JP7298737B2 - SERVER DEVICE, SYSTEM, CONTROL METHOD FOR SERVER DEVICE, AND COMPUTER PROGRAM - Google Patents

Description

The present invention relates to a server device, a terminal, a system, a server device control method, and a storage medium.

Patent Document 1 describes a ticketless boarding system that uses biometric information (face images) of passengers to carry out various procedures by facial recognition at multiple checkpoints (check-in lobby, security inspection area, boarding gate, etc.) in an airport. A system is disclosed.

Patent Literature 2 describes providing a security inspection confirmation system capable of enhancing security inspections at airports. The system of Patent Literature 2 includes a storage unit, a collation unit, and a notification unit. The storage unit stores first face image data of a person included in the first captured image acquired by the first imaging unit. The collation unit collates second facial image data of the passenger included in the second captured image acquired by the second imaging unit with the first facial image data. The notification unit notifies the result of collation by the collation unit.

JP 2007-079656 A JP 2019-125237 A

The systems disclosed in Patent Literature 1 and Patent Literature 2 implement user authentication by comparing biometric information registered in a storage unit (database) with biometric information obtained from a terminal. Here, as the number of users registered in the database increases, the number of users with similar faces increases, degrading authentication accuracy. In particular, a gate device installed at an airport or the like and used by passengers to board an aircraft is the final confirmation point in a series of boarding procedures.

A main object of the present invention is to provide a server device, a terminal, a system, a control method for the server device, and a storage medium that contribute to achieving highly accurate biometric authentication.

According to a first aspect of the present invention, a receiving unit that receives an authentication request from at least one or more terminals and a database that stores biometric information of each of a plurality of users is referred to, and the authentication request is processed. and a processing unit, wherein when the terminal that transmits the authentication request is a terminal of a predetermined type, the processing unit uses some of the plurality of biometric information to issue the authentication request. A server device is provided for processing.

According to a second aspect of the present invention, a terminal that transmits an authentication request including a terminal identifier indicating the type of the terminal to a server device that determines a database to be referred to when biometric authentication is performed. is provided.

According to a third aspect of the present invention, it includes at least one or more terminals, and a server device connected to the at least one or more terminals, wherein the server device receives an authentication request from the at least one or more terminals. a receiving unit for receiving; and a processing unit for processing the authentication request by referring to a database storing biometric information of each of a plurality of users. A system is provided for processing the authentication request using some of the plurality of biometric information when the terminal is of a predetermined type.

According to a fourth aspect of the present invention, the server device receives an authentication request from at least one or more terminals, and if the terminal that transmits the authentication request is a terminal of a predetermined type, the authentication request is stored in a database. A control method for a server device is provided, which processes the authentication request using a part of biometric information among a plurality of biometric information.

According to a fifth aspect of the present invention, a computer installed in a server device receives an authentication request from at least one or more terminals, and a terminal transmitting the authentication request is a predetermined type of terminal. In some cases, there is provided a computer-readable storage medium that stores a program for executing a process of executing an authentication process using a part of biometric information among a plurality of biometric information stored in a database. .

According to each aspect of the present invention, there are provided a server device, a terminal, a system, a server device control method, and a storage medium that contribute to achieving highly accurate biometric authentication. In addition, the effect of this invention is not limited above. Other effects may be achieved by the present invention instead of or in addition to this effect.

1 is a diagram for explaining an overview of an embodiment; FIG. BRIEF DESCRIPTION OF THE DRAWINGS It is a figure which shows an example of a schematic structure of the boarding procedure system which concerns on 1st Embodiment. It is a figure which shows an example of the table information which matches a terminal type and a terminal identifier which concern on 1st Embodiment. 4 is a diagram showing an example of a processing configuration of a check-in terminal according to the first embodiment; FIG. It is a figure for demonstrating operation|movement of the system registration part which concerns on 1st Embodiment. It is a figure which shows an example of the processing structure of the system registration part which concerns on 1st Embodiment. It is a figure which shows an example of the processing structure of the boarding gate apparatus which concerns on 1st Embodiment. FIG. 4 is a diagram showing an example of an authentication request according to the first embodiment; FIG. It is a figure showing an example of processing composition of a server device concerning a 1st embodiment. It is a figure which shows an example of the 1st authentication information database based on 1st Embodiment. It is a figure which shows an example of the 2nd authentication information database based on 1st Embodiment. It is a figure which shows an example of the 3rd authentication information database based on 1st Embodiment. It is a figure which shows an example of the business information database which concerns on 1st Embodiment. FIG. 4 is a sequence diagram showing an example of the operation of the boarding procedure system according to the first embodiment; It is a figure which shows an example of the hardware constitutions of a server apparatus.

First, an overview of one embodiment will be described. It should be noted that the drawing reference numerals added to this outline are added to each element for convenience as an example to aid understanding, and the description of this outline does not intend any limitation. Also, unless otherwise specified, the blocks depicted in each drawing represent the configuration of each function rather than the configuration of each hardware unit. Connecting lines between blocks in each figure include both bi-directional and uni-directional. The unidirectional arrows schematically show the flow of main signals (data) and do not exclude bidirectionality. In addition, in the present specification and drawings, elements that can be described in the same manner can be omitted from redundant description by assigning the same reference numerals.

A server device 100 according to one embodiment includes a receiving unit 101 and a processing unit 102 (see FIG. 1). The receiving unit 101 receives authentication requests from at least one or more terminals. The processing unit 102 refers to a database storing biometric information of each of a plurality of users and processes the authentication request. If the terminal that transmits the authentication request is of a predetermined type, the processing unit 102 processes the authentication request using some of the pieces of biometric information.

If the terminal that is the source of the authentication request is of a predetermined type, server device 100 processes the authentication request using part of the plurality of biometric information stored in the database. For example, if the terminal is a boarding gate device installed at the boarding gate, the server device 100 sets the biometric information regarding the passengers of the flight for which the boarding gate device determines whether the user can pass or not, as the target of biometric authentication. do. As a result, the number of entries to be collated is reduced, and the accuracy of biometric authentication is improved.

Specific embodiments will be described in more detail below with reference to the drawings.

[First embodiment]
The first embodiment will be described in more detail with reference to the drawings.

[System configuration]
FIG. 2 is a diagram showing an example of a schematic configuration of the boarding procedure system according to the first embodiment. The boarding procedure system according to the first embodiment is a system that implements a series of procedures (luggage check-in, security check, etc.) at an airport by biometric authentication. The boarding procedure system shown in FIG. 2 is operated, for example, by a public institution such as an immigration control bureau or a trustee entrusted with operations from the public institution.

In the disclosure of the present application, "boarding procedure" indicates a series of procedures from check-in to boarding an aircraft.

Referring to FIG. 2 , the boarding procedure system includes check-in terminal 10 , baggage drop machine 11 , passenger passage system 12 , gate device 13 , lounge gate 14 , boarding gate device 15 and server device 20 .

The check-in terminal 10, baggage drop machine 11, passenger passage system 12, gate device 13, lounge gate 14 and boarding gate device 15 are terminals (touch points) installed at the airport. These terminals are connected to the server device 20 via a network. The network shown in FIG. 2 is composed of a LAN (Local Area Network) including an airport private communication network, a WAN (Wide Area Network), a mobile communication network, and the like. The connection method is not limited to a wired method, and may be a wireless method.

The server device 20 is installed in a facility such as an airport company. Alternatively, the server device 20 may be a server installed in a cloud on a network.

Note that the configuration shown in FIG. 2 is an example, and is not intended to limit the configuration of the boarding procedure system. The boarding procedure system may include a terminal or the like (not shown).

A user's boarding procedure is performed by each terminal shown in FIG. Specifically, a series of procedures when the user leaves the country are sequentially carried out at terminals installed at five locations except for the lounge gate 14 . In the boarding procedure system shown in FIG. 2, a user's boarding procedure is realized by authentication using biometric information (biometric authentication).

The biometric information disclosed in the present application includes a face image, a fingerprint image, an iris image, a finger vein image, a palm print image, a palm vein image, and the like. The number of pieces of biometric information may be one or plural. Note that the term “biological information” in the disclosure of the present application means an image including all or part of a living body and a feature amount extracted from the image.

A user (system user) who wishes to use biometrics for boarding procedures operates the check-in terminal 10 to perform a "check-in procedure" upon arrival at the airport. A system user presents to the check-in terminal 10 a paper airline ticket, a two-dimensional bar code with boarding information, a mobile terminal displaying a copy of an e-ticket, or the like. The check-in terminal 10 outputs a boarding pass when the check-in procedure is completed. The boarding pass includes a paper boarding pass and an electronic boarding pass.

A system user who has completed the check-in procedure and who wishes to use the biometric authentication for boarding procedures uses the check-in terminal 10 to register with the system. Specifically, the system user causes the check-in terminal 10 to read the acquired boarding pass and passport. Also, the check-in terminal 10 acquires the system user's biometric information (eg, face image).

The check-in terminal 10 transmits information regarding these (boarding pass, passport, biometric information) to the server device 20 .

The server device 20 confirms the validity of the information acquired from the check-in terminal 10 . Specifically, the server device 20 confirms the legitimacy of the presented passport. After completing the confirmation, the server device 20 registers the system user. Specifically, the server device 20 issues a token that is used for the boarding procedure of the user registered in the system.

The issued token is identified by a token ID (Identifier). Information required for the boarding procedure (eg, biometric information, business information required for the boarding procedure, etc.) is associated via the token ID. That is, the "token" is issued together with the registration of the system user, and is identification information for the registered system user to undergo boarding procedures using biometric information. When the token (token ID) is issued, the system user can use the boarding procedure using biometric authentication.

In response to token generation, the server device 20 adds entries to various databases (DB; Data Base). The server device 20 mainly includes two types of databases.

A first type of database is an authentication information database that stores authentication information (a combination of a token ID and biometric information). The database stores at least token IDs and biometric information (face images, feature amounts) in association with each other. The server device 20 refers to the authentication information database and executes authentication processing.

The server device 20 includes first to third authentication information databases having different data storage structures. The server device 20 determines (selects) the authentication information database to be referred to according to the type of terminal that is the source of the authentication request. The details of determination of the authentication information database will be described later.

The second type of database is a database that stores business information (hereinafter referred to as a business information database). The business information database associates and stores the token ID and business information.

When a system user to whom a token has been issued arrives at a terminal (touch point; for example, baggage deposit machine 11 or the like), biometric information (for example, face image) is acquired at the terminal. The terminal transmits an authentication request including a terminal identifier indicating the type (category) of the terminal and a face image to the server device 20 .

A terminal identifier is identification information determined by a system administrator or the like. The server device 20 manages terminal identifiers and corresponding terminal types using table information as shown in FIG. A corresponding terminal identifier is registered (input) in each terminal. If multiple terminals of the same type are included in the system, they are assigned the same terminal identifier. For example, when multiple check-in terminals 10 are included in the system, “T01” is registered for each check-in terminal 10 .

Server device 20 refers to any one of the plurality of authentication information databases based on the terminal identifier extracted from the authentication request. The server device 20 executes matching processing (one-to-N matching; N is a positive integer, the same applies hereinafter) using the biometric information acquired from the terminal and the biometric information stored in the authentication information database. A token ID is specified by the matching process.

The server device 20 transmits to the terminal an authentication result including the token ID and business information specified by the authentication process (verification process). The user's boarding procedure is carried out based on the relevant business information.

The check-in terminal 10 is installed in the check-in lobby in the airport. As described above, the user uses the check-in terminal 10 to perform system registration for realizing boarding procedures using biometric authentication. Also, the system user operates the check-in terminal 10 to perform the check-in procedure. That is, the check-in terminal 10 is also a self-service terminal for performing check-in procedures by being operated by the user. The check-in terminal 10 is also called a CUSS (Common Use Self Service) terminal. After completing the check-in procedure, the user moves to the baggage check-in area or the security checkpoint.

The baggage deposit machine 11 is installed in an area adjacent to the baggage counter (manned counter) or in the vicinity of the check-in terminal 10 in the airport. The baggage deposit machine 11 is a self-service terminal operated by the user to carry out procedures for depositing baggage that is not carried into the aircraft (baggage deposit procedure). The baggage deposit machine 11 is also called a CUBD (Common Use Bag Drop) terminal. After completing the baggage check-in procedure, the user moves to the security checkpoint. If the user does not check baggage, the baggage check procedure is omitted.

The passenger passage system 12 is a gate device installed at the entrance of the security checkpoint in the airport. The passenger passage system 12 is also called a PRS (Passenger Reconciliation System), and is a system that determines whether or not a user can pass through at the entrance of a security checkpoint. After passing through the passenger passage system 12 and completing the security check procedure, the user moves to the immigration inspection area.

The gate device 13 is installed at the immigration control area in the airport. The gate device 13 is a device that automatically performs immigration procedures for the user. After completing the immigration procedures, the user moves to the departure area where lounges, duty-free shops and boarding gates are located.

The lounge gate 14 is provided in the departure area and installed at the entrance of the lounge. A user spends time until the aircraft takes off in a lounge operated by an airline company or the like. Normally, lounges can only be used by users of the airline company that operates the lounge. The lounge gate 14 is a gate device for verifying whether or not the user is qualified to use the lounge, and has nothing to do with boarding procedures.

The boarding gate device 15 is a traffic control device installed at each boarding gate in the departure area. The boarding gate device 15 is the final gate device in a series of procedures for departure examination (examination using biometric information). The boarding gate device 15 is also called an ABG (Automated Boarding Gates) terminal. The boarding gate device 15 confirms that the user is a passenger of an aircraft that can board from the boarding gate. After passing through the boarding gate device 15, the user boards the aircraft and departs for the second country.

The boarding procedure using biometric authentication by each device (check-in terminal 10, baggage drop machine 11, passenger passage system 12, gate device 13, boarding gate device 15) shown in FIG. It is not intended to limit the device to be used. For example, a device different from the above device may be used for the boarding procedure, or some of the above devices may not be used for the procedure. For example, the gate device 13 may not be included in the boarding procedure system.

The server device 20 is a server device for supporting and managing the boarding procedures. The server device 20 manages token IDs. Specifically, the server device 20 issues and invalidates token IDs. The server device 20 also processes authentication requests from various terminals in the airport.

Next, details of each device included in the boarding procedure system according to the first embodiment will be described. In the following description, a user's "face image" will be taken as an example of biometric information.

[Check-in terminal]
As described above, the check-in terminal 10 is a device that provides system users with operations related to check-in procedures and system registration.

FIG. 4 is a diagram showing an example of a processing configuration (processing modules) of the check-in terminal 10 according to the first embodiment. Referring to FIG. 4, the check-in terminal 10 includes a communication control unit 201, a system registration unit 202, a token issue request unit 203, a message output unit 204, a check-in execution unit 205, and a storage unit 206. include.

The communication control unit 201 is means for controlling communication with other devices. For example, the communication control unit 201 receives data (packets) from the server device 20 . Also, the communication control unit 201 transmits data to the server device 20 . The communication control unit 201 transfers data received from other devices to other processing modules. The communication control unit 201 transmits data acquired from other processing modules to other devices. In this manner, other processing modules transmit and receive data to and from other devices via the communication control unit 201 .

The system registration unit 202 is means for performing system registration of a user who desires boarding procedures by biometric authentication. For example, after completing the check-in procedure, the system registration unit 202 provides the user with a GUI (Graphical User Interface) for confirming whether or not the user desires "boarding procedure using a facial image". (see Figure 5).

When the user desires boarding procedures using a face image, the system registration unit 202 uses a GUI to acquire three pieces of information (information written on the boarding pass, information written on the passport, and biometric information). to obtain the three pieces of information.

The system registration unit 202 has three submodules. FIG. 6 is a diagram showing an example of a processing configuration (processing modules) of the system registration unit 202 according to the first embodiment. As shown in FIG. 6, the system registration unit 202 includes a boarding pass information acquisition unit 211, a passport information acquisition unit 212, and a biometric information acquisition unit 213.

The boarding pass information acquisition unit 211 is means for acquiring information (hereinafter referred to as boarding pass information) written on a boarding pass possessed by a system user. A boarding pass information acquisition unit 211 controls a reader (not shown) such as a scanner to acquire boarding pass information.

The boarding pass information includes name (surname, first name), airline code, flight number, boarding date, departure point (boarding airport), destination (arrival airport), seat number, boarding time, arrival time, and the like.

The passport information acquisition unit 212 is means for acquiring information described in the passport owned by the system user (hereinafter referred to as passport information). A passport information acquisition unit 212 controls a reader such as a scanner to acquire passport information.

The passport information includes a face image (hereinafter referred to as a passport face image), name, gender, nationality, passport number, passport issuing country, and the like.

The biometric information acquisition unit 213 is means for acquiring biometric information of a system user. The biometric information acquisition unit 213 controls the camera and acquires the facial image of the system user. For example, when the biometric information acquisition unit 213 detects a face in an image that is constantly or periodically captured, the biometric information acquisition unit 213 captures the face of the user and acquires the face image.

It is desirable that the biometric information acquisition unit 213 displays a guidance message regarding the photographing of the face image via the message output unit 204 before photographing the face image. For example, the biometric information acquisition unit 213 displays a message such as "Your facial image will be photographed and registered in the system. The registered facial image will be deleted from the system after boarding is completed."

The system registration unit 202 delivers the acquired three pieces of information (boarding pass information, passport information, biometric information) to the token issue request unit 203 .

A token issue requesting unit 203 shown in FIG. 4 is means for requesting the server device 20 to issue a token. The token issuance request unit 203 generates a token issuance request including boarding pass information, passport information, and biometric information (face image). The token issuance request unit 203 transmits the generated token issuance request to the server device 20 .

The token issuance request unit 203 delivers the response (response to the token issuance request) acquired from the server device 20 to the message output unit 204 .

The message output unit 204 is means for outputting various messages. For example, the message output unit 204 outputs a message according to the response obtained from the server device 20 .

When receiving a response (acknowledgment) to the effect that the token has been successfully issued, the message output unit 204 outputs that effect. For example, the message output unit 204 outputs a message such as "Future procedures can be performed by face authentication."

When receiving a response (negative response) to the effect that token issuance has failed, the message output unit 204 outputs that effect. For example, the message output unit 204 outputs a message such as "Sorry. Face authentication procedures cannot be performed. Please go to the manned booth."

The check-in execution unit 205 is means for performing check-in procedures for users. The check-in execution unit 205 executes check-in procedures such as seat selection based on the airline ticket presented by the user. For example, the check-in executing unit 205 transmits information written on an airline ticket to a DCS (Departure Control System), and acquires information written on a boarding pass from the DCS. Note that the operation of the check-in execution unit 205 can be the same as that of the existing check-in terminal, so a more detailed explanation will be omitted.

The storage unit 206 is means for storing information necessary for the operation of the check-in terminal 10 .

[Boarding gate device]
FIG. 7 is a diagram showing an example of a processing configuration (processing modules) of the boarding gate device 15 according to the first embodiment. Referring to FIG. 7 , boarding gate device 15 includes communication control section 301 , biometric information acquisition section 302 , authentication request section 303 , function implementation section 304 , and storage section 305 .

The communication control unit 301 is means for controlling communication with other devices. For example, the communication control unit 301 receives data (packets) from the server device 20 . Also, the communication control unit 301 transmits data to the server device 20 . The communication control unit 301 passes data received from other devices to other processing modules. The communication control unit 301 transmits data acquired from other processing modules to other devices. In this way, other processing modules transmit and receive data to and from other devices via the communication control unit 301 .

The biometric information acquisition unit 302 is means for controlling a camera (not shown) and acquiring biometric information of the user. The biometric information acquisition unit 302 captures an image of the front of the device periodically or at a predetermined timing. The biological information acquisition unit 302 determines whether or not the acquired image contains a face image of a person, and if the face image is contained, extracts the face image from the acquired image data.

Note that existing techniques can be used for face image detection processing and face image extraction processing by the biometric information acquisition unit 302, so detailed description thereof will be omitted. For example, the biometric information acquisition unit 302 may extract a face image (face region) from image data using a learning model learned by a CNN (Convolutional Neural Network). Alternatively, the biometric information acquisition unit 302 may extract a face image using a technique such as template matching.

The biometric information acquisition unit 302 hands over the extracted face image to the authentication request unit 303 .

The authentication requesting unit 303 is means for requesting the authentication of the user in front of the server device 20 . The authentication request unit 303 generates an authentication request including the terminal identifier assigned to its own device, the acquired face image, motion information, and the like (see FIG. 8).

The terminal identifier is as described above. "T06" assigned to the boarding gate device 15 is set as the terminal identifier.

The operation information is information relating to the operation of the boarding gate device 15 at the time of transmission of the authentication request. Specifically, the flight number (flight number) assigned to the aircraft for which the boarding gate device 15 determines whether boarding is permitted or not is set as the operation information.

Authentication request unit 303 receives a response from server device 20 to the authentication request.

If the authentication result is "authentication failure", the authentication requesting unit 303 notifies the user to that effect.

If the authentication result is "successful authentication", the authentication requesting unit 303 notifies the function realizing unit 304 to that effect. Also, the authentication requesting unit 303 passes the token ID and business information acquired from the server device 20 to the function realizing unit 304 .

The function implementation unit 304 is means for implementing the functions of the boarding gate device 15 . The function implementation unit 304 identifies the flight number of an aircraft on which the user (authenticated person) can board from the acquired business information. If the identified flight number matches the flight number assigned to the device itself, the function implementation unit 304 permits the authenticated person to pass through the gate. Note that the operation of the function implementation unit 304 can be the same as the operation of the existing boarding gate apparatus, so detailed description thereof will be omitted. Also, a staff member who works for the airline company of the aircraft boarded from the boarding gate device 15 may assign (input) the required flight number to the boarding gate device 15 .

The storage unit 305 is means for storing information necessary for the operation of the boarding gate device 15 .

[Other devices]
The basic processing configuration of other terminals (baggage drop machine 11, passenger passage system 12, gate device 13, lounge gate 14) included in the boarding procedure system is the same as the processing configuration of boarding gate device 15 shown in FIG. detailed description is omitted. Each terminal acquires the biometric information (face image) of the system user and requests the server device 20 for authentication using the acquired biometric information. After successful authentication, the function assigned to each terminal is executed.

However, the authentication request unit 303 of each terminal generates different authentication requests. Specifically, since the operation of the passenger passage system 12 and the authentication requesting unit 303 of the gate device 13 does not change depending on the time of day, installation location, etc., there is no need to set a value in the "operation information" (the operation information is can be blank). Alternatively, the authentication requesting unit 303 of the passenger passage system 12 or the like may transmit an authentication request that does not include operation information to the server device 20 .

The authentication requesting unit 303 of the baggage check-in machine 11 sets the airline code of the airline managing its own device as the operation information. Similarly, the authentication requesting unit 303 of the lounge gate 14 sets the airline code of the airline operating the lounge as the operation information.

[Server device]
FIG. 9 is a diagram showing an example of a processing configuration (processing modules) of the server device 20 according to the first embodiment. Referring to FIG. 9, the server device 20 includes a communication control unit 401, a token generation unit 402, a database management unit 403, an authentication request processing unit 404, and a storage unit 405.

The communication control unit 401 is means for controlling communication with other devices. For example, the communication control unit 401 receives data (packets) from the check-in terminal 10 . The communication control unit 401 also transmits data to the check-in terminal 10 . The communication control unit 401 transfers data received from other devices to other processing modules. The communication control unit 401 transmits data acquired from other processing modules to other devices. In this manner, other processing modules transmit and receive data to and from other devices via the communication control unit 401 . The communication control unit 401 functions as a receiving unit for receiving authentication requests from terminals.

The token generation unit 402 is means for generating a token in response to a token generation request from the check-in terminal 10 . At that time, the token generation unit 402 determines the legitimacy of the passport presented by the user.

Specifically, the token generation unit 402 determines whether the person who presented the passport to the check-in terminal 10 and the person who was issued the passport are the same person. In order to perform the determination, the token generation unit 402 extracts the facial image (system user's facial image) included in the token generation request and the passport facial image included in the passport information. Token generator 402 determines whether these two facial images substantially match.

The token generation unit 402 performs matching (one-to-one matching) of the two face images. The token generator 402 calculates feature vectors from each of the two images. The token generating unit 402 calculates the degree of similarity (e.g., Euclidean distance) between the two images, and determines whether the two images are facial images of the same person based on the result of threshold processing for the calculated degree of similarity. do. For example, if the similarity is greater than a predetermined value (if the distance is shorter than a predetermined value), the token generation unit 402 determines that the two face images are of the same person.

The token generation unit 402 issues a token when the validity determination of the passport using biometric information is successful. For example, the token generation unit 402 generates a unique value as the token ID based on the date and time of processing, the sequence number, and the like.

After generating the token (token ID), the token generation unit 402 transmits a positive response (token issue) to the check-in terminal 10 . If the token generation unit 402 fails to generate the token ID, the token generation unit 402 transmits a negative response (token not issued) to the check-in terminal 10 .

When the token generation unit 402 successfully generates (issues) the token ID, the token generation unit 402 delivers the generated token ID, boarding pass information, passport information, and facial image (system user's facial image) to the database management unit 403 .

The database management unit 403 is means (management unit) for managing various databases constructed in the server device 20 .

As described above, the server device 20 has multiple authentication information databases and business information databases.

A first authentication information database stores biometric information of each of a plurality of users. The first authentication information database stores authentication information (token ID, biometric information) regarding users without any particular classification (see FIG. 10). For example, the first authentication information database stores user authentication information in order of system registration.

The second authentication information database stores biometric information of each of a plurality of users for each airline company (airline code) (see FIG. 11).

The third authentication information database stores biometric information of each of a plurality of users for each flight number (see FIG. 12).

10 to 12, each authentication information database has fields for storing token IDs, feature amounts, invalidation flags, invalidation times, and the like.

As mentioned above, the token ID is a temporarily issued identifier. When the user completes the procedures at the boarding gate device 15, the token ID is invalidated. That is, the token ID is not a permanent identifier, but a one-time ID with a valid period (life cycle).

The invalid flag is flag information indicating whether the token ID is currently valid. The invalid flag is cleared to "0" if the token ID is valid, and set to "1" if it is invalid. The revocation time is a time stamp when the token ID was revoked.

Note that the authentication information database shown in FIGS. 10 to 12 is an example, and is not meant to limit the items to be stored. For example, the system user's face image, token issue time, token issue device, etc. may be stored in the authentication information database. Alternatively, the invalidation flag field and invalidation time field may not exist in the authentication information database.

The business information database is a database that manages information (business information) necessary for the user's boarding procedure. FIG. 13 is a diagram showing an example of the business information database. Referring to FIG. 13, the business information database has fields for storing token ID, passenger name, departure point, destination, airline code, flight number, operation date, and the like. In addition to the above fields, the business information database may have fields for storing sheet number, nationality, passport number, family name, first name, date of birth, gender, and the like. The work information database stores work information related to predetermined work (procedural work performed at each touch point) for each token ID.

The information stored in the business information database is obtained from boarding pass information and passport information.

When the database management unit 403 acquires the token ID from the token generation unit 402 (when the token ID is issued), it adds a new entry to each database. When adding entries to the second and third authentication information databases, the database management unit 403 acquires the airline code and flight number from the boarding pass information and adds entries to the corresponding areas.

When a new entry is added, the database management unit 403 sets a setting value in each database field. For example, the database management unit 403 generates feature amounts from registered face images, and registers the generated feature amounts in each authentication information database. Note that the database management unit 403 may set initial values (default values) for fields in which setting values cannot be set.

The authentication request processing unit 404 is means (processing unit) for processing an authentication request acquired from a terminal. The authentication request processing unit 404 refers to a database storing biometric information of each of a plurality of users, and processes authentication requests obtained from terminals. More specifically, the authentication request processing unit 404 processes authentication requests from at least one or more terminals by referring to any one of the first to third authentication information databases.

The authentication request processing unit 404 determines an authentication information database to refer to based on the terminal identifier included in the authentication request. Specifically, when receiving an authentication request from either the passenger passage system 12 or the gate device 13, the authentication request processing unit 404 refers to the first authentication information database. In other words, when the terminal identifier is either "T03" or "T04", the first authentication information database is selected and verification processing is executed.

When an authentication request is received from the baggage check-in machine 11 or the lounge gate 14 (terminal identifier is T02 or T05), the authentication request processing section 404 refers to the second authentication information database.

When an authentication request is received from boarding gate device 15 (terminal identifier is T06), authentication request processing section 404 refers to the third authentication information database.

Note that the authentication request processing unit 404 may determine the authentication information database to be referenced using table information that stores the relationship between the terminal identifier and the authentication information database to be referenced. The authentication request processing unit 404 narrows down biometric information to be used when processing the authentication request according to the type of terminal that has transmitted the authentication request.

The authentication request includes biometric information of the person to be authenticated. The authentication request processing unit 404 executes matching processing (1:N matching) using the biometric information included in the authentication request and the biometric information included in the authentication information database.

At that time, the authentication request processing unit 404 determines the search range of the authentication information database based on the operation information included in the authentication request.

Specifically, when referring to the first authentication information database, the authentication request processing unit 404 targets all areas (all entries) for matching processing. When referring to the second authentication information database, the authentication request processing unit 404 performs collation processing on the entry in the area (range) corresponding to the airline code obtained as the operation information. When referring to the third authentication information database, the authentication request processing unit 404 performs matching processing on the entries in the area (range) corresponding to the flight number obtained as the operation information.

When executing matching processing for entries registered in the authentication information database, the authentication request processing unit 404 generates a feature amount from the face image acquired from the terminal. The authentication request processing unit 404 extracts feature points from the face image. Since the existing technology can be used for the feature point extraction processing, detailed description thereof will be omitted. For example, the authentication request processing unit 404 extracts the eyes, nose, mouth, etc. from the face image as feature points. After that, the authentication request processing unit 404 calculates the position of each feature point and the distance between each feature point as a feature amount, and generates a feature vector composed of a plurality of feature amounts.

The authentication request processing unit 404 uses the generated feature amount (feature vector) as the matching side feature amount, the feature amount registered in the authentication information database and the valid feature amount (the feature amount of the entry that is not invalidated). are respectively set as feature values on the registration side.

The authentication request processing unit 404 calculates the degree of similarity between the verification-side feature amount and each of the plurality of registration-side feature amounts. Chi-square distance, Euclidean distance, or the like can be used for the degree of similarity. Note that the greater the distance, the lower the similarity, and the closer the distance, the higher the similarity.

The authentication request processing unit 404, among a plurality of feature quantities (valid feature quantities) registered in the authentication information database, if there is a feature quantity whose similarity to the feature quantity to be matched is equal to or greater than a predetermined value, Judge that the authentication was successful.

When the authentication is successful, the authentication request processing unit 404 identifies the token ID corresponding to the feature quantity with the highest degree of similarity. The authentication request processing unit 404 searches the business information database using the identified token ID as a key to identify the corresponding entry.

The authentication request processing unit 404 transmits the authentication result to the terminal (responds to the authentication request). When the authentication is successful, the authentication request processing unit 404 transmits to the terminal a response to that effect (authentication success), the business information specified from the business information database, and the token ID. If the authentication fails, the authentication request processing unit 404 transmits a response to that effect (authentication failure) to the terminal.

The storage unit 405 stores various information necessary for the operation of the server device 20 . An authentication information database and a business information database are constructed in the storage unit 405 .

[System operation]
Next, operations of the boarding procedure system according to the first embodiment will be described. FIG. 14 is a sequence diagram showing an example of the operation of the boarding procedure system according to the first embodiment. The operation of executing the authentication process from the boarding gate device 15 will be described with reference to FIG. 14 . A description of operations related to system registration is omitted.

The boarding gate device 15 acquires the face image of the user (person to be authenticated) and transmits an authentication request to the server device 20 (step S01).

Server device 20 extracts a terminal identifier from the authentication request, and determines a database to be used for matching processing from among a plurality of authentication information databases based on the extracted terminal identifier (step S02). In this case, having received an authentication request from the boarding gate device 15, the server device 20 selects the third authentication information database.

Server device 20 determines the search range in the selected authentication information database based on the operation information included in the authentication request (step S03). In this case, the server device 20 selects, as a search range, the entries stored in the third authentication information database by classifying them according to the flight number (flight number) included in the authentication request. In the example of FIG. 12, if the flight number set in the operation information is "FL01", the entries in the first to third rows are selected as the search range entries.

Server device 20 generates a feature amount from the face image included in the authentication request (step S04).

The server device 20 executes authentication processing using the biometric information (authentication information) included in the search range of the selected authentication information database (step S05).

If the authentication succeeds (step S06, Yes branch), the server device 20 searches the business information database using the token ID obtained by the collation process as a key (step S07).

If the authentication fails (step S06, No branch), the server device 20 executes the process of step S08.

The server device 20 transmits the authentication result (authentication success, authentication failure) to the boarding gate device 15 (step S08). If the authentication is successful, the server device 20 transmits a response including the business information specified in the search in step S07 to the boarding gate device 15. FIG.

The boarding gate device 15 that has received the authentication result performs business processing according to the content (step S09). When receiving a successful authentication, the boarding gate device 15 determines whether or not the user (authenticated person) is qualified to board the aircraft. Specifically, the boarding gate device 15 determines whether or not the flight number (flight number) assigned to itself matches the flight number included in the business information.

When it is determined that the user can board the aircraft, the boarding gate device 15 permits the authenticated person to pass through the gate. When it is determined that the user is not allowed to board the aircraft, the boarding gate device 15 does not permit the authenticated person to pass through the gate.

The boarding gate device 15 notifies the server device 20 when the authenticated person passes through the gate. Specifically, the boarding gate device 15 notifies the server device 20 of the token ID of the successfully authenticated person. The database management unit 403 of the server device 20 invalidates the entry corresponding to the successfully authenticated person who passed through the gate. Specifically, the database management unit 403 sets "1" in the invalid flag field of the corresponding entry. At that time, the database management unit 403 invalidates the corresponding entries in each of the first to third authentication information databases. That is, when the successfully authenticated person passes through the boarding gate device 15, the database management unit 403 invalidates the entry of the user who passed through the boarding gate device 15 among the entries stored in each of the first to third authentication information databases. to

Since the server device 20 sets the biometric information stored in the valid entry among the first to third authentication information databases as the biometric information on the registration side, the amount of data in each database increases as the user boards the aircraft. to shrink. Therefore, in the authentication process using the second and third authentication information databases, the amount of data is reduced due to the user completing the boarding procedure, and the amount of data is reduced by narrowing down the search range for each airline code or flight number. can benefit from a reduction in

As described above, in the first embodiment, the authentication information database to be referred to is determined according to the type of the sender of the authentication request, and the search range of each database is determined according to the operation status of the sender. As a result, when the entry search range can be narrowed down like the lounge gate 14 and the boarding gate device 15, the amount of data stored in the database is substantially reduced and the authentication accuracy is improved. That is, the authentication request processing unit 404 of the server device 20 issues an authentication request using a part of biometric information among a plurality of biometric information when the terminal that is the transmission source of the authentication request is a terminal of a predetermined type. process. For example, if the source of the authentication request is the boarding gate device 15, the server device 20 determines whether the boarding gate device 15 determines whether the user can pass through the flight (the boarding gate device 15 determines whether the user can pass or not). process the authentication request using the biometric information of the flight being determined. In the third authentication information database that classifies and stores user's biometric information for each flight, the number of users of each flight (aircraft, flight number) is very small compared to the total number of system users. Therefore, the number of entries to be collated is reduced, and the accuracy of biometric authentication is improved.

Next, the hardware of each device that constitutes the boarding procedure system will be described. FIG. 15 is a diagram showing an example of the hardware configuration of the server device 20. As shown in FIG.

The server device 20 can be configured by an information processing device (so-called computer), and has a configuration illustrated in FIG. 15 . For example, the server device 20 includes a processor 311, a memory 312, an input/output interface 313, a communication interface 314, and the like. Components such as the processor 311 are connected by an internal bus or the like and configured to be able to communicate with each other.

However, the configuration shown in FIG. 15 is not meant to limit the hardware configuration of the server device 20 . The server device 20 may include hardware (not shown) and may not have the input/output interface 313 as necessary. Also, the number of processors 311 and the like included in the server device 20 is not limited to the example illustrated in FIG.

The processor 311 is, for example, a programmable device such as a CPU (Central Processing Unit), MPU (Micro Processing Unit), DSP (Digital Signal Processor). Alternatively, the processor 311 may be a device such as an FPGA (Field Programmable Gate Array), an ASIC (Application Specific Integrated Circuit), or the like. The processor 311 executes various programs including an operating system (OS).

The memory 312 is RAM (Random Access Memory), ROM (Read Only Memory), HDD (Hard Disk Drive), SSD (Solid State Drive), or the like. The memory 312 stores an OS program, application programs, and various data.

The input/output interface 313 is an interface for a display device and an input device (not shown). The display device is, for example, a liquid crystal display. The input device is, for example, a device such as a keyboard or mouse that receives user operations.

The communication interface 314 is a circuit, module, etc. that communicates with other devices. For example, the communication interface 314 includes a NIC (Network Interface Card) or the like.

The functions of the server device 20 are implemented by various processing modules. The processing module is implemented by the processor 311 executing a program stored in the memory 312, for example. Also, the program can be recorded in a computer-readable storage medium. The storage medium can be non-transitory such as semiconductor memory, hard disk, magnetic recording medium, optical recording medium, and the like. That is, the present invention can also be embodied as a computer program product. Also, the program can be downloaded via a network or updated using a storage medium storing the program. Furthermore, the processing module may be realized by a semiconductor chip.

Note that the check-in terminal 10, the boarding gate device 15, and the like can also be configured by an information processing device like the server device 20, and the basic hardware configuration thereof is the same as that of the server device 20, so description thereof will be omitted. . The check-in terminal 10 or the like may be equipped with a camera or the like.

The server device 20 is equipped with a computer, and the functions of the server device 20 can be realized by causing the computer to execute a program. Further, the server device 20 executes a server device control method by the program.

[Modification]
The configuration, operation, and the like of the boarding procedure system described in the above embodiment are examples, and are not meant to limit the configuration and the like of the system.

In the above embodiment, system registration is performed after the user's check-in procedure, but system registration may be performed before check-in procedure. In this case, since the boarding pass is not issued before the check-in procedure, the server device 20 can be registered in the system using the airline ticket information instead of the boarding pass.

In the above embodiment, the case where system registration (registration for implementing boarding procedures using biometric authentication) is performed at the check-in terminal 10 has been described. However, system registration may be performed at a device or terminal other than the check-in terminal 10 . For example, a device dedicated to system registration may be installed at the airport, or system registration may be performed at terminals (touch points) such as the baggage drop machine 11 and the passenger transit system 12 .

In the above-described embodiment, a case where a series of boarding procedures are performed by biometric authentication has been described, but some procedures may be performed by biometric authentication. For example, in FIG. 2, system registration may be performed at the baggage deposit machine 11, and procedures after baggage deposit (security inspection, etc.) may be performed by biometric authentication. In other words, part of the series of boarding procedures may be carried out at a manned booth or the like.

In the above embodiment, the case where the server device 20 has a plurality of databases has been described. However, the authentication information database and the business information database constructed in the server device 20 may be constructed in a database server different from the server device 20 . That is, the boarding procedure system may include various means (for example, token generation means) and the like described in the above embodiments.

In the above embodiment, the authentication request includes a face image, but the authentication request may include a feature amount generated from the face image. In this case, the server device 20 may process the authentication request using the feature amount extracted from the authentication request and the feature amount registered in the authentication information database.

The server device 20 may delete the invalidated entry after a predetermined period of time has passed since the entry was invalidated. More specifically, the database management unit 403 may periodically refer to the invalidation time field of the authentication information database, and delete entries after a predetermined period of time (for example, 24 hours) has passed since the invalidation of the entry.

In the above embodiment, the case where three authentication information databases are prepared has been described. Specifically, an airline code field and a flight number field may be provided in the first authentication information database, and the server device 20 may refer to these fields to process the authentication request. For example, when an authentication request is obtained from the lounge gate 14, the server device 20 may select entries in which the same value as the airline code included in the authentication request in the airline code field is set as the target of the matching process. good. That is, the server device 10 has a database that includes an airline code field that stores an airline code and a flight number field that stores a flight number for each of a plurality of users. The authentication request processing unit 404 determines whether or not to refer to the value of the airline code field or the flight number field when processing the authentication request, based on the type of terminal that is the transmission source of the authentication request. For example, if the terminal is the boarding gate device 15, the authentication request processing unit 404 refers to the value of the flight number field of the database, and collates the passengers of the flight for which the boarding gate device 15 determines whether the user can pass or not. Set as a target for processing. In this manner, the authentication request processing unit 404 narrows down biometric information to be used when processing an authentication request according to at least one or more types of terminals.

Alternatively, the second and third authentication information databases may be further divided. Specifically, one authentication information database may store entries corresponding to one airline code or flight number. That is, the server device 20 may have a second authentication information database group and a third authentication information database group.

When users of multiple airlines can use the same lounge, the lounge gate 14 may set the airline code corresponding to each airline in the operation information. For example, if users (passengers) of airline company A and airline company B can use the same lounge, airline codes of airline company A and airline company B may be set as operation information. In this case, the authentication request processing unit 404 may subject the entries corresponding to each of the plurality of airline codes set in the operation information among the entries of the second authentication information database to the matching process.

The form of data transmission/reception between the check-in terminal 10 or the like and the server device 20 is not particularly limited, but the data transmitted/received between these devices may be encrypted. Boarding pass information and passport information include personal information, and in order to properly protect the personal information, it is desirable to send and receive encrypted data.

In the flowcharts (flowcharts, sequence diagrams) used in the above description, a plurality of steps (processes) are described in order, but the execution order of the steps executed in the embodiment is not limited to the described order. In the embodiment, the order of the illustrated steps can be changed within a range that does not interfere with the content, such as executing each process in parallel.

The above embodiments have been described in detail to facilitate understanding of the present disclosure, and are not intended to require all the configurations described above. Also, when a plurality of embodiments are described, each embodiment may be used alone or in combination. For example, it is possible to replace part of the configuration of the embodiment with the configuration of another embodiment, or to add the configuration of another embodiment to the configuration of the embodiment. Furthermore, additions, deletions, and replacements of other configurations are possible for some of the configurations of the embodiments.

Although the industrial applicability of the present invention is clear from the above description, the present invention can be suitably applied to a boarding procedure system at an airport or the like. However, the application of the present disclosure is not limited to airport procedures, and the present disclosure is applicable to systems that require multiple procedures.

Some or all of the above embodiments may also be described in the following additional remarks, but are not limited to the following.
[Appendix 1]
a receiving unit that receives authentication requests from at least one or more terminals;
a processing unit that references a database that stores biometric information of each of a plurality of users and processes the authentication request;
with
The server device, wherein the processing unit processes the authentication request using part of the plurality of pieces of biometric information when the terminal that transmits the authentication request is a terminal of a predetermined type.
[Appendix 2]
a first authentication information database that stores biometric information of each of the plurality of users;
a second authentication information database that stores biometric information of each of the plurality of users for each airline;
a third authentication information database that stores the biometric information of each of the plurality of users for each flight number;
further comprising
The processing unit determines a database to be referenced from among the first to third databases according to the type of the at least one or more terminals, and refers to the determined database to process the authentication request. The server device according to appendix 1.
[Appendix 3]
The at least one or more terminals transmit the authentication request including a terminal identifier indicating the type of the own device,
The server device according to appendix 2, wherein the processing unit determines the authentication information database to be referred to based on the terminal identifier.
[Appendix 4]
The at least one or more terminals transmit the authentication request including operation information regarding the operation of the own device at the time of transmission of the authentication request,
The server device according to appendix 3, wherein the processing unit determines a search range of the determined authentication information database based on the operation information.
[Appendix 5]
When the at least one or more terminals are a passenger passage system installed at an airport or a gate device for performing immigration procedures, the processing unit refers to the first authentication information database and performs verification processing. The server device according to appendix 4.
[Appendix 6]
When the at least one terminal is a baggage drop machine installed at an airport, the baggage drop machine sets an airline code of an airline managing the device to the operation information,
6. The server device according to appendix 4 or 5, wherein the processing unit performs collation processing on entries in the area corresponding to the airline code set as the operation information among the entries in the second authentication information database. .
[Appendix 7]
when the at least one terminal is a lounge gate installed in a lounge, the lounge gate sets an airline code of an airline operating the lounge to the operation information;
7. The processing unit according to any one of appendices 4 to 6, wherein, among the entries of the second authentication information database, the entry in the area corresponding to the airline code set as the operation information is subjected to collation processing. Server equipment as described.
[Appendix 8]
When the at least one terminal is a boarding gate device that determines whether or not to board an aircraft, the boarding gate device sets the flight number for which it is determined whether or not to board the aircraft in the operation information,
8. The method according to any one of appendices 4 to 7, wherein the processing unit performs a matching process on an entry in an area corresponding to the flight number set as the operation information among the entries in the third authentication information database. server equipment.
[Appendix 9]
The lounge gate sets airline codes of a plurality of airlines as the operation information,
8. The server device according to appendix 7, wherein the processing unit performs collation processing on entries corresponding to each of the plurality of airline codes set in the operation information among the entries in the second authentication information database.
[Appendix 10]
further comprising a management unit that manages the first to third authentication information databases;
When the successfully authenticated person passes through the boarding gate device, the management unit invalidates the entry of the user who passed through the boarding gate device among the entries stored in each of the first to third authentication information databases. , Supplementary Note 8.
[Appendix 11]
11. The server device according to any one of appendices 1 to 10, wherein the biometric information is a face image or a feature amount generated from the face image.
[Appendix 12]
the database includes an airline code field that stores an airline code and a flight number field that stores a flight number for each of the plurality of users;
wherein the processing unit determines whether to refer to the value of the airline code field or the flight number field when processing the authentication request based on the type of the at least one or more terminals; Server equipment as described.
[Appendix 13]
A terminal that transmits an authentication request including a terminal identifier indicating a type of the terminal to a server device that determines a database to be referred to when biometric authentication is performed.
[Appendix 14]
14. The terminal according to supplementary note 13, wherein the terminal transmits the authentication request including operation information regarding the operation of the own device at the time of transmission of the authentication request to the server device.
[Appendix 15]
at least one or more terminals;
a server device connected to the at least one or more terminals;
including
The server device
a receiving unit that receives an authentication request from the at least one or more terminals;
a processing unit that references a database that stores biometric information of each of a plurality of users and processes the authentication request;
with
The system, wherein the processing unit processes the authentication request using part of the plurality of biometric information when the terminal that transmits the authentication request is of a predetermined type.
[Appendix 16]
in the server device,
receiving an authentication request from at least one or more terminals;
A method for controlling a server device, wherein when a terminal that transmits the authentication request is a terminal of a predetermined type, the authentication request is processed using a part of biometric information among a plurality of biometric information stored in a database. .
[Appendix 17]
The computer installed in the server device,
a process of receiving an authentication request from at least one or more terminals;
If the terminal that transmits the authentication request is a terminal of a predetermined type, a process of executing authentication processing using some of the plurality of biometric information stored in a database;
A computer-readable storage medium that stores a program for executing

It should be noted that the respective disclosures of the cited prior art documents are incorporated herein by reference. Although the embodiments of the present invention have been described above, the present invention is not limited to these embodiments. Those skilled in the art will appreciate that these embodiments are illustrative only and that various modifications can be made without departing from the scope and spirit of the invention. That is, the present invention naturally includes various variations and modifications that can be made by those skilled in the art according to the entire disclosure including claims and technical ideas.

10 Check-in terminal 11 Baggage deposit machine 12 Passenger passage system 13 Gate device 14 Lounge gate 15 Boarding gate device 20, 100 Server device 101 Reception unit 102 Processing unit 201, 301, 401 Communication control unit 202 System registration unit 203 Token issuance request unit 204 message output unit 205 check-in execution unit 206, 305, 405 storage unit 211 boarding pass information acquisition unit 212 passport information acquisition unit 213, 302 biometric information acquisition unit 303 authentication request unit 304 function implementation unit 311 processor 312 memory 313 input/output interface 314 Communication interface 402 Token generation unit 403 Database management unit 404 Authentication request processing unit

Claims (18)

a receiving unit that receives authentication requests from at least one type of terminal;
a processing unit that references a database that stores biometric information of each of a plurality of users and processes the authentication request;
with
The terminal transmits the authentication request including a terminal identifier indicating the type of the own device and operation information regarding the operation of the own device at the time of transmission of the authentication request,
The processing unit determines a search range of the database based on the terminal identifier and the operation information, and transmits the authentication request based on a plurality of pieces of biometric information stored in the database within the verified search range. A server device that processes the authentication request using biometric information according to the type of the terminal. The terminal is a terminal that is installed at an airport and that transmits the authentication request containing the user 's biometric information,
2. The server device according to claim 1, wherein the type of said terminal is a type according to a user 's purpose of use. 2. The server device according to claim 1, wherein the types of said terminals are check-in terminals, baggage drop machines, passenger passage systems, gate devices, lounge gates and boarding gate devices. When the type of the terminal that transmits the authentication request is a passenger transit system installed at an airport or a gate device that conducts immigration procedures, the processing unit generates a 4. The server device according to any one of claims 1 to 3, wherein biometric information of each of a plurality of users stored in said database is determined as biometric information, and matching processing is executed. When the type of the terminal that transmits the authentication request is a baggage drop machine installed at an airport, the airline code of the airline that manages the own device is transmitted from the baggage drop machine as the operation information. 5. The server device according to any one of claims 1 to 4 , wherein said processing unit determines a search range of said database using the transmitted airline code. When the type of the terminal that transmits the authentication request is a lounge gate installed in a lounge, an airline code of an airline operating the lounge is transmitted from the lounge gate as the operation information, The server device according to any one of claims 1 to 5 , wherein the processing unit determines a search range of the database using the transmitted airline code. When the type of the terminal that transmits the authentication request is a boarding gate device that determines whether boarding is permitted or not, the flight number for which boarding is determined as the operation information from the boarding gate device is transmitted, and the processing unit determines a search range of the database using the flight number. From the lounge gate, airline codes of a plurality of airlines are transmitted as the operation information,
7. The server device according to claim 6 , wherein said processing unit determines a search range of said database corresponding to each of a plurality of airline codes transmitted from said lounge gate. further comprising a management unit that manages the database,
When a user who has been successfully authenticated by the processing of the processing unit passes through the boarding gate device, the management unit selects the user who has passed through the boarding gate device among the entries for each user stored in the database. 8. The server device according to claim 7 , wherein the entry of is invalidated. 10. The server device according to any one of claims 1 to 9 , wherein the biometric information is a face image or a feature amount generated from the face image. a receiving unit that receives authentication requests from at least one type of terminal;
a processing unit that references a database that stores biometric information of each of a plurality of users and processes the authentication request;
with
The database includes an airline code field that stores an airline code and a flight number field that stores a flight number for each of a plurality of users,
The processing unit, when processing the authentication request, determines whether to refer to the value of the airline code field or the flight number field based on the type of the terminal that transmits the authentication request. A server device that processes the authentication request using biometric information corresponding to the type of the terminal that transmits the authentication request, among the plurality of biometric information stored in the database within the narrowed down search range. a receiving unit that receives authentication requests from at least one type of terminal;
a processing unit that references a database that stores biometric information of each of a plurality of users and processes the authentication request;
with
The databases include a first authentication information database that stores biometric information of each of a plurality of users , a second authentication information database that stores biometric information of each of a plurality of users for each airline company, and a plurality of a third authentication information database that stores biometric information of each user for each flight number;
The processing unit determines an authentication information database to be referenced from among the first to third authentication information databases according to the type of the terminal that transmits the authentication request, and stores the information in the determined authentication information database. A server device that processes the authentication request using a plurality of biometric information stored in the server. at least one type of terminal;
a server device according to any one of claims 1, 11, and 12 connected to at least one or more types of said terminals;
system, including a receiving unit that receives authentication requests from multiple types of terminals;
a processing unit that references a database that stores biometric information of each of a plurality of users using at least one type of terminal among a plurality of types of terminals, and processes the authentication request;
with
The processing unit narrows down a search range of the plurality of users' biometric information stored in the database according to the type of the terminal that has transmitted the authentication request. to process the authentication request. The server device
receiving from at least one or more types of terminals an authentication request including a terminal identifier indicating the type of the device and operation information regarding the operation of the device ;
When processing the authentication request using biometric information corresponding to the type of the terminal that transmits the authentication request, among the plurality of biometric information stored in a database that stores the biometric information of each of a plurality of users (b) a search range of the database is determined based on the terminal identifier and the operation information, and a plurality of pieces of biometric information stored in the database within the verified search range and the type of the terminal that transmits the authentication request; and processing the authentication request using biometric information according to the server apparatus. The server device
receive authentication requests from multiple types of terminals,
Among the biometric information of a plurality of users stored in a database that stores biometric information of each of a plurality of users using at least one type of terminal out of a plurality of types of terminals, the terminal that transmitted the authentication request A method of controlling a server device, wherein the authentication request is processed using biometric information of a plurality of users whose search range of the database is narrowed down according to type. The computer installed in the server device,
A process of receiving an authentication request including a terminal identifier indicating the type of the device and operation information regarding the operation of the device from at least one type of terminal;
a process of executing authentication processing using biometric information corresponding to the type of the terminal that transmits the authentication request, among a plurality of biometric information stored in a database that stores biometric information of each of a plurality of users; determining a search range of the database based on the terminal identifier and the operation information, and transmitting the authentication request to the terminal, which includes a plurality of pieces of biometric information stored in the database within the verified search range; A process of executing the authentication request using the biometric information according to the type ;
A computer program for executing The computer installed in the server device,
a process of receiving authentication requests from multiple types of terminals;
Among the biometric information of a plurality of users stored in a database that stores biometric information of each of a plurality of users using at least one type of terminal out of a plurality of types of terminals, the terminal that transmitted the authentication request a process of performing an authentication process using the biometric information of a plurality of users whose search range of the database is narrowed down according to the type;
A computer program for executing

Images