JP6783430B2 - Qualification authentication system using mobile terminals, qualification authentication tools, and qualification authentication methods - Google Patents

Description

The present invention relates to a qualification authentication system using a mobile terminal, a qualification authentication tool (apparatus), and a qualification authentication method, and in particular, a qualification authentication system capable of accurate authentication at any place without fixing the authentication place. And the authentication tool used for it, and its authentication method.

In the present invention, the "qualification" can be defined as the right or authority obtained by the person, and the "qualification" proves the qualification, for example, obtained by purchase, gift, transfer, etc. Tickets such as admission tickets, airline tickets, tickets, watching tickets, discount tickets, coupon tickets, invitation tickets, financial cards such as credit, debit, cash, or transportation cards such as commuter tickets It should be understood that the type may be tangible or intangible as long as it is possible to record and store qualification information such as print media, electronic media, magnetic media, etc.

Since such a qualification is an important identification card for the person himself / herself, various measures have been taken so as not to suffer damage due to theft or unauthorized use. As a typical example, a method of managing by ID and password is known. However, this ID and password have a drawback that anyone can easily use them illegally if they are known to others.

Therefore, as an authentication method that does not require a password, for example, as described in Patent Document 1, a specialized authentication body is set up, and a photograph of the person's face registered in advance on the mobile terminal of the store is taken from this certification body. A technology has also been proposed that allows you to transfer your identity and verify your identity at the store.

However, the authentication means used in this technology is merely focused on confirming the person himself / herself, such as his / her face photo, fingerprint information, or personal information. Therefore, even if the identity can be confirmed by a face photograph or the like, there is a drawback that it is not possible to detect at the store whether or not the qualification possessed by the person is stolen or illegally obtained.

On the other hand, as an authentication technology that does not require a qualification, for example, Patent Document 2 includes a technology that uses a smartphone to settle the purchase price of a product without presenting the qualification (here, a credit card) or carrying it around. It is disclosed. According to this, it is possible to avoid forgery and unauthorized acquisition of the qualification, but on the contrary, there is a contradictory drawback that the ID and password are forced to be used for identity verification (described in paragraph number 0042 described later). See).

That is, even if the password for personal authentication is lost by the technique of Patent Document 1, it is meaningless to use the password as in Patent Document 2 for qualification confirmation. Moreover, since Patent Document 2 requires the use of a terminal (smartphone) owned by the purchaser for cardless payment, there is a drawback that the burden on the purchaser at the time of payment is heavy, and at the same time, the smartphone. There is also the problem that the risk of unauthorized use increases if the smartphone is lost or stolen.

It should be noted here that the authentication of the qualification includes the first authentication for determining whether the person to be authenticated is the person (personal authentication) and the second authentication for determining whether the qualification is valid (valid for the qualification). Gender certification), and in addition to these, the "three certification requirements" of the third certification (validity certification) to determine whether the qualification really belongs to the person to be authenticated are required. is there. In particular, without this third certification (validity certification), even if the person to be authenticated is correct and the qualifications he / she possesses are valid, the person to be authenticated is another person. If you have a valid credential, you will not be able to spot it.

In recent years, with the spread of communication networks and the progress of image processing technology, a face recognition system that photographs and authenticates the face of a person to be authenticated has attracted attention. The reference diagram shown in FIG. 2 is a typical configuration schematic diagram of the face recognition system. This system can be applied to, for example, a case where a customer (certified person) who has purchased a product makes a credit card payment at a sales floor.

The purchaser (certified person) 1 presents the qualification (credit card) 2 that he / she brought to the staff (certifier) 3 at the sales floor 8 at the time of card payment, and faces the camera 4 installed there. Take a picture of your face. The photographed face image and the credential information (card information) possessed by the purchaser are transferred to the server 7 on the cloud 6 connected to the communication network via the dedicated terminal device 5 installed in the store such as a personal computer. Sent and saved. The face image and card information stored in the server 7 are transferred to a certification body 10 (for example, a financial institution such as a credit card management company or a bank) located in a place 9 away from the sales floor, where the face image and card information are stored. Matching is done. In the collation process, the face information of the person to be authenticated 1 registered in advance in the certification body 10 and the card information (including credit information) are compared, and if both match, a notification of payment approval is sent from the certification body 10. It is transmitted to the terminal device 5 of the sales floor 8 and the card payment is completed.

By going through such a series of authentication procedures, the first authentication (personal authentication) for confirming the identity of the person is performed with the face image of the person to be authenticated taken by the camera, and whether the certificate is valid or not. The second certification (qualification validity certification) for determining whether or not the above can be performed by comparing the card information brought in with the card information registered in the certification body. Then, the third certification (validity certification) regarding whether or not the qualification brought in is that of the person to be certified who came to the sales floor is the name and date of birth of the face information registered in advance in the certification body 10. This is possible by collating the name and date of birth included in the card information. By adopting such face recognition technology, the purchaser does not have to enter a password or PIN at the time of payment. That is, face recognition replaces passwords and PINs.

However, in such an authentication system, there is a problem that the authentication procedure takes time because the collation process of the face image and the credential information must be performed by the authentication organization 10 away from the authentication place (sales floor) via the network. is there. In particular, there is a drawback that smooth procedures are hindered in places where congestion is expected. In addition, there is also a problem that certification requests from the sales floor are concentrated on the certification body 10. This means that access to the certification body 10 is concentrated, and if a large number of certification requests are made at the same time, there is a risk that the system may malfunction. For example, assuming that this system is used not as a sales floor but as an entrance management system for competition venues, a large number of spectators will concentrate on the designated entrance gate at the same time, resulting in excessive processing load on the network and servers. There is a risk of being unable to authenticate, which may hinder smooth admission guidance.

As a technique for reducing the load on the server, as described in Patent Document 3, a method of performing the authentication process at the terminal at the authentication site instead of the authentication organization has also been proposed. Patent Document 3 discloses an authentication system using face recognition in entry / exit management, in which face data of a person who is permitted to enter is collected from a server at a start time when entry is permitted. The technology for transferring data to the face recognition terminal device installed in the restricted admission area is described. Specifically, when a visitor brings his / her face close to the face recognition terminal device installed in the restricted area, the terminal device recognizes the face of the visitor, and the recognized face is sent to the face data. It searches in the terminal device to see if it is inside.

Japanese Unexamined Patent Publication No. 2004-38917 Japanese Unexamined Patent Publication No. 2015-12204 Japanese Unexamined Patent Publication No. 2015-198442

However, in the technique of Patent Document 3 described above, it is necessary to install a dedicated device called a face recognition terminal device in advance in the restricted admission area. Therefore, such a stationary dedicated device has a drawback that it cannot avoid congestion in a situation where a large number of people rush to the entrance gate at the same time, such as in a stadium or a concert venue. Furthermore, if a large number of dedicated terminal devices are installed to alleviate congestion, it is necessary to secure a considerably large authentication space in terms of area, and it cannot be said that it is a good measure in terms of operation and cost.

It should be noted that the problem of installing the dedicated equipment is a problem that is common to all of the above-mentioned conventional techniques, and is a major cause of delaying the spread of the face recognition system.

Therefore, a first object of the present invention is to provide an authentication system and an authentication method that can be used anywhere (the place is not fixed).

Furthermore, what is important in an authentication system that can be used anywhere is that the authentication tool used is easy to operate and easy to carry. However, the simplicity of operation sometimes limits the scope of authentication. For example, when face recognition is performed by a relatively small dedicated terminal device installed at a certification place instead of a certification body as in Patent Document 3, the target person who can be authenticated is limited to a predetermined specific person. There is a drawback that it is stored (see Patent Document 3, paragraph numbers 0010 and 0023). That is, the authentication technology of Patent Document 3 is nothing but the one that targets only the person who has the qualification given in advance by the authentication side, and is the "three authentication requirements" required for the authentication of the qualification described above. Of these, the technology focuses only on personal authentication (first authentication). In other words, the qualification in this authentication technology is not the qualification that the person to be authenticated has, but the qualification given by the authentication side. Therefore, it is not necessary to consider the validity judgment of the qualification (second certification) and the validity certification of whether or not the person to be certified is the legitimate owner of the qualification (third certification). Therefore, in the technique of Patent Document 3, the scope of authentication is limited to a predetermined specific person. As a result, there is a drawback that it is not suitable for authentication of an unspecified number of people. Furthermore, there is also the drawback that personal authentication alone is vulnerable to spoofing using a photograph of another person's face.

Therefore, the second object of the present invention is an authentication system using an authentication tool that is easy to operate and easy to carry, and has all the "three authentication requirements" required for authentication of qualification, and is an authentication target. It is to provide a qualification authentication system that does not limit the above, its authentication method, and an authentication tool used for it.

Recently, the standardization of online authentication technology that does not use a password is being promoted by using biometric information called "FIDO (Fast Identity Online)". However, the biometric information used instead of the password has a large amount of information, and the method of transferring it to the certification body using a network has a problem that the authentication takes time and a quick procedure cannot be performed.

Therefore, a third object of the present invention is to provide a qualification authentication system and a qualification authentication method that enable prompt authentication procedures.

By the way, there are two methods of qualification authentication, manned authentication and unmanned authentication. The former is a method in which a person such as an observer, an examiner, a clerk or a staff member intervenes as a certifier at the authentication place, and the latter is a method in which authentication is performed only by a machine without human intervention. Generally, in the case of manned authentication, although damage caused by spoofing using a photograph of another person's face can be prevented, there is a drawback that the burden on the certifier is heavy, and conversely, unmanned authentication has a drawback that there is a lot of damage caused by spoofing. .. That is, there is a big difference in the authentication method depending on whether the authentication place is manned or unmanned, and therefore, the authentication devices used are also used as individual devices. As a specific example, in manned authentication, presentation of an ID card and oral questions are frequently used, and in unmanned authentication, input of a secret number and password is used. As a result, the authentication device for manned authentication could not be used as the authentication device for unmanned authentication, and vice versa. In particular, when replacing manned authentication with unmanned authentication, it was necessary to procure a new authentication device, which was a heavy financial burden.

In view of this point, a fourth object of the present invention is to provide a qualification authentication tool that can be commonly used for both manned and unmanned authentication.

In order to achieve the above-mentioned object, each claim of the present invention has the following features.

The invention according to claim 1 relates to a qualification authentication system using a mobile terminal, and has a camera function and a communication function, and a portable authentication side mobile terminal and a network to the authentication side mobile terminal. It is a qualification authentication system including a server device that can be connected via the server device. Information on the qualification to be authenticated and face information of a legitimate holder of the qualification are registered in the server device, and the mobile terminal on the authentication side is registered. Sends from the server device, a receiving unit that receives information about the qualification and the face information from the server device via the network, a storage unit that stores the face image of the authenticated person taken by using the camera function, and the server device. It has a collation unit that collates the received face information and the captured face image in its own terminal, and as a result of the collation processing in the terminal, the face information and the face image match, and the above When it is determined that the information on the qualification is valid, the person to be authenticated is authenticated as a legitimate holder of the qualification, and the right to be granted by the qualification is given to the person to be authenticated. It is supposed to be.

Here, the "mobile terminal on the authentication side" is not a mobile terminal owned by the person to be authenticated, but a mobile terminal owned by the person performing the authentication, for example, a clerk, a clerk, or a supervisor at the authentication place. Or, it refers to a mobile terminal owned by a person on the authentication side, such as an examiner. In addition, a "portable mobile terminal" is not a terminal that is fixedly installed so that it cannot be moved to a fixed position at the authentication location, but a clerk or staff member on the authentication side, an observer, an examiner, etc. It means a small and lightweight terminal that can be worn and carried around freely, and refers to, for example, a mobile phone, a smartphone, a tablet, a wearable terminal, and the like. Furthermore, the "right granted by a qualification" is a right that a legitimate owner of a qualification can use with that qualification. For example, in the case of tickets, the right to enter if it is an admission ticket. , The right to watch the game if it is a watching ticket, the right to board if it is an airline ticket or a ticket, the right to purchase goods and services if it is a credit card or a debit card, if it is a transportation card For example, it refers to the right to be permitted to board or pass on a designated vehicle or a designated road.

In the invention according to claim 2, in the invention according to claim 1, the qualification holder authenticates the information regarding the qualification to be authenticated stored in the server device and the face information of the legitimate holder of the qualification. It is characterized in that it is information registered by itself before receiving, and these information are associated with each other, and both are transmitted as a pair to the authentication side mobile terminal.

In the invention according to claim 3, in the invention according to claim 2, the face image of the person to be authenticated taken by using the mobile terminal on the authentication side and the face information sent from the server device match. In this case, as long as the information regarding the qualification sent from the server device to the mobile terminal is valid, the right stipulated in the qualification is granted without asking the person to be authenticated to present the qualification. It is characterized by giving it to a person.

In the invention according to claim 4, in the invention according to claim 2, the face image of the person to be authenticated taken by using the mobile terminal on the authentication side and the face information sent from the server device match. In the case, when the authenticated person exercises the qualification given to the authenticated person by the information about the qualification, the consent information input unit for inputting the consent information indicating the consent for exercising the qualification to the mobile terminal on the authentication side is input to the mobile. The feature is that it is installed in the terminal.

The invention according to claim 5 is the invention according to claim 4, wherein the signature of the person to be authenticated, biometric information such as a voiceprint or fingerprint, or a combination thereof is input as confirmation information about the person to be authenticated. The mobile terminal on the authentication side has the unit.

The invention according to claim 6 relates to a qualification authentication tool used in a qualification authentication system, and the qualification authentication tool includes a mobile terminal attachment / detachment unit on which a mobile terminal can be attached and a qualification data input unit operated by a person to be authenticated. The mobile terminal is equipped with a qualification data transfer unit that transfers the qualification data input by the person to be authenticated to the mobile terminal while the mobile terminal is attached.

The invention according to claim 7 is the qualification authentication tool according to claim 6, wherein the qualification data input unit inputs a signature of the person to be authenticated, or a qualification possessed by the person to be authenticated. It is characterized by having a qualification information reading unit for reading the information of the above, or a combination thereof.

The invention according to claim 8 is characterized in that the qualification authentication tool according to claim 7 has a function of electrically, magnetically, or optically inputting the signature or the information of the qualification. ..

The invention according to claim 9 is a method for authenticating whether or not the person to be authenticated has the authority to have a legitimate qualification with respect to the qualification authentication method using a mobile terminal, and is information on a pre-registered qualification. And the first step of storing the face information of the legitimate holder of the qualification in a portable mobile terminal of the authentication side, and the face of the authenticated person at the authentication place and authentication time guided by the authentication side on the mobile terminal of the authentication side. The second step of taking a picture with the camera built in the terminal, the face information stored in the mobile terminal on the authentication side, and the face image of the authenticated person taken at the authentication place and the authentication time are described. It is characterized by having a third step of collating in the mobile terminal on the authentication side and a fourth step of determining whether or not the authenticated person has the authority to have the legitimate qualification based on the collation result. It provides a qualification authentication method using a mobile terminal.

In the invention according to claim 10, in the qualification authentication method according to claim 9, a qualification owner who has a legitimate qualification specifies information on the qualification and his / her face information before the first step. It is characterized by including a step of registering in the server device.

In the invention according to claim 11, in the qualification authentication method according to claim 9, the program for executing each of the first to fourth steps is certified by the qualification provider who provides the qualification to the qualification holder. It is characterized in that it is supplied to the mobile terminal on the side.

The invention according to claim 12 is used for collation in the third step after the mobile terminal on the authentication side finishes the determination process in the fourth step in the qualification authentication method according to claim 9. It is characterized by including an erasing step for erasing the face information and the face image.

In the present invention as described above, the effects described below can be obtained.

According to the qualification authentication system according to claim 1, first, a portable mobile terminal (for example, a mobile phone, a smartphone, a tablet, etc.) is used as a device for taking and authenticating a face image of a person to be authenticated. By using it, it is possible to perform authentication in any place without fixing the authentication place, so it is at the discretion of the authentication side without forming a long line in the place where the authentication device is installed as in the past. You can get the effect that you can find an empty space and deal with it freely. Furthermore, the certifier (clerk, clerk, etc.) can guide the person to be authenticated to an appropriate authentication place by holding only his / her own mobile terminal without holding a large equipment, so that the authentication side is not burdened. There is also an advantage. In addition, even if there are a large number of people to be authenticated, it is possible to create as many authentication locations as there are certifiers. Therefore, since it is not necessary to secure a large-scale authentication space and authentication equipment, it is possible to construct a low-cost and highly versatile authentication system.

Secondly, since the actual authentication is performed only in the mobile terminal on the authentication side, not in the server device, the face image of the authenticated person taken at the time of authentication is taken by an external server via the network. Since it is not necessary to send it to the device, there are advantages that the authentication time can be shortened and the authentication procedure can be speeded up. Furthermore, when performing many authentications within a fixed time, it is also necessary to avoid a situation in which authentication requests are concentrated on one server device (access concentration or load concentration). On the other hand, since the authentication method of the present invention is not a centralized authentication method but a distributed authentication method, these problems can be solved at the same time, which is great not only in terms of authentication procedure but also in terms of server protection and communication load countermeasures. It should be noted that the effect can be obtained.

In particular, regarding this "distributed authentication method", the certification bodies are not distributed, and one authentication is not distributed and executed, but the qualification holders who are collectively stored in the server device. It is a feature of the present invention that the mobile terminals scattered in each authentication place authenticate the information independently according to their own business. In other words, the main object of the present invention is the idea of distributing and entrusting the authentication, which has been conventionally performed by the certification body, to each mobile terminal. Further, it is an important effect obtained by the present invention that the concentration of access to the authentication server and the concentration of processing load can be avoided and the authentication time can be shortened. Furthermore, in the present invention, a DB server for registration is sufficient, and a certification body is not required.

Thirdly, what is permitted by the certification of the present invention is not the qualification of the qualification brought by the person to be certified, but the qualification of the qualification registered in advance by the qualification holder. That is, instead of certifying whether the qualifications (tickets and cards) brought by the certifier belong to the certifier, the qualification of the qualification holder registered on the server is given to the certifier. It is the certification of the present invention to determine whether or not it may be given. Therefore, the certification of the present invention is possible even if the person to be certified does not bring a qualification. In other words, in the present invention, the face of the person to be authenticated is used as a ticket or a card for authentication. As a result, the person to be authenticated can be authenticated only by his / her face without a qualification, so that he / she is freed from input operations such as a password and a password (unlike the drawbacks of the invention of Patent Document 2 described above). Not only that, it is possible to provide a qualification authentication system that does not stress the person to be authenticated, who does not have to worry about being prohibited from entering or watching games even if he / she forgets his / her qualification.

Next, according to the qualification authentication system according to claim 2, an unspecified number of people can be authenticated without being limited to a specific person. This was made possible by the qualification and face pre-registration requirements of the qualification holder and the pre-registered face and qualification paired authentication requirements. That is, instead of authenticating only by the face as in the technique described in Patent Document 3, the present invention authenticates the face and the qualification as a pair, so that the authentication target is limited to a specific person. There is no such thing.

In the qualification authentication system described in claim 3, the qualification holder pre-registers the qualification, not the qualification brought by the qualification holder, so that the qualification holder brings the qualification. Even if this is not the case, if the face of the qualification holder and the face of the certified person match, there is no problem in giving the certified person the qualification of the pre-registered qualification holder. Therefore, the certified person can qualify without a qualification. This means that the face of the person to be authenticated can be used as a substitute for a qualification such as a ticket or a card, and as a result, a qualification authentication system that does not stress the person to be authenticated as described above is provided. Will be understood to be possible.

In the qualification authentication system according to claim 4, the mobile terminal has a consent information input unit in which the person to be authenticated who has been authenticated qualifies agrees to exercise the qualification after obtaining the qualification. Therefore, by sending this consent information to the server device and storing it linked with the registration information of the qualification holder, it is possible to provide an authentication system suitable for log management and confirmation management.

Like the qualification authentication system described in claim 5, the mobile terminal is provided with a confirmation information input unit for inputting biometric information such as the signature of the person to be authenticated, voiceprint, fingerprint, etc. as confirmation information, so that a card or the like is used. Even in a payment system that requires strict management such as financial payment, it can be fully supported as a mobile payment system.

The invention according to claim 6 relates to an authentication tool suitable for the above-mentioned qualification authentication system.
In particular, it is a tool for attaching and detaching the mobile terminal on the authentication side in the above authentication system to perform authentication, and the authentication data by the person to be authenticated (handwritten signature, information printed on paper or card, or , Information embedded as an IC chip) related to a tool for transmitting to a mobile terminal. Since the mobile terminal is attached to the tool and transmitted to the terminal using a communication connector or short-range wireless communication method, such qualification data needs to be sent to a distant authentication server using a network. There is no. As a result, it has the effect of enabling prompt authentication procedures. As the data input unit, a card scanner, a barcode reader, a handwriting input reader, or the like can be used.

Further, by separating the qualification data input function and the mobile terminal from each other in this way, it becomes possible to apply to both manned authentication and unmanned authentication. For example, by installing this tool near the door of a hotel guest room, a mobile terminal lent by the guest from the hotel (at the time of check-in, the guest's facial recognition, the length of stay, breakfast availability, in-house facilities It can be used as a room key in front of a guest room where hotel employees are absent by attaching (registered credential information regarding permission to use the hotel) to this tool and performing face recognition. If a normal key is lost or stolen, it requires troublesome work such as replacing the guest room and replacing the door key, but this tool uses the guest's face instead of the key. Even if it is stolen, only the person can enter the room, so you can enjoy the hotel life safely and with peace of mind without any troublesome work. In addition, since the mobile terminal itself can support manned authentication, it has an excellent effect that it can be used at any authentication location regardless of whether it is manned or unmanned at low cost.

The authentication tool according to claims 7 and 8 can also obtain the same effect as described above more reliably and with higher reliability.

Each of the inventions according to claims 9 to 12 obtains the same effect as the effect obtained by the above-mentioned qualification authentication system with respect to a method for certifying whether or not the person to be authenticated has a legitimate authority over the qualification. It is clear that it can be done.

In particular, according to the authentication method according to claim 9, the authenticated person is authenticated in advance at a place guided by the authenticated side and using the mobile terminal of the authenticated side. It is not possible to know the authentication environment. Therefore, it is possible to authenticate the person to be authenticated in a highly reliable and safe environment without giving an opportunity for illegal acts, and it is possible to reliably prevent damage caused by fraudulent authentication such as spoofing. .. In addition, since the authentication can be determined on the spot without sending the face image of the person to be authenticated to the outside, it is possible to secure an extremely high level security environment without risk of information leakage. ..

Further, as in the method of claim 10, the qualification is like a ticket purchased for gifts by interposing a step of registering the information of the legitimate qualification holder in the server device designated by the authentication side. However, you will have the opportunity to register the user, not the purchaser of the ticket, as a legitimate qualification holder. As a result, the authentication target is not limited to the ticket purchaser, but can be widely applied to general users.

The authentication method according to claim 11 stipulates that the qualification provider (the person responsible for the operation of the qualification) supplies the authentication program to the mobile terminal on the authentication side. By doing so, it is possible to prevent the authentication program from being illegally installed and misused on the mobile terminal, so that the qualification holder can rest assured that his / her credential information will be sent to the server device specified by the qualification provider. And face information can be registered and authenticated. Moreover, since the registered information is not transmitted from the mobile terminal to the outside, the risk of information leakage can be avoided. Further, since the first to fourth processing steps executed by the authentication program can be commonly used regardless of the type of qualification, it can be applied to any qualification provider regardless of the type of industry. ..

According to the authentication method according to claim 12, after the verification process is completed in the mobile terminal, the qualification information and face information about the qualification holder used for the verification and the face image of the authenticated person taken by the camera are displayed on the terminal. By erasing from, it is possible to obtain the effect that the memory area in the terminal can be effectively used and the leakage of personal information can be surely prevented.

It is a functional block diagram which shows the whole of the qualification authentication system using the mobile terminal by this invention. It is a functional block diagram of the conventional face recognition system shown as a reference example. It is a functional block diagram for demonstrating the qualification authentication system using the distributed authentication system of this invention. It is a figure explaining the practical example of this invention, (A) is a figure which applied this invention to a manned authentication system, (B) is an unmanned authentication system, respectively. In the present invention, it is a flowchart which shows a specific example when a qualification holder registers his / her own information in a server. In the present invention, it is a flowchart which shows a specific example when a qualification holder registers his / her own information in a server. It is a figure which shows the relationship between the condition of the qualification authentication and the authentication result in the mobile terminal used in each Example of this invention. It is an internal function block diagram of the mobile terminal used in Example 1. FIG. It is a flowchart which shows the authentication procedure of Example 1. FIG. It is an internal function block diagram of the mobile terminal used in Example 2. FIG. It is a flowchart which shows the authentication procedure of Example 2. It is an internal function block diagram of the mobile terminal used in Example 3. FIG. It is a flowchart which shows the authentication procedure of Example 3. It is an external view of the qualification authentication tool used in the qualification authentication system of this invention. It is a flowchart which shows an example of the processing procedure at the time of carrying out this invention in an unmanned authentication place.

Hereinafter, embodiments of the present invention will be described with reference to the drawings.
(Overall configuration and authentication procedure of the qualification authentication system of the present invention)
The present invention functions effectively in the implementation environment as shown in FIG. FIG. 1 assumes a situation in which a facility user uses the facility in a facility that can be used only by a person who has a specified ticket.

The facility user pays for the ticket (qualification) necessary for use (T1) and purchases it at the ticket store (qualification provider) 11 (T2). The user who purchased the ticket takes a picture of his / her face with a mobile terminal having a camera function, and transmits the ticket number together with the ticket number to the server device 7 designated by the qualification provider 11 via a communication line (T3). The transmitted face information and ticket number (qualification) are stored as qualification holder information in the registration database (registration DB) of the server device. In this way, the ticket purchaser (facility user) is registered in the server device 7 as the qualified user 1. The process of transmitting the user's face image and the ticket number to the server device 7 can be performed by, for example, the ticket store (qualification provider) 11 on behalf of the user, even if he / she is not the user himself / herself (T4).

The qualification holder information stored in the registration DB 7 is transferred to the mobile terminal 13 of the staff of the qualification use facility 12 (T5). Here, the mobile terminal 13 used is owned by the facility 12 and given to the staff and guides of the facility for business use, and includes, for example, a camera function and a communication function of a mobile phone, a smartphone, a tablet, etc. Any terminal that can be carried by a staff member or a guide can be carried (or worn) by hand.

The facility user (qualified user) 1 applies for use at the facility 12 (T6). In such an environment, the place where the facility 12 exists is defined as the qualification certification place 8 of the present invention. More specifically, the point where the user 1 stands in front of the staff in order to apply for the use of the facility is the actual authentication place. At that point, the clerk photographs the face of the user 1 with the mobile terminal 13 and authenticates whether or not the user 1 in front of him has a legitimate qualification to use the ticket. It should be noted that this authentication is not an authentication of whether or not the user who has the ticket is the person himself / herself, but whether or not the user who came to the application has a legitimate qualification to use the ticket provided at the ticket store 11. Pay particular attention to the certification.

Although a detailed explanation will be described later, all of this authentication process is performed in the mobile terminal of the staff member, and the photographed user's face image is not transmitted from this terminal to the outside. That is, the equipment required for authentication is only the mobile terminal owned by the staff. Therefore, unlike the conventional authentication system shown in FIG. 2, it is not necessary to require a dedicated fixed camera 4 or terminal device 5, and it is also necessary to fix only the place where those devices are installed as the authentication place. There is no. As a result, it can be freely used as an authentication place wherever there is an empty space without preparing expensive authentication equipment or securing a dedicated authentication space. Furthermore, even if many users are concentrated, the authentication location will not be crowded, and the stress of waiting in line to apply for use will be released.

(Explanation of Distributed Authentication in the Present Invention)
FIG. 3 is a system block diagram of an authentication system in which a plurality of authentication operations (P1 to Pn) are performed at different locations (8-1 to 8-n). The certification body 9 has a registration DB server 7 in which collation information used in authentication is stored. When authentication is performed at each authentication location, conventionally, an authentication request (R1 to Rn) is transmitted from each authentication location to the certification body 9 as shown by a broken line arrow. Taking face recognition as an example, the face information of the person to be authenticated taken by the camera is sent from each authentication place to the certification body 9 together with the certification request. The certification body 9 sequentially collates the sent face information of the person to be authenticated with the face information stored in the registration DB server 7, and if a matching face information is found, the authentication result (A1 to A1 to) An) is returned to the terminal device (5 in FIG. 2) installed at each authentication location. In such a conventional authentication method, it can be understood that all the collation processing (face matching processing) for authentication is executed by the authentication organization 9.

On the other hand, in the authentication method of the present invention, contrary to the conventional case, the registered face information for matching (matching) stored in the registration DB server 7 and the qualification information (D1 to Dn) associated with the registered face information are used. Is sent to each authentication location. The sent registered face information and credential information are transferred to the mobile terminal (13 in FIG. 1) of the staff at each authentication location (8-1 to 8-n), and collation processing is performed in this mobile terminal. To. The face image of the person to be authenticated at each authentication location taken by the camera built in the mobile terminal of the staff is collated with the registered face information sent.

As is clear from the above explanation, in the present invention, the most important collation process (matching process) for authentication, which has been performed collectively by the authentication body 9, is performed in each mobile terminal of the staff member at the actual authentication place. It can be distributed with. As a result, the concentration of access to the server 7 of the certification body and the concentration of processing load are significantly reduced. Further, at each of the authentication locations 8-1 to 8-n, the stationary fixed camera 4 and the dedicated terminal device 5 as shown in FIG. 2 are not required, and the dedicated space for installing them is also unnecessary, which is extremely economical. Is.

Further, what should be noted in the distributed authentication of the present invention is that not only the face information but also the qualification information is paired and authenticated. For example, if the user who comes to the authentication place authenticates whether or not he / she is the person who purchased the ticket, it can be said that face authentication is sufficient. However, when the purchased ticket is transferred or sold to a third party, there is a problem that admission to the facility is permitted without the ticket if only the face is authenticated. To avoid this, users have traditionally been required to bring a ticket and present it to the staff. Therefore, there is also a problem that the user who has lost the ticket cannot use the facility. In addition, the staff must confirm the possession of the ticket one by one and identify whether it is a counterfeit ticket or not, which requires extremely nerve-wracking work.

On the other hand, in the present invention, the face is authenticated and the qualification associated with the face is authenticated, and the qualification authentication is not the authenticity of the ticket brought by the user, but the registration. It can be said that one of the major features is that it authenticates whether or not the ticket (qualification) that has been given to the user (certified person) can be given. As a result, even if the user does not bother to bring the ticket, it is determined that the qualification information stored in the registration DB server is valid, and the use of the qualification is permitted. That is, it should be noted that there is a big difference in the present invention in that the face of the person to be authenticated is authenticated only as a face, whereas in the present invention, the face of the person to be authenticated is authenticated as a ticket. According to the present invention, it is not necessary for the user to present the ticket, and it is not necessary for the staff to confirm the ticket. Therefore, it is possible to smoothly guide the entrance in a short time. Obtainable.

If the user who first purchased the ticket registered his / her face and qualification on the registration DB server and then abandoned the usage qualification by selling or transferring this ticket to a third party, the ticket was transferred. A person registers his / her face information and qualification information as new information in the registration DB server. By making the previously registered credentials invalidated in response to this new registration, it is possible to reliably prevent the use of those who have abandoned their qualifications. For example, new information can be easily registered and old information can be invalidated by using the information (ticket number, etc.) uniquely given to each ticket as a key.

FIG. 4 is a diagram showing that the present invention can be applied to both a manned authentication place and an unmanned authentication place. (A) is a case of manned authentication (a staff member or the like exists at the authentication site), and (B) is an unmanned case. Each case of authentication (only the person to be authenticated exists at the authentication site) is shown. In the case of manned authentication, as shown in FIG. 4A, the face of the authenticated person 1 photographed by the camera built in the mobile terminal 13 of the certifier (staff) 3 at the authentication place 8 and the registration DB server. The face of the qualification holder sent from 7 is collated in the mobile terminal of the certifier 3, and if both match, the qualification information sent from the registration DB server 7 together with the face of the qualification holder is displayed. The specified qualification is given to the certified person 1. On the other hand, in the case of the unmanned authentication shown in FIG. 4B, since there is no certifier at the authentication place 8, the mobile terminal 13 is attached to the authentication tool main body 14 there, and the face of the authenticated person is photographed to perform the authentication. Will be done. In this case, in order to prevent spoofing, the authenticated person 1 is requested to have some confirmation information by inputting the signature of the authenticated person 1 or inputting a voice into the tool 14 as described later. Is desirable.

(Pre-registration process)
Three specific examples will be described with reference to FIGS. 5A and 5B as a pre-registration procedure when the person to be authenticated is authenticated by the mobile terminal.

In FIG. 5A, the purchaser who purchased the qualification such as a ticket photographed his / her face at the time of purchase (or may be after the purchase) (S1), and this face information and ticket information (ticket number, Registration is completed by transferring (information such as purchase store information and purchase date) to the specified server (S2). The face may be photographed using a camera installed at the place of purchase, or a smartphone or the like owned by the purchaser. At this time, personal information such as the name, date of birth, and age of the purchaser (that is, the qualification holder) and biometric information such as signatures and voice prints (here, the autograph is regarded as a part of the biometric information). You can also register at the same time. When such registration is completed, the owner of the registered face is saved on the server as a legitimate qualification holder. Further, for example, when a ticket is purchased for gifts, the registration number and server address may be separately acquired as important information (S4) and registered by the user himself / herself (S5).

On the other hand, when the purchaser of the first ticket transfers the ticket to a third party, as shown in FIG. 5B, the transferee sends his / her face information and credential information to the server for new registration. Do (S6). The server saves this new registration information (S7) and invalidates the previously registered credentials (S8). By doing so, it is possible to renew the legitimate qualification holder in using the ticket, and it is possible to prevent unauthorized use.

The application program and authentication program that execute the processing shown in FIG. 8 can be downloaded from the qualification provider (ticket sales company, card provider, etc.) to the mobile terminal on the authentication side (qualification use facility) and used. , The program can be easily managed and unauthorized use can be prevented. In addition, the provider of the qualification manages the authentication program, so that the user can be authenticated with peace of mind.

The present invention described above can optimize the authentication method according to the authentication conditions required for the qualification. As an example of optimization, the three patterns shown in FIG. 6 can be considered. The first pattern is to authenticate the face and the presence or absence of qualification as shown in FIG. 6 (C1). For example, the ticket has only a role as an admission ticket. The second pattern is a case where it is necessary to authenticate not only the face but also the contents of the qualification as shown in FIG. 6 (C2), and is applied to, for example, the authentication of a ticket in which a seat is designated after entering. This is the case. The third pattern is a case where the authentication conditions are stricter as shown in FIG. 6 (C3) and even log management of qualification use is required like a credit card. The functions and authentication methods of the mobile terminal used in the above three patterns will be described with reference to the following three examples.

When the ticket (qualification) plays only the role of an admission ticket (pattern (C1) in FIG. 6), the certifier only needs to confirm the identity and determine whether or not the person is eligible for admission. Therefore, the mobile terminal (13 in FIG. 1) in that case may have a function as shown in FIG. 7. That is, the functions required of the mobile terminal 13 include a camera function 15 for photographing the face of the person to be authenticated, an authentication program execution unit 16, and the face information and qualification information of the qualification holder used for verification at the time of authentication. Information receiving unit 17 received from the registered DB server 7, face image storage unit 18 for storing the face image of the authenticated person taken by the camera, the face image of the authenticated person and the qualification sent from the registered DB server 7. The collation unit 19 that determines the match / mismatch of the face information of the holder, the authentication result output unit 21 that outputs the authentication result according to the collation result, and the data of at least the face image storage unit 18 and the received face information after the authentication is completed. The information erasing unit 22 for erasing and is included.

Each of the above-mentioned functions is an application program for hardware mechanisms such as a CPU, RAM, general-purpose registers, image processing circuits, communication control circuits, and input / output interface circuits built into ordinary mobile terminals such as mobile phones and smartphones. What can be realized by controlling with is easily conceived by those skilled in the art. Further, the authentication program may be pre-installed on the mobile terminal, or the authentication program may be installed from the outside on the own terminal by starting the application program. In the mobile terminal of FIG. 7, an example of installing an authentication program from the registration DB server 7 using an application program is shown.

Next, a procedure of an authentication method that satisfies the authentication conditions described in the pattern (C1) of FIG. 6 will be described with reference to FIG. 8 using the mobile terminal having the function shown in FIG. 7. As described above, when the application program is started (S10), the mobile terminal 13 of the certifier (3 in FIG. 4) installs the authentication program from the outside (registered DB server 7 in the example of FIG. 7) ( S11). The installed authentication program is decrypted by the authentication program execution unit 16, and a control signal for controlling each hardware mechanism in the terminal is generated. Further, by this authentication program, the face information of the legitimate qualification holder and the qualification information linked to the face information are sent from the registration DB server 7 to the face information receiving unit and the qualification information receiving unit and stored (S12). .. In the case of the first embodiment, the qualification information sent from the registration DB server 7 may be information indicating whether or not the qualification of the registered qualification holder is currently valid.

When the information of the qualification holder is set in the mobile terminal 13, the certifier takes a picture of the face of the person to be authenticated at the authentication place with the camera 15 built in the terminal and saves it in the face image storage unit 18. (S13). Subsequently, the face image (certified person) of the face image storage unit 18 and the face information (qualification holder) of the face information receiving unit 17 are collated by the collating unit 19 (S14).

Here, when the authentication side can know the visit of the person to be authenticated in advance, the information of the qualification holder to be received from the registration DB server 7 can be easily specified from the qualification information (for example, the ticket number). On the other hand, if the person to be authenticated is uncertain about the visit schedule and the person to be authenticated brings a qualification (ticket) at the time of visit, the unique information (for example, ticket number) specified on this qualification is used. The registration DB server 7 may be accessed to receive the information of the corresponding qualification holder. In addition, when targeting an unspecified number of persons to be authenticated, the qualification holders corresponding to this may be collectively received as a group according to the nature of the qualification to be authenticated. In the case where many users visit at the same time, in consideration of the memory capacity of the mobile terminal, each certifier (staff) is assigned to each terminal (for example, by alphabet, age, gender, birth). Monthly, etc.) users may be guided to authenticate in an empty space. In particular, in this case, since the staff can authenticate with only the mobile terminal, they can authenticate freely and quickly using the empty space without securing a dedicated authentication space or carrying large-scale equipment. can do.

If, as a result of the face matching process in step S14, the face of the person to be authenticated and the face of the qualification holder do not match, the application for using the facility is rejected without determining the validity of the qualification information. Therefore, the processes after step S15 in FIG. 8 may be skipped. On the other hand, if the faces of the two match, the qualification validity determination process of the next step S15 is executed. In this embodiment, it is only necessary to check whether or not the qualification is valid, so that the gate circuit 20 can easily determine whether or not the qualification information receiving unit is flagged as valid. If you are not standing, the facility use application will be rejected as if the qualification of the qualification holder has been invalidated, and if you are standing, a notification will be sent to allow the person to be certified to use the facility as a legitimate qualification holder. It is sent from 21 to the certifier 3 (S16).

Further, when the authentication is completed, the information erasing unit 22 is activated in response to the output of the authentication processing unit 21, and the information of the face image storage unit 18 and the face information receiving unit 17 is erased (S17). It can be easily understood that this erasing process contributes to the protection of personal information and the effective use of the memory area.

As is clear from the above explanation, according to the first embodiment, "personal authentication" is performed by face authentication, "qualification authentication" is performed by credential information, and "validity authentication" is performed by face and qualification pair. By doing so, it is possible to provide an authentication system and an authentication method that satisfy all the "three authentication requirements" required for qualification authentication.

The authentication condition of the pattern (C2) of FIG. 6 is applied, for example, when the seat number is specified after the user enters. In this case, it is required to determine whether or not the seat number written on the ticket possessed by the user matches the seat number of the legitimate qualification holder. In order to meet this demand, a mobile terminal having the function disclosed in FIG. 9 is effective. In addition, here, the description about the same function as the first embodiment shown in FIG. 7 is omitted, and the specific function required in the second embodiment will be described. See FIG. 10 for the authentication procedure.

In order to satisfy the authentication condition of the pattern (C2) of FIG. 6, it is necessary to judge not only the validity of the credential information but also its contents. It should be understood that the reason is, for example, to avoid troubles after admission. Therefore, in the mobile terminal 13 of the second embodiment disclosed in FIG. 9, the qualification information regarding the content of the qualification is stored in the qualification information receiving unit 17 together with the face information of the qualification holder (S12 in FIG. 10). Further, the mobile terminal 13 includes a qualification data input / storage unit 23 for inputting and storing qualification data (seat number in this example) of a qualification (ticket) possessed by the person to be authenticated. The collation of the qualification data of the qualification and the qualification information registered by the qualification holder is performed by the second collation unit 24 located after the first collation unit 19 for collating the face image of the person to be authenticated in the processing procedure. Will be. The second collation unit 24 may start collation after the matching determination is made as a result of the face collation in the first collation unit 19. That is, the first and second collation units may be individual collation circuits or the same collation circuit due to the hardware configuration. In short, the first and second collation processes are performed. It will be easy to understand that the program should be controlled so that it is continuous in time.

In the processing procedure of the second embodiment shown in FIG. 10, the input of the qualification data (step S18) and the determination of the qualification (step S19) are functions added to the function of the first embodiment of FIG. In FIG. 10, the qualification data input process (S18) is described as a procedure executed in response to the result of the face matching process (S14), but the qualification is also performed when the face of the authenticated person is photographed. Data may be input.

According to the mobile terminal of FIG. 9, as shown in the pattern (C2) of FIG. 6, if the face authentication does not match, the facility use application is rejected at that time, and even if the face authentication matches, even if the face authentication matches. If the qualification authentication does not match in the next step, the usage application will be rejected as well. That is, in this example, only when both the face and the qualification content match, it is determined that the person to be authenticated and the qualification holder are the same, and the facility use is permitted. Therefore, it is possible to prevent troubles such as double booking of the user's seat in the facility.

In addition, also in this Example 2, permission or disapproval is not determined for the qualification possessed by the certified person, but permission or disapproval is given for the qualification registered in advance by the qualification holder. It is judged.

The mobile terminal of FIG. 11 is effective when stricter authentication conditions are imposed. And, it can be said that this mobile terminal is suitable for authentication of a qualification used for settlement of financial transactions such as a credit card. A specific authentication method will be described below with reference to the functional block diagram of FIG. 11 and the flowchart showing the authentication procedure of FIG.

In the mobile terminal of the third embodiment, a confirmation information input / storage unit 25, a third collation unit 26, and a consent information input unit 27 are further added to the functions of the second embodiment. The confirmation information refers to, for example, the autograph of the qualification holder, the fingerprint, the voiceprint, and other biological information that identifies the individual. In addition, here, the autograph is also regarded as a part of the biological information as the information that can identify the individual. In the third embodiment, not only face authentication but also biometric information is authenticated as confirmation information to duplicate personal authentication. This provides an authentication system that can improve the accuracy of personal authentication and support a high security environment, and also functions effectively in unmanned authentication, which will be described later. In addition, consent information refers to information that proves that the certified person has agreed to use the qualification on the spot when the certified person and the qualification holder are authenticated as the same, and log management. It is also for use in. Therefore, this may be any information indicating that the person to be authenticated has agreed, such as the consent sign of the person to be authenticated and the voice of consent.

As an authentication procedure, as shown in FIG. 12, face authentication (S13 and S14) and confirmation information authentication (S20 and S21) are performed, and after it is determined that both match, the qualification data is authenticated. Is performed (S18 and S19). Further, as a result of this authentication, the use of the qualification is permitted only when the person to be authenticated is recognized to be the same as the qualification holder (Pattern C3 in FIG. 6). After that, the person to be authenticated inputs the consent information consenting to the use of the permitted qualification (S22), and the authentication process is completed. The consent information indicating consent is transferred to the registration DB server 7, recorded and stored in association with the information of the qualification holder.

The qualification actually used by the authenticated person is not the credit card brought by the person, but the card information registered in the registration DB server. Therefore, if it is determined that the person to be authenticated and the qualification holder are the same by the double authentication of the face information and the confirmation information, the subsequent qualification determination processing step (S19) can be omitted. In this case, since the face and living body of the person to be authenticated function as a card substitute, it can be understood that cardless payment is also possible.

Further, the face image and the confirmation information of the authenticated person may be automatically deleted in response to the input of the consent information. By doing so, the user does not have to worry about information leakage because his / her face and biometric information are not transmitted to the outside from the mobile terminal for authentication and are completely erased after the authentication is completed. You can make cardless payments with your heart in mind.

Here, another noteworthy thing is the relationship between the face information and the qualification information of the qualification holder registered in the registration DB server 7. Normally, when making a card payment, it is common for the card user to first present the card he / she has and then enter the password. In this case, it is common to use the card information as the key information and associate the password information with the key information to determine the password match. Therefore, as long as this method is adopted, even if face authentication is used instead of the password, the face information will be linked to the card information. However, in this case, the card user must first present the card, so that it is not possible to realize cardless payment. Therefore, in the third embodiment of the present invention, on the contrary, a method of associating the card information with the face information is adopted. By doing this, you can understand that cardless payment is possible for the first time. However, if it is recommended to show the qualification (card), it is of course possible to attach the face to the card. Even in that case, it is clear that the effect obtained by performing the collation with the mobile terminal of the certifier, that is, the effect of the present invention that the qualification can be authenticated regardless of the authentication place can be similarly obtained.

(Configuration of authentication tool)
FIG. 13 is an external perspective view of a state in which the mobile terminal 13 is attached, and the authentication tool main body 30 inputs qualification information and confirmation information (biological information) to the mobile terminal 13 described in the second or third embodiment. It is used for. The tool body 30 has a terminal attachment / detachment unit 31 on which the mobile terminal 13 can be attached / detached, a qualification information reading unit 32 for reading information such as a card or a ticket, and an input screen for the person to be authenticated to sign by hand. The information reading unit 33 is included. A well-known device such as a card scanner or a barcode reader can be used for the credential information reading unit 32. Further, a well-known handwriting input device such as a touch panel method or a pen input method can be used for the sign information reading unit 33.

The authentication tool main body 30 further includes an information transfer unit 34 that transfers information from the credential information reading unit 32 and the signature information reading unit 33 to the mobile terminal 13 with the mobile terminal 13 attached, and the mobile terminal 13 Is attached to the main body of the tool, and the whole functions as an authentication tool. As the information transfer unit 34, an information transfer device such as a cable connector or short-range wireless communication (NFC) that can be connected to the data transfer USB terminal of the mobile terminal 13 can be used. Further, when the tool body does not have a power supply terminal or a battery terminal, power may be supplied from the mobile terminal. Further, it is possible to use a voiceprint or a fingerprint as a means for inputting biological information of the person to be authenticated in addition to the signature, and a microphone, a fingerprint sensor or the like for that purpose may be mounted.

(Application to unmanned authentication)
The authentication tool of FIG. 13 is effective not only in manned authentication but also in unmanned authentication. For example, in restricted areas such as a hotel's private pool and private lounge that can only be used by qualified personnel, by installing the authentication tool shown in Fig. 13 at the entrance, a door using a PIN or password can be installed. The open / close control mechanism becomes unnecessary. That is, the user can lock and unlock the door and the like by photographing his / her face with the camera 15 of the mobile terminal 13, so that it is not necessary to remember the password and the password.

As a method of using such an authentication tool, as shown in FIG. 14, first, user information is registered in the mobile terminal 13 (S30). The user information includes the qualification information and the face information given to the user. Here, the qualification information refers to information on an area (facility) that can be used by the user, and the face information refers to the face image of the user himself / herself, and the qualification information is associated with this face image. This information is registered by the front desk staff of the hotel at the time of hotel check-in (entrance), and the mobile terminal 13 in which the information is registered is lent to the user (S31). At this point, the user becomes a legitimate qualification holder and can freely enter and exit the desired area by using the mobile terminal instead of the key.

At the entrance of the restricted area, the tool body shown in FIG. 13 is installed, and the user attaches the mobile terminal 13 to this tool (S32) and photographs his / her face with the camera 15 of the terminal (S33). In addition, when the user's confirmation is required for use, the user is required to sign the sign information input unit 33 of the tool body 30, speak a predetermined word, or touch the fingerprint sensor with a finger. Enter the confirmation information (S34). After that, the authentication tool collates the captured face image with the input confirmation information with the registered face information and confirmation information (S35), and when these match, the door is unlocked and the facility can be used. Becomes (S36). Please note that you can only use the area that corresponds to the qualification given at the time of registration.

By adopting such an authentication tool, you will be freed from troublesome PIN and password input operations, and even if your mobile terminal is lost or stolen, it cannot be used by anyone other than the user, so it is fraudulent. There is no risk of damage due to use. Although the usage procedure of FIG. 14 shows an example of lending a mobile terminal to a user, an authentication tool equipped with the mobile terminal can be installed in advance at the entrance of each restricted area. In this case, face information and credential information (including confirmation information if necessary) regarding the user are transmitted from the hotel server to the mobile terminal, and are stored and stored. The user can obtain the effect that he / she can freely use the facility simply by taking a picture of his / her face with this terminal or inputting confirmation information at the same time.

As is clear from the above description, the present invention can be widely used in any place where ticket or card authentication is required. In particular, it is effective in admission management of theaters, stadiums, concert venues, etc., facility use management of hotels, etc., or in situations where financial settlement is required. It is also effective for use in environments where a large number of people must be authenticated in a limited space, such as immigration control at airport facilities and boarding procedures. Furthermore, the authentication system of the present invention can be introduced at low cost even in places where strict security checks are required.

1 ... Certified person (qualified user)
2 ... Certificates (tickets and cards)
3 ... Certified person (clerk or staff)
4 ... Camera 5 ... Dedicated terminal device 6 ... Cloud 7 ... Registration database (DB) server 8 ... Sales floor (authentication location)
9 ... Certification body location 10 ... Certification body 11 ... Qualification provider (ticket dealer)
12 ... Certification side (qualification use facility)
13 ... Mobile terminal 14 ... Authentication tool body 15 ... Built-in camera 16 ... Authentication program execution unit 17 ... Face information and credential information reception unit 18 ... Face image storage unit 19 ... Verification unit 20 ... Gate Circuit 21 ... Authentication processing unit 22 ... Information erasing unit 23 ... Qualification data input / storage unit 24 ... Second collation unit 25 ... Confirmation information input / storage unit 26 ... Third collation unit 27 ... Consent information Input unit 30 ... Authentication tool body 31 ... Mobile terminal attachment / detachment unit 32 ... Credential reading unit 33 ... Sign information reading unit 34 ... Information transfer unit P1 to Pn ... Authentication work R1 to Rn ... Authentication request A1 To An ... Authentication result D1 to Dn ... Registered face information and credential information S1 to S22, S30 to S36 ... Processing step

Claims (5)

A qualification authentication system that has a camera function and a communication function, and is provided with a portable authentication-side mobile terminal and a server device that can connect to the authentication-side mobile terminal via a network.
Information on the qualification to be authenticated and the face information of the legitimate holder of the qualification are registered in the server device.
The mobile terminal on the authentication side receives the information about the qualification and the face information from the server device via the storage unit and the storage unit that stores the face image of the person to be authenticated taken by using the camera function, and stores the face information. It has a receiving unit stored in the unit and a collating unit that collates the face information sent from the server device with the captured face image in its own terminal.
As a result of the collation processing in the mobile terminal without transmitting the photographed face image to the server device, it is determined that the face information and the face image match and the information related to the qualification is valid. In this case, a qualification authentication system using a mobile terminal, which authenticates the person to be authenticated as a legitimate holder of the qualification and gives the person to be authenticated the right granted by the qualification. The information regarding the qualification to be authenticated and the face information of the legitimate holder of the qualification stored in the server device are the information registered by the qualification holder himself / herself before being authenticated, and these information. The qualification authentication system according to claim 1, wherein the two are associated with each other and the two are transmitted as a pair to the mobile terminal on the authentication side. When the face image of the person to be authenticated taken by using the mobile terminal on the authentication side matches the face information sent from the server device, the server device sends the face information to the mobile terminal. The second aspect of claim 2, wherein as long as the information regarding the qualification is valid, the right specified in the qualification is given to the certified person without asking the certified person to present the qualification. Qualification authentication system. When the face image of the authenticated person taken by using the mobile terminal on the authentication side and the face information sent from the server device match, the qualification given to the authenticated person by the information on the qualification is given. The qualification authentication according to claim 2, wherein the mobile terminal is provided with a consent information input unit for inputting consent information indicating consent for exercising the qualification to the mobile terminal on the authentication side when the person to be authenticated exercises. system. The qualification authentication system according to claim 4, wherein the mobile terminal on the authentication side has a confirmation information input unit for inputting the signature or biometric information of the authenticated person or a combination thereof as confirmation information about the authenticated person. ..