JP7357583B2 - Mediation server and programs - Google Patents

Description

The present invention relates to a mediation server and a program.

In recent years, technology has been developed to distribute key information used for unlocking and locking a lock device to a portable device owned by a user. For example, Patent Document 1 discloses a system that distributes key data for unlocking a locking device of a car to a user terminal owned by the user based on a request from the user. has been done.

Japanese Patent Application Publication No. 2004-190233

On the other hand, unlike the system disclosed in Patent Document 1, a service in which the user who requests distribution of key information is different from the user who owns the device to which the key information is distributed is also envisioned. In this case, as the number of users of the service increases, data management such as relationships between users may become complicated.

Therefore, the present invention has been made in view of the above problems, and an object of the present invention is to provide a mechanism that can efficiently manage data with a simpler configuration in the distribution of key information. It is about providing.

In order to solve the above problems, according to one aspect of the present invention, a portable device owned by a user is authenticated via wireless communication, and when the authentication is successful, a specified locking device is unlocked or The control device that controls locking is acquired based on the first device identifier used to identify the control device included in the first distribution request issued by the administrator of the controlled object in which the control device is installed. and a second device identifier related to the portable device obtained based on the second device identifier and a first device identifier used to identify the portable device included in the first distribution request. a control unit configured to control transmission of the second distribution request to the distribution server, the control unit controlling transmission of the second distribution request to the distribution server, and controlling transmission of the second distribution request to the distribution server. Identifying key information used to establish authentication by the control device specified based on the second device identifier included in the distribution request, based on the second device identifier included in the second distribution request. An intermediary server is provided that allows delivery to the portable device.

In order to solve the above problems, according to another aspect of the present invention, a computer authenticates a portable device owned by a user via wireless communication, and if the authentication is successful, a specified locking device is activated. acquired based on a first device identifier used to identify the control device included in a first distribution request issued by a manager of a controlled object in which a control device that controls unlocking or locking of the control device is installed. a second device identifier related to the portable device obtained based on a second device identifier related to the control device and a first device identifier used to identify the portable device included in the first distribution request; A control function that controls transmission of the included second distribution request is realized, and the control function controls the distribution server so that the second distribution request is transmitted to the distribution server. The key information used for establishing authentication by the control device specified based on the second device identifier included in the second distribution request is transmitted to the second distribution request included in the second distribution request. A program is provided that is distributed to the portable device identified based on a device identifier.

As explained above, according to the present invention, it is possible to efficiently manage data with a simpler configuration.

1 is a block diagram showing an example of the configuration of a system according to an embodiment of the present invention. It is a block diagram showing an example of composition common to each device with which a system concerning the same embodiment is provided. FIG. 3 is a diagram illustrating an example data structure of a device management table stored in the storage unit of the reservation server according to the embodiment. FIG. 3 is a diagram illustrating an example data structure of a device management table stored in the storage unit of the reservation server according to the embodiment. FIG. 7 is a diagram illustrating an example data structure of a device management table stored in the storage unit of the distribution server according to the embodiment. FIG. 3 is a diagram illustrating an example data structure of a device management table stored in a storage unit of a distribution server according to the embodiment. FIG. 7 is a diagram illustrating an example data structure of a device management table stored in a storage unit of the mediation server according to the embodiment. FIG. 3 is a diagram illustrating an example data structure of a device management table stored in the storage unit of the mediation server according to the embodiment. FIG. 7 is a diagram illustrating an example data structure of a distribution destination user management table stored in the storage unit of the mediation server according to the embodiment. FIG. 7 is a diagram illustrating an example data structure of a distribution destination control object management table stored in the storage unit of the intermediary server according to the embodiment. FIG. 6 is a diagram illustrating an example data structure of a usage history table stored in a storage unit of the mediation server according to the embodiment. FIG. 3 is a sequence diagram showing the flow of processing by the stem according to the embodiment.

DESCRIPTION OF THE PREFERRED EMBODIMENTS Preferred embodiments of the present invention will be described in detail below with reference to the accompanying drawings. Note that, in this specification and the drawings, components having substantially the same functional configurations are designated by the same reference numerals and redundant explanation will be omitted.

<1. Embodiment>
<<1.1. System configuration example >>
First, a configuration example of a system 1 according to an embodiment of the present invention will be described. FIG. 1 is a block diagram showing a configuration example of a system 1 according to an embodiment of the present invention. As shown in FIG. 1, the system 1 according to the present embodiment includes a control device 10, a lock device 20, a portable device 30, a reservation server 40, an intermediary server 50, and a distribution server 60. Note that the control device 10 and the lock device 20 according to the present embodiment are mounted on the controlled object O.

Further, FIG. 2 is a block diagram showing a configuration example common to each device shown in FIG. 1. FIG. 2 shows a configuration example of the information processing device 80 as an example of a configuration common to each device.

(Information processing device 80)
As shown in FIG. 2, the information processing device 80 includes a control section 810, a storage section 820, and a communication section 830.

The control unit 810 controls each component included in the information processing device 80. The functions of the control unit 110 are designed according to the characteristics of the information processing device 80. The functions of the control unit 810 are realized by, for example, a processor such as a CPU or an IC.

The storage unit 820 stores various types of information used for functions implemented by the information processing device 80. The storage unit 820 stores, for example, various programs used by the control unit 810 and data used in the programs.

The communication unit 830 performs information communication with other devices via the network 90. The information communication standard is appropriately adopted depending on the characteristics of the information processing device 80 and the characteristics of the device that performs communication. Further, the network 90 broadly includes a wireless communication network, a wired communication network, and a public communication network.

Next, an example of the configuration of each device included in the system 1 according to the present embodiment will be described in detail.

(Control device 10)
First, the control device 10 according to this embodiment will be described. The control device 10 according to the present embodiment is a device that is mounted on a controlled object O and controls unlocking and locking of a locking device 20 that the controlled object O has.

Note that examples of the controlled object O according to this embodiment include a moving body such as a vehicle, a door installed indoors or outdoors, and the like. The controlled object O may be, for example, a vehicle that can be used by an unspecified number of users through car sharing or the like. Further, for example, the controlled object may be a company car that is shared among a plurality of users belonging to the same organization.

The system 1 according to the present embodiment includes a plurality of control objects O, and a plurality of control devices 10 and lock devices 20 mounted on the control objects O.

The control device 10 includes at least a control section 110, a storage section 120, and a communication section 130, as in the configuration example shown in FIG.

The control unit 110 of the control device 10 controls unlocking and locking of the lock device 20 mounted on the same controlled object O. At this time, the control unit 110 according to the present embodiment authenticates the portable device 30 based on the authentication information transmitted from the portable device 30, and when the authenticity of the portable device 30 is recognized, the lock device 20 may be permitted to be unlocked or locked.

The above-mentioned authentication information may be, for example, unique key information distributed to the portable device 30 by the distribution server 60 described later, a calculation result using the key information, or the like.

For example, if the key information received by the communication unit 130 from the portable device 30 matches the pair information stored in advance in the storage unit 120, the control unit 110 determines the authenticity of the portable device 30 that transmitted the key information. may be accepted. Here, the pair information described above may be generated as information paired with the key information distributed by the distribution server 60 to the portable device 30, and may be various types of information used to determine the key information.

For example, if the calculation result using the pair information matches the authentication information (the calculation result using the key information) received by the communication unit 130 from the portable device 30, the control unit 110 controls the authentication information. The authenticity of the portable device 30 that sent the message may be recognized.

In this way, the control unit 110 according to the present embodiment determines the authenticity of the portable device 30 based on the authentication information transmitted by the portable device 30, and unlocks the locking device 20 when the authenticity is recognized. and locking. According to such control, it becomes possible to restrict the use of the controlled object O without using a physical key, or to cancel the restriction.

Further, the control unit 110 according to the present embodiment may control the operation of other devices included in the controlled object O in addition to the lock device 20. For example, assume that the controlled object O is a moving object such as a vehicle. At this time, if the authenticity of the portable device 30 is recognized based on the authentication information, the control unit 110 may perform control such as permitting starting of the engine provided in the mobile object.

The storage unit 120 of the control device 10 stores programs used by the control unit 110, the above-mentioned pair information, and the like.

The communication unit 130 of the control device 10 performs information communication with the portable device 30 and the like. For example, the communication unit 130 according to the present embodiment may perform wireless communication with the portable device 30 and receive authentication information. For example, a signal in the LF (Low Frequency) band and a signal in the UHF (Ultra-High Frequency) band may be used for the above wireless communication.

(Lock device 20)
The lock device 20 according to this embodiment is mounted on the controlled object O together with the control device 10. The lock device 20 according to the present embodiment unlocks and locks the lock according to the control by the control device 10.

The lock device 20 includes at least a control section 210, a storage section 220, and a communication section 230, as shown in the configuration example shown in FIG.

The control unit 210 of the lock device 20 executes locking or unlocking based on the control signal that the communication unit 230 receives from the control device 10.

The storage unit 220 of the lock device 20 stores, for example, programs used by the control unit 210.

The communication unit 230 of the lock device 20 performs information communication with the control device 10. For example, the communication unit 230 according to this embodiment may perform wired communication with the control device 10 and receive control signals.

(Portable device 30)
The portable device 30 according to this embodiment is an information processing device owned by a user who uses the system 1. The portable device 30 generates authentication information based on the key information received from the distribution server 60, and transmits the authentication information to the control device 10 mounted on the controlled object O.

Examples of the portable device 30 according to this embodiment include a smartphone, a tablet, a wearable device, and the like.

The portable device 30 includes at least a control section 310, a storage section 320, and a communication section 330, as in the configuration example shown in FIG.

The control unit 310 of the portable device 30 generates authentication information based on the key information received by the communication unit 330 from the distribution server, and performs control so that the authentication information is transmitted to the control device 10.

As described above, the authentication information according to the present embodiment may include the key information itself, or may be a calculation result using the key information.

Furthermore, the control unit 310 according to the present embodiment generates various information for making a reservation for use of the controlled object O based on the user's operation, and the communication unit 330 so that the information is transmitted to the reservation server 40. may be controlled.

Furthermore, when the system 1 does not include the reservation server 40, the control unit 310 may generate a first distribution request, which will be described later, and control the first distribution request to be transmitted to the intermediary server. The first distribution request according to this embodiment will be explained in detail separately.

The storage unit 320 of the portable device 30 stores, for example, programs used by the control unit 310 and key information received from the distribution server 60.

The communication unit 330 of the portable device 30 performs information communication with the control device 10, the reservation server 40, the distribution server 60, and the like. For example, the communication unit 330 performs wireless communication with the control device 10 and transmits authentication information. Further, for example, the communication unit 330 transmits and receives information regarding a reservation for use of the controlled object O to and from the reservation server 40 via the Internet. Further, for example, the communication unit 330 receives key information from the distribution server 60 via the Internet.

In addition to the configuration shown above, the portable device 30 may include an operation section for accepting user operations and a display section for displaying various information.

(Reservation server 40)
The reservation server 40 according to the present embodiment sends and receives information to and from the portable device 30 via, for example, a website published on the Internet, and concludes and manages usage reservations for the controlled object O. This is a server that does this. Further, the reservation server 40 according to the present embodiment may transmit the first distribution request to the intermediary server based on the concluded reservation.

The reservation server 40 includes at least a control section 410, a storage section 420, and a communication section 430, as in the configuration example shown in FIG.

The control unit 410 of the reservation server 40 may set a reservation for use of the controlled object O based on, for example, information received by the communication unit 430 from the portable device 30. The information regarding the usage reservation includes, for example, information regarding the user who made the reservation, the controlled object O that is the target of the usage reservation, the scheduled usage time, and the like.

Furthermore, the control unit 410 according to the present embodiment generates a first distribution request based on the set usage reservation, and controls the communication unit 430 so that the first distribution request is transmitted to the mediation server 50. It's okay. The first distribution request according to this embodiment will be explained in detail separately.

The storage unit 420 of the reservation server 40 stores, for example, the program used by the control unit 410, the information regarding the above-mentioned usage reservation, and the first distribution request. The storage unit 420 also stores a device management table for managing the portable device 30 to which key information is to be delivered, a device management table for managing the control device 10 that performs authentication based on key information, and the like.

The communication unit 430 of the reservation server 40 performs information communication with the portable device 30 and the mediation server 50. For example, the communication unit 430 transmits and receives information regarding a reservation for use of the controlled object O to and from the portable device 30 via the Internet. Further, for example, the communication unit 430 transmits a first distribution request to the mediation server 50 via the Internet.

(Mediation server 50)
The intermediary server 50 according to the present embodiment is a server that plays a role of mediating between a request for distribution of an encryption key associated with a reservation for use of the controlled object O, and the distribution of the encryption key to the portable device 30 by the distribution server 60. be. For this purpose, the intermediary server 50 according to the present embodiment may generate a second distribution request based on the received first distribution request, and transmit the second distribution request to the distribution server 60.

Mediation server 50 includes at least a control section 510, a storage section 520, and a communication section 530, as in the configuration example shown in FIG.

The control unit 510 of the mediation server 50 generates a second distribution request based on the first distribution request received by the communication unit 530, and controls the communication unit 530 so that the second distribution request is transmitted to the distribution server. Control. Details regarding the functions of the control unit 510 according to this embodiment and the second distribution request will be described separately later.

The storage unit 520 of the mediation server 50 stores, for example, the program used by the control unit 510 and the above-described first distribution request and second distribution request. The storage unit 520 also stores a device management table for managing the portable device 30 to which key information is to be delivered, a device management table for managing the control device 10 that performs authentication based on key information, and the like.

The communication unit 530 of the mediation server 50 performs information communication with the reservation server 40 and the distribution server 60. For example, the communication unit 530 receives a first distribution request from the reservation server 40 via the Internet. Further, for example, the communication unit 530 transmits a second distribution request to the distribution server 60 via the Internet.

(Distribution server 60)
The distribution server 60 according to this embodiment is a server that distributes key information based on the received second distribution request. Note that the above-mentioned key information may be stored in advance in the control device 10, or may be distributed by the distribution server 60 based on the second distribution request.

The distribution server 60 includes at least a control section 610, a storage section 620, and a communication section 630, as in the configuration example shown in FIG.

The control unit 610 of the distribution server 60 controls the communication unit 630 so that the key information is distributed to the designated portable device 30 based on the second distribution request received by the communication unit 630. Further, when dynamically distributing pair information, the control unit 610 according to the present embodiment controls the communication unit 630 so that the pair information paired with the key information is distributed to the designated control device 10. May be controlled. The functions of the control unit 610 according to this embodiment will be described in detail separately.

The storage unit 620 of the distribution server 60 stores, for example, the program used by the control unit 610 and the second distribution request described above. The storage unit 620 also stores a device management table for managing the portable device 30 to which key information is to be delivered, a device management table for managing the control device 10 that performs authentication based on key information, and the like.

The communication unit 630 of the distribution server 60 performs information communication with the mediation server 50, the portable device 30, and the control device 10. For example, the communication unit 630 receives the second distribution request from the mediation server 50 via the Internet. Further, for example, the communication unit 630 distributes key information to the portable device 30 via the Internet. Furthermore, for example, the communication unit 630 may distribute the corresponding information to the control device 10 via the Internet.

The example of the configuration of the system 1 according to the present embodiment has been described above. Note that the above configuration described using FIGS. 1 and 2 is just an example, and the configuration of the system 1 according to the present embodiment is not limited to the example. For example, the system 1 according to this embodiment does not necessarily need to include the reservation server 40. In this case, the user may generate a first distribution request using the portable device 30 that the user owns, and transmit the first distribution request to the mediation server 50. The configuration of the system 1 according to this embodiment can be flexibly modified according to specifications and operation.

<<1.2. Function details >>
Next, the functions of the mediation server 50 according to this embodiment will be described in more detail.

As described above, in recent years, systems have been known that distribute key information for unlocking a lock device based on a received request, such as the system disclosed in Patent Document 1, for example.

However, unlike the system disclosed in Patent Document 1, a situation is also envisaged in which the user who requests distribution of key information and the user who owns the device to which the key information is distributed are different. An example of such a situation is a case where the administrator of the controlled object allows another user to use the controlled object. In this case, the administrator instructs the server to distribute key information for unlocking (or locking) the locking device of the controlled object to the portable device owned by the user who has given permission to use the controlled object. It is also possible to make a request.

However, in cases such as the above, the user is required to obtain permission from the administrator to use the controlled object in advance, and the administrator who has given the permission must issue a request to the server, making the procedure complicated. There is a possibility that

Further, here, it is assumed that there are multiple groups each consisting of an administrator who gives permission to use the controlled object and a user who is given permission to use the object. In this case, the server that distributes key information is required to strictly manage which administrator can request distribution of key information to which users (portable devices owned by them).

It is also assumed that there are multiple administrators, and each administrator has different permissions to control objects. In this case, the server that distributes key information is required to strictly manage which administrator can request distribution of key information regarding which controlled object (lock device mounted on).

The administrative burden as described above becomes heavier as the number of controlled objects, administrators, and users increases. For this reason, in the case of manual management, there is a possibility of inducing operational errors.

Furthermore, even in the case of system-based management, there is a possibility that the data structure will become complicated or that existing systems will need to be modified. For this reason, there is a need for a system that can absorb the complexity caused by an increase in data while maintaining a simple data structure for the management of portable devices owned by users and control devices installed in controlled objects. .

Furthermore, it is also assumed that a reservation server that manages reservations for controlled objects and a distribution server that distributes key information based on a request from the server are operated by different businesses. In this case, the business operating the reservation server does not have the authority to modify the structure of the data managed by the distribution server, so if the distribution server does not comply with the above-mentioned restrictions on the scope of requests by the administrator. , it is required to comply with this restriction by modifying the reservation server side.

In addition, for businesses operating distribution servers, it is not realistic to modify the data structure every time according to the specifications of the reservation server, but it is not practical to modify the data structure every time according to the specifications of the reservation server. Maintaining customer satisfaction is also important from the perspective of acquiring new customers.

The technical concept of the present invention has been developed with the above-mentioned points in mind, and is intended to enable data to be efficiently managed with a simpler configuration in the distribution of key information.

For this purpose, the intermediary server 50 according to the present embodiment authenticates the portable device 30 owned by the user via wireless communication, and if the authentication is successful, the specified locking device 20 is unlocked or locked. The control device 10 acquired based on the first device identifier used to identify the control device 10 included in the first distribution request issued by the administrator of the controlled object O in which the control device 10 that controls the control device 10 is installed. and a second device identifier related to the portable device 30 obtained based on the first device identifier used to identify the portable device 30 included in the first distribution request. includes a control unit 510 that controls transmission of distribution requests.

Furthermore, the control unit 510 according to the present embodiment controls the distribution server 60 to send the second distribution request to the distribution server 60, so that the second device included in the second distribution request is transmitted to the distribution server 60. distributing key information used for establishing authentication by the control device 10 specified based on the identifier to 30 portable devices specified based on the second device identifier included in the second distribution request; is one of the characteristics.

Hereinafter, the first distribution request and the second distribution request according to this embodiment will be explained in detail. First, a method of managing the control device 10 and the portable device 30 by the reservation server 40 and distribution server 60 according to the present embodiment will be described.

The reservation server 40 and the distribution server 60 according to this embodiment may manage each of the control device 10 and the portable device 30 using different identifiers. For example, as described above, the reservation server 40 and the distribution server 60 may be operated by different businesses.

FIG. 3A is a diagram showing an example data structure of the device management table T41 stored in the storage unit 420 of the reservation server 40 according to the present embodiment. Note that the device management table T41 is a table for managing the identifier of the portable device 30 to which the key information is to be delivered and the identifier of the user who is the owner of the portable device 30.

As shown in FIG. 3A, the reservation server 40 according to the present embodiment manages the portable device 30 using the first device identifier, which is an identifier unique to the operator operating the reservation server 40, in the device management table T41. Good too.

For example, in the example shown in FIG. 3A, the first device identifier [AU01] is assigned to the portable device 30 owned by the user identified by the user identifier [user_A]. Similarly, the first device identifier [AU02] is assigned to the portable device 30 owned by the user identified by the user identifier [user_B], and the first device identifier [AU02] is assigned to the portable device 30 owned by the user identified by the user identifier [user_C]. A first device identifier [AU03] is assigned to each.

Further, FIG. 3B is a diagram showing an example data structure of the device management table T42 stored in the storage unit 420 of the reservation server 40 according to the present embodiment. Note that the device management table T42 is a table that manages the identifier of the control device 10 that performs authentication based on key information and the identifier of the controlled object O on which the control device 10 is mounted.

For example, in the case of the example shown in FIG. 3B, the first device identifier [AV01] is assigned to the control device 10 mounted on the controlled object O specified by the controlled object identifier [vehicle_A]. Similarly, in the control device 10 mounted on the controlled object O specified by the controlled object identifier [vehicle_B], the first device identifier [AV02] is the controlled object specified by the controlled object identifier [vehicle_C]. A first device identifier [AV03] is assigned to each control device 10 mounted on the object O.

In this way, in the reservation server 40 according to the present embodiment, the portable device 30 is managed using the first device identifier unique to the business operator that operates the reservation server 40, and the portable device 30 is managed using the first device identifier unique to the business operator. The control device 10 may also be managed by the user.

Furthermore, the reservation server 40 according to the present embodiment sets a usage reservation for the controlled object O based on the information transmitted and received with the portable device 30, and generates a first distribution request according to the usage reservation. and transmits it to the mediation server 50.

At this time, the control unit 410 of the reservation server 40 generates a first distribution request that includes at least the first device identifier and the first device identifier.

For example, assume that a user identified by a user identifier [user_A] desires to reserve the use of a controlled object O identified by a controlled object identifier [vehicle_B].

At this time, the control unit 410 sets a usage reservation including the above-mentioned identifiers and information regarding the desired usage time based on the information received from the portable device 30.

Further, the control unit 410 extracts the first device identifier and the first device identifier based on the user identifier and the controlled object identifier included in the set usage reservation. Specifically, the control unit 410 refers to the device management table T41 and extracts the first device identifier [AU01] of the portable device 30 owned by the user identified by the user identifier [user_A]. Furthermore, the control unit 410 refers to the device management table T42 and extracts the first device identifier [AV02] of the control device 10 mounted on the controlled object O specified by the controlled object identifier [vehicle_B].

Next, the control unit 410 generates a first distribution request including information such as the first device identifier [AU01], the first device identifier [AV02], and the desired usage time extracted as described above.

On the other hand, the distribution server 60 according to the present embodiment manages the control device 10 and the portable device 30 using an identifier unique to the event operator operating the distribution server 60, which is different from the operator operating the reservation server 40. It's okay.

FIG. 4A is a diagram showing an example data structure of the device management table T61 stored in the storage unit 620 of the distribution server 60 according to the present embodiment.

As shown in FIG. 4A, the distribution server 60 according to the present embodiment has a second identifier in the device management table T61 that is a unique identifier of the event operator that operates the distribution server 60, which is different from the operator that operates the reservation server 40. The portable device 30 may be managed using the device identifier.

For example, in the example shown in FIG. 4A, the second device identifier [XU01] is assigned to the portable device 30 owned by the user identified by the user identifier [user_A]. Similarly, the second device identifier [XU02] is assigned to the portable device 30 owned by the user identified by the user identifier [user_B], and the second device identifier [XU02] is assigned to the portable device 30 owned by the user identified by the user identifier [user_C]. A second device identifier [XU03] is assigned to each.

Further, FIG. 4B is a diagram showing an example data structure of the device management table T62 stored in the storage unit 620 of the distribution server 60 according to the present embodiment.

As shown in FIG. 4B, the distribution server 60 according to the present embodiment has a second identifier, which is a unique identifier of the event operator operating the distribution server 60, which is different from the operator operating the reservation server 40, in the device management table T62. The control device 10 may be managed using the device identifier.

For example, in the case of the example shown in FIG. 4B, the second device identifier [XV01] is assigned to the control device 10 mounted on the controlled object O specified by the controlled object identifier [vehicle_A]. Similarly, the control device 10 mounted on the controlled object O specified by the controlled object identifier [vehicle_B] has a second device identifier [XV02] as the controlled object specified by the controlled object identifier [vehicle_C]. A second device identifier [XV03] is assigned to each control device 10 mounted on object O.

In this way, the distribution server 60 according to the present embodiment uses a second device identifier unique to the operator that operates the distribution server 60, which is different from a first device identifier unique to the operator that operates the reservation server 40. The device 30 may be managed. Similarly, in the distribution server 60, the portable device 30 is managed using a second device identifier unique to the business that operates the distribution server 60, which is different from a first device identifier unique to the business that operates the reservation server 40. Good too.

In this case, the control unit 610 of the distribution server 60 according to the present embodiment first controls the controlled object O for which the usage reservation has been made based on the second device identifier included in the second distribution request received by the communication unit 630. Specify the control device 10 installed in the.

Next, the control unit 610 generates key information for establishing authentication by the specified control device 10.

Next, the control unit 610 controls the communication unit 630 so that the generated key information is distributed to the portable device 30 specified based on the second device identifier included in the second distribution request.

As explained above, the reservation server 40 and the distribution server 60 according to this embodiment may manage the control device 10 and the portable device 30 using different identifiers.

However, with the above-described management, even if the distribution server 60 receives the first distribution request generated by the reservation server 40, it is not possible to specify the control device 10 and the portable device 30 as the distribution destinations. Therefore, the mediation server 50 according to the present embodiment is characterized in that it includes a mediation server 50 for converting the first distribution request generated by the reservation server 40 into a second distribution request that can be used by the distribution server 60. Make it one.

That is, the mediation server 50 according to this embodiment plays a role of absorbing the difference in identifiers between the reservation server 40 and the distribution server operated by different event parties. Note that the mediation server 50 according to this embodiment may be operated by a different business entity from the business operator that operates the reservation server 40 and the distribution server 60.

FIG. 5A is a diagram showing an example data structure of the device management table T51 stored in the storage unit 520 of the mediation server 50 according to the present embodiment.

As shown in FIG. 5A, the intermediary server 50 according to the present embodiment associates the first device identifier used for the reservation server 40 with the second device identifier used for the distribution server 60 in the device management table T51, and Manage the device 30.

Further, FIG. 5B is a diagram showing an example data structure of the device management table T52 stored in the storage unit 520 of the mediation server 50 according to the present embodiment.

As shown in FIG. 5B, the intermediary server 50 according to the present embodiment performs control by associating the first device identifier used for the reservation server 40 with the second device identifier used for the distribution server 60 in the device management table T52. Manages the device 10.

The intermediary server 50 according to the present embodiment uses the device management table T51 and the device management table T52 as described above to transfer the first distribution request received from the reservation server 40 to the second distribution request available to the distribution server 60. Convert to delivery request.

For example, assume that the first distribution request includes a first device identifier [AU01] and a first device identifier [AV02].

In this case, the control unit 510 of the mediation server 50 refers to the device management table T51 using the first device identifier [AU01] and obtains the second device identifier [XU01].

Furthermore, the control unit 510 refers to the device management table T52 using the first device identifier [AV02] and obtains the second device identifier [AV02].

In this way, the control unit 510 according to the present embodiment can generate the second distribution request including the second device identifier and the second device identifier based on the first distribution request.

In this way, according to the intermediary server 50 according to the present embodiment, even if the control device 10 and the portable device 30 are managed by different unique identifiers between the reservation server 40 and the distribution server 60, the difference between the two can be managed. By absorbing this, it is possible to consistently implement a series of processes from reservation to distribution of key information.

Further, according to the intermediary server 50 according to the present embodiment, a business operator who operates the reservation server 40 can use a server with a high degree of freedom according to the specifications of its own service without worrying about the data structure of the distribution server 60 side. It is possible to install a server with reduced installation and cost.

Furthermore, according to the intermediary server 50 according to the present embodiment, a business operator operating the distribution server 60 can cooperate with a plurality of reservation servers 40 having various specifications while maintaining the original data structure. Opportunities for business expansion can be obtained without increasing costs.

Note that in the device management table T61 of the distribution server 60 illustrated in FIG. 4A, a case is illustrated in which the user identifier is managed in association with the second device identifier. However, the device management table T61 does not necessarily need to include the user identifier, and only needs to include address information for distributing key information to the portable device 30 specified by the second device identifier. The same applies to the control object identifier in the device management table T62.

In this case, since the distribution server 60 does not store information regarding the user or the controlled object O, the business that operates the reservation server 40 must minimize the information regarding its own customers to be handed over to the business that operates the distribution server 60. It is possible to enjoy the advantage of being able to suppress the

Furthermore, according to the intermediary server 50 according to the present embodiment, there may be cases where there are multiple groups consisting of an administrator who grants permission to use the controlled object O and a user who is granted permission to use the controlled object O, or where there are multiple administrators. Even if the controlled objects that each administrator has permission to use are different, the key information etc. can be stored in consideration of the above relationships without affecting the data structure of the reservation server 40 or the distribution server 60. Distribution is possible.

FIG. 6A is a diagram showing an example data structure of the distribution destination user management table T53 stored in the storage unit 520 of the mediation server 50 according to the present embodiment. Note that the distribution destination user management table T53 is a table in which the administrator of the controlled object O and at least one user to whom the administrator can give permission to use the controlled object O are associated and managed.

In the example shown in FIG. 6A, the administrator identifier [server_A] is associated with a user identifier [user_A], a user identifier [user_B], and a user identifier [user_C]. In this example, the administrator (for example, the reservation server 40) identified by the administrator identifier [server_A], the user identified by the user identifier [user_A], the user identifier [user_B], and the user identifier [user_C], respectively This indicates that it is possible to request delivery of key information to the portable device 30 that the user owns.

Further, in the example shown in FIG. 6A, the administrator identifier [user_D] is associated with the user identifier [user_E]. This example shows that the user identified by the administrator identifier [user_D] can request delivery of key information to the portable device 30 owned by the user identified by the user identifier [user_E]. . In this case, the user identified by the administrator identifier [user_D] may transmit the first distribution request to the mediation server 50 without going through the reservation server 40 using the portable device 30 or the like that he/she owns.

At this time, the control unit 510 of the mediation server 50 according to the present embodiment refers to the device management table T51 and the distribution destination user management table T53, and the portable device identified based on the first device identifier included in the first distribution request. Even if the user who owns the device 30 is associated with the administrator who issued the first distribution request, the second distribution request is controlled to be sent to the distribution server 60. good.

For example, assume that the first distribution request issued by the administrator identified by the administrator identifier [server_A] includes the first device identifier [AU01]. In this case, since the user identifier [user_A] of the user who owns the portable device 30 specified by the first device identifier [AU01] is associated with the administrator identifier [server_A] in the distribution destination user management table T53. , the control unit 510 generates a second distribution request and performs control so that the second distribution request is transmitted to the distribution server 60.

On the other hand, assume that the first distribution request issued by the administrator identified by the administrator identifier [user_D] includes the first device identifier [AU01]. In this case, the user identifier [user_A] of the user who owns the portable device 30 specified by the first device identifier [AU01] is not associated with the administrator identifier [user_D] in the distribution destination user management table T53. , the control unit 510 may return an error or the like without generating the second distribution request.

According to the above-described control, it is possible to prevent key information from being distributed to a portable device 30 owned by a user to whom the administrator cannot originally give usage permission.

Note that the mediation server 50 manages information on the portable devices 30 that the administrator can specify as key information distribution destinations by directly associating the administrator identifier and the first device identifier without using the user identifier. It's okay.

Next, the management of the controlled object O, which is the subject of usage permission, will be described.

FIG. 6B is a diagram showing an example data structure of the distribution destination control target object management table T54 stored in the storage unit 520 of the mediation server 50 according to the present embodiment. Note that the distribution destination controlled object management table T54 is a table that manages an administrator and at least one controlled object O managed by the administrator in association with each other.

In the example shown in FIG. 6B, the administrator identifier [server_A] is associated with a controlled object identifier [vehicle_A], a controlled object identifier [vehicle_B], and a controlled object identifier [vehicle_C]. In this example, the administrator (for example, the reservation server 40) identified by the administrator identifier [server_A] is identified by the controlled object identifier [vehicle_A], the controlled object identifier [vehicle_B], and the controlled object identifier [vehicle_C]. This indicates that it is possible to request distribution of key information used for authentication by the control device 10 mounted on each specified controlled object O.

Furthermore, in the case of the example shown in FIG. 6B, the administrator identifier [user_D] is associated with the controlled object identifier [vehicle_D]. In this example, the user identified by the administrator identifier [user_D] requests delivery of key information used for authentication by the control device 10 installed in the controlled object O identified by the controlled object identifier [vehicle_D]. It shows that it is possible.

At this time, the control unit 510 of the mediation server 50 according to the present embodiment refers to the device management table T52 and the distribution destination control object management table T54, and specifies the device based on the first device identifier included in the first distribution request. The second distribution request is transmitted to the distribution server 60 when the controlled object O on which the control device 10 is installed is associated with the administrator who issued the first distribution request. It is also possible to perform such control.

For example, assume that the first distribution request issued by the administrator identified by the administrator identifier [server_A] includes the first device identifier [AV01]. In this case, the controlled object identifier [vehicle_A] of the controlled object O on which the control device 10 specified by the first device identifier [AV01] is installed is the administrator identifier [server_A] in the distribution destination controlled object management table T54. , the control unit 510 generates a second distribution request and performs control so that the second distribution request is transmitted to the distribution server 60.

On the other hand, assume that the first distribution request issued by the administrator identified by the administrator identifier [user_D] includes the first device identifier [AV01]. In this case, the controlled object identifier [vehicle_A] of the controlled object O in which the control device 10 specified by the first device identifier [AV01] is mounted corresponds to the administrator identifier [user_D] in the distribution destination user management table T53. Since the second distribution request is not attached, the control unit 510 may return an error or the like without generating the second distribution request.

According to the above-described control, it is possible to prevent the key information used for authentication by the control device 10 mounted on the controlled object O to which the administrator cannot originally give usage permission from being distributed.

Note that the intermediary server 50 may manage information on the control device 10 that can be specified by the administrator by directly associating the administrator identifier and the first device identifier without using the control object identifier.

The generation of the second distribution request based on the first distribution request by the mediation server 50 according to the present embodiment has been described above in detail. Note that in the above example, a single portable device 30 is designated as the key information distribution destination in the first distribution request and the second distribution request.

On the other hand, in the first distribution request and the second distribution request according to the present embodiment, a plurality of portable devices 30 may be specified as distribution destinations. In this case, the first distribution request and the second distribution request may include multiple device identifiers, and may include all portable devices owned by all users associated with the administrator who issued the first distribution request. It may also include a special device identifier that specifies the device 30.

According to the above control, for example, it is also possible to simultaneously distribute key information to the portable devices 30 owned by a plurality of users belonging to the same organization.

Next, the accumulation of the usage history of key information by the mediation server 50 according to the present embodiment and the disclosure of the usage history will be described. As described above, according to the mediation server 50 according to the present embodiment, it is possible to consistently provide the functions of the reservation server 40 and distribution server 60 operated by different businesses to the user. In addition, the intermediary server 50 according to the present embodiment accumulates a usage history related to the distributed key information, and discloses it to the administrator of the controlled object O (for example, a business operator that operates a reservation server, etc.). It's okay.

FIG. 7 is a diagram showing an example data structure of the usage history table T55 stored in the storage unit 520 of the mediation server 50 according to the present embodiment. As shown in FIG. 7, the usage history table T55 according to the present embodiment includes, for example, the time when the distributed key information was used (authentication based on the key information was executed), the control device that executed the authentication, etc. 10 is installed, the user identifier of the user who owns the portable device 30 that transmitted the key information, the purpose for which the key information was used (for example, unlocking or locking, etc.), and the key information. It may also include location information indicating the location where it was used.

The intermediary server 50 according to the present embodiment may collect usage history including the above information from the control device 10 or the portable device 30 and accumulate it in the usage history table T55.

Further, the control unit 510 of the mediation server 50 may perform control so that the usage history as described above is disclosed to the administrator. At this time, the control unit 510 may disclose the usage history to the administrator in response to a disclosure request from the administrator, or may provide the administrator with a report compiled for each period such as weekly or monthly. May be provided.

Note that the information included in the usage history table T55 shown in FIG. 7 is just an example, and the usage history disclosed to the administrator is not limited to this example. For example, the control unit 510 may map and disclose information on the location where the key information is used on a map, or tally the time from when the key information is used for unlocking to when it is used for locking. The usage time of the controlled object O estimated by this method may be disclosed to the administrator.

By disclosing the usage history of the key information as described above, it becomes possible to provide the administrator of the controlled object O with further added value in addition to key information distribution management.

<<1.3. Process flow >>
Next, the flow of processing by the system 1 according to this embodiment will be described in detail. FIG. 8 is a sequence diagram showing the flow of processing by the system 1 according to this embodiment. Note that FIG. 8 exemplifies the flow when the lock device 20 is unlocked using the key information distributed to the portable device 30.

In the system 1 according to the present embodiment, for example, as shown in FIG. 1, a reservation is made using a portable device 30 or the like (S102).

The user, for example, accesses the website published by the reservation server 40 on the Internet via the portable device 30, etc., and enters necessary information to make a reservation for the use of the controlled object O that the user wishes to use. Can be done. Also, at this time, the reservation server 40 sets a reservation for use of the controlled object O based on information inputted from the portable device 30 and the like.

Next, the reservation server 40 generates a first distribution request based on the set usage reservation, and transmits the first distribution request to the intermediary server 50 (S104). As described above, the first distribution request according to the present embodiment includes at least the first device identifier and the first device identifier.

Note that the first distribution request does not necessarily have to be transmitted from the reservation server 40. The first distribution request may be directly transmitted from the portable device 30 or the like to the mediation server 50.

Next, the intermediary server 50 that has received the first distribution request refers to the distribution destination user management table T53, the distribution destination controlled object management table T54, etc., and determines whether the distribution destination specified by the first distribution request is the corresponding one. It is confirmed whether the request is associated with the administrator who issued the distribution request No. 1 (S106).

Here, if the distribution destination specified by the first distribution request is associated with the administrator who issued the first distribution request, the mediation server 50 The identifier and the first device identifier are converted into a second device identifier and a second device identifier, respectively, and a second distribution request including the second device identifier and the second device identifier is transmitted to the distribution server 60 (S108 ).

Next, the distribution server 60 that received the second distribution request distributes the key information to the portable device 30 specified based on the second device identifier included in the second distribution request (S110).

Next, the portable device 30 that has received the key information transmits authentication information based on the received key information to the control device 10 (S112).

Next, the control device 10 that has received the authentication information authenticates the portable device 30 based on the authentication information (S114).

Here, if the authenticity of the portable device 30 is recognized, the control device 10 transmits an unlocking instruction to the lock device 20 (S116).

Next, the locking device 20 that received the unlocking instruction executes unlocking (S118).

<2. Supplement>
Although preferred embodiments of the present invention have been described above in detail with reference to the accompanying drawings, the present invention is not limited to such examples. It is clear that a person with ordinary knowledge in the technical field to which the present invention pertains can come up with various changes or modifications within the scope of the technical idea stated in the claims. It is understood that these also naturally fall within the technical scope of the present invention.

Further, the series of processes performed by each device described in this specification may be realized using software, hardware, or a combination of software and hardware. The programs constituting the software are stored in advance in, for example, a recording medium (non-transitory media) provided inside or outside each device. For example, each program is read into a RAM when executed by a computer, and executed by a processor such as a CPU. The recording medium is, for example, a magnetic disk, an optical disk, a magneto-optical disk, a flash memory, or the like. Furthermore, the above computer program may be distributed, for example, via a network, without using a recording medium.

1: System, 10: Control device, 20: Lock device, 30: Portable device, 40: Reservation server, 50: Mediation server, 60: Distribution server, 80: Information processing device, 810: Control unit, 820: Storage unit, 830: Communication unit, 90: Network, 510: Control unit, 520: Storage unit, 530: Communication unit

Claims (9)

A manager of a controlled object equipped with a control device that authenticates a portable device owned by a user via wireless communication and, if the authentication is successful, controls unlocking or locking of a specified locking device. a second device identifier related to the control device acquired based on the first device identifier used to identify the control device included in the first distribution request issued by the a second device identifier related to the portable device acquired based on a first device identifier used to identify the portable device;
Equipped with
The control unit controls the second distribution request to be sent to the distribution server, thereby causing the distribution server to specify information based on the second device identifier included in the second distribution request. distributing key information used for establishing authentication by the control device to the portable device specified based on the second device identifier included in the second distribution request;
Mediation server. a storage unit that stores the administrator of the controlled object and at least one user in association with each other;
Furthermore,
The control unit associates a user who owns the portable device identified based on the first device identifier included in the received first distribution request with an administrator who issued the first distribution request. control so that the second distribution request is transmitted to the distribution server if
The mediation server according to claim 1. The storage unit stores an administrator of the controlled object and at least one controlled object in association with each other,
The control unit may be configured such that the control target object in which the control device, which is identified based on the first device identifier included in the received first distribution request, is mounted, is an administrator who issued the first distribution request. controlling the second distribution request to be transmitted to the distribution server if the second distribution request is associated with the distribution server;
The mediation server according to claim 2. The storage unit stores a usage history of the key information collected from the control device or the portable device,
the control unit controls disclosure of the usage history to an administrator of the control device;
The mediation server according to claim 2 or 3. The usage history includes information on the location where the key information was used.
The mediation server according to claim 4. The controlled object is shared among multiple users belonging to the same organization.
The mediation server according to any one of claims 1 to 5. The controlled object includes a moving body,
The mediation server according to any one of claims 1 to 6. Operated by a business operator different from the business operator that operates the distribution server,
The mediation server according to any one of claims 1 to 7. to the computer,
A manager of a controlled object equipped with a control device that authenticates a portable device owned by a user via wireless communication and, if the authentication is successful, controls unlocking or locking of a specified locking device. a second device identifier related to the control device acquired based on the first device identifier used to identify the control device included in the first distribution request issued by the a second device identifier related to the portable device acquired based on a first device identifier used to identify the portable device;
Realize,
By causing the control function to perform control so that the second distribution request is transmitted to the distribution server, the distribution server is configured to perform control based on the second device identifier included in the second distribution request. distributing key information used for establishing authentication by the specified control device to the portable device specified based on the second device identifier included in the second distribution request;
program.

Images