JP6903980B2 - Authentication device, authentication system, authentication method, program - Google Patents

Description

The present invention is an authentication apparatus, authentication system, an authentication method, a program.

In personal authentication when using an automated teller machine, biometric authentication technology that uses biometric information such as fingerprints and veins in the palm of the hand is used. In the biometric authentication technology, biometric authentication is performed by the vendor managing the biometric authentication information and collating it with the database of the server owned by the vendor each time the biometric authentication is performed. Since biometric information is highly confidential among customer information, management of biometric authentication information has been a burden on vendors. In collation with the database, an expensive processing device and a high-speed network line were required in order to speed up the authentication.

By the way, there is known a biometric authentication system that stores biometric authentication information in a user's terminal. In such a biometric authentication system, at the time of registration, the vendor's automated teller machine generates the user's biometric authentication information, and the generated biometric authentication information is transferred to the user's terminal. At the time of biometric authentication, the user transmits the biometric authentication information stored in the terminal to the automatic teller machine, and causes the automatic teller machine to read the biometric information of the user. The automated teller machine collates the biometric authentication information received from the user's terminal with the read biometric information of the user. Related techniques are disclosed in Patent Documents 1 and 2.
In such a case, there has been a demand for a technology that allows the vendor to efficiently retain the biometric authentication information of the user.

Japanese Unexamined Patent Publication No. 2007-052598 Japanese Unexamined Patent Publication No. 2007-011804

Accordingly the present invention, the authentication apparatus, authentication system that solves the problems described above, and its object is to provide an authentication method, a program.

According to the first aspect of the present invention, the authentication device is a collation data receiving unit that receives collation data including the first biological feature information generated by the terminal and transaction specific information from the terminal at the time of transaction processing. When the collation unit that acquires the second biometric information from the biometric information reading device provided in the own device and collates with the first biometric information included in the collation data and the collation unit completes the collation. Transaction specific information included in the collation data when the relationship between the biometric information management unit that discards the first biometric information and the first biometric information and the second biometric information is correct based on the collation. The biometric information management unit includes a transaction processing unit that performs transaction processing based on the above, and a position determination unit that determines whether or not the terminal is away from the own device. The feature is that the first biological feature information is retained when it is determined that the terminal is not away from the device, and the first biological feature information is discarded when the position determination unit determines that the terminal is away from the own device. And.

According to the third aspect of the present invention, the authentication system includes a terminal and an authentication device, and the terminal includes first biological feature information acquired from a biological information reading device provided in the own device and an external server. comprising a verification data generation unit that generates verification data including transaction specific information obtained, and a verification data transmitting unit that transmits the verification data to the authentication device from the authentication apparatus, when the transaction process, the wherein the matching data receiving unit for the verification data received from the terminal, the second biometric feature information from the biometric information reading device provided in the own device that includes said first biometric feature information terminal has generated, and the transaction identification information acquires, the collating unit included in the matching data for matching with the first biometric feature information, and the verification unit discards the bio-information control unit the first biometric feature information for completing the verification, the verification wherein when the first relationship biometric feature information and the second biometric feature information is correct, and the transaction transaction processing unit for performing a transaction process based on the specific information included in the verification data, the terminal its own device based on The biometric information management unit includes a position determination unit for determining whether or not the terminal is away from the device, and when the position determination unit determines that the terminal is not away from the own device, the biometric information management unit outputs the first biometric feature information. It is characterized in that it is held and the first biological feature information is discarded when the position determination unit determines that the terminal is away from its own device .

According to the third aspect of the present invention, the authentication method is a collation data receiving process in which collation data including the first biological feature information generated by the terminal and transaction specific information is received from the terminal at the time of transaction processing. When the second biometric information is acquired from the biometric information reading device provided in the own device and the collation with the first biometric information included in the collation data is performed, and the collation is completed in the collation process. Transaction specific information included in the collation data when the relationship between the first biocharacteristic information and the second biometric information is correct based on the biometric information management process for discarding the first biometric information and the collation. a transaction processing process of performing the transaction processing based on, the terminal will have a position and determining step determines whether to stay away from the own device, the biological information management process, the position determination process is the terminal itself When it is determined that the terminal is not away from the device, the first biological feature information is retained, and when the position determination process determines that the terminal is away from the own device, the first biological feature information is discarded. It is a feature.

According to the fourth aspect of the present invention, the program includes a collation data receiving step of receiving collation data including the first biological feature information generated by the terminal and transaction specific information from the terminal at the time of transaction processing. , The collation step of acquiring the second biometric information from the biometric information reading device provided in the own device and collating with the first biometric information included in the collation data, and the collation step when the collation is completed in the collation step. When the relationship between the first biometric information and the second biometric information is correct based on the biometric information management step for discarding the first biometric information and the collation, the transaction specific information included in the collation data A program for executing a transaction processing step for performing transaction processing based on the above and a position determination step for determining whether or not the terminal is away from the own device, and the biometric information management step is the position determination step. Holds the first biometric information when it determines that the terminal is not away from its own device, and when the position determination step determines that the terminal is away from its own device, the first biometric information. Is characterized by discarding.

According to the present invention, the vendor can efficiently retain the biometric authentication information of the user.

It is a figure which shows the outline of the biometric authentication system by 1st Embodiment. It is a functional block diagram of the terminal by this embodiment. It is a functional block diagram of the authentication apparatus according to this embodiment. It is a functional block diagram of the vendor management server by this embodiment. It is a figure which shows the processing flow of the biometric authentication system by this embodiment. It is a functional block diagram of the terminal by 2nd Embodiment. It is a functional block diagram of the authentication apparatus according to this embodiment. It is a figure which shows the processing flow of the biometric authentication system by this embodiment. It is a figure which shows the minimum configuration of the authentication apparatus by embodiment.

(First Embodiment)
Hereinafter, the terminal 1, the authentication device 2, and the vendor management server 3 according to the first embodiment of the present invention will be described with reference to the drawings.
FIG. 1 is a diagram showing an outline of the biometric authentication system S1 according to the present embodiment. The biometric authentication system S1 includes a terminal 1, an authentication device 2, and a vendor management server 3. In the present embodiment, as an example, the authentication device 2 is assumed to be an automated teller machine (ATM).

The terminal 1 acquires the biometric authentication information generation software BS and the account information AI indicating the account number from the vendor management server 3. The user of the terminal 1 causes a biometric information reading device provided in the terminal 1 to read his / her own biometric information. Here, the biological information is, for example, a user's face, fingerprint, vein, iris, or the like.
The terminal 1 uses the biometric authentication information generation software BS acquired from the vendor management server 3 to generate the collated biometric characteristic information VB from the read biometric information. Here, the collated biological feature information VB is information generated by extracting a feature amount from the biological information. The terminal 1 generates collation data VD, which is information consisting of a set of the generated collation biometric information VB and the account information AI acquired from the vendor management server 3.

The terminal 1 transmits the collation data VD stored in the own device to the authentication device 2 by wireless communication. As a result, the collation data VD including the collation biometric feature information VB is temporarily stored in the authentication device 2, and the user of the terminal 1 can use the biometric authentication in the personal authentication by the authentication device 2.
In order to perform biometric authentication, the user of the terminal 1 causes a biometric information reading device provided in the authentication device 2 to read his / her own biometric information. The authentication device 2 collates the biometric information UB generated from the read biometric information of the user with the collation data VD temporarily stored in the own device, and performs biometric authentication. When the biometric authentication is completed, the authentication device 2 deletes the verification data VD stored in the own device. The authentication device 2 notifies the vendor management server 3 of only the authentication result AR, which is the result of biometric authentication.

In this way, the collation data VD generated by the terminal 1 is stored in the terminal 1. The collation data VD is temporarily stored in the authentication device 2 only while the user performs biometric authentication by the authentication device 2. Therefore, the vendor of the authentication device 2 can efficiently hold the biometric authentication information of the user.
Further, since the biometric information is generated by the terminal 1 that has acquired the biometric authentication information generation software BS, the vendor of the authentication device 2 does not need to generate the biometric information.

FIG. 2 is a functional block diagram of the terminal 1 according to the present embodiment.
The terminal 1 includes a control unit 10, a communication unit 11, a storage unit 12, a biological information reading device 13, a GPS (Global Positioning System) module 14, an operation input unit 15, and a display unit 16. Will be done. The terminal 1 is, for example, a smartphone.

The control unit 10 includes a software acquisition unit 100, a collation data generation unit 101, an encryption unit 102, a collation data transmission unit 103, a position information transmission unit 104, and a collation data transmission control unit 105. To. The control unit 10 controls the software acquisition unit 100, the collation data generation unit 101, the encryption unit 102, the collation data transmission unit 103, the position information transmission unit 104, and the collation data transmission control unit 105.

The software acquisition unit 100 acquires the biometric authentication information generation software BS, the account information AI, and the public key from the vendor management server 3 via the communication unit 11. Here, the public key is a procedure used for encryption in the public key cryptosystem. The account information AI is encrypted by the vendor management server 3 using the public key.

The collation data generation unit 101 executes the process indicated by the biometric authentication information generation software BS installed in the control unit 10 to generate the collation biometric feature information VB. The collation data generation unit 101 generates the collation data VD by combining the generated collation biological feature information VB and the account information AI. The collation data generation unit 101 stores the generated collation data VD in the storage unit 12.

The encryption unit 102 encrypts the collation biometric information VB generated by the collation data generation unit 101 by using the public key acquired from the software acquisition unit 100 in response to the request from the collation data generation unit 101.

The collation data transmission unit 103 transmits the collation data VD to the authentication device 2 via the communication unit 11.
The position information transmission unit 104 transmits the position information of the terminal 1 acquired from the GPS module 14 to the authentication device 2 via the communication unit 11.

The collation data transmission control unit 105 controls whether or not the collation data transmission unit 103 transmits the collation data VD according to the collation data transmission setting. Here, the collation data transmission setting is a setting for switching whether or not to transmit the collation data VD. The collation data transmission setting is included in the process indicated by the biometric authentication information generation software BS. The user of the terminal 1 can switch whether or not to transmit the collation data VD through the operation input unit 15.

The communication unit 11 communicates with the vendor management server 3 via the network NW1. The network NW1 is, for example, a wireless communication network using LTE (Long Term Evolution, LTE is a registered trademark) communication.
The communication unit 11 communicates with the authentication device 2 via the network NW2. The network NW2 is, for example, a wireless communication network for short-range wireless communication. Here, the short-range wireless communication is communication using, for example, Bluetooth (registered trademark), wireless LAN (Local Area Network), NFC (Near Field Communication), or the like.
The network NW1 may be a wireless communication network for short-range wireless communication.

The storage unit 12 stores the collation data VD generated by the collation data generation unit 101 as a collation data table. The collation data generation unit 101 creates a storage area for storing the collation data table.

The biometric information reading device 13 reads the biometric information of the user of the terminal 1.
When the face is used for biometric authentication, the biometric information reading device 13 is, for example, a camera, and reads the face of the user of the terminal 1 as biometric information. In that case, the camera has a resolution capable of generating collated biometric feature information VB. Further, when the fingerprint is used for biometric authentication, the biometric information reading device 13 is, for example, a fingerprint sensor, and reads the fingerprint of the user of the terminal 1 as biometric information.

The GPS module 14 acquires information on the current position of the terminal 1 via an antenna (not shown). The GPS module 14 outputs the measured position information of the terminal 1 to the control unit 10 in response to a request from the control unit 10.

The operation input unit 15 receives various operations from the user of the terminal 1. The various operations include, for example, an operation of changing the collation data transmission setting. The operation input unit 15 is, for example, a touch panel, operation buttons, a keyboard, or the like.

The display unit 16 displays various information. The display unit 16 is, for example, a liquid crystal display or an organic electroluminescence (EL) display. The display unit 16 may be a touch panel display provided with a touch sensor (not shown) that detects a position where a contact object (for example, a finger of a user of the terminal 1) comes into contact in a display area for displaying an image. In that case, the touch sensor forms a part of the operation input unit 15.

FIG. 3 is a functional block diagram of the authentication device 2 according to the present embodiment.
The authentication device 2 includes a control unit 20, a communication unit 21, a storage unit 22, a biological information reading device 23, a card reading unit 24, an operation input unit 25, and a display unit 26.

The control unit 20 includes a collation data receiving unit 200, a position information receiving unit 201, a position determination unit 202, a biometric information management unit 203, a collating unit 204, a decoding unit 205, and a transaction processing unit 206. It is composed of. The control unit 20 controls the collation data receiving unit 200, the position information receiving unit 201, the position determination unit 202, the biometric information management unit 203, the collating unit 204, the decoding unit 205, and the transaction processing unit 206. To do.

The collation data receiving unit 200 receives the collation data VD from the terminal 1 via the communication unit 21. When the collation data receiving unit 200 receives the collation data VD, the collation data receiving unit 200 transmits a signal indicating that the collation data VD has been received to the terminal 1 via the communication unit 21.
The collation data receiving unit 200 stores the received collation data VD in the storage unit 22.

The position information receiving unit 201 receives the position information of the terminal 1 from the terminal 1 via the communication unit 21. The position information receiving unit 201 generates position history information, which is information in which the reception time when the position information of the terminal 1 is received and the set of the position information are arranged in the order of the reception time, and stores the position history information in the storage unit 22. ..
The position determination unit 202 determines whether or not the terminal 1 is away from the own device based on the position history information.
When the position determination unit 202 determines that the terminal 1 is away from its own device, the biometric information management unit 203 discards the collation data VD stored in the storage unit 22. The biometric information management unit 203 may discard the collation data VD stored in the storage unit 22 when a predetermined storage time has elapsed since the collation data VD was stored in the storage unit 22. Here, the predetermined storage time is, for example, 10 minutes.
When the collation unit 204 completes the collation, the biometric information management unit 203 discards the collation data VD stored in the storage unit 22. That is, the biometric information management unit 203 discards the collated biological feature information VB when the collating unit 204 completes the collation.

The collation unit 204 acquires the biological feature information UB from the biological information reading device 23. Here, the biological feature information UB is biological feature information generated by the biological information reading device 23 reading the biological information of the user of the terminal 1 and reading the biological information.
The collating unit 204 collates the acquired biological feature information UB with the collating biological feature information VB included in the collation data VD stored in the storage unit 22. The collation unit 204 determines whether or not biometric authentication is valid based on the collation result. When the collation unit 204 matches the biometric information UB and the collation biometric information VB, the collation unit 204 determines that the biometric authentication is effective. That is, the collation unit 204 determines that the biometric authentication is effective when the relationship between the collated biometric information VB and the biometric information UB is correct based on the collation.

The decoding unit 205 decodes the collation data VD using the acquired private key in response to a request from the collation data receiving unit 200. Here, the private key is a procedure used for decryption in the public key cryptosystem.

When the collation unit 204 determines that the biometric authentication is valid, the transaction processing unit 206 executes various transaction processes based on the account information AI according to the transaction content selected by the operation from the operation input unit 25. To do.

The communication unit 21 communicates with the vendor management server 3 via the network NW1. The network NW1 is, for example, a wireless communication network using LTE communication.
The communication unit 21 communicates with the terminal 1 via the network NW2. The network NW2 is, for example, a wireless communication network for short-range wireless communication.

The storage unit 22 stores the collation data VD received by the collation data receiving unit 200 as a collation data table.
The storage unit 22 stores the position history information generated by the position information receiving unit 201 as a position history information table.

The biometric information reading device 23 reads the biometric information of the user of the terminal 1. The biological information reading device 23 generates biological characteristic information UB from the read biological information.
When a face is used for biometric authentication, the biometric information reading device 23 includes, for example, a camera as a part of its own device and reads the face of the user of the terminal 1 as biometric information. Further, when the fingerprint is used for biometric authentication, the biometric information reading device 23 includes, for example, a fingerprint sensor as a part of its own device and reads the fingerprint of the user of the terminal 1 as biometric information.

The card reading unit 24 reads information indicating an account number from a cash card inserted into a card insertion unit (not shown).
The operation input unit 25 receives various operations from the user of the terminal 1. The various operations include, for example, an operation for performing a procedure for registering biometric information and an operation for selecting transaction details. Here, the transaction content is, for example, a deposit, a transfer, a balance inquiry, or the like.
The operation input unit 25 is, for example, a touch panel, operation buttons, a keyboard, or the like.

The display unit 26 displays various information. The display unit 26 is, for example, a liquid crystal display or an organic EL display. The display unit 26 may be a touch panel display provided with a touch sensor (not shown) that detects a position where a contact object (for example, a finger of a user of the terminal 1) comes into contact in a display area for displaying an image. In that case, the touch sensor forms a part of the operation input unit 25.

FIG. 4 is a functional block diagram of the vendor management server 3 according to the present embodiment.
The vendor management server 3 includes a software distribution server 30, an authentication server 31, and a customer DB 32. The software distribution server 30, the authentication server 31, and the customer DB 32 are connected by a communication network (not shown).
The software distribution server 30 includes a software distribution unit 301 and an encryption key creation unit 302.

The software distribution unit 301 receives a signal from the authentication server 31 indicating that the personal authentication of the user of the terminal 1 is valid. Upon receiving the signal, the software distribution unit 301 transmits the biometric authentication information generation software BS and the account information AI received from the authentication server 31 to the terminal 1.

The encryption key creation unit 302 creates a public key and a private key based on the public key cryptosystem. The encryption key creation unit 302 encrypts the account information AI using the created public key in response to a request from the software distribution unit 301. The encryption key creation unit 302 outputs the public key used for encryption to the software distribution unit 301. The encryption key creation unit 302 transmits the private key corresponding to the public key used for encryption to the authentication server 31.
The encryption key creation unit 302 uses the same public key each time when encrypting the account information AI.

The authentication server 31 authenticates the user of the terminal 1 before the software distribution server 30 distributes the biometric authentication information generation software BS. In addition, the authentication server 31 manages account information.
The authentication server 31 includes an account information management unit 310 and an authentication unit 311.

The account information management unit 310 receives a signal indicating the transaction content from the authentication device 2 in response to a request from the authentication unit 311. The account information management unit 310 executes transaction processing according to the transaction content indicated by the signal. For example, when executing the transaction processing of deposit, the account information management unit 310 updates the information of the balance of the user of the terminal 1 stored in the customer DB 32 according to the deposit amount. The account information management unit 310 transmits the updated balance information to the authentication device 2.

The authentication unit 311 transmits a signal indicating that the personal authentication of the user of the terminal 1 is valid and the account information AI to the software distribution server 30. Before transmitting the signal, the authentication unit 311 determines whether or not the personal authentication is valid based on the account number received from the authentication device 2 and the personal identification number.
The authentication unit 311 receives the authentication result AR, which is the authentication result of biometric authentication, from the authentication device 2. When the received authentication result AR indicates that the biometric authentication is valid, the authentication unit 311 causes the account information management unit 310 to receive a signal indicating the transaction content from the authentication device 2.

The customer DB 32 is a database in which a personal identification number, balance information, various registration information, transaction details, and the like are stored for each account information AI (account number).

FIG. 5 is a diagram showing a processing flow of the biometric authentication system according to the present embodiment. The process shown in this figure is executed when the operation of the biometric authentication system S1 is started.

(Step S100) The authentication device 2 determines whether or not the personal authentication of the user of the terminal 1 is valid.
When the operation input unit 25 receives the operation for performing the biometric information registration procedure, the authentication device 2 causes the display unit 26 to display a screen instructing the insertion of the cash card. Here, the cash card holds information indicating the account number. When the user of the terminal 1 inserts the cash card into his / her own device, the card reading unit 24 of the authentication device 2 reads the information indicating the account number from the cash card.
The authentication device 2 displays a screen instructing the input of the personal identification number. When the user of the terminal 1 inputs the password from the operation input unit 25, the account number read from the cash card and the entered password are transmitted to the authentication server 31.

When the authentication unit 311 of the authentication server 31 receives the account number and the password, the authentication unit 311 reads the password corresponding to the account number from the customer DB 32. The authentication unit 311 compares the received password with the read password to perform authentication. When the received PIN code and the read PIN code match, the authentication unit 311 determines that the personal authentication of the user of the terminal 1 is valid. If the received PIN does not match the read PIN, the authentication unit 311 determines that the personal authentication of the user of the terminal 1 is invalid.

When the authentication unit 311 determines that the personal authentication of the user of the terminal 1 is valid (YES), the authentication server 31 executes the process of step S101.
On the other hand, when the authentication unit 311 determines that the personal authentication of the user of the terminal 1 is invalid (NO), the authentication unit 311 outputs a signal indicating that the personal authentication of the user of the terminal 1 is invalid. Send to 2. When the authentication device 2 receives the signal, the display unit 26 displays a screen indicating that the authentication is invalid due to the mismatch of the passwords, and the process ends.

(Step S101) The authentication unit 311 transmits a signal indicating that the personal authentication of the user of the terminal 1 is valid and the account information AI to the software distribution server 30.
When the account information AI is input, the software distribution unit 301 causes the encryption key creation unit 302 to encrypt the input account information AI. The software distribution unit 301 acquires the public key used for encrypting the account information AI from the encryption key creation unit 302.
The software distribution unit 301 transmits the biometric information generation software BS, the encrypted account information AI, and the public key used for encrypting the account information AI to the terminal 1 via the network NW1.
The encryption key creation unit 302 transmits the private key corresponding to the public key used for encrypting the account information AI to the authentication server 31. When the authentication server 31 receives the private key, the authentication server 31 transmits the received private key to the authentication device 2.
After that, the terminal 1 executes the process of step S102.

(Step S102) The software acquisition unit 100 acquires the biometric authentication information generation software BS, the account information AI, and the public key used for encrypting the account information AI from the vendor management server 3 via the communication unit 11. To do. After that, the terminal 1 executes the process of step S103.

(Step S103) The control unit 10 installs the biometric authentication information generation software BS acquired by the software acquisition unit 100 in its own device. The software acquisition unit 100 outputs the acquired account information AI to the collation data generation unit 101.

The collation data generation unit 101 executes the process indicated by the installed biometric authentication information generation software BS.
The collation data generation unit 101 causes the display unit 16 to display a screen instructing the user of the terminal 1 to input biometric information. The user of the terminal 1 causes the biometric information reading device 13 to read his / her own biometric information.

The collation data generation unit 101 generates collation biometric information VB from the biometric information of the user of the terminal 1 read by the biometric information reading device 13. The collation data generation unit 101 causes the encryption unit 102 to encrypt the generated collation biological feature information VB.
The encryption unit 102 encrypts the collation biometric information VB generated by the collation data generation unit 101 by using the public key in response to the request from the collation data generation unit 101.
The collation data generation unit 101 generates the collation data VD by combining the encrypted collation biological feature information VB and the account information AI input from the software acquisition unit 100. The collation data generation unit 101 stores the generated collation data VD in the storage unit 12.
After that, the terminal 1 executes the process of step S104.

(Step S104) The collation data transmission unit 103 transmits the collation data VD to the authentication device 2 via the communication unit 11. When transmitting the collation data VD, the collation data transmission unit 103 causes the position information transmission unit 104 to transmit the position information of the terminal 1 to the authentication device 2.
The position information transmission unit 104 acquires from the GPS module 14 in response to a request from the collation data transmission unit 103, and transmits the acquired position information of the terminal 1 to the authentication device 2.
The collation data receiving unit 200 of the authentication device 2 receives the collation data VD from the terminal 1 via the communication unit 21. When the collation data receiving unit 200 receives the collation data VD, the collation data receiving unit 200 transmits a signal indicating that the collation data VD has been received to the terminal 1 via the communication unit 21.

The collation data receiving unit 200 causes the decoding unit 205 to decode the received collation data VD. The decoding unit 205 decodes the collation data VD using the private key in response to a request from the collation data receiving unit 200. Here, the private key is the private key received by the authentication device 2 from the authentication server 31 in the process of step S101.
The collation data receiving unit 200 stores the decoded collation data VD of the decoding unit 205 in the storage unit 22.
After that, the terminal 1 executes the process of step S105.
The terminal 1 may use an encryption method when communicating with the authentication device 2. The encryption method is, for example, AES (Advanced Encryption Standard) or the like. In that case, the communication unit 21 decrypts the signal encrypted by the encryption method.

However, when the collation data transmission setting is a setting that does not transmit the collation data VD, the collation data transmission unit 103 does not transmit the collation data VD to the authentication device 2. In that case, when the user of the terminal 1 switches the collation data transmission setting to the setting for transmitting the collation data VD, the collation data transmission unit 103 transmits the collation data VD to the authentication device 2.

(Step S105) The terminal 1 receives a signal indicating that the verification data VD has been received from the authentication device 2. When the terminal 1 receives the signal, the position information transmitting unit 104 transmits the position information of the terminal 1 to the authentication device 2 via the communication unit 11 at predetermined time intervals. Here, the predetermined time is, for example, 2 seconds. After that, the authentication device 2 executes the process of step S106.

(Step S106) The position information receiving unit 201 receives the position information of the terminal 1 from the terminal 1 via the communication unit 21. The position information receiving unit 201 generates position history information and stores it in the storage unit 22.
The position determination unit 202 reads the position history information from the storage unit 22. The position determination unit 202 determines whether or not the terminal 1 is away from the own device based on the read position history information.

The position determination unit 202 extracts a predetermined number of position information from the position history information in the order of newest reception time. Here, the predetermined number is, for example, five. The position determination unit 202 calculates the value of the distance between the terminal 1 and the own device for each reception time from the extracted position information and the position information of the own device. The position determination unit 202 compares the calculated distance value for each reception time with the predetermined distance value. Here, the value of the predetermined distance is, for example, 10 meters.

When all the calculated distance values for each reception time are larger than the predetermined values, the position determination unit 202 determines that the distance between the terminal 1 and the own device is longer than the predetermined distance, and the terminal 1 moves away from the own device. Judge that there is. The position determination unit 202 determines that the distance between the terminal 1 and the own device is closer than the predetermined distance when even one of the calculated distance values for each reception time is smaller than the predetermined value, and the terminal 1 determines that the distance is closer than the predetermined distance. Judge that you are not far from your device.

When the position determination unit 202 determines that the terminal 1 is away from its own device (YES), the authentication device 2 executes the process of step S110. On the other hand, when the position determination unit 202 determines that the terminal 1 is not away from its own device (NO), the authentication device 2 executes the process of step S107.

(Step S107) The biological information management unit 203 holds the collated biological feature information VB stored in the storage unit 22 and the account information AI. That is, the biological information management unit 203 holds the collated biological feature information VB when the distance between the terminal 1 and the own device is shorter than a predetermined distance. After that, the authentication device 2 executes the process of step S108.

(Step S108) The biological information reading device 23 reads the biological information of the user of the terminal 1 and generates the biological characteristic information UB from the read biological information. The biological information reading device 23 outputs the generated biological characteristic information UB to the collating unit 204.
The collation unit 204 reads out the collation biological feature information VB and the account information AI from the collation data table of the storage unit 22. The collation unit 204 collates the read collation biometric information VB with the biometric information UB input from the biometric information reading device 23. When the collation biometric information VB and the biometric information UB match, the collation unit 204 determines that the biometric authentication is effective. When the collation biometric information VB and the biometric information UB do not match, the collation unit 204 determines that the biometric authentication is invalid.

When the collation unit 204 determines that the biometric authentication is valid (YES), the collation unit 204 transmits the account information AI and the authentication result AR indicating that the biometric authentication is valid to the authentication server 31. The biological information management unit 203 discards the collation data VD stored in the storage unit 22. After that, the authentication device 2 executes the process of step S109.
On the other hand, when the collating unit 204 determines that the biometric authentication is invalid (NO), the collating unit 204 sends the account information AI and the authentication result AR indicating that the biometric authentication is invalid to the authentication server 31. Send. The biological information management unit 203 discards the collation data VD stored in the storage unit 22. After that, the authentication device 2 executes the process of step S111.
In this way, the biometric information management unit 203 discards the first biometric information (verified biometric information VB) when the collating unit 204 completes the collation.

(Step S109) The transaction processing unit 206 causes the display unit 26 to display a screen for selecting the transaction content. The user of the terminal 1 selects the transaction content via the operation input unit 25. The transaction processing unit 206 executes various transaction processes according to the selected transaction content and ends the processes.
(Step S110) The biometric information management unit 203 discards the collated biometric feature information and the account information AI from the collated data table of the storage unit 22. That is, the biological information management unit 203 discards the biological characteristic information when the distance between the terminal 1 and the own device is longer than a predetermined distance. After that, the authentication device 2 ends the process.
(Step S111) The transaction processing unit 206 causes the display unit 26 to display a screen indicating transaction refusal, and ends the process.

As described above, the authentication device 2 includes a collation data receiving unit 200, a collation unit 204, a biometric information management unit 203, and a transaction processing unit 206.
The matching data receiving unit 200 receives the matching data VD including the first biological feature information (matched biological feature information VB) generated by the terminal 1 and the transaction specific information (account information AI) from the terminal 1.
The collation unit 204 acquires the second biometric information (biological feature information UB) from the biometric information reading device 23 provided in the own device, and the first biometric information (collation biometric information VB) included in the collation data VD. Check with.
The biometric information management unit 203 discards the first biometric information (verified biometric information VB) when the collating unit 204 completes the collation.
The transaction processing unit 206 identifies the transaction included in the collation data VD when the relationship between the first biometric information (verified biometric information VB) and the second biometric information (biological feature information UB) is correct based on the collation. Perform transaction processing based on information (account information AI).
With this configuration, the authentication device 2 according to the embodiment can hold the biometric authentication information only while the user performs biometric authentication, so that the vendor can efficiently hold the biometric authentication information of the user.

Further, the biological information management unit 203 holds the first biological feature information (matched biological feature information VB) when the distance from the terminal 1 of the own device is shorter than a predetermined distance, and the distance from the terminal 1 of the own device is reduced. When the distance is longer than a predetermined distance, the first biological feature information (matched biological feature information VB) is discarded.
With this configuration, the authentication device 2 according to the embodiment receives the first biometric feature information (verified biometric feature information VB) from the terminal 1, and then only when the distance to the terminal 1 of the own device is closer than a predetermined distance. Since one biometric information (verified biometric information VB) can be retained, the vendor can efficiently retain the user's biometric authentication information.

Further, the collation data receiving unit 200 receives the position information of the terminal 1 from the terminal 1 together with the collation data VD.
With this configuration, the authentication device 2 according to the embodiment can calculate the distance between the own device and the terminal 1 based on the position information of the terminal 1, and therefore the vendor is based on the distance between the own device and the terminal 1. However, the biometric authentication information of the user can be efficiently retained.

Further, the terminal 1 includes a collation data generation unit 101 and a collation data transmission unit 103.
The collation data generation unit 101 acquires the first biological feature information (matched biological feature information VB) from the biological information acquired from the biological information reading device 13 provided in the own device, and generates the first biological feature information (matched living body). The collation data VD including the feature information VB) and the transaction specific information (account information AI) acquired from the external server (vendor management server 3) is generated.
The collation data transmission unit 103 transmits the collation data VD to the authentication device 2.
With this configuration, since the terminal 1 according to the embodiment can generate the first biometric information (matched biometric information VB), it is possible to eliminate the need for the vendor to create the biometric authentication information of the user.

Further, the collation data transmission unit 103 transmits the position information of the own device to the authentication device 2 together with the collation data VD.
With this configuration, the terminal 1 according to the embodiment can notify the authentication device 2 of the position information of its own device, so that the vendor can notify the user's biometric authentication information based on the distance between the terminal 1 and the authentication device 2. Can be retained.

Further, the biological information management unit 203 discards the first biological characteristic information (matched biological characteristic information VB) when a predetermined time has elapsed.
With this configuration, the terminal 1 according to the embodiment can prevent the biometric authentication information of the user from being stored for a long time, so that the vendor can efficiently hold the biometric authentication information of the user.

Further, the terminal 1 is configured to include a collation data transmission control unit 105.
The collation data transmission control unit 105 controls whether or not the collation data transmission unit 103 transmits the collation data VD.
With this configuration, the terminal 1 according to the embodiment can select whether or not the user of the terminal 1 transmits the collation data VD. Therefore, only when the user of the terminal 1 wants to perform biometric authentication, the collation data VD is displayed. It can be transmitted to the authentication device 2.

(Second embodiment)
Hereinafter, the terminal 1a and the authentication device 2a according to the second embodiment of the present invention will be described with reference to the drawings. The biometric authentication system S1a according to the present embodiment includes a terminal 1a, an authentication device 2a, and a vendor management server 3.
In the first embodiment, an example in which the authentication device 2 calculates the distance between the terminal 1 and the own device based on the position information received from the terminal 1 has been described. In the second embodiment, an example will be described in which the authentication device 2a calculates the distance between the terminal 1a and the own device based on the radio wave intensity of the signal received from the terminal 1a.
Since the vendor management server 3 is common to the first embodiment and the second embodiment, the description thereof will be omitted.

FIG. 6 is a functional block diagram of the terminal 1a according to the present embodiment. The configuration of the terminal 1 according to the first embodiment (FIG. 2) and the terminal 1a according to the second embodiment differ in the presence or absence of the control unit 10a and the GPS module 14. Since the other configurations are the same as those of the terminal 1 according to the first embodiment, the description thereof will be omitted, and in the second embodiment, the parts different from those of the first embodiment will be mainly described.

The control unit 10a includes a software acquisition unit 100, a collation data generation unit 101, an encryption unit 102, a collation data transmission unit 103, an advertising signal transmission unit 104a, and a collation data transmission control unit 105. To.
The advertising signal transmission unit 104a transmits the advertising signal to the authentication device 2a via the communication unit 11. Here, the advertising signal is a signal for the terminal 1a to notify the destination device of the existence of its own device.

FIG. 7 is a functional block diagram of the authentication device 2a according to the present embodiment. In the configuration of the authentication device 2 according to the first embodiment (FIG. 3) and the authentication device 2a according to the second embodiment, the control unit 20a and the storage unit 22a are different. Since the other configurations are the same as those of the authentication device 2 according to the first embodiment, the description thereof will be omitted, and in the second embodiment, the parts different from those of the first embodiment will be mainly described.

The control unit 20a includes a collation data reception unit 200, a radio wave intensity measurement unit 201a, a position determination unit 202a, a biometric information management unit 203, a collation unit 204, a decoding unit 205, and a transaction processing unit 206. It is composed of.
The radio field intensity measuring unit 201a measures the radio field strength of the advertising signal. Here, the advertising signal is transmitted by the terminal 1a and received by the communication unit 21. The radio wave intensity measuring unit 201a arranges a set of a reception time when the advertising signal is received by the communication unit 21 and a radio wave intensity information indicating the radio wave intensity of the advertising signal in the order of reception time, which is radio wave intensity history information. Is generated and stored in the storage unit 22.
The position determination unit 202a determines whether or not the terminal 1 is away from the own device based on the radio wave intensity history information.
The storage unit 22a stores the radio wave intensity history information generated by the radio wave intensity measuring unit 201a as a radio wave intensity history information table.

FIG. 8 is a diagram showing a processing flow of the biometric authentication system according to the present embodiment. The process shown in this figure is executed when the operation of the biometric authentication system S1a is started.
The processes of step S200, step S201, step S202, step S203, step S207, step S208, step S209, step S210, and step S211 are the steps S100, step S101, step S102, step S103, and step in FIG. Since it is the same as each process of S107, step S108, step S109, step S110, and step S111, the description thereof will be omitted.

(Step S204) The process of step S204 differs from the process of step S104 in FIG. 5 only in that the terminal 1a transmits an advertising signal to the authentication device 2. Since the other processes are the same as the processes in step S104 in FIG. 5, the description thereof will be omitted, and the parts different from the processes in step S104 will be mainly described.
The collation data transmission unit 103 transmits the collation data VD to the authentication device 2 via the communication unit 11. When transmitting the collation data VD, the collation data transmission unit 103 causes the advertising signal transmission unit 104a to transmit the advertising signal to the authentication device 2.
The advertising signal transmission unit 104a transmits an advertising signal to the authentication device 2a in response to a request from the collation data transmission unit 103.

(Step S205) The terminal 1a receives a signal indicating that the verification data VD has been received from the authentication device 2a. When the terminal 1a receives the signal, the advertising signal transmission unit 104a transmits the advertising signal to the authentication device 2a via the communication unit 11 at predetermined time intervals. Here, the predetermined time is, for example, 2 seconds. After that, the authentication device 2a executes the process of step S206.

(Step S206) The process of step S206 differs from the process of step S106 in FIG. 5 only in that the position determination unit 202a calculates the distance between the terminal 1a and the own device based on the radio wave intensity information. Since the other processes are the same as the processes in step S106 in FIG. 5, the description thereof will be omitted, and the parts different from the processes in step S106 will be mainly described.
The communication unit 21 receives the advertising signal from the terminal 1a. The radio wave intensity measuring unit 201a generates radio wave intensity history information and stores it in the storage unit 22a.
The position determination unit 202a reads out the radio field intensity history information from the storage unit 22a. The position determination unit 202a determines whether or not the terminal 1a is away from its own device based on the read radio wave intensity history information.

The position determination unit 202a extracts a predetermined number of radio wave intensity information in the order of newest reception time from the radio wave intensity history information, and calculates the average value of the radio wave intensity indicated by the extracted radio wave intensity information. Here, the predetermined number is, for example, five.
The position determination unit 202a repeats a process of extracting a predetermined number of radio wave intensity information from the radio wave intensity history information in the order of newest reception time and calculating the average value of the radio wave intensity a predetermined number of times. Here, the predetermined number of times is, for example, five times.
The position determination unit 202 calculates the value of the distance between the terminal 1a and the own device for each reception time from the calculated average value of the radio wave intensity. The position determination unit 202 compares the calculated distance value for each reception time with the predetermined distance value. Here, the value of the predetermined distance is, for example, 10 meters.

When the position determination unit 202a determines that the terminal 1a is away from the own device (YES), the authentication device 2a executes the process of step S210. On the other hand, when the position determination unit 202a determines that the terminal 1a is not away from its own device (NO), the authentication device 2a executes the process of step S207.

As described above, the authentication device 2a includes a collation data receiving unit 200, a radio wave intensity measuring unit 201a, a collating unit 204, a biometric information management unit 203, and a transaction processing unit 206.
The radio wave strength measuring unit 201a measures the strength of the radio wave (advertising signal) received from the terminal 1a.
With this configuration, the authentication device 2a according to the embodiment can calculate the distance between the own device and the terminal 1a based on the strength of the received radio wave (advertising signal), so that the distance between the own device and the terminal 1a can be calculated. Based on this, the vendor can efficiently retain the biometric authentication information of the user.

A part of the terminals 1 and 1a in the above-described embodiment, for example, the control units 10 and 10a may be realized by a computer. Further, a part of the authentication devices 2 and 2a in the above-described embodiment, for example, the control units 20 and 20a may be realized by a computer. In that case, the program for realizing this control function may be recorded on a computer-readable recording medium, and the program recorded on the recording medium may be read by the computer system and executed. The "computer system" referred to here is a computer system built into the terminals 1, 1a, the authentication devices 2, and 2a, and includes hardware such as an OS and peripheral devices. Further, the "computer-readable recording medium" refers to a portable medium such as a flexible disk, a magneto-optical disk, a ROM, or a CD-ROM, or a storage device such as a hard disk built in a computer system. Furthermore, a "computer-readable recording medium" is a medium that dynamically holds a program for a short period of time, such as a communication line when a program is transmitted via a network such as the Internet or a communication line such as a telephone line. In that case, a program may be held for a certain period of time, such as a volatile memory inside a computer system serving as a server or a client. Further, the above-mentioned program may be a program for realizing a part of the above-mentioned functions, and may be a program for realizing the above-mentioned functions in combination with a program already recorded in the computer system.
Further, a part or all of the terminals 1, 1a and the authentication devices 2, 2a in the above-described embodiment may be realized as an integrated circuit such as an LSI (Large Scale Integration). Each functional block of the terminals 1, 1a and the authentication devices 2 and 2a may be individually made into a processor, or a part or all of them may be integrated into a processor. Further, the method of making an integrated circuit is not limited to LSI, and may be realized by a dedicated circuit or a general-purpose processor. Further, when an integrated circuit technology that replaces an LSI appears due to advances in semiconductor technology, an integrated circuit based on this technology may be used.

Although one embodiment of the present invention has been described in detail with reference to the drawings, the specific configuration is not limited to the above, and various design changes and the like are made without departing from the gist of the present invention. It is possible to do.

FIG. 9 is a diagram showing the minimum configuration of the authentication device 2 according to the present embodiment.
As shown in FIG. 9, the authentication device 2 includes at least the first biological feature information (matched biological feature information VB) generated by the terminal 1 at the time of transaction processing and the transaction specific information (account information AI). The second biological feature information (matched biological feature information VB) is acquired from the matching data receiving unit 200 that receives the data VD from the terminal and the biological information reading device 23 provided in the own device, and is included in the matching data VD. A collating unit 204 that collates with one biometric information (verified biometric information VB) and a biometric information management unit 203 that discards the first biometric information (verified biometric information VB) when the collating unit 204 completes the collation. , Transaction specific information (account) included in the matching data VD when the relationship between the first biological feature information (matched biological feature information VB) and the second biological feature information (matched biological feature information VB) is correct based on the matching. It includes a transaction processing unit 206 that performs transaction processing based on information AI).

S1 ... Biometric authentication system S1
1 ... Terminal 2 ... Authentication device 3 ... Vendor management server 10, 20 ... Control unit 11, 21 ... Communication unit 12, 22 ... Storage unit 13, 23 ... Biometric information Reading device 14 ... GPS module 15, 25 ... Operation input unit 16, 26 ... Display unit 24 ... Card reading unit 30 ... Software distribution server 31 ... Authentication server 32 ... Customer DB
100 ... software acquisition unit 101 ... collation data generation unit 102 ... encryption unit 103 ... collation data transmission unit 104 ... position information transmission unit 105 ... collation data transmission control unit 200 ...・ Collation data receiving unit 201 ・ ・ ・ Position information receiving unit 202 ・ ・ ・ Position determination unit 203 ・ ・ ・ Biometric information management unit 204 ・ ・ ・ Verification unit 205 ・ ・ ・ Decryption unit 206 ・ ・ ・ Transaction processing unit 301 ・・ ・ Software distribution department 302 ・ ・ ・ Encryption key creation department 310 ・ ・ ・ Account information management department 311 ・ ・ ・ Authentication department NW1, NW2 ・ ・ ・ Network

Claims (7)

A collation data receiving unit that receives collation data including the first biological feature information generated by the terminal and transaction specific information from the terminal during transaction processing.
A collation unit that acquires the second biometric information from the biometric information reading device provided in the own device and collates it with the first biometric information included in the collation data.
A biometric information management unit that discards the first biometric information when the collation unit completes collation,
When the relationship between the first biometric information and the second biometric information is correct based on the collation, a transaction processing unit that performs transaction processing based on the transaction specific information included in the collation data, and a transaction processing unit.
A position determination unit that determines whether or not the terminal is away from the own device,
Equipped with a,
The biometric information management unit holds the first biometric information when the position determination unit determines that the terminal is not away from the own device, and the position determination unit keeps the terminal away from the own device. When it is determined that, the first biological feature information is discarded.
Authentication device. Further, a position information receiving unit that receives the position information of the terminal from the terminal and generates position history information which is information in which a set of the reception time at which the position information is received and the position information are arranged in the order of the reception time. Prepare,
The position determination unit determines whether or not the terminal is away from the own device based on the position history information generated by the position information receiving unit.
The authentication device according to claim 1. Radio wave intensity history information, which is information obtained by measuring the intensity of radio waves received from the terminal and arranging a set of a reception time of receiving radio waves from the terminal and radio wave intensity information indicating the radio wave intensity of the radio waves in the order of the reception time. It is further equipped with a radio field intensity measuring unit that generates
The position determination unit determines whether or not the terminal is away from the own device based on the radio wave intensity history information generated by the radio wave intensity measurement unit.
The authentication device according to claim 1. The authentication device according to any one of claims 1 to 3 , wherein the biometric information management unit discards the first biometric information when a predetermined time has elapsed. An authentication system that includes a terminal and an authentication device.
The terminal
A collation data generator that generates collation data including the first biometric information acquired from the biometric information reader provided in the own device and the transaction specific information acquired from the external server.
A collation data transmission unit that transmits the collation data to the authentication device,
With
The authentication device is
During transaction processing, and the first biometric feature information which the terminal has generated, and the transaction the verification data including the specific information received from the terminal matching data receiving unit,
A matching unit that acquires the second biometric feature information from the biometric information reading device provided in the own device, performs collation between said first biometric characteristic information included in the verification data,
A biometric information management unit that discards the first biometric information when the collation unit completes collation,
Wherein when the relationship is correct with the second biometric feature information to the first biometric feature information based on the collation, a transaction processing unit for performing a transaction process based on the transaction identification information included in the verification data,
A position determination unit that determines whether or not the terminal is away from the own device,
Equipped with a,
The biometric information management unit holds the first biometric information when the position determination unit determines that the terminal is not away from the own device, and the position determination unit keeps the terminal away from the own device. When it is determined that the first biological feature information is discarded.
Authentication system. The collation data reception process of receiving the collation data including the first biological feature information generated by the terminal and the transaction specific information from the terminal at the time of transaction processing.
A collation process in which the second biometric information is acquired from the biometric information reader provided in the own device and collated with the first biometric information included in the collation data.
A biometric information management process that discards the first biometric information when collation is completed in the collation process,
When the relationship between the first biometric information and the second biometric information is correct based on the collation, a transaction processing process for performing transaction processing based on the transaction specific information included in the collation data, and a transaction processing process.
A position determination process for determining whether or not the terminal is away from the own device, and
Have a,
The biometric information management process retains the first biometric information when the position determination process determines that the terminal is not away from the own device, and the position determination process keeps the terminal away from the own device. When it is determined that, the first biological feature information is discarded.
Authentication method. On the computer
A collation data receiving step of receiving collation data including the first biological feature information generated by the terminal and transaction specific information from the terminal during transaction processing.
A collation step of acquiring the second biometric information from the biometric information reading device provided in the own device and collating with the first biometric information included in the collation data.
A biometric information management step that discards the first biometric information when collation is completed in the collation step,
When the relationship between the first biometric information and the second biometric information is correct based on the collation, a transaction processing step of performing a transaction process based on the transaction specific information included in the collation data, and a transaction processing step.
A position determination step for determining whether or not the terminal is away from the own device, and
A program for executing,
The biometric information management step holds the first biometric information when the position determination step determines that the terminal is not away from the own device, and the position determination step keeps the terminal away from the own device. When it is determined that, the first biological feature information is discarded.
program.

Images