JPH09223112A - Normal user recognizing device and its using method - Google Patents

Abstract

PROBLEM TO BE SOLVED: To compensate defects included in a conventionally used password input system and to recognize a normal user by operating plural pushbutton switches arranged on a terminal equipment capable of accessing or referring to secret information in accordance with previously determined combinations or order. SOLUTION: The device is provided with plural switces irradiating ON or OFF states, a storage means for previously registering the combinations of the states of plural switches and a collating means 103 for comparing the states of the switches with the combination information registered in the storage means, and when the states of the switches coincide with the combination information, an operator for the switches is recognized as a normal user.

Description

Detailed Description of the Invention

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a regular user recognizing apparatus and a method of using the same, and more particularly to a regular user recognizing apparatus and its use which can easily identify a regular user in a terminal device handling cash or confidential information. Regarding the method.

[0002]

2. Description of the Related Art Inquiries (access) to confidential information using an automatic cash dispenser of a bank or a computer network, access to confidential information stored in an electronic notebook, and portable use by wireless As a method to confirm whether the user or operator is a legitimate user when accessing confidential information recorded in another device using a different terminal device, a password or a secret code (hereinafter, Think of the PIN as a part of the password, and when describing it as the password, the meaning of the PIN is also included.) There is a method of using the input.

For example, in an automatic teller machine, information (password) that the person knows is registered in advance in the system, and when the transaction is executed, the system asks the person the password to confirm the user.

Further, as a method of utilizing the physical characteristics of the user without using a password, Japanese Patent Laid-Open No. 4-340206
According to the publication, the user's fingerprint is optically stored in advance in the ID card, and at the time of confirmation, numerical data is calculated from the fingerprint of the operator's finger through a specific conversion means, and the numerical data and the ID card A method of comparing and collating the data of is presented.

[0005]

The above-mentioned conventional method for confirming the authorized user has various problems.

The first problem is that in the confirmation method using a password, there is a high possibility that another person will know the password when inputting. That is, the operation of entering a password is generally likely to be known to others from behind or beside the person who entered the password. A keyboard for inputting a password or a numeric keypad for inputting a personal identification number, which is a password input device, has no particular physical cover and can be stolen by a person near the password input person. For example, it is often found in automated teller machines in banks.

The second problem is that once the password confirmation method is confirmed, there is no security in the subsequent operations. That is, password confirmation is generally performed immediately before the start of access to confidential information and the like. Therefore, when the terminal device used is small, there is a possibility that an unauthorized user may perform an access operation due to a reason such as loss or theft after being properly confirmed by the authorized user.

Even when the terminal device accesses another information management system by wireless or the like, it is stronger than the radio wave used by the legitimate terminal device after being properly confirmed by the legitimate user. There is a risk of being operated by an unauthorized terminal device that uses radio waves.

In addition, even in the case of a large stationary terminal device, after being properly confirmed by the authorized user, while the terminal device is left in the middle of the access process due to the carelessness of the authorized user, the unauthorized user accesses the terminal device. Operation may be performed.

The third problem is that the confirmation method using a fingerprint increases the size of the device and increases the cost. That is, the fingerprint reading device requires at least the fingerprint reading device in the confirmation method using the fingerprint. The fingerprint reading device requires a device for applying light emitted from a light source to a finger and reading the reflected light, resulting in a large device configuration. Furthermore, as the equipment configuration increases, the production cost also increases accordingly.

The object of the present invention is to avoid the above-mentioned problems,
Another object of the present invention is to provide a user recognition device that is more secure than user confirmation using password input.

A further object of the present invention is to provide a user recognition device which is smaller in size and lighter in weight and requires less equipment than user confirmation using a human fingerprint.

[0013]

The authorized user recognition device of the present invention is registered in advance with the combination information of the respective states of the plurality of switches indicating either the ON state or the OFF state. The combination information is compared, and when both match, the operator of the plurality of switches is authorized as a regular user.

Further, the authorized user recognizing device of the present invention is a storage means for registering in advance a plurality of switches each indicating an ON or OFF state and combination information of the states of the plurality of switches. And collating means for comparing the states of the plurality of switches with the combination information registered in the storage means, and the plurality of switches when the states of the plurality of switches and the combination information match. It is configured so that the switch operator is a regular user.

In addition to the above, the authorized user recognizing apparatus of the present invention further comprises: a user ID input means including a personal identification number; a second storage means for pre-registering the personal identification number; Second collating means for comparing the personal identification number input via the input means with the personal identification number registered in the second storing means, and the collating means and the second collating means respectively simultaneously compare results. When it is detected that the two coincide with each other, the switch and the confirmation means for determining that the operator of the input means is an authorized user are configured.

Further, in the regular user recognizing device of the present invention, the collating means or the confirming means repeats the regular user recognizing operation for each access when the user continuously repeats access to the system. Configured to run.

The method of using the regular user recognizing device of the present invention is realized by confirming the right of use of the regular user.

The method for using the regular user recognizing apparatus of the present invention is realized by confirming that the user who refers to the secret information is a regular user who is registered in advance.

Further, in the authorized user recognizing apparatus of the present invention, the operating section including a plurality of switches and having the input means is sized so that the plurality of switches can be simultaneously pressed and held by one hand. Composed.

That is, in the authorized user recognizing device and the method of using the same according to the present invention, it is always O during the pressing.
By using an information access terminal device that uniquely has a plurality of push button switches that are always OFF while not being pressed by N, the combination information of ON and OFF of the push button switches is used as additional information of user recognition information such as a password. As a regular user confirmation. That is, ON and OFF
If the combination information of is in agreement with the ON / OFF combination information of the push-button switch which can be known only by the authorized user in advance, a part or all of the operation on the information access terminal device can be performed by the authorized user. Operation.

At this time, the user presses some of the push button switches using the fingers of either the left or right hand, and operates the information access terminal device with the other hand. A push button switch that has a small depression width is used, and it is preferable that it is difficult for human eyes to determine which switch is being pushed.

Further, according to the present invention, in addition to the method of confirming the authorized user by storing a character string such as a password, the authorized user can be confirmed by collating the combination information of ON and OFF of a plurality of push button switches. Become.

Further, according to the present invention, not only the regular user confirmation just before the start of access to the confidential information like the user confirmation method using the password input, but also the entire operation of the input device for access is performed. Or you can confirm the authorized user in part.

Further, by using the present invention, it is difficult for another person to discriminate the depression of the push button switch, which is a part of the confirmation method of the authorized user.

[0025]

DETAILED DESCRIPTION OF THE INVENTION The present invention will be described below with reference to the drawings.

FIG. 1 is a block diagram showing an embodiment of the present invention. In the figure, the authorized user recognition device 100 of the present invention has a plurality of push button switches (hereinafter, simply referred to as switches), and all the O switches of those switches.
A switch reading means 101 for reading N and OFF states and converting them into a signal that can be recognized by a control unit of a device (hereinafter, referred to as a terminal device) used in the present invention, and a signal indicating a combination of ON and OFF states of switches. The switch storage means 102 for storing the signal C1 and the signal C1 converted by the means 101 and the signal C2 stored in the means 102 are read out, and the two signals are compared with each other to compare with each other to determine whether C1 and C2 are equivalent. Have and.

Furthermore, the authorized user recognition device 10 of the present invention.
0 is a user identifier (hereinafter,
It is described as a user ID. ) Or a password and a password reading means 104 for converting the password into a signal that can be recognized by the control unit of the terminal device, a password storage means 105 for storing the password, a signal C3 converted by the means 104 and a signal stored by the means 105. It has means 106 for reading C4 and comparing both signals to check whether C3 and C4 are equivalent.

Furthermore, the authorized user recognition device 10 of the present invention.
In the case of 0, the collation result by the means 103 is true (C1 = C2) and the collation result by the means 106 is true (C3 = C4).
When it is, the regular user notifying unit 107 that notifies the control unit of the terminal device that the access is from the regular user
Then, when at least one of the collation results of the means 103 or 106 is false (C1 ≠ C2 or C3 ≠ C4), it is notified that the control unit of the terminal device is accessed by an unauthorized user. Unauthorized user notification means 10
8 is provided.

FIG. 2 is a flow chart showing the operation of the above-mentioned authorized user recognition device 100. In the figure, first, the user ID or password input from the password input unit of the terminal device is converted by the means 104 into a signal that can be recognized by the control unit of the terminal device (S201).

Next, the terminal device converts the state of the switch attached to the terminal device into a signal that can be recognized by the control unit of the terminal device by means 101 (S202).

Next, the means 103 causes the terminal device to execute S20.
It is confirmed that C1 = C2 by referring to the result of 2 and the means 102 (S203). If the confirmation result is C1 ≠ C2, it is notified that the access request is from an unauthorized user. In this case, as the simplest example, all the processes of the terminal device are ended (S213).

If C1 = C2 in S203, the means 106 confirms that C3 = C4 by the means 106 referring to S201 and means 105 (S204). If the confirmation result is C3 ≠ C4, it is notified that the access request is from an unauthorized user. In this case as well, all the processes of the terminal device are ended as in the above (S213).

When C3 = C4 in S204, the means 107 notifies the terminal device that it is an access request from an authorized user.

Then, the user performs an access operation to the confidential information and the like, and the terminal device receives the access request 1 (S205). At this time, the terminal device again uses the means 101, 1
Using only 02, 103 and 107, it is confirmed whether or not the access request 1 is an operation by an authorized user (S206, S207).

At this time, if C1 = C2, the terminal device executes the access process 1 for the access request 1 (S208).

After this, another access request 2 (, 3, 4,
..), the terminal device receives the access request 2 (S209) as in the case of the access request 1, and the terminal device uses the means 101, 102, 103 and 107 to send the access request 2 from the authorized user. It is confirmed whether or not the operation is (S210, S211).

If C1 = C2, the terminal device executes the access process 2 for the access request 2 (S
212).

In FIG. 2, the process ends when two access processes are executed for two access requests from the authorized user. This does not apply to actual information access situations.

FIG. 3 shows the above-mentioned authorized user recognition device 100.
6 is a flowchart showing another example of the operation of FIG. In FIG.
Steps 301 to S304 are the same as steps S201 to S204 shown in FIG. That is, C1 = in S303
When C2 and C3 = C4 in S304,
The means 107 notifies the terminal device that it is an access request from an authorized user.

Subsequently, the user performs an access operation to the confidential information and the like, and the terminal device receives the access request 1 (S305). The terminal device executes the access process 1 for the access request 1 (S306).

After this, another access request 2 (, 3, 4,
Similarly to the case of the access request 1, the terminal device receives the access request 2 (S307) and executes the access process 2 for the access request 2 (S30).
8). Then, when there is no access request, the process ends (S309).

FIG. 4 is an explanatory view showing the structure of the terminal device. Particularly, FIG. 4A shows the arrangement of the switches (SW1 to SW5), and FIG. 4B shows the operation thereof. In the figure, the terminal device 400 is a portable device, and the switches are arranged like SW1, SW2, SW3, SW4 and SW5 in the figure. This arrangement is different depending on the design of the terminal device, but since it is arranged at the position corresponding to the fingertip with the user holding the terminal device in his / her hand, it is efficient and preferable in operating the terminal device. Further, as another example of the switch arrangement, the arrangement as shown in FIG. 7 can be considered.

To access the confidential information, the user
Hold the terminal device with one of the left and right hands, and while pressing some of the switches attached to the terminal device with the fingertips of the same hand, use the other hand to input the user ID and password.

FIG. 5, FIG. 6, FIG. 7 and FIG. 8 are explanatory views showing other examples of the arrangement of the switches. Each drawing shows the arrangement of switches in a portable terminal device.

The above-mentioned authorized user recognizing device is effective as means for surely recognizing an authorized user in combination with the password function of an automatic cash dispenser such as a bank, but the scope of use is not limited to this. That is, it is possible to configure a system that limits the usage right (access right) by using this device. In addition, it is possible to construct a system that allows only a specific qualified person to access the confidential information by using this device.

[0046]

As described above in detail, since the authorized user recognition device of the present invention can be configured as a portable terminal device having a plurality of switches, it can be used as a conventional password input method. As described above, there is almost no possibility that the password will be known to others, and there is an effect that the authorized user can be safely and reliably determined.

Further, there is an effect that it can be realized as a small and lightweight terminal device with a much smaller amount of equipment than the method using a fingerprint.

[Brief description of drawings]

FIG. 1 is a block diagram showing one embodiment of the present invention.

FIG. 2 is a flowchart showing the operation of the present invention.

FIG. 3 is a flowchart showing another example of the operation of the present invention.

FIG. 4 is an explanatory diagram showing a configuration example of the present invention.

FIG. 5 is an explanatory diagram showing another configuration example of the present invention.

FIG. 6 is an explanatory diagram showing another configuration example of the present invention.

FIG. 7 is an explanatory diagram showing another configuration example of the present invention.

FIG. 8 is an explanatory diagram showing another configuration example of the present invention.

[Explanation of symbols]

 100 Authorized User Recognition Device 101 Switch Reading Means 102 Switch Storage Means 103, 106 Matching Means 104 Password Reading Means 105 Password Storage Means 107 Regular User Notification Means 108 Unauthorized User Notification Means

Claims (7)

[Claims] 1. The combination information of the respective states of a plurality of switches indicating either the on or off state is compared with the combination information registered in advance, and when the two match. An authorized user recognition device, characterized in that an operator of the plurality of switches is authorized as an authorized user. 2. A plurality of switches indicating either an on state or an off state, storage means for registering combination information of states of the plurality of switches in advance, and states of the plurality of switches. A matching unit that compares the combination information registered in the storage unit with each other, and when the states of the plurality of switches match the combination information, the operator of the plurality of switches becomes an authorized user. An authorized user recognition device characterized by: 3. The authorized user recognizing device according to claim 2, wherein the user ID input means including a personal identification number, the second storage means for pre-registering the personal identification number, and the input means are used. The second collating means for comparing the personal identification number entered as described above with the personal identification number registered in the second storing means, and the collating means and the second collating means respectively have the same comparison result at the same time. A regular user recognizing device, comprising: a confirmation unit that determines that the operator of the switch and the input unit is a regular user when the switch is detected. 4. The regular user recognizing device according to claim 2, wherein said collating means or said confirming means is a regular user for each access when the user continuously repeats access to the system. A regular user recognition device characterized by repeatedly performing a recognition operation. 5. The method for using the regular user recognition device according to claim 1, 2, 3, or 4, wherein the use right of the regular user is confirmed. 6. The method of using the authorized user recognizing device according to claim 1, 2, 3, or 4, to confirm that the user who refers to the confidential information is a previously registered authorized user. A method for using a regular user recognition device characterized by. 7. The authorized user recognition device according to claim 1, 2, 3, or 4, wherein an operating unit including a plurality of switches and having the input means simultaneously presses the plurality of switches with one hand. An authorized user recognition device characterized in that it can be held.