JPWO2008044298A1 - Portable terminal, mutual authentication system, portable terminal control method, and portable terminal control program - Google Patents

Abstract

Control of mobile terminals, mutual authentication systems, and mobile terminals that can improve convenience by automatically re-enabling the security functions under certain conditions after the security functions are temporarily disabled by user operation A method and a control program for a mobile terminal are provided. The mobile phone 20 has a first state in which the user's operation on the operation key 24 is valid when mutual authentication is established with the authentication key 30, and a user's operation on the operation key 24 when mutual authentication is not established. A second state where the operation is invalid and a third state where the operation on the operation key 24 is valid when there is a predetermined release operation in the second state. When mutual authentication is established in the third state, the state shifts to the first state.

Description

  The present invention relates to a portable terminal, a mutual authentication system, a portable terminal control method, and a portable terminal control program in a system in which mutual authentication is performed using short-range wireless communication between a portable terminal and a small wireless device.

  Various functions are installed in portable terminals such as recent cellular phones. For example, in a mobile phone, in addition to the function of wireless communication with the base station, which is the original communication function, the function of automatically turning off the power of the wireless unit based on the signal from the power-off instruction signal transmitter There is something with.

  Specifically, a sensor is provided in the mobile phone in order to automatically turn off the power of the wireless unit. This sensor detects a power-off instruction signal transmitted from a power-off instruction signal transmitter. The power-off instruction signal transmitter is installed in the restricted use area.

When the sensor detects a power-off instruction signal, the power supply of the wireless unit provided in the mobile phone is automatically shut off to stop transmission of radio waves.
On the other hand, when the sensor does not detect the power-off instruction signal, power supply to the wireless unit is resumed (see, for example, Patent Document 1).

Furthermore, in addition to the original communication function, some mobile phones have a mutual authentication function (system) that performs mutual authentication using short-range wireless communication between the mobile phone and an external small wireless device (such as an authentication key). There is something with.
Since this mobile phone has a mutual authentication function, if the signal strength from a small wireless communication device such as an authentication key exceeds the threshold and mutual authentication is established, the user's operation on the operation unit is effective. When the mobile phone can be used in the first state (unlocked state: normal use is possible) and the signal strength is less than the threshold value and mutual authentication is not established, the user's operation on the operation unit Has a second state (locked state: a state where all functions cannot be used or a state where functions can be used in a limited manner).

Such a mobile phone is in the first state as being operated by a true owner when mutual authentication is established, and is operated by a third party other than the true owner when mutual authentication is established. Security function to enter the second state.
JP 2002-186021 A

  In such a mutual authentication system, if the distance between the mobile phone and the small wireless communication device is far away, the signal strength becomes lower than the threshold value, the mutual authentication is not established, and the mobile phone cannot be used. It becomes the state of 2. For example, when only a cellular phone is taken away by someone, the removed cellular phone becomes unusable and security is maintained.

  However, even if the mobile phone is at hand, but forgetting only the small wireless communication device somewhere, the mobile phone becomes unusable. To make it usable from this state, it is necessary to remember the location of the small wireless communication device, return to the location of the small wireless communication device, and bring the mobile phone and the small wireless communication device closer to each other. was there.

  The present invention has been made to solve the above-described disadvantages, and an object of the present invention is a portable terminal that performs mutual authentication with an external small wireless device using wireless communication, and has a security function by a user operation. A portable terminal, a mutual authentication system, a portable terminal control method, and a portable terminal control program that can improve convenience by automatically re-enabling a security function under certain conditions from a temporarily invalidated state. It is to provide.

  In order to solve the above-described problem, the portable terminal according to the present invention is a portable terminal that performs mutual authentication with an external small wireless device using wireless communication. A first state in which an operation is enabled; a second state in which a predetermined release operation on the operation unit of the mobile terminal is enabled and a predetermined operation is disabled when the mutual authentication is not established; When the predetermined release operation is in two states, the portable terminal has a third state in which the operation on the operation unit is valid, and when the mutual authentication is established in the third state, the first state It is characterized by shifting to.

  The portable terminal of the present invention is a portable terminal that performs mutual authentication with an external small wireless device using wireless communication. The portable terminal includes a first state in which an operation on the operation unit of the portable terminal is effective; The operation on the operation unit has a second state in which a predetermined release operation is valid and a predetermined operation is invalid, and a third state in which an operation on the operation unit of the mobile terminal is valid, If the mutual authentication is not established in the first state, the process proceeds to the second state. If the mutual authentication is established in the second state, the process proceeds to the first state, and the predetermined state is the second state. When there is an unlocking operation, the process shifts to the third state, and when the mutual authentication is established in the third state, the process shifts to the first state.

Here, the predetermined operation refers to all operations such as an operation of inputting characters, numbers, symbols, and the like through an operation unit in normal use without any restrictions.
If the mobile phone is lent to an underage family by an adult who is the true owner and the Internet is prohibited from using certain functions in advance, such as prohibition of Internet connection, etc. The operation of (1) refers to an operation excluding these restricted functions.

  The predetermined release operation can be exemplified by, for example, an operation of inputting a personal identification code (letters, numbers, symbols, etc.) that can be known only by the true owner via the operation unit. In addition, an operation performed on the housing by a procedure arbitrarily set by the true owner is also included.

  In the mobile terminal configured as described above, the third state automatically shifts from the third state in which the security function is temporarily disabled to the first state in which the security function is restored if mutual authentication is established. Therefore, the user does not need to perform a special operation such as a password input operation or an initialization operation of the portable terminal in order to shift from the first state to the first state, and convenience can be improved.

The portable terminal of the present invention is characterized in that, in the third state, when a predetermined time elapses after the operation on the operation unit is completed, the portable terminal shifts to the second state.
In the mobile terminal configured as described above, since the user automatically moves to the second state where the security function is restored after a predetermined time has elapsed since the user finished operating the operation unit in the third state, Even when the portable terminal is left in the three states, the security function can be recovered.

Furthermore, the portable terminal of the present invention is characterized in that when a predetermined return operation is performed on the housing in the third state, the portable terminal shifts to the second state.
Here, as the return operation, for example, an operation of relatively moving (opening / closing, rotating, sliding) a pair of housings in a portable terminal such as a bi-fold type, a slide type, or a revolver type, Operation of the release button for opening the case, operation of shaking, vibrating, tapping the surface of the portable terminal, operation for attaching / detaching a battery, memory card, etc. to the case, camera provided in the case Macro switch operation, side keys provided on the housing end face, switch operation of dials, etc., input operation of a predetermined character string, number string, symbol string on the operation unit, predetermined key (function key, direction key on the operation unit) Etc.) Operation, operation of extending / contracting the antenna, rotation operation of a specific key including a power key, etc. can be exemplified.

In the mobile terminal configured as described above, when a predetermined return operation is performed on the casing, the mobile terminal shifts to the second state. Therefore, a predetermined time elapses after the user finishes operating the operation unit in the third state. Even before, if the predetermined return operation is performed, the security function is immediately restored, and the period during which the security function is disabled can be shortened.
Note that the transition to the second state may be performed immediately after a predetermined return operation is performed on the housing, or may be performed after a predetermined time has elapsed.

By the way, when the above-described portable terminal exists under a signal intensity that shifts from the first state to the second state, chattering that repeats the first state and the second state is likely to occur.
Then, if mutual authentication is established between the start of the predetermined release operation in the second state and the completion thereof, the transition to the first state is made, and the transition to the second state is made again, so that the release operation becomes invalid. Inconvenience may occur.

On the other hand, when the portable terminal of the present invention has the predetermined release operation in the second state, whether the mutual authentication is established between the start of the predetermined release operation and the completion thereof, It shifts to the 4th state which maintains the state which is not asked whether or not.
In the mobile terminal configured as described above, the above-described canceling operation by chattering is performed in order to maintain a state in which mutual authentication is established or not until the predetermined canceling operation is started and completed. Inconvenience that becomes invalid is unlikely to occur.

  Further, when the above-described portable terminal exists under a signal intensity that shifts from the first state to the second state or from the second state to the first state, even if the operation unit is operated in the third state If mutual authentication is established, there is a case in which the state shifts to the second state after shifting to the first state. That is, in the third state, before the normal operation such as a telephone call is completed, the first state may be changed to the second state, and the normal operation such as a telephone call may be disabled.

On the other hand, in the mobile terminal of the present invention, the third state includes a third state first stage in which an operation on the operation unit becomes valid while an operation on the operation unit is continued, and the third state first A third state and a second stage that shifts when a predetermined time has elapsed since the operation on the operation unit was completed in the stage, and when the mutual authentication is established in the third state and the second stage, It shifts to 1 state, It is characterized by the above-mentioned.
In the present invention, in the second stage of the third state, when the operation on the operation unit is started in a state where mutual authentication is not established, the third state may be shifted to the first stage.

  In the mobile terminal configured as described above, the operation does not shift to the first state while the operation on the operation unit is continued in the third state, and therefore exists under a signal intensity that shifts from the first state to the second state. However, the normal operation in the third state can be reliably completed.

  The portable terminal according to the present invention may be configured such that the third state includes a third state first stage in which an operation on the operation unit is enabled while an operation on the operation unit is continued, and the third state in the first stage. A third state and a second stage that shifts when a predetermined time has elapsed after the operation on the operation unit is completed, and when the mutual authentication is established in the third state and the second stage, the first state is entered. If the mutual authentication is not established, the process shifts to the second state.

  In the mobile terminal configured as described above, when the mutual authentication is not established even after a predetermined time has elapsed since the operation on the operation unit is completed in the first stage of the third state, the security function is automatically recovered. Since the state shifts to the state, the security function can be recovered even when the portable terminal is left in the third state.

In addition, when the portable terminal described above exists under an unstable signal strength that shifts from the first state to the second state, or from the second state to the first state, if the mutual authentication is established, the mobile terminal enters the first state. In some cases, the transition to the second state occurs after the transition. In this case, in order to shift to the third state again, it is necessary to perform a predetermined release operation again. In this way, there is a possibility that the third state, the first state, and the second state are repeated.
In contrast, the portable terminal of the present invention shifts to the second state when the signal strength used for the wireless communication in the first state falls below a first threshold value, and the signal in the second state. When the intensity exceeds a second threshold value that is equal to or higher than the first threshold value, the first state is entered, and in the third state, the signal intensity exceeds a third threshold value that exceeds the second threshold value. The first state is shifted to the first state.

Here, the first threshold value and the second threshold value may be equal to each other, but the first threshold value preferably exceeds the second threshold value.
In addition, the difference between the second threshold value and the third threshold value is preferably larger than the difference between the first threshold value and the second threshold value.

In the mobile terminal configured as described above, for example, if the first threshold value exceeds the second threshold value, chattering that repeats the first state and the second state hardly occurs.
And in this portable terminal, since the third threshold value exceeds the second threshold value, it is difficult to shift from the first state to the second state after shifting from the third state to the first state. The inconvenience of repeating the third state, the first state, and the second state is unlikely to occur.

  Furthermore, the mutual authentication system of the present invention includes the above-described portable terminal and the small wireless device.

  In addition, in the portable terminal control method in which mutual authentication is established using wireless communication with an external small wireless device, the operation on the operation unit of the portable terminal is effective when the mutual authentication is established. And when the mutual authentication is not established, a predetermined release operation for the operation unit of the mobile terminal is enabled and a second operation in which the predetermined operation is disabled, and the second state When there is a predetermined release operation, the mobile terminal has a third state in which the operation on the operation unit of the mobile terminal is valid, and when the mutual authentication is established in the third state, the transition to the first state is made It is characterized by.

  In the portable terminal control program for mutual authentication using wireless communication with an external small wireless device, if the mutual authentication is established, the operation program for the portable terminal is effective. And when the mutual authentication is not established, a predetermined release operation for the operation unit of the mobile terminal is enabled and a second operation in which the predetermined operation is disabled, and the second state When there is a predetermined release operation, the mobile terminal has a third state in which the operation on the operation unit of the mobile terminal is valid, and when the mutual authentication is established in the third state, the transition to the first state is made It is characterized by.

  According to the mobile terminal, the mutual authentication system, the mobile terminal control method, and the mobile terminal control program of the present invention, the security function is automatically disabled under certain conditions from the state where the security function is temporarily disabled by the user's operation. By making the security function effective again, there is an effect that convenience can be improved.

It is a conceptual diagram which shows the mutual authentication system which concerns on this invention. It is a block diagram which shows the mutual authentication system which concerns on this invention. It is a ladder diagram showing mutual authentication operation of a portable terminal and an authentication key according to the present invention. It is a state transition diagram showing a first embodiment according to the present invention. It is a state transition diagram showing a second embodiment according to the present invention. It is a state transition diagram showing a third embodiment according to the present invention. It is a state transition diagram showing a fourth embodiment according to the present invention. It is a state transition diagram showing a fifth embodiment according to the present invention. It is a schematic diagram which shows the relationship of each threshold value in 6th Embodiment concerning this invention. It is a state transition diagram showing a sixth embodiment according to the present invention. It is a state transition diagram showing a seventh embodiment according to the present invention.

Explanation of symbols

10 Mutual authentication system 20 Mobile phone (mobile terminal)
21 First wireless communication unit 24 Operation button (operation unit)
30 Authentication key (small wireless device)
31 Second wireless communication unit

  Hereinafter, a portable terminal and a mutual authentication system according to embodiments of the present invention will be described with reference to the drawings.

(First embodiment)
The mutual authentication system 10 shown in FIG. 1 includes a mobile phone (mobile terminal) 20 provided with a first wireless communication unit 21 (see FIG. 2) and an authentication provided with a second wireless communication unit 31 (see FIG. 2). And a key (small wireless device) 30.

As shown in FIG. 2, the mobile phone 20 includes a first wireless communication unit 21 in the housing, and performs mutual authentication between the mobile phone 20 and the authentication key 30.
The first wireless communication unit 21 includes an authentication transmission / reception unit 21a that transmits or receives an ID, an ID storage unit 21b that stores an ID for performing authentication, and an ID of the ID storage unit 23 and a verification of the received ID. The authentication control part 21c to perform and the control signal production | generation part 21d which produces | generates the control signal which shows that it is authenticated with the authentication key 30 are provided.

  Further, the mobile phone 20 includes a speaker 22, a display unit 23, and an operation button (operation unit) 24, and a control unit 25 that controls the speaker 22, the display unit 23, the operation button 24, and the first wireless communication unit 21. And a transmitter / receiver 26 and a battery 27 as a power source.

The authentication key 30 includes a second wireless communication unit 31 and a battery 32 that is a power source.
The second wireless communication unit 31 includes an authentication transmission / reception unit 31a, an ID control unit 31b, and a control unit 31c.

Here, an example in which the mobile phone 20 and the authentication key 30 perform mutual authentication will be briefly described with reference to FIGS.
The authentication key 30 periodically transmits a search signal (see FIG. 3) from the authentication transmission / reception unit 31a of the second wireless communication unit 31.
In FIG. 1, the range in which the search signal of the authentication key 30 has a signal intensity exceeding a predetermined threshold is indicated by a circle. If the mobile phone 20 exists in the circle of FIG. 1 (the state of the solid line in FIG. 1), the mobile phone 20 is registered in advance in the ID of the authentication key 30 included in the search signal and the ID storage unit 21b. The authentication control unit 21c collates the ID of the authentication key 30 being registered, and if the ID matches the ID registered in advance, a response signal (see FIG. 3) is transmitted from the authentication transmitting / receiving unit 21a to the authentication key 30.

When the authentication key 30 receives the response signal, the control unit 31c compares the ID of the mobile phone 20 included in the response signal with the ID of the mobile phone 20 registered in advance in the ID storage unit 321b.
After confirming that the IDs are the same, an authentication signal in which a random number is encrypted is transmitted from the authentication key 30 to the mobile phone 20, and the mobile phone 20 receiving the authentication signal from the authentication key 30 combines the authentication signal. Authentication is performed by sending an authentication signal.

  The authentication operation for transmitting these authentication signals is repeated at regular intervals, and the mobile phone 20 and the authentication key 30 enter the first state by mutual authentication in which they are mutually authenticated.

  The first state is a state in which all operations on the operation keys 24 of the mobile phone 20 are valid (unlocked state), assuming that the mobile phone 20 is operated by a true owner because mutual authentication is established. : Normal use possible).

On the other hand, as shown by a two-dot chain line in FIG. 1, when the search signal of the authentication key 30 is outside the range where the signal intensity exceeds a predetermined threshold (outside the circle), the search signal is Since the signal intensity is less than the threshold value, mutual authentication is not established and the second state is established.
The second state is a state in which the operation on the operation unit of the mobile phone 20 becomes invalid because the mobile phone 20 may be operated by a third party other than the true owner because mutual authentication is not established. (Locked state: a state in which all functions cannot be used or a state in which the use of functions is limited).
By limiting the functions that can be used, functions set in advance (for example, telephone number 110 and telephone number 119) can be used.

As shown in FIG. 4, the mobile phone 20 is under the control of a security function in which the first state and the second state are exclusively selected when mutual authentication with the authentication key 30 is established or not established. .
Furthermore, in the second state, the mobile phone 20 is operated to release the operation in which the user operates the operation button 24 (operation unit) to input a code (character, number, symbol, etc.) that only the true owner can know. As a result, the operation of the operation button 24 shifts to the third state in which the operation is limited or time-effective. That is, the mobile phone 20 is in a usable state under predetermined restrictions.

The third state is a stand-alone state in which the mobile phone 20 is disconnected from the mutual authentication system 10 so that the security function is temporarily disabled and the authentication key 30 is not paired.
At this time, the mobile phone 20 is apparently unlocked, but is in a state where it can receive the search signal from the authentication key 30 in the background.
In the second state, in the second state, the operation button 24 accepts only the input of the password, and a dialog box for prompting the input of the password is displayed on the display unit 23.

  When the mutual authentication with the authentication key 30 is established in the third state, the mobile phone 20 is paired with the authentication key 30 from the usable state under a predetermined restriction and the security function is restored. The operation immediately shifts to the first state in which all operations on the operation keys 24 are valid.

  Such a control program of the mobile phone 20 is stored in a storage unit (not shown in FIG. 2) and is executed by the control unit 25.

  According to the mutual authentication system 10 and the mobile phone 20 as described above, the transition from the third state in which the security function is temporarily disabled to the first state in which the security function is restored if mutual authentication is established. Thus, it is not necessary for the user to input a personal identification code in order to shift from the third state to the first state, and convenience can be improved as compared with the conventional case.

  Next, 2nd Embodiment-5th Embodiment which concerns on this invention is described. In each embodiment described below, description of the first state and the second state that have already been described is omitted.

(Second Embodiment)
FIG. 5 shows a state transition diagram of the second embodiment of the present invention.
As shown in FIG. 5, in the third state, when the mutual authentication with the authentication key 30 is established in the third state, the mobile phone 20 immediately shifts to the first state and the mutual authentication with the authentication key 30 is established. If not, the second state is entered after a predetermined time has elapsed since the last operation on the operation key 24 was performed.
The predetermined time may be a time set in advance in the mobile phone 20 (default time) or an arbitrary time set separately by the user.

  According to the mutual authentication system 10 and the mobile phone 20 as described above, the second state in which the security function is automatically restored after a predetermined time has elapsed since the user finished operating the operation key 24 in the third state. Therefore, since it is not necessary for the user to input a personal identification code in order to shift from the third state to the second state as in the prior art, the convenience can be improved as compared with the prior art.

(Third embodiment)
FIG. 6 shows a state transition diagram of the third embodiment of the present invention.
As shown in FIG. 6, when mutual authentication is established between the mobile phone 20 and the authentication key 30 in the third state, the mobile phone 20 immediately shifts to the first state and mutual authentication is established with the authentication key 30. If not, the state is immediately shifted to the second state by performing a predetermined return operation on the casing.

The return operation in the third embodiment is a so-called long press operation in which the power key provided on the housing is continuously pressed for a predetermined time.
The return operation in the present invention is, for example, an operation of moving a pair of housings relative to each other (opening / closing, rotating, sliding) in a mobile phone such as a bi-fold type, a slide type, or a revolver type, Open button operation for opening a pair of housings, operations such as shaking, vibrating, hitting the surface, etc. of mobile phones, removing / attaching batteries, memory cards, etc. to the housing, provided on the housing Macro switch operation of the camera, side keys provided on the end face of the casing, switch operation of dials, input operation of predetermined character strings, numeric strings, symbol strings on the operation keys 24, predetermined keys (function keys) on the operation unit , Direction keys, etc.) and any of the operations, etc., or operations using a plurality of them together.

  According to the mutual authentication system 10 and the mobile phone 20 as described above, when a predetermined return operation is performed on the casing, the state immediately shifts to the second state, and thus the user has finished operating the operation key 24 in the third state. Even before a predetermined time elapses, if a predetermined return operation is performed, the security function is immediately restored, and the period during which the security function is disabled can be shortened.

(Fourth embodiment)
FIG. 7 shows a state transition diagram of the fourth embodiment of the present invention.
As shown in FIG. 7, when performing a release operation in the second state, the mobile phone 20 maintains a state in which mutual authentication is not established from the start to the completion of the release operation, and the release operation is completed. After that, the third state is entered.
Here, for example, when inputting a PIN code of 4 digits, the release operation refers to the end of inputting the 4th digit, but depending on the model of the mobile phone 20, after the 4th digit is input, the enter key is operated. It also includes the case of referring to the process.

In the mobile phone 20 described above, when chattering that repeats the first state and the second state occurs, the state transitions to the first state when mutual authentication is established between the start of the release operation and the completion in the second state. Thereafter, since the transition to the second state is performed again, there is a possibility that the inconvenience that the release operation becomes invalid.
On the other hand, according to the mobile phone 20 of the fourth embodiment, in the second state, since the mutual authentication is not established from the start to the completion of the release operation, the chattering described above is used. The effect that the inconvenience that the release operation becomes invalid is less likely to occur.

(Fifth embodiment)
FIG. 8 shows a state transition diagram of the fifth embodiment of the present invention.
As shown in FIG. 8, the mobile phone 20 has a third state first stage in which the third state starts an operation on the operation key 24 and the operation on the operation key 24 is valid during the third state, A third state and a second stage that shifts when a predetermined time t2 elapses after the operation on the operation key 24 is completed in the state first stage.
In the second state of the third state, the cellular phone 20 proceeds to the first state of the third state again when the operation on the operation key 24 is started in a state where mutual authentication is not established, and in the second state of the third state. When mutual authentication is established, the state shifts to the first state.

  According to the mutual authentication system 10 and the mobile phone 20 as described above, the first state shifts from the first state to the second state because the operation to the operation key 24 is not shifted to the first state in the first step of the third state. Even if it exists under such signal intensity | strength, it can reduce possibility that the chattering which repeats a 1st state and a 2nd state will arise after shifting from a 3rd state to a 1st state.

(Sixth embodiment)
FIG. 9 shows a schematic diagram showing the relationship between a plurality of threshold values in the mutual authentication system 10 of the sixth embodiment, and FIG. 10 shows a state transition diagram of the sixth embodiment.
In the mutual authentication system 10 according to the sixth embodiment, the concentric triple circle shown in FIG. It is drawn as a range exceeding the threshold value R3.

The first threshold value R1 indicates the signal strength at which the search signal reaches a range of, for example, a radius of 10 m with the authentication key 30 as the center.
The second threshold value R2 indicates the signal intensity at which the search signal reaches a range of, for example, a radius of 9.5 m with the authentication key 30 as the center.
The third threshold value R3 indicates the signal intensity at which the search signal reaches a range of, for example, a radius of 0.3 m with the authentication key 30 as the center.
The relationship between the first threshold value R1, the second threshold value R2, and the third threshold value R3 is as follows.
R1>R2> R3

  Of the first threshold value R1, the second threshold value R2, and the third threshold value R3, the third threshold value R3 is compared with the first threshold value R1 and the second threshold value R2. The value is extremely strong and can be clearly distinguished from the first threshold value R1 and the second threshold value R2.

As shown in FIG. 10, such a mobile phone 20 shifts to the second state when the signal strength from the authentication key 30 falls below the first threshold value R1 in the first state, and authenticates in the second state. When the signal intensity from the key 30 exceeds the second threshold value R2 that is equal to or greater than the first threshold value R1, the first state is entered.
That is, since the hysteresis is provided by the first threshold value R1 and the second threshold value R2 having different values, the mobile phone 20 exists in the vicinity of the first threshold value R1 and the second threshold value R2. In this case, it is possible to reduce the occurrence frequency of chattering that frequently switches between the case where mutual authentication is established and the case where mutual authentication is not established.

In addition, the mobile phone 20 transitions to the first state when the signal strength from the authentication key 30 exceeds the third threshold value R3 that greatly exceeds the second threshold value R2 in the third state.
That is, since the third threshold value R3 for entering the first state from the third state is a value that greatly exceeds the second threshold value R2, the first threshold value after the transition from the third state to the first state is reached. An effect is obtained that chattering that repeats the state and the second state hardly occurs.

(Seventh embodiment)
FIG. 11 shows a state transition diagram of the seventh embodiment.
As shown in FIG. 11, the mobile phone 20 has a third state first stage in which the third state starts an operation on the operation key 24 and the operation on the operation key 24 is valid during the third state, A third state and a second stage that shifts when a predetermined time t2 elapses after the operation on the operation key 24 is completed in the state first stage.
In the second state of the third state, the mobile phone 20 transitions to the first state when mutual authentication is established, and transitions to the second state when mutual authentication is not established.

  According to the mutual authentication system 10 and the mobile phone 20 as described above, if mutual authentication is not established even after a predetermined time has elapsed since the operation on the operation unit was completed in the first stage of the third state, the security function is automatically set. Therefore, the security function can be recovered even when the portable terminal is left unattended in the third state.

  In each of the above-described embodiments, the mutual authentication system is exemplified in which mutual authentication is established when the authentication key periodically transmits a search signal and the mobile phone responds to the search signal. Can be applied to a mutual authentication system in which mutual authentication is established by periodically transmitting a search signal and an authentication key responding to the search signal.

  Further, in each of the above-described embodiments, the mobile phone 20 is illustrated as a mobile terminal and the authentication key 30 is illustrated as a small wireless device, but the present invention can also be applied to other mobile terminals and small wireless devices.

  The present invention is suitable for application to a portable terminal that performs mutual authentication with a small wireless device and a mutual authentication system that performs mutual authentication between a portable terminal and a small wireless device.

  The present invention relates to a portable terminal, a mutual authentication system, a portable terminal control method, and a portable terminal control program in a system in which mutual authentication is performed using short-range wireless communication between a portable terminal and a small wireless device.

  Various functions are installed in portable terminals such as recent cellular phones. For example, in a mobile phone, in addition to the function of wireless communication with the base station, which is the original communication function, the function of automatically turning off the power of the wireless unit based on the signal from the power-off instruction signal transmitter There is something with.

  Specifically, a sensor is provided in the mobile phone in order to automatically turn off the power of the wireless unit. This sensor detects a power-off instruction signal transmitted from a power-off instruction signal transmitter. The power-off instruction signal transmitter is installed in the restricted use area.

When the sensor detects a power-off instruction signal, the power supply of the wireless unit provided in the mobile phone is automatically shut off to stop transmission of radio waves.
On the other hand, when the sensor does not detect the power-off instruction signal, power supply to the wireless unit is resumed (see, for example, Patent Document 1).

Furthermore, in addition to the original communication function, some mobile phones have a mutual authentication function (system) that performs mutual authentication using short-range wireless communication between the mobile phone and an external small wireless device (such as an authentication key). There is something with.
Since this mobile phone has a mutual authentication function, if the signal strength from a small wireless communication device such as an authentication key exceeds the threshold and mutual authentication is established, the user's operation on the operation unit is effective. When the mobile phone can be used in the first state (unlocked state: normal use is possible) and the signal strength is less than the threshold value and mutual authentication is not established, the user's operation on the operation unit Has a second state (locked state: a state where all functions cannot be used or a state where functions can be used in a limited manner).

Such a mobile phone is in the first state as being operated by a true owner when mutual authentication is established, and is operated by a third party other than the true owner when mutual authentication is established. Security function to enter the second state.
JP 2002-186021 A

  In such a mutual authentication system, if the distance between the mobile phone and the small wireless communication device is far away, the signal strength becomes lower than the threshold value, the mutual authentication is not established, and the mobile phone cannot be used. It becomes the state of 2. For example, when only a cellular phone is taken away by someone, the removed cellular phone becomes unusable and security is maintained.

  However, even if the mobile phone is at hand, but forgetting only the small wireless communication device somewhere, the mobile phone becomes unusable. To make it usable from this state, it is necessary to remember the location of the small wireless communication device, return to the location of the small wireless communication device, and bring the mobile phone and the small wireless communication device closer to each other. was there.

  The present invention has been made to solve the above-described disadvantages, and an object of the present invention is a portable terminal that performs mutual authentication with an external small wireless device using wireless communication, and has a security function by a user operation. A portable terminal, a mutual authentication system, a portable terminal control method, and a portable terminal control program that can improve convenience by automatically re-enabling a security function under certain conditions from a temporarily invalidated state. It is to provide.

  In order to solve the above-described problem, the portable terminal according to the present invention is a portable terminal that performs mutual authentication with an external small wireless device using wireless communication. A first state in which an operation is enabled; a second state in which a predetermined release operation on the operation unit of the mobile terminal is enabled and a predetermined operation is disabled when the mutual authentication is not established; When the predetermined release operation is in two states, the portable terminal has a third state in which the operation on the operation unit is valid, and when the mutual authentication is established in the third state, the first state It is characterized by shifting to.

  The portable terminal of the present invention is a portable terminal that performs mutual authentication with an external small wireless device using wireless communication. The portable terminal includes a first state in which an operation on the operation unit of the portable terminal is effective; The operation on the operation unit has a second state in which a predetermined release operation is valid and a predetermined operation is invalid, and a third state in which an operation on the operation unit of the mobile terminal is valid, If the mutual authentication is not established in the first state, the process proceeds to the second state. If the mutual authentication is established in the second state, the process proceeds to the first state, and the predetermined state is the second state. When there is an unlocking operation, the process shifts to the third state, and when the mutual authentication is established in the third state, the process shifts to the first state.

Here, the predetermined operation refers to all operations such as an operation of inputting characters, numbers, symbols, and the like through an operation unit in normal use without any restrictions.
If the mobile phone is lent to an underage family by an adult who is the true owner and the Internet is prohibited from using certain functions in advance, such as prohibition of Internet connection, etc. The operation of (1) refers to an operation excluding these restricted functions.

  The predetermined release operation can be exemplified by, for example, an operation of inputting a personal identification code (letters, numbers, symbols, etc.) that can be known only by the true owner via the operation unit. In addition, an operation performed on the housing by a procedure arbitrarily set by the true owner is also included.

  In the mobile terminal configured as described above, the third state automatically shifts from the third state in which the security function is temporarily disabled to the first state in which the security function is restored if mutual authentication is established. Therefore, the user does not need to perform a special operation such as a password input operation or an initialization operation of the portable terminal in order to shift from the first state to the first state, and convenience can be improved.

The portable terminal of the present invention is characterized in that, in the third state, when a predetermined time elapses after the operation on the operation unit is completed, the portable terminal shifts to the second state.
In the mobile terminal configured as described above, since the user automatically moves to the second state where the security function is restored after a predetermined time has elapsed since the user finished operating the operation unit in the third state, Even when the portable terminal is left in the three states, the security function can be recovered.

Furthermore, the portable terminal of the present invention is characterized in that when a predetermined return operation is performed on the housing in the third state, the portable terminal shifts to the second state.
Here, as the return operation, for example, an operation of relatively moving (opening / closing, rotating, sliding) a pair of housings in a portable terminal such as a bi-fold type, a slide type, or a revolver type, Operation of the release button for opening the case, operation of shaking, vibrating, tapping the surface of the portable terminal, operation for attaching / detaching a battery, memory card, etc. to the case, camera provided in the case Macro switch operation, side keys provided on the housing end face, switch operation of dials, etc., input operation of a predetermined character string, number string, symbol string on the operation unit, predetermined key (function key, direction key on the operation unit) Etc.) Operation, operation of extending / contracting the antenna, rotation operation of a specific key including a power key, etc. can be exemplified.

In the mobile terminal configured as described above, when a predetermined return operation is performed on the casing, the mobile terminal shifts to the second state. Therefore, a predetermined time elapses after the user finishes operating the operation unit in the third state. Even before, if the predetermined return operation is performed, the security function is immediately restored, and the period during which the security function is disabled can be shortened.
Note that the transition to the second state may be performed immediately after a predetermined return operation is performed on the housing, or may be performed after a predetermined time has elapsed.

By the way, when the above-described portable terminal exists under a signal intensity that shifts from the first state to the second state, chattering that repeats the first state and the second state is likely to occur.
Then, if mutual authentication is established between the start of the predetermined release operation in the second state and the completion thereof, the transition to the first state is made, and the transition to the second state is made again, so that the release operation becomes invalid. Inconvenience may occur.

On the other hand, when the portable terminal of the present invention has the predetermined release operation in the second state, whether the mutual authentication is established between the start of the predetermined release operation and the completion thereof, It shifts to the 4th state which maintains the state which is not asked whether or not.
In the mobile terminal configured as described above, the above-described canceling operation by chattering is performed in order to maintain a state in which mutual authentication is established or not until the predetermined canceling operation is started and completed. Inconvenience that becomes invalid is unlikely to occur.

  Further, when the above-described portable terminal exists under a signal intensity that shifts from the first state to the second state or from the second state to the first state, even if the operation unit is operated in the third state If mutual authentication is established, there is a case in which the state shifts to the second state after shifting to the first state. That is, in the third state, before the normal operation such as a telephone call is completed, the first state may be changed to the second state, and the normal operation such as a telephone call may be disabled.

On the other hand, in the mobile terminal of the present invention, the third state includes a third state first stage in which an operation on the operation unit becomes valid while an operation on the operation unit is continued, and the third state first A third state and a second stage that shifts when a predetermined time has elapsed since the operation on the operation unit was completed in the stage, and when the mutual authentication is established in the third state and the second stage, It shifts to 1 state, It is characterized by the above-mentioned.
In the present invention, in the second stage of the third state, when the operation on the operation unit is started in a state where mutual authentication is not established, the third state may be shifted to the first stage.

  In the mobile terminal configured as described above, the operation does not shift to the first state while the operation on the operation unit is continued in the third state, and therefore exists under a signal intensity that shifts from the first state to the second state. However, the normal operation in the third state can be reliably completed.

  The portable terminal according to the present invention may be configured such that the third state includes a third state first stage in which an operation on the operation unit is enabled while an operation on the operation unit is continued, and the third state in the first stage. A third state and a second stage that shifts when a predetermined time has elapsed after the operation on the operation unit is completed, and when the mutual authentication is established in the third state and the second stage, the first state is entered. If the mutual authentication is not established, the process shifts to the second state.

  In the mobile terminal configured as described above, when the mutual authentication is not established even after a predetermined time has elapsed since the operation on the operation unit is completed in the first stage of the third state, the security function is automatically recovered. Since the state shifts to the state, the security function can be recovered even when the portable terminal is left in the third state.

In addition, when the portable terminal described above exists under an unstable signal strength that shifts from the first state to the second state, or from the second state to the first state, if the mutual authentication is established, the mobile terminal enters the first state. In some cases, the transition to the second state occurs after the transition. In this case, in order to shift to the third state again, it is necessary to perform a predetermined release operation again. In this way, there is a possibility that the third state, the first state, and the second state are repeated.
In contrast, the portable terminal of the present invention shifts to the second state when the signal strength used for the wireless communication in the first state falls below a first threshold value, and the signal in the second state. When the intensity exceeds a second threshold value that is equal to or higher than the first threshold value, the first state is entered, and in the third state, the signal intensity exceeds a third threshold value that exceeds the second threshold value. The first state is shifted to the first state.

Here, the first threshold value and the second threshold value may be equal to each other, but the first threshold value preferably exceeds the second threshold value.
In addition, the difference between the second threshold value and the third threshold value is preferably larger than the difference between the first threshold value and the second threshold value.

In the mobile terminal configured as described above, for example, if the first threshold value exceeds the second threshold value, chattering that repeats the first state and the second state hardly occurs.
And in this portable terminal, since the third threshold value exceeds the second threshold value, it is difficult to shift from the first state to the second state after shifting from the third state to the first state. The inconvenience of repeating the third state, the first state, and the second state is unlikely to occur.

  Furthermore, the mutual authentication system of the present invention includes the above-described portable terminal and the small wireless device.

  In addition, in the portable terminal control method in which mutual authentication is established using wireless communication with an external small wireless device, the operation on the operation unit of the portable terminal is effective when the mutual authentication is established. And when the mutual authentication is not established, a predetermined release operation for the operation unit of the mobile terminal is enabled and a second operation in which the predetermined operation is disabled, and the second state When there is a predetermined release operation, the mobile terminal has a third state in which the operation on the operation unit of the mobile terminal is valid, and when the mutual authentication is established in the third state, the transition to the first state is made It is characterized by.

  In the portable terminal control program for mutual authentication using wireless communication with an external small wireless device, if the mutual authentication is established, the operation program for the portable terminal is effective. And when the mutual authentication is not established, a predetermined release operation for the operation unit of the mobile terminal is enabled and a second operation in which the predetermined operation is disabled, and the second state When there is a predetermined release operation, the mobile terminal has a third state in which the operation on the operation unit of the mobile terminal is valid, and when the mutual authentication is established in the third state, the transition to the first state is made It is characterized by.

  According to the mobile terminal, the mutual authentication system, the mobile terminal control method, and the mobile terminal control program of the present invention, the security function is automatically disabled under certain conditions from the state where the security function is temporarily disabled by the user's operation. By making the security function effective again, there is an effect that convenience can be improved.

  Hereinafter, a portable terminal and a mutual authentication system according to embodiments of the present invention will be described with reference to the drawings.

(First embodiment)
The mutual authentication system 10 shown in FIG. 1 includes a mobile phone (mobile terminal) 20 provided with a first wireless communication unit 21 (see FIG. 2) and an authentication provided with a second wireless communication unit 31 (see FIG. 2). And a key (small wireless device) 30.

As shown in FIG. 2, the mobile phone 20 includes a first wireless communication unit 21 in the housing, and performs mutual authentication between the mobile phone 20 and the authentication key 30.
The first wireless communication unit 21 includes an authentication transmission / reception unit 21a that transmits or receives an ID, an ID storage unit 21b that stores an ID for performing authentication, and an ID of the ID storage unit 23 and a verification of the received ID. The authentication control part 21c to perform and the control signal production | generation part 21d which produces | generates the control signal which shows that it is authenticated with the authentication key 30 are provided.

  Further, the mobile phone 20 includes a speaker 22, a display unit 23, and an operation button (operation unit) 24, and a control unit 25 that controls the speaker 22, the display unit 23, the operation button 24, and the first wireless communication unit 21. And a transmitter / receiver 26 and a battery 27 as a power source.

The authentication key 30 includes a second wireless communication unit 31 and a battery 32 that is a power source.
The second wireless communication unit 31 includes an authentication transmission / reception unit 31a, an ID control unit 31b, and a control unit 31c.

Here, an example in which the mobile phone 20 and the authentication key 30 perform mutual authentication will be briefly described with reference to FIGS.
The authentication key 30 periodically transmits a search signal (see FIG. 3) from the authentication transmission / reception unit 31a of the second wireless communication unit 31.
In FIG. 1, the range in which the search signal of the authentication key 30 has a signal intensity exceeding a predetermined threshold is indicated by a circle. If the mobile phone 20 exists in the circle of FIG. 1 (the state of the solid line in FIG. 1), the mobile phone 20 is registered in advance in the ID of the authentication key 30 included in the search signal and the ID storage unit 21b. The authentication control unit 21c collates the ID of the authentication key 30 being registered, and if the ID matches the ID registered in advance, a response signal (see FIG. 3) is transmitted from the authentication transmitting / receiving unit 21a to the authentication key 30.

When the authentication key 30 receives the response signal, the control unit 31c compares the ID of the mobile phone 20 included in the response signal with the ID of the mobile phone 20 registered in advance in the ID storage unit 321b.
After confirming that the IDs are the same, an authentication signal in which a random number is encrypted is transmitted from the authentication key 30 to the mobile phone 20, and the mobile phone 20 receiving the authentication signal from the authentication key 30 combines the authentication signal. Authentication is performed by sending an authentication signal.

  The authentication operation for transmitting these authentication signals is repeated at regular intervals, and the mobile phone 20 and the authentication key 30 enter the first state by mutual authentication in which they are mutually authenticated.

  The first state is a state in which all operations on the operation keys 24 of the mobile phone 20 are valid (unlocked state), assuming that the mobile phone 20 is operated by a true owner because mutual authentication is established. : Normal use possible).

On the other hand, as shown by a two-dot chain line in FIG. 1, when the search signal of the authentication key 30 is outside the range where the signal intensity exceeds a predetermined threshold (outside the circle), the search signal is Since the signal intensity is less than the threshold value, mutual authentication is not established and the second state is established.
The second state is a state in which the operation on the operation unit of the mobile phone 20 becomes invalid because the mobile phone 20 may be operated by a third party other than the true owner because mutual authentication is not established. (Locked state: a state in which all functions cannot be used or a state in which the use of functions is limited).
By limiting the functions that can be used, functions set in advance (for example, telephone number 110 and telephone number 119) can be used.

As shown in FIG. 4, the mobile phone 20 is under the control of a security function in which the first state and the second state are exclusively selected when mutual authentication with the authentication key 30 is established or not established. .
Furthermore, in the second state, the mobile phone 20 is operated to release the operation in which the user operates the operation button 24 (operation unit) to input a code (character, number, symbol, etc.) that only the true owner can know. As a result, the operation of the operation button 24 shifts to the third state in which the operation is limited or time-effective. That is, the mobile phone 20 is in a usable state under predetermined restrictions.

The third state is a stand-alone state in which the mobile phone 20 is disconnected from the mutual authentication system 10 so that the security function is temporarily disabled and the authentication key 30 is not paired.
At this time, the mobile phone 20 is apparently unlocked, but is in a state where it can receive the search signal from the authentication key 30 in the background.
In the second state, in the second state, the operation button 24 accepts only the input of the password, and a dialog box for prompting the input of the password is displayed on the display unit 23.

  When the mutual authentication with the authentication key 30 is established in the third state, the mobile phone 20 is paired with the authentication key 30 from the usable state under a predetermined restriction and the security function is restored. The operation immediately shifts to the first state in which all operations on the operation keys 24 are valid.

  Such a control program of the mobile phone 20 is stored in a storage unit (not shown in FIG. 2) and is executed by the control unit 25.

  According to the mutual authentication system 10 and the mobile phone 20 as described above, the transition from the third state in which the security function is temporarily disabled to the first state in which the security function is restored if mutual authentication is established. Thus, it is not necessary for the user to input a personal identification code in order to shift from the third state to the first state, and convenience can be improved as compared with the conventional case.

  Next, 2nd Embodiment-5th Embodiment which concerns on this invention is described. In each embodiment described below, description of the first state and the second state that have already been described is omitted.

(Second Embodiment)
FIG. 5 shows a state transition diagram of the second embodiment of the present invention.
As shown in FIG. 5, in the third state, when the mutual authentication with the authentication key 30 is established in the third state, the mobile phone 20 immediately shifts to the first state and the mutual authentication with the authentication key 30 is established. If not, the second state is entered after a predetermined time has elapsed since the last operation on the operation key 24 was performed.
The predetermined time may be a time set in advance in the mobile phone 20 (default time) or an arbitrary time set separately by the user.

  According to the mutual authentication system 10 and the mobile phone 20 as described above, the second state in which the security function is automatically restored after a predetermined time has elapsed since the user finished operating the operation key 24 in the third state. Therefore, since it is not necessary for the user to input a personal identification code in order to shift from the third state to the second state as in the prior art, the convenience can be improved as compared with the prior art.

(Third embodiment)
FIG. 6 shows a state transition diagram of the third embodiment of the present invention.
As shown in FIG. 6, when mutual authentication is established between the mobile phone 20 and the authentication key 30 in the third state, the mobile phone 20 immediately shifts to the first state and mutual authentication is established with the authentication key 30. If not, the state is immediately shifted to the second state by performing a predetermined return operation on the casing.

The return operation in the third embodiment is a so-called long press operation in which the power key provided on the housing is continuously pressed for a predetermined time.
The return operation in the present invention is, for example, an operation of moving a pair of housings relative to each other (opening / closing, rotating, sliding) in a mobile phone such as a bi-fold type, a slide type, or a revolver type, Open button operation for opening a pair of housings, operations such as shaking, vibrating, hitting the surface, etc. of mobile phones, removing / attaching batteries, memory cards, etc. to the housing, provided on the housing Macro switch operation of the camera, side keys provided on the end face of the casing, switch operation of dials, input operation of predetermined character strings, numeric strings, symbol strings on the operation keys 24, predetermined keys (function keys) on the operation unit , Direction keys, etc.) and any of the operations, etc., or operations using a plurality of them together.

  According to the mutual authentication system 10 and the mobile phone 20 as described above, when a predetermined return operation is performed on the casing, the state immediately shifts to the second state, and thus the user has finished operating the operation key 24 in the third state. Even before a predetermined time elapses, if a predetermined return operation is performed, the security function is immediately restored, and the period during which the security function is disabled can be shortened.

(Fourth embodiment)
FIG. 7 shows a state transition diagram of the fourth embodiment of the present invention.
As shown in FIG. 7, when performing a release operation in the second state, the mobile phone 20 maintains a state in which mutual authentication is not established from the start to the completion of the release operation, and the release operation is completed. After that, the third state is entered.
Here, for example, when inputting a PIN code of 4 digits, the release operation refers to the end of inputting the 4th digit, but depending on the model of the mobile phone 20, after the 4th digit is input, the enter key is operated. It also includes the case of referring to the process.

In the mobile phone 20 described above, when chattering that repeats the first state and the second state occurs, the state transitions to the first state when mutual authentication is established between the start of the release operation and the completion in the second state. Thereafter, since the transition to the second state is performed again, there is a possibility that the inconvenience that the release operation becomes invalid.
On the other hand, according to the mobile phone 20 of the fourth embodiment, in the second state, since the mutual authentication is not established from the start to the completion of the release operation, the chattering described above is used. The effect that the inconvenience that the release operation becomes invalid is less likely to occur.

(Fifth embodiment)
FIG. 8 shows a state transition diagram of the fifth embodiment of the present invention.
As shown in FIG. 8, the mobile phone 20 has a third state first stage in which the third state starts an operation on the operation key 24 and the operation on the operation key 24 is valid during the third state, A third state and a second stage that shifts when a predetermined time t2 elapses after the operation on the operation key 24 is completed in the state first stage.
In the second state of the third state, the cellular phone 20 proceeds to the first state of the third state again when the operation on the operation key 24 is started in a state where mutual authentication is not established, and in the second state of the third state. When mutual authentication is established, the process shifts to the first state.

  According to the mutual authentication system 10 and the mobile phone 20 as described above, the first state shifts from the first state to the second state because the operation to the operation key 24 is not shifted to the first state in the first step of the third state. Even if it exists under such signal intensity | strength, it can reduce possibility that the chattering which repeats a 1st state and a 2nd state will arise after shifting from a 3rd state to a 1st state.

(Sixth embodiment)
FIG. 9 shows a schematic diagram showing the relationship between a plurality of threshold values in the mutual authentication system 10 of the sixth embodiment, and FIG. 10 shows a state transition diagram of the sixth embodiment.
In the mutual authentication system 10 of the sixth embodiment, the concentric triple circle shown in FIG. 9 has a first threshold value R1, a second threshold value R2, and a third threshold value from the outside depending on the signal strength of the search signal of the authentication key 30. It is drawn as a range exceeding the threshold value R3.

The first threshold value R1 indicates the signal strength at which the search signal reaches a range of, for example, a radius of 10 m with the authentication key 30 as the center.
The second threshold value R2 indicates the signal intensity at which the search signal reaches a range of, for example, a radius of 9.5 m with the authentication key 30 as the center.
The third threshold value R3 indicates the signal intensity at which the search signal reaches a range of, for example, a radius of 0.3 m with the authentication key 30 as the center.
The relationship between the first threshold value R1, the second threshold value R2, and the third threshold value R3 is as follows.
R1>R2> R3

  Of the first threshold value R1, the second threshold value R2, and the third threshold value R3, the third threshold value R3 is compared with the first threshold value R1 and the second threshold value R2. The value is extremely strong and can be clearly distinguished from the first threshold value R1 and the second threshold value R2.

As shown in FIG. 10, such a mobile phone 20 shifts to the second state when the signal strength from the authentication key 30 falls below the first threshold value R1 in the first state, and authenticates in the second state. When the signal intensity from the key 30 exceeds the second threshold value R2 that is equal to or greater than the first threshold value R1, the first state is entered.
That is, since the hysteresis is provided by the first threshold value R1 and the second threshold value R2 having different values, the mobile phone 20 exists in the vicinity of the first threshold value R1 and the second threshold value R2. In this case, it is possible to reduce the occurrence frequency of chattering that frequently switches between the case where mutual authentication is established and the case where mutual authentication is not established.

In addition, the mobile phone 20 transitions to the first state when the signal strength from the authentication key 30 exceeds the third threshold value R3 that greatly exceeds the second threshold value R2 in the third state.
That is, since the third threshold value R3 for shifting from the third state to the first state is a value that greatly exceeds the second threshold value R2, the first threshold value after the transition from the third state to the first state is reached. An effect is obtained that chattering that repeats the state and the second state hardly occurs.

(Seventh embodiment)
FIG. 11 shows a state transition diagram of the seventh embodiment.
As shown in FIG. 11, the mobile phone 20 has a third state first stage in which the third state starts an operation on the operation key 24 and the operation on the operation key 24 is valid during the third state, A third state and a second stage that shifts when a predetermined time t2 elapses after the operation on the operation key 24 is completed in the state first stage.
In the second state of the third state, the mobile phone 20 transitions to the first state when mutual authentication is established, and transitions to the second state when mutual authentication is not established.

  According to the mutual authentication system 10 and the mobile phone 20 as described above, if mutual authentication is not established even after a predetermined time has elapsed since the operation on the operation unit was completed in the first stage of the third state, the security function is automatically set. Therefore, the security function can be recovered even when the portable terminal is left unattended in the third state.

  In each of the above-described embodiments, the mutual authentication system is exemplified in which mutual authentication is established when the authentication key periodically transmits a search signal and the mobile phone responds to the search signal. Can be applied to a mutual authentication system in which mutual authentication is established by periodically transmitting a search signal and an authentication key responding to the search signal.

  Further, in each of the above-described embodiments, the mobile phone 20 is illustrated as a mobile terminal and the authentication key 30 is illustrated as a small wireless device, but the present invention can also be applied to other mobile terminals and small wireless devices.

  The present invention is suitable for application to a portable terminal that performs mutual authentication with a small wireless device and a mutual authentication system that performs mutual authentication between a portable terminal and a small wireless device.

It is a conceptual diagram which shows the mutual authentication system which concerns on this invention. It is a block diagram which shows the mutual authentication system which concerns on this invention. It is a ladder diagram showing mutual authentication operation of a portable terminal and an authentication key according to the present invention. It is a state transition diagram showing a first embodiment according to the present invention. It is a state transition diagram showing a second embodiment according to the present invention. It is a state transition diagram showing a third embodiment according to the present invention. It is a state transition diagram showing a fourth embodiment according to the present invention. It is a state transition diagram showing a fifth embodiment according to the present invention. It is a schematic diagram which shows the relationship of each threshold value in 6th Embodiment concerning this invention. It is a state transition diagram showing a sixth embodiment according to the present invention. It is a state transition diagram showing a seventh embodiment according to the present invention.

Explanation of symbols

10 Mutual authentication system 20 Mobile phone (mobile terminal)
21 First wireless communication unit 24 Operation button (operation unit)
30 Authentication key (small wireless device)
31 Second wireless communication unit

Claims (11)

In portable terminals that mutually authenticate using wireless communication with external small wireless devices,
When the mutual authentication is established, a first state in which an operation on the operation unit of the mobile terminal is valid;
When the mutual authentication is not established, a second state in which a predetermined release operation on the operation unit of the mobile terminal is valid and a predetermined operation is invalid,
When there is the predetermined release operation in the second state, there is a third state in which the operation on the operation unit of the mobile terminal is valid,
A mobile terminal that shifts to the first state when the mutual authentication is established in the third state. In portable terminals that mutually authenticate using wireless communication with external small wireless devices,
A first state in which an operation on the operation unit of the mobile terminal is effective;
A second state in which an operation on the operation unit of the portable terminal is valid for a predetermined release operation and invalid for a predetermined operation;
A third state in which an operation on the operation unit of the mobile terminal is effective,
In the first state, if the mutual authentication is not established, the process proceeds to the second state.
In the second state, when the mutual authentication is established, the state transitions to the first state,
In the second state, when there is the predetermined release operation, the state shifts to the third state,
A mobile terminal that shifts to the first state when the mutual authentication is established in the third state.   3. The mobile terminal according to claim 1, wherein, in the third state, when a predetermined time elapses after the operation on the operation unit is completed, the mobile terminal shifts to the second state.   3. The mobile terminal according to claim 1, wherein when a predetermined return operation is performed on the housing in the third state, the mobile terminal shifts to the second state.   When there is the predetermined release operation in the second state, a state is maintained in which the mutual authentication is established or not until the completion of the predetermined release operation. The mobile terminal according to claim 1, wherein the mobile terminal is migrated. The third state is a first state of the third state in which the operation on the operation unit becomes effective while the operation on the operation unit is continued.
A third state second stage that transitions when a predetermined time has elapsed since the operation on the operation unit was completed in the third state first stage;
3. The mobile terminal according to claim 1, wherein when the mutual authentication is established in the second stage of the third state, the mobile terminal shifts to the first state. 4. The third state is a first state of the third state in which the operation on the operation unit becomes effective while the operation on the operation unit is continued.
A third state second stage that transitions when a predetermined time has elapsed since the operation on the operation unit was completed in the third state first stage;
2. The method according to claim 1, wherein if the mutual authentication is established in the second stage of the third state, the process proceeds to the first state, and if the mutual authentication is not established, the process proceeds to the second state. Item 3. The mobile terminal according to Item 2. When the signal strength used for the wireless communication in the first state falls below a first threshold value, the state transitions to the second state,
Transition to the first state when the signal strength in the second state exceeds a second threshold value greater than or equal to a first threshold value;
3. The mobile terminal according to claim 1, wherein the mobile terminal shifts to the first state when the signal strength exceeds a third threshold value exceeding a second threshold value in the third state. 4.   A mutual authentication system comprising the portable terminal according to claim 1 and the small wireless device. In the control method of the mobile terminal that performs mutual authentication with an external small wireless device using wireless communication, when the mutual authentication is established, a first state in which an operation on the operation unit of the mobile terminal is enabled;
When the mutual authentication is not established, a second state in which a predetermined release operation on the operation unit of the mobile terminal is valid and a predetermined operation is invalid,
When there is the predetermined release operation in the second state, there is a third state in which the operation on the operation unit of the mobile terminal is valid,
When the mutual authentication is established in the third state, the mobile terminal control method shifts to the first state. In a control program for a portable terminal that performs mutual authentication with an external small wireless device using wireless communication,
When the mutual authentication is established, a first state in which an operation on the operation unit of the mobile terminal is valid;
When the mutual authentication is not established, a second state in which a predetermined release operation on the operation unit of the mobile terminal is valid and a predetermined operation is invalid,
When there is the predetermined release operation in the second state, there is a third state in which the operation on the operation unit of the mobile terminal is valid,
When the mutual authentication is established in the third state, the mobile terminal control program shifts to the first state.

Images