JPWO2006080545A1 - Password management method, apparatus, system, recording medium, program, and password table - Google Patents

Abstract

In order to prevent the password from being seen through and misused, the present invention aims to provide a means for making it easy to create and recall a password in order to thoroughly practice the practice of using a different password for each scene. And For this reason, the new password management method of the present invention generates a password, takes a picture, records the password in association with the picture to recall what it is, and this The recorded information is output.

Description

    The present invention relates to a password management method, an apparatus, a system, a recording medium, a program, and a password table that can provide a clear clue for extracting a password and facilitate handling of the password.

In recent years, illegal use of bank cash cards and credit cards has become a major social problem. Cards that were stolen or skimmed are used with a separate password. Since this password is often a date of birth or a telephone number, it is relatively easy to break. Or, for example, if a card password is used as a locker password when temporarily depositing these cards, a problem occurs when the locker password is stolen. The problem here is that the same password is used for everything, just because it is cumbersome. If one is known, everything is over. Therefore, it is necessary to use different passwords, and you have to remember several different passwords.
For example, when you borrow a new locker, you need to create a new password, but it is troublesome to think that there is no duplication. If you don't get rid of the hassle of saying this, it's obvious that passwords will be reused again. Therefore, an invention such as Japanese Patent Application Laid-Open No. 2004-258906 that automatically generates a password may be used. In this way, a unique password corresponding to each scene is stored for each scene.
However, for example, if you take out a credit card from the baggage in this locker, pay it, and return home, if you can't remember the password that matches the locker key, you can't go one step further. I'm in trouble. In any case, if you don't make it easy to remember the right password, you'll end up running for a password. It is also conceivable to register and use biometric data such as fingerprints for identity verification, but there are many users who do not like this.
Accordingly, an object of the present invention is to make it easy to pull out a password so that the password can be handled easily.

The above-described problem is a password management that generates a password based on a password creation request, acquires an image, records the image and the password in association with each other, and outputs the recorded image and password based on a password output request. This is achieved by a method. The password generated in this way is used for locking. In this situation, the password is associated with the image. The password to be used can be taken out. In addition, it can be confirmed from the image whether this password is the password that is required now. As for the output form of the recorded information, any form such as that described later can be adopted.
In addition to presenting this along with the password, the image should be presented in a selectable way so that when the image is selected, the associated password is output. It is possible. If you want to be able to check the image again, you can go back to displaying the image. A plurality of images can be presented so that any one of them can be selected, and when an image is selected, a password associated therewith can be output. In this case, it is also possible to present a plurality of images collectively as thumbnail images. By looking at the plurality of images presented in this way, it is easy to recall which of the plurality of images the password that is needed now relates to. If the image is selected, the password is output in the output form described later. Therefore, it is very easy to find the target password. If this image is displayed together with the password at this time, it can be confirmed again by this image whether or not this password is proper. In this case, it is also preferable to display a large image.
When presenting multiple images together, the password and the image that reminds you what the password is are a set, and because there is an image, the password is easy to find and easy to pull out. In addition, since it is possible to determine whether or not a password is appropriate based on an image, handling of the password is extremely easy. For example, if the photos are displayed side by side, an appropriate password can be obtained simply by searching for the corresponding photos. This photo should be taken so that the user can easily recall it. For example, the locker keyboard, bank lobby, personal computer screen, safe and door are photographed. If it is a photograph, it is obvious.
Although this password has a difficult problem that it cannot be remembered or cannot be remembered, until now, only the password has been recorded in a paper notepad or electronic notebook. However, just looking at this password sometimes made it difficult to recall immediately what the password was. On the other hand, since the password management of the present invention uses an image such as a photograph, there is an advantage that it is not necessary to read characters and can be understood at a glance by looking at the image. Images are much easier to understand than letters. That is, the present invention has the greatest feature in that the image is used and the image and the password are associated with each other, and the handling of the password is facilitated.
In addition, it has been practiced to create a list of passwords and names assigned to them. For example, pairs of passwords and locker names are recorded side by side in a paper memo pad or electronic notebook. However, in a situation where multiple lockers are used, it was difficult to find an appropriate password for the locker that was being unlocked just by looking at this password table. It is not immediately known which locker is being displayed. A possible reason for this is that, in such a password table, it is difficult to find the desired object at a glance because it is necessary to search for the name by reading the display because it is mainly composed of characters. is there. If you are not careful, you may make a mistake in reading the line. Therefore, it is still difficult to retrieve the password, and handling of the password is not easy. On the other hand, in the password management of the present invention, the image is an obvious clue for extracting the password, and the ease of finding the password is remarkably improved by using the image. It is also obvious at a glance. This has never happened before.
The image can be acquired by selecting an arbitrary one from the prepared illustrations and photographs or by taking a new photograph. It is also preferable to be able to set the resolution when taking a picture. Another way to acquire images is to capture the display screen of a personal computer or mobile phone, and to further reduce or trim the captured image.
The password is generated by random number generation, obtained from a password table created in advance, presented to the user and selected from this password table, or input from a user using an input device such as a keyboard. This can be done by accepting the input. When a user inputs a password, the user only has to think with an image in mind, and the password can be easily created as described above. Also, when the password is generated by the present invention, the user does not even have to think about the password himself.
The acquisition of the image and the generation of the password may be performed by separate triggers. However, the password is generated using the acquisition of the image as a trigger, or the image is acquired using the generation of the password as a trigger. Can be. For example, in the case where acquisition of an image is taken and a password is generated by generation of a random number, random number generation is performed using photography as a trigger. The trigger for taking a picture is to release the shutter. On the other hand, if you want to use separate triggers, for example, a shutter and password generation switch are provided, and photography and password creation are performed separately, and the provided registration switch is pressed. Then, you can record them in association with each other.
Regarding the output form of the recorded information, the output of the password can be displayed on the display device. According to this, since the password can be seen with eyes, it is used, for example, when the password is input to the locker described above using a keyboard. This password may be displayed separately from the image or displayed over the image. In addition, the password can be output by a transmission device. According to this, for example, the password can be transmitted to the password authentication server via the transmission device. The generated password is shared with the password authentication server side, and is transmitted to the password authentication server using the transmission device when the password is output. Accordingly, the password authentication server side performs processing for receiving and authenticating the transmitted password. Alternatively, for example, the password can be transmitted to the family by e-mail.
Next, the above problem is to take a picture, generate a random number triggered by the taking of this picture, generate a password, record this password in association with the picture, and present this picture as selectable as a thumbnail image When the thumbnail image is selected, the password management method displays the photo corresponding to the thumbnail image and the password associated with the photo. Instead of generating a password using a random number, an input of a password from a user may be accepted and recorded in association with the photograph. Note that a digital camera is suitable as a photographing device for taking a photograph.
For example, if you want to set a password for the temporary locker mentioned above, when the user presses the camera shutter, take a picture of this locker, then generate a random number to generate a password, and this password and locker It is recorded together with the photos. Or take a picture of the locker, accept the password entered by the user from the keyboard, and record this password and the picture of the locker together. The user then uses this password when locking the locker. Next, when unlocking the locker, a picture of the locker is displayed. Since a plurality of sets of photos and passwords are recorded, all the recorded photos can be displayed as thumbnail images in the locker photo display. When the user finds a necessary photo from the thumbnail image and selects it, the photo corresponding to the selected thumbnail image and the password associated with the photo are displayed. In this case, the photo is displayed larger than the thumbnail. The corresponding password is displayed there, and the user can type this password from the keyboard attached to the locker. The password is automatically generated for the user, so you don't have to use your head to create a password. Even if you let the user create a password, you don't have to use your head to remember the password. In addition, you can check whether the required password is correct by looking at the photo. In other words, there is almost no need to recall passwords.
In this way, the user can quickly find the required password from the photo. For example, if you record only the password or the association of the password and the locker name without using a photo, and if you use multiple lockers, this record is displayed. Just looking at it will make it difficult to immediately find the correct password for the locker you are trying to unlock. It may not be immediately obvious which locker this record is displaying. However, a photo is self-explanatory, and an appropriate password can be obtained simply by searching for the corresponding photo, and handling of the password is extremely easy.
Now, the above-described problem is recorded by associating a password generation device for generating a password, an image acquisition device for acquiring an image, and an image acquired by the image acquisition device and a password generated by the password generation device. This is achieved by providing a password management device having a storage device for outputting the information recorded in the storage device, and a control device for controlling these devices. That is, a password and an image for recalling what the password is associated with are recorded in the storage device in association with each other. Thus, if the image is extracted from the storage device, the corresponding password can be extracted. The image of the information is taken out by the display device, and the password is as described above.
As for the output of the recorded information, if this information is output to a display device, the password can be seen with the image. It is also possible to output the password associated with the displayed image to the reader in a non-contact manner using RFID (Radio Frequency IDentification).
The password management device may include a display device for presenting the image so that the image can be selected. When the image is selected, a password related to the image is read from the storage device and output to the output device. it can. In particular, a set of a plurality of images and passwords is recorded in a storage device, and these images are displayed on the display device so that any one of these images can be selected. The password to be output can be output. The user can easily recall what the password associated with this image is when viewing the image, thereby selecting the proper image.
In this password management device, the image acquisition device may be a photographing device for taking a photograph. This photographing apparatus includes those for still images and those for moving images. Further, the image acquisition device may be a capture device for capturing a display screen. For example, if the password management device is incorporated in a mobile phone that can be connected to the Internet, the capture device captures the homepage screen of a shopping site or the user registration screen displayed on the display screen of the mobile phone, for example. It is. The password registered on the user registration screen is associated with the captured image and managed by the password management apparatus. According to this, for example, even if it is a mobile phone with a camera, an image can be acquired by capturing its own display screen that cannot be taken. This has never been considered before. The password associated with the captured image is used on the user authentication screen of the shopping site.
The password generation device may be a random number generation device. The password generation device may be a password acquisition device that includes a password table and acquires a password from the password table. Either way, you don't have to think about the password. In addition, the password generation device may be an input device that receives a password input from a user. Since this password management device manages passwords, users do not need to remember passwords and can easily create passwords. It should be designed so that the user can select either password generation by the random number generator or password input from the input device, or the user can edit the password generation result by the random number generator as necessary. Is also possible.
In the case where the password management device includes the above-described photography device and the automatic password generation device such as the random number generation device, since the user only needs to take a picture, this password management device has a number of configuration examples. Among them, it belongs to the category with the best operability. If such a password management device is provided, it is unlikely that the user will return to the use of one password again.
Further, the output device can be a display device that displays a password. According to this, the password is displayed on the display device and can be seen with the eyes. This can be used when entering a password. In this display device, the password can be displayed separately from the image or can be displayed superimposed on the image. The output device may be a transmission device that transmits a password. According to this, the transmission device can transmit the password to, for example, a password authentication server. The generated password is shared with the password authentication server side, and when the password is output, the password is output to the password authentication server using a transmission device.
Further, it may have a camera for photographing and displaying a user of the password management device and a display device for displaying the image. This display device may be provided only for displaying the image of the camera, or may be shared with the display device for displaying the image. This is to prevent so-called shoulder hacking, and when the user is photographed and displayed on the display device, the user's back is displayed, so attention can be paid to peeping over the shoulder of the password. . The camera may be for a still image, but if it is for a moving image, it is convenient to see the change every moment. Further, it may have a mirror for copying the user of the password management apparatus. Although this mirror is simpler than the camera, it has the same effect at a low cost.
The above-mentioned problem can be achieved by adopting the following password management system. That is, a password management system including a server and a terminal device connected to the server, wherein the system generates password generation means for generating a password, image acquisition means for acquiring an image, and the password A storage device for recording the password generated by the generation unit in association with the image acquired by the image acquisition unit, and the terminal device has an output unit for outputting the information recorded in the storage device It is. The server and the terminal device are connected by wire or wireless. The networks used include a LAN (Local Area Network), the Internet, a telephone packet network, and the like. According to this system, the password generation means, the image acquisition means, and the storage device can be freely provided on the server side or on the terminal device side, and only output the information that is recorded by associating the image with the password. The terminal device side owns the means. The output means may be a display device or a transmission device.
In the case where the server has the password generation means, password generation on the terminal device side can be made unnecessary. Further, if the image acquisition means is provided on the server side, the image acquisition on the terminal device side can be made unnecessary. Further, in the case where the storage device is provided on the server side, the recording of the information on the terminal device side can be made unnecessary. Therefore, any one or all of these means may be provided on the server side, and the output means may be provided on the terminal device side so that necessary processing is performed between the server and the terminal device. It is. In addition, although it is a case where a server side has a password production | generation means, the generation of a password should just be based on generation | occurrence | production of a random number or acquisition of the password from a password table. Even if the server is configured to instruct the terminal device to accept the password input from the user, it can be considered that the password generation means has the server side. Further, in the case where the server side has image acquisition means, the image acquisition may be performed by causing the terminal device side to select an arbitrary one from the prepared illustrations and photographs. Taking photos on the server side and preparing them is another way to acquire images. In the case of having a storage device on the server side, for example, when a password is displayed on the terminal device side, the password is downloaded from the storage device of the server to the terminal device when necessary, and this password is read from the terminal device when no longer needed There is an advantage that the risk of the password being stolen from the terminal device can be reduced.
A system configuration is also possible in which the present invention is managed on the server side together with the above information as network loadable password management software that is downloaded and executed from the server to the terminal device when the terminal device is connected to the server. . Alternatively, a system configuration in which the present invention is installed in a terminal device as password management software and only user authentication at the time of activation of the software is performed on the server side is possible.
In the password management system of the present invention, when the output means is a transmission apparatus, the transmission apparatus transmits a password to a password authentication server for authentication. Japanese Patent Laid-Open No. 2001-67320 is a reference for a password authentication system in such a case. The invention of the “information providing support method and recording medium recording the procedure” is as follows: (1) When an information acquisition application is made from the client side to the server side, a user ID and a one-time password are based on the information acquisition application. Information acquisition information including the creation program is distributed from the server side to the client side. (2) The client side automatically generates a one-time password based on the information acquisition information, and transmits information including the one-time password to the server side. (3) By determining whether the one-time password from the server side matches the one-time password from the client side, the client terminal and the client can be specified at the same time. (4) If the validity is confirmed by this specification, an information providing service for a specific user is performed: By combining such a password authentication system with a password management system that records and outputs the password generated by the password generation means of the present invention and the image acquired by the image acquisition means in association with each other, it is possible to provide an image with high security. It is possible to realize a system that makes it very easy to handle passwords. In addition to the above, the contents of JP 2002-132728 A, JP 2002-278929 A, JP 2004-171056 A, and the like can be incorporated into the password management system of the present invention.
The above-mentioned problem can also be achieved by using the following password management system. That is, a password management system including a server and a terminal device connected to the server, wherein the system generates password generation means for generating a password, image acquisition means for acquiring an image, and the password A storage device for recording the password generated by the generation unit in association with the image acquired by the image acquisition unit, and a password notification unit for notifying the password generated by the password generation unit to the password authentication unit; The terminal device has output means for outputting information recorded in the storage device. According to this system, the password generation means, the image acquisition means, the storage device, and the password notification means can be freely provided on the server side or the terminal device side, and the image and the password are recorded in association with each other. The terminal device side owns the information output means. At this time, even if the password is actually recorded in the storage device on the server side and the transmission command from the terminal device side is received and transmitted to the password authentication device on the server side, the above information is output. It can be considered that the means is owned by the terminal device side. The password on the server side necessary for this authentication is notified by the password notification means when the password is generated by the password generation means.
27. The password management system according to claim 25 or claim 26, wherein the terminal device includes a display device for presenting the image so that the image can be selected. The password to be read can be read from the storage device and output by the output means. In particular, a set of a plurality of images and passwords is recorded in a storage device, and these images are displayed on the display device so that any one of them can be selected. The related password can be output. Once the user sees the image, the user can easily recall what the password associated with this image is, so that the correct image can be selected.
27. The password management system according to claim 25 or claim 26, wherein the image is recorded in the storage device in a one-to-one correspondence with a plurality of password authentication means, and the terminal device selects the image. A display device for enabling presentation, and when one image is selected from the display device, information related thereto is read from the storage device, and the output means is directed to the password authentication means corresponding to the image. Information may be transmitted. At this time, a destination such as an IP (Internet Protocol) address or a URL (Uniform Resource Locator) address assigned to the password authentication means is used. It is also possible to present a plurality of images collectively as thumbnail images. If you look at the multiple images presented in this way, you can easily recall which of the multiple images the password authentication means you are trying to authenticate is associated with. .
The terminal device may be a portable device that is wirelessly connected to the server. That is, the terminal device is a mobile phone that connects to the telephone network wirelessly, or a PDA (Personal Digital Assistant) that includes a wireless LAN card and connects to the Internet. With such a portable device, connection to the server is easy.
Further, the image acquisition means can be a photographing device for taking a photograph. This photographing apparatus includes those for still images and those for moving images. The image acquisition means can be a screen capture means for capturing a display screen on the terminal device side. For example, when the home screen of a shopping site or the user registration screen is displayed on the display screen on the terminal device side, this display screen is captured by the screen capture means, and the captured image is associated with the password. To be recorded in the storage device. Note that a general personal computer can capture a display screen when a print screen prt sc key is pressed.
Regarding the password generation means, the random number generation means can be a password generation means. Further, the password generation means may be provided with a password table and obtain a password from the password table. The password table may be a collection of artificially considered passwords or a random number table. In any of these cases, the user need not consider a password. Further, the password generation means may be an input device that accepts input of a password from the user. According to this, the user can make and use a favorite password.
The terminal device may include a camera for photographing and displaying a user of the terminal device. The terminal device may include a mirror for copying the user of the terminal device. These are all for preventing so-called shoulder hacking, and this effect is great.
The above object is achieved by providing a program for causing a computer to execute the password management method according to any one of claims 1 to 13. The form of the program is arbitrary, for example, software embedded in hardware such as a mobile phone or a digital camera, personal computer application program, plug-in software to an application program such as album software, or Java (registered trademark) language, for example It can be realized as a mobile code. That is, the program of the present invention has the greatest feature in that an image and a password are associated with each other, and the handling of the password is easy.
The above-mentioned subject is achieved by making a computer-readable recording medium which recorded the program for making a computer perform the password management method according to any one of claims 1-13. The program of the present invention can be recorded on an arbitrary recording medium and distributed.
An image and a password are associated with each other, and a password table in which a plurality of sets of such images and passwords are recorded is recorded in the storage device and used. In addition, there is an application in which the designation relating to the password transmission destination as described above is described in the password table.
In the present invention, since an image is used and an image and a password are recorded in association with each other, if the image is taken out, a corresponding password can be retrieved, and whether or not this password is a necessary password is confirmed by the image. I was able to do it. As a result, handling of passwords became extremely easy and the intended purpose was achieved.
When the password is generated by the present invention, the user does not even have to think about the password himself. Even if the user is prompted to enter a password, the user can easily create a password because the user does not need to remember the password. In addition, since it is like this, it is easy to change the password, and even if it is frequently changed, there is no trouble, and a disposable password can generally be used on a daily basis. Furthermore, more complex passwords can be easily handled, such as multiple passwords, combinations of user IDs and passwords when using personal computers, and passwords with a large number of digits. Yes.

FIG. 1 is a block diagram of the camera-equipped mobile phone according to the first embodiment. FIG. 2 is an explanatory diagram of a check screen. FIG. 3 is a flowchart showing the implementation procedure. FIG. 4 is an explanatory diagram of a display screen.
FIG. 5 is a block diagram of the camera-equipped mobile phone according to the second embodiment. FIG. 6 is an explanatory diagram of a photo list screen. FIG. 7 is an explanatory diagram of a check screen. FIG. 8 is an explanatory diagram of a password display screen. FIG. 9 is a flowchart showing the implementation procedure. FIG. 10 is a flowchart showing the implementation procedure.
FIG. 11 is a block diagram of the camera-equipped mobile phone according to the third embodiment. FIG. 12 is an explanatory diagram of a WWW display screen. FIG. 13 is a flowchart showing the implementation procedure. FIG. 14 is an explanatory diagram of a photo shooting screen.
FIG. 15 is a block diagram of a password management system according to the fourth embodiment. FIG. 16 is a flowchart showing the implementation procedure. FIG. 17 is a schematic diagram of a password table. FIG. 18 is a flowchart showing the implementation procedure.
FIG. 19 is a block diagram of the password management system of the fifth embodiment. FIG. 20 is a flowchart showing the implementation procedure.
FIG. 21 is a block diagram of the card type password management apparatus of the sixth embodiment. FIG. 22 is an explanatory diagram of a check screen. FIG. 23 is a flowchart showing the implementation procedure.
FIG. 24 is a block diagram of the digital camera of the seventh embodiment.

    In recent years, mobile phones with cameras have become a boom. Since a mobile phone is a kind of computer, it generates a random number to generate a password, shoots with a camera, displays this password or photo using the display function, and edits the password or photo from the operation function. It is a suitable device for configuring the password management apparatus of the present invention. On the other hand, since an RFID / IC card or the like has begun to spread, using this makes it possible to transmit a password in a non-contact manner. Therefore, the password management device of the present invention can be configured by providing the card with a random number generation function, a camera, a display unit, and an operation unit. In any of the above cases, if the management center is used as a password and photo storage, there is no need to place a record on the mobile phone or IC card, and if there is a problem, the management center downloads the record. Can be banned and is more secure. The IC card is an abbreviation for “integrated circuit”.

The password management apparatus according to this embodiment uses a mobile phone 1 with a photographing unit 14 (camera). An operation unit 16 including a numeric keypad and function keys and a display unit 15 of a liquid crystal screen are provided exposed on the front surface of the mobile phone 1, and a photographing unit 14 is provided on the back surface. In addition, the mobile phone 1 mainly includes a communication unit 13 for voice communication and packet communication as a telephone, a storage unit 12 in which control software is recorded, and a CPU (Central Processing Unit) that controls these units. The control unit 10 is accommodated. In addition, a password management program is installed in the storage unit 12. This password management program generates a password by generating a random number, takes a photograph with the photographing unit 14, and combines the password with the photograph. By processing them into images, they are associated with each other and recorded in the storage unit 12, and the control unit 10 executes a password management method including steps for outputting the recorded information to the display unit 15. Therefore, in this embodiment, the password generation unit 11 is formed in the control unit 10 by software (FIG. 1).
An implementation procedure of the password management apparatus when generating a password will be described with reference to the flowchart of FIG. If the user selects the camera button 26 in the display mode shown in FIG. 4 displayed on the display unit 15 when the password management apparatus is activated, the process proceeds to the generation mode (step S1). When the shutter switch is turned on in a photo shooting screen (not shown) in the generation mode, a photo is taken by the shooting unit 14 (step S2). Using this as a trigger, the control unit 10 generates a random number in the password generation unit 11 to generate a four-digit password 21, and displays it as a check screen 2 on the display unit 15 together with the photograph 20 (step S3). This state is shown in FIG. 2, but here the password creation time 22 is also displayed. When the user presses the OK button 23, the password 21 is combined with the photo 20 together with the password creation time 22 and stored (step S4). Then, the display mode of FIG. 4 is entered and a composite image composed of the photograph 20, the password 21, and the password creation time 22 is displayed on the display screen 25 (step S5). In this embodiment, the NG button 24 is displayed on the check screen 2. When the user presses the NG button 24, the control unit 10 displays a photo shooting screen for re-shooting, but this is complicated. Detailed illustration and description are omitted. Further, it is possible to design the display screen 25 to be displayed immediately after the shooting without displaying the above-described check screen 2. If the photograph 20 and the password 21 are no longer needed on the display screen 25, the user may press the delete button 27. As a result, the display screen 25 becomes empty until the next time the camera button 26 is pressed and a picture is taken and a password is generated. The camera button 26 and the delete button 27 are displayed on the screen and are so-called soft keys that are operated by pressing a corresponding function key on the operation unit 16.
According to the password management apparatus of this embodiment, since the mobile phone 1 creates a password, the user does not need to use his / her head to create the password. In addition, if a photograph taken with the camera of the mobile phone 1 is viewed, it can be understood at a glance whether or not the password is necessary. In this embodiment, only one piece of information can be displayed on the display screen 25, but it is also possible to design a plurality of pieces of information such as four pieces. Further, when it is desired to increase the number of registrations, it is preferable to make the display screen 25 scrollable or to divide pages using tabs as indexes. Alternatively, a plurality of pieces of information can be presented by repeating the cards one by one. It is also possible to design such that the photograph 20 and the password 21 as described above are not combined and displayed as a single image, but are stored separately and displayed side by side on the display screen 25. It is. Further, by using the password 21 as a file name when saving the photo 20, it is possible to associate the photo 5 with the password 21.

The password management apparatus of this embodiment utilizes a mobile phone 3 with a photographing unit 34 (camera). An operation unit 36 including a numeric keypad and function keys and a display unit 35 of a liquid crystal screen are provided exposed on the front surface of the mobile phone 3, and a photographing unit 34 is provided on the back surface. The mobile phone 3 has a communication unit 33 for voice communication and packet communication as a telephone, a storage unit 32 in which control software is recorded, and a CPU (Central Processing Unit) for controlling these. The control unit 30 is accommodated. In addition, a password management program is installed in the storage unit 32. This password management program generates a password by generating a random number, takes a picture with the photographing unit 34, and attaches the password and what is associated with it. The control unit 30 executes a password management method comprising the steps of associating with the photograph for recalling whether the password is a password and recording it in the storage unit 32 and outputting this information to the display unit 35. Yes, installed in the storage unit 32. Accordingly, the password generation unit 31 is formed in the control unit 30 in terms of software (FIG. 5).
FIG. 6 shows a screen displayed on the display unit 35 of the mobile phone 3 when the password management apparatus of this embodiment is activated. This screen is the photo list screen 4, and there are one frame already registered in the twelve frames 40. Here, thumbnails 42 of registered photos are displayed, and other frames are displayed. It is an empty frame 41. It should be noted that it is easy to see that the current general mobile phone has a total of 9 or 12 frames of 3 × 3 in the vertical direction. If it is desired to increase the number of displays, for example, it is possible to design such that the screen of the frame 40 can be scrolled or the screen can be switched with tabs.
An implementation procedure of the password management apparatus when generating a password will be described with reference to a flowchart of FIG. In FIG. 6, the black frame of the cursor is at the position of the thumbnail 42 of the photo. If the user moves this to any empty frame 41 and presses a selection button (not shown), the mode shifts to the generation mode (step S6). When the shutter switch is turned on in a photo shooting screen (not shown) in the generation mode, the shooting unit 34 takes a photo (step S7). Using this as a trigger, the control unit 30 generates a random number by the password generation unit 31 to generate a four-digit password 401 and displays it as a check screen 46 on the display unit 35 together with the photograph 47 (step S8). Although this state is illustrated in FIG. 7, here, the password creation time 402 is also displayed. If the user presses the OK button 403, the password 401 and the password creation time 402 are stored in association with the photograph 47 (step S9). Then, returning to the photo list screen 4 of FIG. 6, a photo thumbnail 42 is added to this screen (step S10). In this embodiment, the NG button 404 is displayed on the check screen 46. When the user presses the NG button 404, the control unit 30 displays a photo shooting screen for re-shooting, but this is complicated. Therefore, detailed illustration and description are omitted. It is also possible to design to display the photo list screen 4 immediately without displaying the above-described check screen 46 after shooting. The thumbnail 42 is a reduced display of the photograph 47, but it may be newly created as an independent one from the photograph 47. The selection button (not shown) is arranged at the center of the arrow key for instructing the vertical / left / right movement of the cursor of the mobile phone 3 of this embodiment, but this selection button is not used in this embodiment. Even if the operation of moving the black frame of the cursor to the empty frame 41 is not performed, simply by operating the camera button 43, a new photo thumbnail is added to the empty frame next to the frame in which the photo thumbnail 42 is registered. Designed to be registered automatically. On the photo list screen 4 in FIG. 6, when the end button 44 is pressed, the password management apparatus is terminated. Also, when the black frame of the cursor is moved to the setting button 45 and pressed, a setting screen (not shown) appears. In this setting screen, password creation digits [4, 8, 16], creation number [1, 2], password type [numeric only, alphanumeric, alphanumeric (lower case only), alphanumeric symbol, alphabetic, alphabetic ( (Lowercase only)] can be set. Incidentally, the default value is 4 digits, 1 piece, and only numbers. Further, on this setting screen, it is possible to set whether or not it is necessary to input a password when starting the password management apparatus of this embodiment. Here, you can change the password for booting. It is possible to further increase the number of setting options such as [1, 2, 3].
On the check screen 46 of this embodiment, the created password 401 is displayed in the editing window 48 and the password creation time 402 is displayed in the editing window 400. The editing window 49 displays a second password generated when the number of passwords created is two (FIG. 7). In the editing windows 48, 49, and 400, input from the user can be received using the key switch of the operation unit 36. Therefore, when the OK button is pressed without editing the contents displayed in the editing windows 48, 49, 400, the contents are displayed as they are on the browsing screen shown in FIG. However, if the password creation time 402 in the editing window 400 is deleted and a memo is written, the password 401 in the editing window 48 is rewritten to a self-made one, or a new one is written in the editing window 49 that is currently blank. This result is reflected in the browsing screen of FIG. It can be said that the configuration in the case where the password is not generated on the side of the present invention is realized by the editing window 49 set so as not to generate the second password.
Now, with reference to the display screen of FIG. 8, the operation procedure when displaying the password will be described with reference to the flowchart of FIG. The photo list screen 4 in FIG. 6 has an effect that it is possible to find a photo related to the password that is needed now by just looking at the photo list at a glance. The thumbnail 42 is displayed (step S11). In this embodiment, a maximum of 12 photos can be registered, but the number of registered thumbnails 42 is displayed on the photo list screen 4. The user moves the black frame of the cursor to the position of the thumbnail 42 of the selected photo and asks the user to press a selection button (not shown). When the selection is confirmed (step S12), the control unit 30 displays the corresponding photograph 47 and the password 401 and the password creation time 402 recorded in association with the photograph 47 on a display screen 405 as shown in FIG. Displayed (step S13). Since the photograph 47 and the password 401 are a set, it is a feature unique to the present invention that it is understood at a glance that it is the password 401 of the lock that is about to be used right now. Note that the password creation time 402 is also displayed in case the photograph 47 is lost. This is because time may be a clue to remembering when the password was created. Note that the display screen 405 in FIG. 8 includes a delete button 407 for deleting a record that is no longer necessary (and a photo thumbnail 42 in the photo list screen 4 in FIG. 6) and a photo list screen 4 in FIG. A return button 406 for switching to is displayed. An empty frame 41 is created by operating the delete button 407, and the next photo can be registered in this frame.

The password management apparatus of this embodiment uses a mobile phone 3 with a photographing unit 34 (camera), and further includes a second photographing unit 39 (camera) on the display unit 35 side of the liquid crystal double-side (mobile). It is provided on the front side of the telephone 3 and enables photographing in the user direction. The control unit 30 of this embodiment includes a screen capture unit 37 and a WWW browser unit 38 in addition to the password generation unit 31. The WWW browser unit 38 is for connecting to the Internet using a cellular phone telephone network and displaying a WWW page. The screen capture unit 37 is for recording what is displayed on the display unit 35 including the WWW page in the storage unit 32 or the like. A password management program is installed in the storage unit 32, which takes a picture with the photographing unit 34 or captures a screen of the display unit 35 with a screen capture unit 37, and generates a random number for the password. Or by using the key switch of the operation unit 36 to receive an input from the user and using it as a password, and for recollecting the password and what the password is associated with. The control unit 30 is caused to execute a password management method of associating and recording in the storage unit 32 and outputting this information to the display unit 35 (FIG. 11).
A procedure for generating a password by the password management apparatus will be described with reference to a flowchart of FIG. FIG. 12 shows a state in which the WWW browser unit 38 displays the WWW display screen 5. This screen is a personal identification screen, and the user authentication is performed on the WWW server side by inputting the account ID and password and pressing the Login button. The password management apparatus of this embodiment uses this account ID and password. First, create and register it, and then try to find this account ID and password easily. Therefore, when a function button (not shown) displayed at the position of the close button 54 is pressed, the WWW browser unit 38 displays the function menu 50 on the WWW display screen 5 in an overlapping manner. At this time, a close button 54 is displayed instead of the function button. When the close button 54 is pressed, the function menu 50 is deleted. In this function menu 50, a direct access key “1” is followed by a screen shot menu 51 displaying “screen shot / encryption registration”, and “2” is followed by “activation of encipherment password”. In addition, a mailer activation menu displaying “Create Mail” following “3” is also included. Here, the user selects “screen shot / encryption registration” using the selection button 53 in the WWW display screen 5 corresponding to the selection button, or the direct access key “1”, that is, the numeric key “ When “1” is pressed, the function menu 50 is deleted, the WWW display screen 5 is captured, and the password management apparatus is activated (step S14). The password management device receives this capture screen (step S15). Subsequently, the control unit 30 generates a random number by the password generation unit 31 to generate a password (step S16), and stores the password in association with the capture screen (step S17). Then, returning to the photo list screen, a thumbnail of the capture screen is added and displayed on this screen (step S18). Thus, the screen displayed on the display unit 35 that cannot be taken by the photographing unit 34 can be acquired by the screen capture unit 37 of this embodiment, which is a truly revolutionary invention. Note that the password generated in step S16 is transmitted and notified to the password authentication server by the communication unit 33 (not shown for the notification process), and the server side necessary for authentication by the password authentication server later is performed. It is recorded on the server side as a password. Later, when the user is requested to input a password on the WWW display screen 5, when the function menu 50 is displayed and the direct access key "2" is pressed or the activation menu 52 displayed as "encryption password activation" is selected, this password is displayed. Since the management device is activated, it is possible to immediately find the thumbnail image of the capture screen by looking at the photo list screen. Therefore, if this thumbnail image is selected, the password associated therewith is displayed, so that the user can return to the WWW display screen 5 and use this password. “Photocopying” is our trademark.
The password management apparatus of this embodiment incorporates a so-called shoulder hacking confirmation function. That is, FIG. 14 shows a photo shooting screen 408 displayed on the display unit 35. Here, a user photo 410 is displayed on a small photo display screen 409 at the lower right of the photo 47 taken by the shooting unit 34. ing. This is taken by the second photographing unit 39, and since the user and the left and right sides and the back can be photographed, there is an effect that a peep over the shoulder can be found. It can be designed so that display / non-display can be switched with respect to the photo display screen 409. Alternatively, even if the photo display screen 409 is not provided, the function button 413 may be provided with a function menu for the purpose of switching to shooting by the second shooting unit 39 and displaying the user photo 410 on the photo shooting screen 408. Is possible. The photo display screen 409 can also be designed to be displayed not only on the photo shooting screen 408 but also on the photo list screen 4 and the display screen 405. In FIG. 14, reference numeral 411 indicates a photographing button (shutter), and reference numeral 412 indicates an illumination button for turning on a light (not shown) that illuminates the front of the photographing unit 34.

In the password management devices according to the first to third embodiments described above, the created image and password are associated with each other and recorded in the storage unit of the mobile phone. However, if you do not want to place such data on your mobile phone for safety reasons, you can build a password management system that places data in the storage unit 61 of the telephone station 60 as shown in FIG. It is. In this case, the telephone station 60 executes the following password management program as a password management server of the password management system in addition to the processing as the telephone station. The cellular phone 6 which is a component of this system communicates with the nearest base station 62, which is connected to the telephone station 60. Therefore, the created photo and password are recorded in the storage unit 61 of the telephone station 60 via the base station 62 and are not stored in the storage unit of the mobile phone 6, and are communicated with the telephone station 60 as necessary. The data can be read from the storage unit 61 and displayed on the display unit of the mobile phone 6, and the data can be deleted from the mobile phone 6 when no longer needed.
Next, the execution procedure of the password management program on the telephone station 60 side will be described with reference to the flowchart of FIG. When the password management program on the mobile phone 6 side is started, this program issues a connection request to the telephone station 60. Upon receiving such a connection request, the telephone station 60 confirms the identity (step S19). If the identity verification is successful, the telephone station 60 transmits the password table 55 and the photograph to the mobile phone 6 (step S20) and cancels the connection with the mobile phone 6 (step S21). Thus, the cellular phone 6 obtains a password table 55 as shown in the schematic diagram of FIG. 17, which includes a registration number 56, an image name 57, a password 58, and, if present, a second password. 59 and memo 500 are described. Therefore, for example, when a thumbnail image with the registration number 56 of “5” is selected by the user, a picture corresponding to the image name 57 described in this record is read and displayed, and is described in this record. Password 58, password 59, and memo 500 are displayed. This thumbnail image is a reduced display of the photo. The format of the password table 55 may be a general format such as a comma format or a tab format, or a format that can be loaded only by this password management system, but the image name and password are stored in the password table 55. The structure linked above is important. Such a password table can also be used in other embodiments. According to the invention of claim 28, it is a password table in which an image and a password are associated with each other for each of a plurality of password authentication means.
The password management program of the mobile phone 6 takes a picture with the attached photographing section (camera), creates a password with the password generating section, updates the password table 55 by associating the two, and stores the photograph. When the password management program for the mobile phone 6 is terminated, the program connects to the telephone station 60, transmits the password table 55 and the photo, disconnects, and finally the password table 55 on the mobile phone 6 side. And erase the photo. Alternatively, the password table 55 is updated as described above for the photo and password pair that has been erased by the user's request, and when the password management program ends, the program connects to the telephone station 60 to connect the password table. 55 is cut off and the connection is terminated. Finally, the password table 55 and the photo on the mobile phone 6 side are erased, and the process ends. That is, according to the flowchart of FIG. 18, upon receiving a connection request from the mobile phone 6, the telephone office 60 performs identity verification (step S22), and if the identity verification is successful, checks whether the password table 55 is updated. Synchronization is performed (step S23), and the connection with the mobile phone 6 is canceled (step S24). Thus, neither the password table 55 nor the photograph remains on the mobile phone 6.
It is also possible to construct a system that uses a password management server connected to a mobile phone via a telephone network or the Internet, instead of using the telephone station 60 as a place to place data. In order to ensure the security of password management, it is possible to design the password management server to allow only the use of password management software installed in the mobile phone. In the password management system described below, the telephone station 60 is in charge of generating a password, acquiring an image, and associating the image with the password, and receiving and using this information on the mobile phone 6 side. I am doing so. This makes the processing on the mobile phone 6 side light. Another feature is that the password is obtained from a random number table, and that an image is obtained by presenting an illustration to the user for selection.

As shown in FIG. 19, a base station 62 is connected to the telephone station 60. In addition to the processing as the telephone station, the telephone station 60 executes the following password management program as a password management server of this password management system. It is configured accordingly. That is, although not shown here, an illustration library 64 for presenting and selecting an illustration for a mobile phone which is a component of this system, a password generating unit 65 for creating a password from a random number table 66, and a mobile phone The control / authentication unit 63 is configured to authenticate or transmit the selected illustration and the generated password to the mobile phone. The reason why the mobile phone side is connected to the central office 60 side is not to make an image (in this embodiment, but an illustration) and a password, but to make it on the central office 60 side. The image acquired in this way and the password are recorded in association with each other, and the recorded information is used. Therefore, it is not necessary to provide a camera on the mobile phone side.
The execution procedure of the password management program on the telephone station 60 side will be described with reference to the flowchart of FIG. When a password management program on the mobile phone side (not shown) is activated, this program issues a connection request to the telephone station 60. Upon receiving such a connection request, the control / authentication unit 63 performs identity verification (step S25). If the identity verification is successful, an illustration library is presented on the mobile phone side and a favorite illustration is selected (step S26). Using this as a trigger, the password generation unit 65 generates a password using the random number table 66 (step S27). Then, the selected illustration and the generated password are transmitted to the mobile phone side (step S28), and the connection with the mobile phone is canceled (step S29). Since the illustration and password are sent as a set, they are associated with each other. The password management program on the mobile phone side stores the received illustration and password set in a storage device for use. You can delete unnecessary illustrations and passwords on the mobile phone. Further, it is desirable that various illustrations can be classified and presented on the telephone station 60 side so that it can be used in as many situations as possible. The telephone office 60 has an advantage that it can provide more sophisticated password generation means, and can quickly update the password generation means and the illustration library. In this embodiment, the telephone station 60 can handle an arbitrary image such as a character image or a comic other than an illustration. Taking photos and storing them is another way to acquire images.

The card type password management apparatus 7 of this embodiment is a dedicated machine based on an RFID / IC card. Inside the IC card, an IC chip centering on a control unit 70, which will be described later, a loop antenna 74, and a battery (not shown) are housed. Further, a touch panel display 76 serving as both a liquid crystal display unit and a touch input unit is provided on the front surface of the IC card, and a mirror 79 for confirming shoulder hacking and a camera shutter 77 serving as a membrane switch are provided above the touch panel display 76. A power switch 78 is provided. A photographing unit 75 (camera) is provided on the back of the IC card. The IC chip contains a communication unit 73 for non-contact communication with the reader side of the RFID / IC card, a storage unit 72 in which control software is recorded, and a control unit 70 centering on a CPU for controlling each unit. ing. The password management program generates a password by generating a random number, takes a photograph with the photographing unit 75, and associates the password with the photograph for recollecting what the password is associated with. Is stored in the storage unit 72, and this information is output to the touch panel 76. The control unit 70 is caused to execute a password management method including steps, and is installed in the storage unit 72. Accordingly, the password generation unit 71 is formed in the control unit 70 in terms of software (FIG. 21).
FIG. 22 is a display screen at the time of password generation. Pressing the power switch 78 turns on the power. When the shutter 77 is pressed, the image is taken by the photographing unit 75 and the photograph 8 is displayed on the touch panel display 76. At the same time, a random number is generated to generate a password. This embodiment is characterized in that a plurality of passwords are generated and presented, and the user selects them from among them. That is, the right side of the photograph 8 is a display area for passwords and switches to be described later, but three types of passwords 80, 81, and 82 are presented on the upper stage. The password 80 is a four-digit password made up of only numbers, the password 81 is an 8-digit password made up of letters and numbers, and the password 82 is a twelve-digit password made up of letters and numbers. The password generation unit 71 is set so as to generate these three types of passwords 80, 81, and 82. These are candidates, and the user can select the required password immediately. For example, if an 8-digit password 81 is desired, it is touched and selected, and a registration button 83 displayed therebelow is pressed. If neither of these is liked, the password generation unit 71 is set to generate the password again by pressing the redo button 84. In addition to this, a password input window 85 and a memo input window 87 are displayed, and registration buttons 86 and 88 are displayed so that the user can make a password by himself or when the photograph 8 is taken. A memo can be written to make it easier. In this memo input window 80, a URL (Uniform Resource Locator) or the like may be freely entered. For writing into the password input window 85 and the memo input window 87, a soft keyboard displayed on the photograph 8 when the handwriting input switch 800 of the menu bar 89 displayed at the lower end of the photograph 8 is pressed is used ( Not shown). Regardless of which registration button 83, 86, 88 is pressed, the photograph 8 and the selected or written password are recorded in the storage unit 72 as a record. This record is provided with the memo field described above. Note that when the photograph 8 is retaken, the shutter 77 is pressed again before any of the registration buttons 83, 86, 88 is pressed.
The card-type password management device 7 of this embodiment is an RFID / IC card, and can transmit a password without contact to a reader. FIG. 23 is a flowchart showing the implementation procedure at this time. The control unit 70 is waiting to receive the detection electromagnetic wave from the reader side via the communication unit 73 (step S30), but when the card-type password management device 7 is held over the reader, the detection electromagnetic wave from the reader side is loop antenna. 74 (step S31), and an ID (IDentification) is transmitted to the reader (step S32). If authenticated by this, it will reconnect with another wireless standard by handover. Subsequently, after waiting for reception of a password transmission command (step S33), when this command is received (step S34), a password previously selected by the user is transmitted to the reader (step S35). Here, the password selected in advance by the user is not the one at the time of registration of the photograph and password in FIG. 22, but the password currently selected for transmission. That is, when a user-desired photo thumbnail is selected on a photo thumbnail display screen (not shown), the control unit 70 reads out the corresponding record, and if there is a photo, a password, and a note on the touch panel display 76, this note. indicate. Since the photo and password are a set, it is a unique feature of the present invention that it is understood at a glance that it is the password of the lock that is about to be used right now. Thereafter, in the above-described first embodiment, the password is manually input using, for example, the numeric keypad. In the sixth embodiment, the password is transmitted wirelessly. Therefore, no matter how complicated the password, the user has no trouble.

The password management apparatus of this embodiment uses the digital camera 9 as it is. An operation unit 95 for various function keys and a display unit 94 for a liquid crystal screen are provided exposed on the back surface of the digital camera 9, and a photographing unit 90 is provided on the front surface. Further, inside the digital camera 9, a storage unit 93 in which control software for functioning as a digital camera and the like are recorded, and a control unit 91 centering on a CPU (Central Processing Unit) that controls these are stored. . In addition, a password management program is installed in the storage unit 93. The password management program generates a password by generating a random number, takes a picture with the photographing unit 90, and attaches the password and what is associated with it. The control unit 91 executes a password management method comprising the steps of recording in the storage unit 93 in association with the photograph for recalling whether the password is a password, and outputting this information to the display unit 94 And installed in the storage unit 93. Accordingly, the password generation unit 92 is formed in the control unit 91 by software (FIG. 24).
A digital camera is a correct camera. In addition, since this is a kind of computer, a random number is generated to generate a password, this password and a photo are linked and stored, and this password is displayed together with related photos using a display function. This is a completely suitable device for constructing the password management apparatus.
In addition, this invention is not limited to the Example mentioned above. For example, a setting screen may be provided for generating a password so that the character type and the number of characters can be set in advance. Alternatively, it may be possible to edit a long and complex password after it has been generated. For example, a long password can be truncated by selecting the number of characters later using a drop-down menu or the like. Further, for example, it is possible to mask only the first half of an 8-character password and display the latter half of the four characters. It is also possible to mask only the alphabetic characters of passwords that are mixed with numeric alphabetic characters to make the password only numeric.
If you take a picture and leave it with a password generated, but the password has already been used, it is automatically recorded without the user intentionally registering the picture and password. It is possible to design such that It may also be designed so that photos and passwords can be edited later. It may be possible to retake a picture while holding the password once generated. For photos and passwords that are not displayed for a certain period of time, the user can be notified of the possibility of erasure. Also, a mechanism for restoring the deleted ones may be provided.
It is also possible to set to display the hints and photos first so that the password can be remembered without first displaying the photo and password. It is also possible to design the password management apparatus so that it can be locked wirelessly in case the password management apparatus of the present invention is lost. It is also possible to design such that a required password and image pair is transmitted by e-mail so that information can be shared with the authorized person.
It is possible to incorporate the contents of the above-mentioned JP-A-2002-278929 into the password management system of the present invention. For example, in FIG. 10 of Japanese Patent Application Laid-Open No. 2002-278929, an image is assigned to a set of a one-time password management server and a web server, and when this image is selected on the portable terminal side, the portable terminal corresponds to this image. This is to request the one-time password management server to create a one-time password generation module for generating a one-time password. The mobile terminal will later download the one-time password generation module from a web server corresponding to the image. It should be noted that a plurality of images can be presented as selectable thumbnail images, that is, any one of a plurality of one-time password management servers can be presented using images.

    In recent years, camera-equipped mobile phones can shoot moving images, and the capacity of the built-in memory has also increased. Therefore, it is possible to provide a password management device that records a set of a moving image and a password instead of a photograph. The password management apparatus of the present invention can also be configured by using a display function of a music player, radio or television developed for portable use and adding a digital camera. Moreover, it is possible to implement | achieve the password management apparatus of this invention with the wristwatch with a camera. The present invention can also be designed to work with other software, such as album software. Photos taken with the album software are inserted into the album, but from here you can link to password generation / registration.

Claims (39)

A password management method that generates a password based on a password creation request, acquires an image, records the image and the password in association with each other, and outputs the recorded image and password based on a password output request. The password management method according to claim 1, wherein the image is presented to be selectable, and a password associated with the image is output when the image is selected. The password management method according to claim 2, wherein the image at the time of presentation is a thumbnail image. The password management method according to claim 1, wherein the acquisition of the image is by taking a photograph. The password management method according to claim 1, wherein the acquisition of the image is by screen capture. The password management method according to claim 1, wherein the password is generated by random number generation. The password management method according to claim 1, wherein the password is generated by acquisition from a password table. The password management method according to claim 1, wherein the password is generated by an input from an input device. The password management method according to claim 1, wherein a password is generated using an image acquisition as a trigger, or an image is acquired using a password generation as a trigger. The password management method according to claim 1, wherein the password is output by a display device. The password management method according to claim 1, wherein the output of the password is transmission by a transmission device. Taking a photo, generating a random number triggered by taking this photo, generating a password, recording this password in association with the photo, presenting this photo as a selectable thumbnail image, A password management method for displaying a picture corresponding to the thumbnail image and a password associated with the picture when selected. Take a photo, accept a password, record this password in association with the photo, present this photo as a selectable thumbnail image, and when this thumbnail image is selected, the photo corresponding to this thumbnail image and this photo A password management method that displays the password associated with a password. A password generation device for generating a password, an image acquisition device for acquiring an image, and a storage device for recording the image acquired by the image acquisition device and the password generated by the password generation device in association with each other A password management device comprising an output device for information recorded in the storage device and a control device for controlling these devices. The password management device according to claim 14, further comprising: a display device for presenting the image in a selectable manner, and when the image is selected, a password associated with the image is read from the storage device and output to the output device. The password management device according to claim 14, wherein the image acquisition device is a photographing device for photographing a photograph. The password management device according to claim 14, wherein the image acquisition device is a capture device for capturing a display screen. The password management device according to claim 14, wherein the password generation device is a random number generation device. The password management apparatus according to claim 14, wherein the password generation apparatus includes a password table and acquires a password from the password table. The password management apparatus according to claim 14, wherein the password generation apparatus is an input apparatus that receives an input of a password from a user. The password management device according to claim 14, wherein the output device is a display device that displays a password. The password management device according to claim 14, wherein the output device is a transmission device that transmits a password. The password management device according to claim 14, comprising a photographing device for photographing a user of the password management device and a display device for displaying the image. The password management apparatus according to claim 14, further comprising a mirror for copying a user of the password management apparatus. A password management system comprising a server and a terminal device connected to the server, wherein the system generates password generation means for generating a password, image acquisition means for acquiring an image, and the password generation A storage device for recording the password generated by the means and the image acquired by the image acquisition unit in association with each other, and the terminal device has an output unit for outputting the information recorded in the storage device. Management system. A password management system comprising a server and a terminal device connected to the server, wherein the system generates password generation means for generating a password, image acquisition means for acquiring an image, and the password generation A storage device for associating and recording the password generated by the means and the image acquired by the image acquisition means, and a password notification means for notifying the password generated by the password generation means to the password authentication means, A password management system, wherein the device has output means for outputting information recorded in the storage device. 27. The terminal device includes a display device for presenting the image in a selectable manner, and when the image is selected, a password associated with the image is read from the storage device and output by the output unit. Password management system described in. The image is recorded in the storage device in a one-to-one correspondence with a plurality of password authentication means, and the terminal device includes a display device for presenting the image in a selectable manner, and one of the images is selected. 27. The password management system according to claim 25 or claim 26, wherein information related thereto is read from the storage device, and the output means outputs the information to a password authentication means corresponding to the image. 27. The password management system according to claim 25 or claim 26, wherein the terminal device is a portable device connected to a server wirelessly. 27. The password management system according to claim 25 or claim 26, wherein the image acquisition means is a photographing device for photographing a photograph. 27. The password management system according to claim 25 or claim 26, wherein the image acquisition means is a screen capture means for capturing a display screen on the terminal device side. 27. The password management system according to claim 25 or claim 26, wherein the password generation means is a random number generation means. 27. The password management system according to claim 25 or claim 26, wherein the password generation unit includes a password table and acquires a password from the password table. 27. The password management system according to claim 25 or claim 26, wherein the password generation means is an input device that receives an input of a password from a user. The password management system according to claim 25 or 26, wherein the terminal device includes a photographing device for photographing and displaying a user of the terminal device. The password management system according to claim 25 or 26, wherein the terminal device includes a mirror for copying a user of the terminal device. A program that causes a computer to execute the password management method according to claim 1. A computer-readable recording medium on which a program for causing a computer to execute the password management method according to claim 1 is recorded. A password table in which an image and a password are associated with each other, and a plurality of such image and password pairs are recorded.