provide information corresponding to a position of a mobile device or a user.

  The display control system according to the present invention includes a communication device and an authentication device that perform wireless communication with each other. In addition, the communication device includes an authentication processing unit that performs an authentication process with the authentication device, and when authentication is successful, according to a user of the communication device or at a position where the communication device or the authentication device exists. And a display control unit that changes information to be displayed on the display unit of the communication device.

  In this way, the communication device or its user can be specified by the authentication process, and the information to be displayed on the communication device can be changed according to the position of the communication device or the user and can be provided securely. Become.

  Further, the authentication apparatus and the authentication server connected to the communication apparatus via the communication network are further provided, and one of the communication apparatus and the authentication apparatus and the authentication server are each based on the same rule, and each is a one-time password. One device divides the generated one-time password, broadcasts a part of the one-time password, and receives communication from the other device among the communication device and the authentication device according to the broadcast. The remaining part of the one-time password is transmitted to the other apparatus by wireless communication, and the other apparatus combines the received one-time password and transmits the combined one-time password to the authentication server. Authentication may be performed using the time password and the received one-time password. By performing the authentication process between the communication apparatus, the authentication apparatus, and the authentication server, the authentication process can be performed without performing connection setting or the like in advance between the user apparatus and the authentication apparatus. In addition, it is possible to improve the safety against eavesdropping by dividing the one-time password and sending and receiving, and depending on the communication standard, the payload capacity for storing the one-time password may be insufficient, By splitting and transmitting, all one-time passwords can be transmitted. That is, it is possible to provide a secure authentication service while reducing the effort required for preparation for use.

  The one-time password is generated based on the challenge-response method, and the authentication server sends a challenge to one device, receives a response from the other device, and uses the challenge and response to authenticate using the challenge-response method. One device receives the challenge, generates a predetermined hash value using the challenge, divides the generated hash value and transmits it to the other device, and the other device divides into a plurality of devices. The received hash values may be combined and sent as a response to the authentication server. Specifically, such a configuration can be adopted using a challenge response method.

  The authentication server also includes a storage unit that stores user identification information for specifying a user of one device and device identification information for specifying one device in association with each other, and a communication network in the one device. If a predetermined hash value is calculated using a challenge processing unit that transmits a challenge via the device, the device identification information and the transmitted challenge, and a response is received from the other device in response to the challenge, it is included in the response And an authentication processing unit that acquires user identification information associated with the device identification information from the storage unit and transmits it to the other device when the calculated hash value matches the calculated hash value. May be. Also, one device broadcasts a part of the hash value by wireless communication using an authentication request unit that calculates a predetermined hash value using device identification information and a challenge, and from the other device in response to the broadcast. When the communication is received, a transmission control unit that transmits the remaining hash value to the other device by wireless communication may be provided. The other device combines the received hash values and sends a response processing unit to the authentication server as a response. When the user identification information is received from the authentication server, the other device is specified by the user identification information. And an authentication processing unit that performs an authentication process on the user. Specifically, such a configuration can be adopted for the communication device, the authentication device, and the authentication server.

Further, the wireless communication is communication by Bluetooth (registered trademark), and the transmission control unit broadcasts a part of the hash value by advertising, and when a scan request is received from the other device, the remaining part of the hash value by the scan response May be transmitted. In this way, authentication processing necessary for authentication can be performed between the user device and the authentication device without performing connection such as pairing in advance.

  The information displayed on the display unit of the communication device may include the name of electronic money or may include a software operation menu.

  An authentication server according to another aspect of the present invention is connected to a communication device and an authentication device that perform wireless communication with each other via a communication network. In addition, the authentication server divides the hash value generated by using the challenge by the challenge processing unit that transmits the challenge to one of the communication device and the authentication device, and broadcasts a part of the hash value. In addition, when one device receives communication from the other device of the communication device and the authentication device, one device transmits the remaining hash value to the other device by wireless communication, and the other device. The response including the hash value generated by combining the part and the rest is received from the other device, and using the challenge response method using the received hash value and the hash value generated by itself using the challenge Depending on the user of the communication device or the communication device or authentication device Depending on the position of standing, and a service providing unit for transmitting information for changing the information displayed on the display unit of the communication device.

According to such an authentication server, it is possible to specify the communication device or the user by the authentication processing, change information to be displayed on the communication device according to the position of the communication device or the user, and securely provide the information. become able to.

  The contents described in the means for solving the problems can be combined as much as possible without departing from the problems and technical ideas of the present invention. The contents of the means for solving the problems can be provided as a device such as a computer or a system including a plurality of devices, a method executed by the computer, or a program executed by the computer. A recording medium that holds the program may be provided.

  Information according to the position of the mobile device or the user can be securely provided.

It is a figure which shows an example of the whole system. It is a block diagram which shows an example of a structure of a communication apparatus, an authentication server, and an authentication apparatus. It is a processing flowchart which shows an example of a display change process. It is a figure which shows an example of the information memorize | stored in an authentication server previously by user registration. It is a figure which shows an example of the information which concerns on the combination of a service and the positional information which the said service can utilize. It is an example of the information displayed. It is another example of the information displayed. It is another example of the information displayed. It is another example of the information displayed. It is a processing flowchart which shows an example of an authentication process. It is a schematic diagram for demonstrating calculation of a hash value. It is a figure which shows an example of the information memorize | stored temporarily in an authentication server. It is a figure which shows the structure of a Bluetooth packet. It is a figure which shows the structure of PDU of Bluetooth advertising. It is a figure which shows the structure of PDU of a scan request. It is a processing flowchart which shows an example of an authentication process. It is a figure which shows the structure of PDU of a scan response.

  Hereinafter, embodiments for carrying out the present invention will be described with reference to the drawings.

<System configuration>
FIG. 1 is a diagram illustrating an example of the entire system according to the embodiment. The system includes a communication device 1, an authentication server 2, and an authentication device 3, which are connected via a network (communication network) 4. The network 4 is a communication network such as the Internet, and computers connected to the network 4 can communicate with each other based on various protocols. Further, the communication device 1 and the authentication device 3 can directly communicate using a wireless communication technology such as Bluetooth (registered trademark). The communication device 1 changes information displayed on the own device according to at least one of the position of the own device and the user of the own device.

The communication device 1 is a general computer such as a smartphone, a tablet, or a PC (Personal Computer), and by executing a program (also referred to as software or application) according to the present embodiment, the authentication server 2 and the authentication device 3. In cooperation with, a process of changing information displayed on the display unit included in the own apparatus is performed. The communication device 1 communicates with the authentication server 2 using, for example, a mobile communication network or the like, and directly communicates with the authentication device 3 existing in a radio wave reachable range (also referred to as “communicable range”). I do. A plurality of communication devices 1 may be connected to the network 4.

  The authentication server 2 is a general computer, and performs processing in cooperation with the communication device 1 and the authentication device 3 by executing a program according to the present embodiment. The authentication server 2 communicates with the communication device 1 and the authentication device 3 via a communication network such as the Internet. One authentication server 2 may be used, or a plurality of authentication servers 2 may share processing to be described later, or may execute processing in parallel.

  The authentication device 3 is a device that performs an authentication process with a built-in microcontroller, for example. The authentication device 3 performs wireless communication with the communication device 1 existing in a communicable area, and also communicates with the authentication server 2 via a communication network such as the Internet connected by wire or wirelessly. In addition, processing is performed in cooperation with the authentication server 2. A plurality of authentication devices 3 may also be connected to the network 4.

  The communication device 1 is authenticated by the authentication server 2 via the authentication device 3, and the authentication device 3 can specify the authenticated user. Further, the position where the communication device 1 exists can be specified using a GPS receiver (not shown) provided in the communication device 1 or based on the identification information of the authentication device 3 communicating with the communication device 1. Good. And the communication apparatus 1 changes the information displayed on an own apparatus according to at least any one of the position of an own apparatus, and the user of an own apparatus.

<Device configuration>
FIG. 2 is a block diagram illustrating an exemplary configuration of the communication device 1, the authentication server 2, and the authentication device 3.

The communication device 1 includes an input / output interface (I / F) 11, a storage device 12, a first communication interface (I / F) 131, a second communication I / F 132, a processor 14, and a bus 15. It has. The input / output I / F 11 is a user interface such as a touch panel, and includes an input device and an output device (for example, a display device). The storage device 12 includes a main storage device such as a RAM (Random Access Memory) and a ROM (Read Only Memory), and an auxiliary storage device (secondary storage) such as an HDD (Hard-disk Drive), an SSD (Solid State Drive), and a flash memory. Device). The main storage device temporarily stores a program read by the processor or secures a work area for the processor. The auxiliary storage device stores a program executed by the processor, a seed for generating a pseudo-random number shared with the authentication server 2, and the like. The first communication I / F 131 is a communication module that performs communication with, for example, a mobile phone base station or a wireless LAN (Local Area Network) access point, and performs communication based on a predetermined protocol. The second communication I / F 132 is a communication module of a predetermined standard that performs inter-terminal communication within a range where radio waves reach directly, and performs communication based on a standard such as Bluetooth. The processor 14 is an arithmetic processing unit such as a CPU (Central Processing Unit), and performs each process according to the present embodiment by executing a program. In the example of FIG. 2, functional blocks are shown in the processor 14. Specifically, the processor 14 functions as an authentication processing unit 141, a transmission control unit 142, and a display control unit 143. The authentication processing unit 141 acquires a challenge from the authentication server 2 and calculates a hash value based on a predetermined calculation method using a predetermined seed for generating the acquired challenge and a pseudo-random number. In addition, the transmission control unit 142 transmits the hash value to the authentication device 3 in a plurality of times. The display control unit 143 changes information displayed on the input / output I / F 11 when authentication is successful. The components as described above are connected via the bus 15.

The authentication server 2 includes an input / output I / F 21, a storage device 22, a communication I / F 23, a processor 24, and a bus 25. The input / output I / F 21 is a user interface such as a keyboard, a mouse, or a display. The storage device 22 is a main storage device such as a RAM or a ROM, and an auxiliary storage device such as an HDD, an SSD, or a flash memory. The main storage device temporarily stores a program read by the processor or secures a work area for the processor. The auxiliary storage device stores a program executed by the processor, user information stored in advance when a user performs user registration, a seed for generating a pseudo-random number shared with the communication device 1, and the like. The communication I / F 23 is a wired network card, for example, and performs communication based on a predetermined protocol. The processor 24 is an arithmetic processing unit such as a CPU, and performs each process according to the present embodiment by executing a program. As illustrated in FIG. 2, the processor 24 functions as a challenge processing unit 241, an authentication processing unit 242, and a service providing unit 243. When the challenge processing unit 241 receives a challenge request in the so-called challenge response method from the communication device 1, the challenge processing unit 241 generates a challenge by a predetermined generation method such as random. In addition, the authentication processing unit 242 calculates a hash value based on a predetermined one-way function using the challenge generated by the challenge processing unit 241 and a predetermined seed. The hash value is stored in the storage device 22 in association with information for identifying the user of the communication device 1 that has transmitted the challenge. Further, when the authentication processing unit 242 receives a user inquiry including a hash value from the authentication device 3, the authentication processing unit 242 performs authentication based on whether or not the matching hash value is stored in the storage device 22, and the matching hash value Is present, the user is identified based on the user identification information associated with the hash value, and the identified user information is transmitted to the authentication device 3. The service providing unit 243 provides a service to the authenticated communication device 1 according to at least one of the position of the communication device 1 and the user. The components as described above are connected via the bus 25.

The authentication device 3 includes an input / output I / F 31, a storage device 32, a first communication I / F 331, a second communication I / F 332, a processor 34, and a signal line 35. The input / output I / F 31 is a liquid crystal display, an LED (Light Emitting Diode), a speaker, or the like, and notifies the user that payment has been completed, for example, by display, light, sound, or the like. The storage device 22 is a memory that is a storage area of a so-called microcontroller. The storage device 22 stores a program executed by the processor, and temporarily stores data transmitted to and received from the communication device 1 and the authentication server 2. The first communication I / F 331 is a communication module that performs communication with, for example, a mobile phone base station or a wireless LAN (Local Area Network) access point, and performs communication based on a predetermined protocol. The second communication I / F 332 is a communication module of a predetermined standard that performs communication between terminals within a range where radio waves reach directly, and performs communication based on a standard such as Bluetooth. The processor 34 is an arithmetic processing unit such as a microcontroller, and performs each process according to the present embodiment by executing a program. As shown in FIG. 2, the processor 34 functions as a response processing unit 341 and an authentication processing unit 342. The response processing unit 341 receives the hash value from the communication device 1 multiple times and transmits a response to the authentication server 2. Further, the authentication processing unit 342 notifies the user of the communication device 1 authenticated by the authentication server 2 of the completion of authentication via the input / output I / F 31. The above components are connected via a signal line 35.

<Display change processing>
FIG. 3 is a process flowchart showing an example of the display change process executed in the present system. When the communication device 1 comes close to a radio wave reach based on a predetermined wireless communication method from the authentication device 3, the communication device 1 executes a predetermined authentication process (FIG. 3: S1). In this step, the authentication processing unit 141 and the transmission control unit 142 of the communication device 1 perform authentication processing in cooperation with the authentication server 2 and the authentication device 3. Details of the authentication process will be described later. It is assumed that the user who owns the communication device 1 has previously performed setting registration for using this system. In advance setting registration, identification information for specifying the communication device 1 is registered in association with user information.

FIG. 4 is a diagram illustrating an example of information stored in the storage device 22 of the authentication server 2 in advance by user registration. FIG. 4 shows attributes of the table, and includes “user ID”, “user information”, “BD (Bluetooth Device) address”, “seed”, and “use service ID”. In the “user ID” field, identification information for identifying a user who uses the system according to the present mobile phone is registered. The “user information” field is information relating to the user, and includes personal information such as the name of the user and information on a credit card used for payment. The “BD address” field is an example of information for specifying the communication device 1 and is a BD address (identification information of a device that performs communication according to the Bluetooth standard).
Public address) is registered. A plurality of BD addresses may be registered for one user ID. Instead of the BD address or in addition to the BD address, for example, a UUID or the like in Bluetooth SDP (Service Discovery Protocol) may be stored. In the “seed” field, a seed used for calculating a hash value by a predetermined one-way function is registered. It is assumed that the same seed is also stored in advance in the storage device 12 of the communication device 1. In addition, in the “service ID” field, identification information of a service used by the user of the communication device 1 such as electronic money and information providing service that can be used in this system is registered. Here, the electronic money may be a local currency, a point program (point service), a virtual currency, or the like, and a plurality of types of electronic money may be used. Further, the information providing service is a service in which local governments, stores, and the like transmit information, and a plurality of information providing services may be used. Note that the table shown in FIG. 4 is an example, and can be implemented by normalizing or denormalizing an arbitrary data structure.

  When the communication apparatus 1 is authenticated as a user terminal of this system, the display control unit 143 of the communication apparatus 1 determines whether there is a display according to the user or the position (FIG. 3: S2). For example, in the authentication process, a service registered in advance in the authentication server 2 and used by the user of the communication device 1 may be received. That is, in the authentication process, for example, the authentication server 2 may specify a service that can be used based on the position of the communication device 1 and transmit the service to the communication device 1. You may make it transmit the service judged to be usable based on the combination with information.

  FIG. 5 is a diagram illustrating an example of information related to a combination of a service and position information that can be used by the service, which is stored in the storage device 22 of the authentication server 2, for example. FIG. 5 shows attributes of the table, and includes “service ID” and “location information”. In the “service ID” field, service identification information that can be provided by the present system is registered. Information indicating a location where the service is provided is registered in the “location information” field.

  The information indicating the location may be represented by, for example, latitude and longitude, or may be represented by a regional mesh (standard regional mesh or divided regional mesh). Further, the information indicating the location may be represented by identification information of the authentication device 3. For example, based on the identification information of the authentication device 3 installed in a predetermined store or transportation facility, the communication device 1 in the vicinity of the communicable area with the authentication device 3 is present in the predetermined store or transportation facility. To be judged. At this time, the authentication device 3 may be installed on a train, a bus, a taxi, or the like to move.

  In S2 of FIG. 3, for example, when there is a service used by a user of the authenticated communication apparatus 1 or a service that can be provided at a position where the communication apparatus 1 exists, a display corresponding to the user or the position is displayed. It is judged that there is.

When it is determined that there is a display corresponding to the user or position (S2: YES), the display control unit 1
43 displays information corresponding to the user or position on the display unit of the device (FIG. 3: S3). For example, when there is electronic money that is used by a user of the communication device 1 and can be used in a store where the communication device 1 exists, the name of the electronic money may be displayed. Moreover, when the communication apparatus 1 exists in the vicinity of a station or a bus stop, you may make it display the guidance menu regarding a timetable or transfer. Further, some recommended information to be provided to the user of the communication apparatus 1 that has been successfully authenticated may be displayed.

  FIG. 6 is an example of information displayed on the input / output I / F 11 of the communication device 1. For example, the service providing unit 243 of the authentication server 2 provides such information to the communication device 1 via the network 4. In FIG. 6, information for making a payment is displayed on the display unit of the touch panel which is an example of the input / output I / F 11. In the example of FIG. 6, information 111 related to the current location, information 112 related to the payment method, information 113 related to the details of payment, and an amount input unit 114 are displayed on the input / output I / F 11. In this example, when the communication device 1 performs wireless communication with the authentication device 3 installed in the store B as a trigger, the authentication process of S1 is performed, and when the authentication is successful, the user of the communication device 1 uses it. It is assumed that “C money”, which is electronic money that can be used at the B store, is specified in S2 as information to be displayed, and information as shown in FIG. 6 is displayed in S3. Further, the displayed electronic money can be used for further settlement processing. The settlement amount may be input on the authentication device 3 side or may be input on the communication device 1 side. In addition, when there are a plurality of electronic money that can be used, the user may be allowed to select.

  FIG. 7 is another example of information displayed on the input / output I / F 11 of the communication device 1. Also in FIG. 7, information 111 related to the current location, information 112 related to the payment method, information 113 related to the details of payment, and an amount input unit 114 are displayed on the input / output I / F 11. For example, when the communication device 1 performs the wireless communication with the authentication device 3 installed in the D taxi, the authentication process of S1 is performed, and the user of the communication device 1 uses when the authentication is successful. In addition, it is assumed that “E coin”, which is electronic money that can be used in the D taxi, is specified as information to be displayed in S2, and information as shown in FIG. 7 is displayed in S3.

  The electronic money may be the same as an entity, and only the displayed name may be changed. For example, for electronic money with the same charged amount or withdrawn account, only the electronic local currency name may be changed depending on the region used.

  FIG. 8 is another example of information displayed on the input / output I / F 11 of the communication apparatus 1. Specifically, in FIG. 8, information 111 regarding the current location, a selection menu 115 of the entity that provides the information, a character 116 that represents the entity that provides the selected information, a character 117 that represents the user of the communication device 1, the user's A speech option 118 is displayed on the input / output I / F 11. For example, when the communication device 1 performs wireless communication with the authentication device 3 installed at the bus stop in front of the office as a trigger, the authentication processing of S1 is performed, and when the authentication is successful, the information providing service of the transportation facility is It is assumed that the information to be displayed is specified in S2, and the information as shown in FIG. 8 is displayed in S3. Note that another information providing service may be displayed when the user leaves the bus stop.

FIG. 9 is another example of information displayed on the input / output I / F 11 of the communication apparatus 1. In this example, when the communication device 1 performs wireless communication with the authentication device 3 installed in the office, the authentication process of S1 is performed, and when the authentication is successful, the information providing service of the transportation facility is It is assumed that the information to be displayed is specified in S2, and the information as shown in FIG. 8 is displayed in S3. When the user leaves the bus stop, another information providing service can be displayed. Further, when the user selects another character from the selection menu 115 of the subject that provides information, the information provided by the selected character may be displayed regardless of the position where the communication device 1 exists. .

<Authentication process>
FIG. 10 is a process flow diagram showing an example of the authentication process executed in S1 of FIG.

  When the authentication processing unit 141 of the communication device 1 starts the authentication process, it first requests the authentication server 2 to transmit a challenge via the first communication I / F 131 and the network 4 (FIG. 10: S11). On the other hand, when the communication I / F 23 of the authentication server 2 receives a challenge request via the network 4, the challenge processing unit 241 of the authentication server 2 generates a challenge (FIG. 10: S12). The challenge is, for example, a character string of a predetermined size that is randomly generated. In addition, you may utilize the seed and UUID shown in FIG. 4 for the production | generation of a challenge.

  Then, the challenge processing unit 241 transmits the challenge generated via the communication I / F 23 and the network 4 to the communication device 1 (FIG. 10: S13). On the other hand, when the first communication I / F 131 of the communication device 1 receives the challenge, the first communication I / F 131 stores the challenge in the storage device 12 (FIG. 10: S14).

  And the authentication process part 141 of the communication apparatus 1 calculates a hash value using the received challenge (FIG. 10: S15). The hash value is calculated using a predetermined one-way function. For example, MD5 or SHA2 can be used. Note that these one-way functions may be repeatedly applied. The hash value may be calculated using a BD address or a seed shared by the authentication server 2 and the communication device 1 in addition to the challenge.

  FIG. 11 is a schematic diagram for explaining the calculated hash value. In this embodiment, as shown in FIG. 11, for example, a hash value is calculated from a character string obtained by concatenating a BD address, a challenge, and a seed by a predetermined hash function.

  On the other hand, the authentication processing unit 242 of the authentication server 2 also calculates a hash value similar to S15 independently of the communication device 1 (FIG. 10: S16). That is, after S14, the authentication processing unit 342 uses the BD address of the communication device 1 that transmitted the challenge, the transmitted challenge, and the seed shared with the communication device 1, and a hash value based on a predetermined hash function. Is calculated. The calculated cache value is stored in the storage device 32 in association with the user ID, for example.

  FIG. 12 is a diagram illustrating an example of information temporarily stored in the storage device 22 of the authentication server 2. FIG. 12 shows the attributes of the table, and includes “user ID” and “hash value”. Identification information for identifying a user is registered in the “user ID” field. Note that the record and information in the table shown in FIG. 4 can be associated with each other via the user ID. The calculated hash value is stored in the “hash value” field. The authentication server 2 temporarily holds information as shown in FIG. 12 for a predetermined period.

Further, the transmission control unit 142 of the communication device 1 transmits a part of the hash value calculated in S5 to the authentication device 3 (FIG. 10: S17). In this step, the communication device 1 and the authentication device 3 perform direct wireless communication. The communication method is not particularly limited. For example, Bluetooth, Wi-Fi (registered trademark), other inter-terminal communication, or the like can be used. In this embodiment, Bluetooth
Communication shall be performed according to the above. In this step, the first half of the hash value such as the MD5 checksum is broadcast by Bluetooth advertising. If it is advertising, it can communicate with the authentication apparatus 3 without performing pairing etc. In addition, since only a part of the hash value is transmitted in this step, even if a packet is received by a third party, the entire hash value is not known. Depending on the hash function, it may not be able to be stored in the advertising payload, and when additional information such as user information is transmitted, it may not fit in the payload. The whole hash value can be transmitted by dividing and transmitting the value.

  FIG. 13 is a diagram illustrating a configuration of a Bluetooth packet. The Bluetooth packet includes a preamble (Preamble: for example, 1 octet), an access address (Access Address: for example, 4 octets), a PDU (Protocol Data Unit: for example, 2 to 38 octets), and a CRC (Cyclic Redundancy Check: for example, 3 octets). Including.

FIG. 14 is a diagram illustrating a configuration of a Bluetooth advertising PDU. The advertising packet includes a header (Header: for example, 16 bits) and a payload (Payload: for example, 0 to 37 octets). The payload includes a packet source address (AdvA) 6 octets and data (AdvData) 0 to 31 octets.
The source address is a BD address, for example, and may include a flag indicating whether the address is a public address or a random address. Further, for example, the first half of the hash value calculated in S15 is stored in the payload. A flag indicating whether the first half or the second half of the hash value may be further stored. In addition, an address indicating advertising (broadcast) is registered in the access address illustrated in FIG. 13, and the packet can be received by a Bluetooth device existing within a range where the radio wave from the authentication device 3 reaches.

On the other hand, when the second communication I / F 332 of the authentication device 3 receives a part of the hash, the response processing unit 341 of the authentication device 3 holds the received hash in the storage device 32 (FIG. 10: S18). Then, the response processing unit 341 requests the remaining part of the hash from the communication device 1 (FIG. 10: S19). When communicating by Bluetooth, in this step, for example, a request can be transmitted using a scan request.

FIG. 15 is a diagram illustrating a configuration of a PDU of a scan request. The packet of the scan request includes a transmission source address (ScanA: for example, 6 octets) and a destination address (AdvA) of 6 octets. In the case of a scan request, the access address shown in FIG. 13 is registered with the address of the communication device 1 that is the above-mentioned advertising transmission source, and the scan request is a communication between the authentication device 3 and the communication device 1. It becomes.

On the other hand, when the second communication I / F 132 of the communication device 1 receives the request for the remaining hash value (FIG. 10: S20), the second communication I / F 132 transitions to the processing flow diagram of FIG. 16 and transmits the remaining hash value (FIG. 10). 16: S21). FIG. 16 is a process flowchart illustrating an example of the authentication process. When communicating by Bluetooth, in this step, for example, the second half of the hash value is transmitted using a scan response that is a response to the scan request.

  FIG. 17 is a diagram illustrating a configuration of a PDU of a scan response. The scan response includes a packet transmission source address (AdvA: for example, 6 octets) and response data (Scan Response Data) 0 to 31 octets. Then, the second half of the hash value can be stored in the response data. Note that the access address of the scan request described above is registered in the access address shown in FIG. 13 and is received by the authentication device 3.

When the second communication I / F 332 of the authentication device 3 receives the scan response (FIG. 16: S22), the authentication processing unit 342 of the authentication device 3 combines the data received by dividing from the communication device 1. Then, the hash value is restored, and an authentication process is requested to the authentication server 2 via the first communication I / F 331 and the network 4 (FIG. 16: S23). In this step, the authentication processing unit 342 combines the first half and the second half of the hash values received in S18 and S22, and requests authentication processing from the authentication server 2 via the Internet, for example.

  On the other hand, when the communication I / F 23 of the authentication server 2 receives the request for the authentication process (FIG. 16: S24), the authentication processing unit 242 of the authentication server 2 responds to the user ID associated with the received hash value. An authentication process is performed (FIG. 16: S25). In this step, the authentication processing unit 242 searches whether the received hash value is held in the table shown in FIG. When the hash value is stored in the table, the user ID associated with the found hash value is authenticated. Specifically, the user information held in association with the same user ID is extracted from the table shown in FIG. 4, and if it can be extracted, it is determined that the authentication process is successful. If the hash value received in S24 is not held in the storage device 22, it is assumed that the authentication process has failed.

  Thereafter, the authentication processing unit 242 transmits information indicating the processing result to the authentication device 3 via the communication I / F 23 and the network 4 (FIG. 16: S26). In this step, for example, information indicating whether or not the authentication process for the communication device 1 has been successful is transmitted. Further, for example, the user name extracted from the table shown in FIG. 4 may be included, or the use service ID held in association with the user ID in the table of FIG. Information regarding the service indicated by the ID may be transmitted. For example, information relating to electronic money that can be used by the user, information providing service, and the like is transmitted as the use service. On the other hand, when the hash value received in S24 is not held in the storage device 22, information indicating that the authentication process could not be executed is transmitted.

  On the other hand, the first communication I / F 331 of the authentication device 3 receives information indicating the processing result (FIG. 16: S27), and proceeds to the processing of S2 in FIG.

  Note that the hash value calculated by the authentication server 2 in S16 of FIG. 10 is deleted, for example, after a predetermined time has elapsed, and thereafter the authentication process is not performed. Similarly, the communication device 1 also deletes the hash value calculated in S <b> 16 of FIG. 10 after a predetermined period has elapsed or when a predetermined Remote Push Notification is received from the authentication server 2.

According to such an authentication process, the user can execute the authentication process without performing communication settings such as pairing between the communication apparatus 1 and the authentication apparatus 3 only by performing user registration in advance. it can. In addition, by using a one-time password such as a challenge response method, the hash value is divided, and at least a part of the hash value is not broadcast, and is passed by communication between the communication device 1 and the authentication device 3, Improves safety against eavesdropping. In addition, not only reducing power consumption but also improving safety against eavesdropping of packets by limiting the radio wave arrival range in terminal-to-terminal communication between the communication device 1 and the authentication device 3 to an appropriate distance. Can do. At the same time, when the hash value is transmitted by Bluetooth advertising, the payload capacity may be insufficient. However, the hash value can be transmitted by dividing and transmitting. As described above, secure wireless communication can be realized by a method that requires relatively little effort for prior setting. Information to be displayed on the communication device 1 using such wireless communication can be changed securely according to the position of the communication device or its user and can be provided securely.

<Modification of authentication process>
In the above-described embodiment, short-distance communication between terminals is performed using Bluetooth, but standards other than Bluetooth can also be used. For example, a standard such as Wi-Fi may be used. When using Wi-Fi, for example, in S17 of FIG. 10, the communication device 1 may transmit the first half of the hash value to the authentication device 3 using SSID broadcast. Then, in S19, the authentication device 3 requests the communication device 1 for the second half of the hash value based on the unique protocol according to this modification using Wi-Fi. In S21 of FIG. The second half of the hash value may be transmitted to the authentication device 3 based on a unique protocol according to this modification using Fi. In S19, the authentication device 3 requests the communication device 1 for the second half of the hash value based on the unique protocol according to this modification using the Internet line. In S21 in FIG. 16, the communication device 1 connects the Internet line. The second half of the hash value may be transmitted to the authentication device 3 based on the unique protocol according to the modified example used. By doing so, communication between the communication device 1 and the authentication device 3 can be performed at a short distance between terminals or via the network 4 without setting connection to the so-called access point, and the system is used. Less time to do. Similarly, wireless LAN ad hoc communication or other terminal-to-terminal communication may be used.

  In the above-described embodiment, authentication is performed using the challenge-response method, but other one-time passwords may be used. For example, a time synchronization method (time stamp method) can be used. In this case, each of the communication device 1 and the authentication server 2 generates a password (corresponding to the hash value in the above-described embodiment) based on the time at a predetermined timing instead of transmitting and receiving the challenge in S11 to S14 of FIG. Authentication can be performed as in the above-described embodiment.

  Further, regarding the authentication process, the roles of the communication device 1 and the authentication device 3 in the above-described embodiment may be reversed. That is, in S14 of FIG. 10, the authentication device 3 receives a challenge from the authentication server 2, and in S15, the authentication device 3 is used for calculating a hash value together with a BD address and a seed held in advance. Then, in S17 of FIG. 10 to S22 of FIG. 16, the hash value is divided from the authentication device 3 and transmitted to the communication device 1, and in S23, the combined hash value is transmitted from the communication device 1 to the authentication server 2. In this case, in S25 of FIG. 16, the authentication server 2 cannot identify the user who owns the communication device 1 from the hash value. For example, the communication device 1 uses the authentication server 2 to identify the authentication device user. The person ID and the like are separately transmitted. Even in this case, it is possible to perform settlement based on the authentication process.

  The one-way function for calculating the hash value is not limited to MD5, and other hash functions such as SHA-2 may be used.

<Others>
The configuration of the above-described embodiment is an exemplification, and can be combined or changed as much as possible without departing from the subject and technical idea of the present invention. In addition, the communication device 1 acquires position information using a GPS receiver regardless of the authentication process, and the information output to the input / output I / F 11 of the communication device 1 is changed based on the position information. Also good.

  The present invention also includes a computer program that executes the above-described processing. Moreover, you may make it provide as a computer-readable recording medium which recorded the said program. The recording medium on which the program is recorded can be read and executed by a computer to perform the above-described processing.

Here, the computer-readable recording medium refers to a recording medium in which information such as data and programs is accumulated by electrical, magnetic, optical, mechanical, or chemical action and can be read from a computer. Examples of such a recording medium that can be removed from the computer include a flexible disk, a magneto-optical disk, an optical disk, a magnetic tape, and a memory card. In addition, examples of the recording medium fixed to the computer include a hard disk drive and a ROM.

1: Communication device 11: Input / output I / F
12: Storage device 131: First communication I / F
132: Second communication I / F
14: Processor 141: Authentication processing unit 142: Transmission control unit 143: Display control unit 2: Authentication server 21: Input / output I / F
22: Storage device 23: Communication I / F
24: Processor 241: Challenge processing unit 242: Authentication processing unit 243: Service providing unit 3: Authentication device 31: Input / output I / F
32: Storage device 331: First communication I / F
332: Second communication I / F
34: Processor 341: Response processing unit 342: Authentication processing unit 4: Network

Claims (9)

A display control system including a communication device and an authentication device that perform wireless communication with each other, and the authentication device and an authentication server connected to the communication device via a communication network ,
The communication device
An authentication processing unit that performs authentication processing with the authentication device;
A display control unit that changes information displayed on a display unit of the communication device according to a user of the communication device or a position where the communication device or the authentication device exists when authentication is successful; ,
Equipped with a,
One of the communication device and the authentication device and the authentication server each generate a one-time password based on the same rule,
The one device divides the generated one-time password, broadcasts a part of the one-time password, and receives communication from the other device of the communication device and the authentication device according to the broadcast. The remaining portion of the one-time password is transmitted to the other device through the wireless communication,
The other device combines the received one-time password and sends it to the authentication server,
The authentication server performs authentication using the one-time password generated by itself and the received one-time password.
Display control system. The one-time password is generated based on a challenge response method. The authentication server transmits a challenge to the one device, receives a response from the other device, and uses the challenge and the response to challenge the response. Authenticate by the method,
The one device receives the challenge, generates a predetermined hash value using the challenge, divides the generated hash value, and transmits the hash value to the other device,
The display control system according to claim 1 , wherein the other device combines the hash values received separately and transmits the hash value as the response to the authentication server. The authentication server is
A storage unit for storing user identification information for identifying a user of the one device and device identification information for identifying the one device;
A challenge processing unit that transmits the challenge to the one device via the communication network;
A predetermined hash value is calculated using the device identification information and the transmitted challenge, and when the response is received from the other device in response to the challenge, the hash value included in the response is calculated. An authentication processing unit that acquires the user identification information associated with the device identification information from the storage unit and transmits it to the other device when a hash value matches,
With
The one device is
An authentication requesting unit that calculates a predetermined hash value using the device identification information and the challenge;
A part of the hash value is broadcast by the wireless communication, and when the communication from the other device is received in response to the broadcast, the remaining portion of the hash value is transmitted to the other device by the wireless communication. A transmission control unit,
With
The other device is
A response processing unit that combines the received hash values and transmits the response to the authentication server;
When the user identification information is received from the authentication server, an authentication processing unit that performs an authentication process for the user specified by the user identification information;
The display control system according to claim 2 . The wireless communication is communication by Bluetooth (registered trademark),
The display control according to claim 3 , wherein the transmission control unit broadcasts a part of the hash value by advertising and transmits the remaining part of the hash value by a scan response when receiving a scan request from the other device. system. The display control system according to any one of claims 1 to 4 , wherein information displayed on a display unit of the communication device includes a name of electronic money. Information to be displayed on the display unit of the communication device, the display control system according to claim 1, any one of 5, including an operation menu of the software.   A communication device that performs wireless communication with an authentication device and is connected to an authentication server that is also connected to the authentication device via a communication network, via the communication network,
  An authentication processing unit that performs authentication processing with the authentication device;
  A display control unit that changes information displayed on a display unit of the communication device according to a user of the communication device or a position where the communication device or the authentication device exists when authentication is successful; ,
  With
  One of the communication device and the authentication device and the authentication server each generate a one-time password based on the same rule,
  The one device divides the generated one-time password, broadcasts a part of the one-time password, and receives communication from the other device of the communication device and the authentication device according to the broadcast. The remaining portion of the one-time password is transmitted to the other device through the wireless communication,
  The other device combines the received one-time password and sends it to the authentication server,
  The authentication server performs authentication using the one-time password generated by itself and the received one-time password.
  Communication device.   A communication device that performs wireless communication with an authentication device and is connected to an authentication server that is also connected to the authentication device via a communication network.
  Perform authentication processing with the authentication device,
  When the authentication is successful, the information displayed on the display unit of the communication device is changed according to the user of the communication device or according to the position where the communication device or the authentication device exists.
  A display control method,
  In the authentication process,
    One of the communication device and the authentication device and the authentication server each generate a one-time password based on the same rule,
    The one device divides the generated one-time password, broadcasts a part of the one-time password, and receives communication from the other device of the communication device and the authentication device according to the broadcast. The remaining portion of the one-time password is transmitted to the other device through the wireless communication,
    The other device combines the received one-time password and sends it to the authentication server,
    The authentication server performs authentication using the one-time password generated by itself and the received one-time password.
  Display control method.   In addition to performing wireless communication with the authentication device, the communication device connected to the authentication server that is also connected to the authentication device via the communication network via the communication network,
  Perform authentication processing with the authentication device,
  When authentication is successful, the information displayed on the display unit of the communication apparatus is changed according to the user of the communication apparatus or according to the position where the communication apparatus or the authentication apparatus exists.
  A display control program for executing processing,
  In the authentication process,
    One of the communication device and the authentication device and the authentication server each generate a one-time password based on the same rule,
    The one device divides the generated one-time password, broadcasts a part of the one-time password, and receives communication from the other device of the communication device and the authentication device according to the broadcast. The remaining portion of the one-time password is transmitted to the other device through the wireless communication,
    The other device combines the received one-time password and sends it to the authentication server,
    The authentication server performs authentication using the one-time password generated by itself and the received one-time password.
  Display control program.

Images