WO2014167872A1 - Position information transmission device and authentication system for position information transmission device - Google Patents

Position information transmission device and authentication system for position information transmission device Download PDF

Info

Publication number
WO2014167872A1
WO2014167872A1 PCT/JP2014/051521 JP2014051521W WO2014167872A1 WO 2014167872 A1 WO2014167872 A1 WO 2014167872A1 JP 2014051521 W JP2014051521 W JP 2014051521W WO 2014167872 A1 WO2014167872 A1 WO 2014167872A1
Authority
WO
WIPO (PCT)
Prior art keywords
transmission device
information transmission
installation
location information
position information
Prior art date
Application number
PCT/JP2014/051521
Other languages
French (fr)
Japanese (ja)
Inventor
誠 谷川原
藤岡 孝芳
小檜山 智久
Original Assignee
株式会社日立産機システム
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 株式会社日立産機システム filed Critical 株式会社日立産機システム
Publication of WO2014167872A1 publication Critical patent/WO2014167872A1/en

Links

Images

Classifications

    • GPHYSICS
    • G01MEASURING; TESTING
    • G01SRADIO DIRECTION-FINDING; RADIO NAVIGATION; DETERMINING DISTANCE OR VELOCITY BY USE OF RADIO WAVES; LOCATING OR PRESENCE-DETECTING BY USE OF THE REFLECTION OR RERADIATION OF RADIO WAVES; ANALOGOUS ARRANGEMENTS USING OTHER WAVES
    • G01S5/00Position-fixing by co-ordinating two or more direction or position line determinations; Position-fixing by co-ordinating two or more distance determinations
    • G01S5/0009Transmission of position information to remote stations
    • G01S5/0018Transmission from mobile station to base station
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/60Context-dependent security
    • H04W12/63Location-dependent; Proximity-dependent

Definitions

  • the present invention relates to a position information transmitting apparatus and an authentication system for a position information transmitting apparatus that constitute an indoor positioning system that complements a global positioning system (GPS).
  • GPS global positioning system
  • the indoor positioning system (Indoor Messaging System, IMES) is a positioning system that enables positioning indoors by installing a positioning information transmission device in a predetermined indoor area.
  • the ground complementary signal (IMES signal) uses the same message structure signal as the satellite positioning signal, but indicates the location of the positioning information transmitter (IMES device) instead of satellite orbit data (navigation message). It is characterized in that information is transmitted.
  • the IMES signal (position information) is received by a receiver with a GPS reception function, and the positioning method is different from the normal GPS positioning method, and the position information of the installation location of the device superimposed on the IMES signal is demodulated and decoded. It is a very simple positioning method that can specify the position by itself. According to this method, existing GPS receivers and various terminals (cell phones) having a GPS reception function can be adapted to indoor positioning with very small modifications.
  • the indoor positioning system Since the indoor positioning system is operated in a form that complements the global positioning system, it is required that the location information transmitted is accurate, and the location information transmitted from the location information transmission device must be kept at a reliable value. is there. For this reason, the installation information including the position information is registered (set) in the apparatus after being certified by a third-party certification body so that there is no unauthorized registration.
  • a large number of location information transmission devices are installed in an area of a predetermined area indoors. However, a large number of installations while obtaining the certification of a certification authority require a great number of man-hours for an installer (installer).
  • Patent Document 1 Japanese Patent Application Laid-Open No. 2010-226707 discloses a system that grants a right to enable decoding to a positioning information management server owned by an IMES infrastructure provider with regard to concealment of ground complementary signals (IMES signals, location information). It is shown. This system prevents unauthorized use in operation after system construction.
  • Patent Document 2 Japanese Patent Laid-Open No. 2012-109903 discloses a position information transmission apparatus that can register various information such as position information without requiring complicated facilities for a plurality of IMES transmitters (position information transmission apparatuses). It is shown.
  • Patent Documents 1 and 2 do not mention registration of installation information obtained by certification by a certification body and movement of an existing location information transmission device.
  • the present invention provides a location information transmission device and a location information transmission device authentication system capable of easily and safely registering installation information obtained by a certification authority with a location information transmission device. Is.
  • the present invention creates installation information by an installer terminal, requests authentication from a certification authority by communication, and transmits appropriate location information by setting the installation information authenticated by the certification authority.
  • a control unit that generates a new activation code each time a location information transmission device is installed; a verification unit that verifies the authenticity of the certification authority; a local communication unit that communicates with the installer terminal; and location information
  • a location information transmission unit that transmits the abnormality, and an abnormality detection unit that detects an abnormality of the location information transmission device,
  • the verification unit verifies the validity of the certificate issued by the certification authority and the signature of the installation information, and the control unit controls the position information transmission unit to be ready based on the verification result that it is valid. It is characterized by doing.
  • control unit generates a new activation code with a random number each time the device is installed.
  • the abnormality detection unit includes a sensor unit that detects an abnormality when the device is removed from the installation location, and a battery that supplies power to the abnormality detection unit. Based on the detection signal from the sensor unit, the apparatus is deactivated to generate a new activation code, and the verification unit is valid for re-authentication of the installation information including the new activation code issued by the certification authority It is characterized by verifying.
  • the local communication unit transmits and receives information through short-range communication between the device and the installer terminal.
  • the position information transmitted from the apparatus is compatible with the satellite positioning signal, and the latitude, longitude, floor information, or floor information and altitude information indoors where the apparatus is installed. It is characterized by including.
  • the sensor unit includes at least one of an optical sensor, a contact, and a proximity sensor, and detects removal of the position information transmission device.
  • the present invention creates a location information transmission device that transmits location information indicating the installed location, and installation information that includes the location information of the location information transmission device, and authenticates the certification authority by communication.
  • the location information transmission device includes a control unit that generates an activation code in a non-activated state every time it is installed, and a verification unit that verifies the validity of the authentication result of the certification authority,
  • the installer terminal creates installation information including the activation code, requests authentication from the certification authority, receives a certificate from the certification authority, and transmits the certificate to the location information transmission device.
  • the location information transmitting apparatus verifies the validity of the received certificate by the verification unit, and controls the status information to be transmittable based on a verification result that the certificate is valid.
  • the location information transmission device generates an activation code with a random number by the control unit.
  • the location information transmission device and the installer terminal exchange information by short-range communication.
  • the installer terminal creates installation information including an activation code and installation coordinates when the location information transmission device is newly installed, and authenticates the certification authority by communication. It is characterized by requiring.
  • the position information transmitting apparatus authentication system when the position information transmitting apparatus is moved to the installation position, the position information transmitting apparatus generates a new activation code in an inactive state, and the installer terminal In this case, installation information including a new activation code and corrected installation coordinates is created, and authentication is requested from the certification authority by communication.
  • the positional information transmitted from the positional information transmission device is compatible with a satellite positioning signal, and the latitude, longitude, indoors where the positional information transmission device is installed, It is characterized by including floor information or floor information and altitude information.
  • the certification authority issues a signature and certificate of installation information based on verification of the installation information, and the location information transmission device receives the certificate and the certificate at the verification unit.
  • the signature of the installation information is verified, and the control unit controls the position information to be able to be transmitted based on the verification result that it is valid.
  • the location information transmission device further includes a local communication unit that communicates with the installer terminal, a location information transmission unit that transmits location information, and a location information transmission device.
  • An abnormality detection unit for detecting an installation abnormality is provided, the verification unit verifies the validity of the certificate issued by the certification authority and the signature of the installation information, and the control unit is configured based on the verification result that the certificate is valid.
  • the position information transmitting unit is controlled to be able to transmit.
  • the control unit when the abnormality detection unit detects an abnormality, the control unit generates an activation code with a random number with the location information transmission device in an inactive state, and the local information The information is transmitted from the communication unit to the installer terminal, and the installer terminal creates installation information including an activation code and requests authentication from the certification authority.
  • a procedure for setting an appropriate signal is performed in order to protect an unauthorized signal from being transmitted by the location information transmission device.
  • a fair certification body judges whether or not the signal is appropriate, and if the position information transmission device moves, the signal that was appropriate before the movement must be treated as illegal. It is up to the root certification authority to verify that the work of the certification body is fair. Publish these procedures to prevent fraud.
  • each time the location information transmission device is installed a new activation code is generated, the installation information including the activation code is authenticated, and the verification of the validity of the authentication is performed without human intervention.
  • the installation information is not set improperly.
  • since the installation and setting work of the position information transmission device can be performed efficiently because the installation and setting work are not time-consuming.
  • the system block diagram which shows the system of this invention Example.
  • Explanatory drawing which shows the preparatory work before operation
  • Explanatory drawing of advance application based on installation design of IMES equipment.
  • Transition explanatory drawing which similarly shows the transition of the state of an IMES apparatus.
  • the block diagram which similarly shows the internal structure of an IMES apparatus.
  • movement of the abnormality detection part at the time of movement of an IMES apparatus similarly.
  • FIG. 1 is a block diagram showing the entire authentication system for a location information transmitting apparatus according to an embodiment of the present invention.
  • the installer (installer terminal) 2 creates the installation information and requests authentication from the certification authority (server) 3 through communication via the Internet 4, and the IMES device 1 sets the installation information authenticated by the certification authority 3. As a result, appropriate location information is transmitted.
  • the IMES device 1 communicates with the control unit 6 that generates a new activation code each time the device is installed, the verification unit 7 that verifies the authenticity of the authentication authority 3, and the installer terminal 2.
  • a local communication unit 10, a position information transmission unit 9 for transmitting position information, and a memory 8 for setting and storing installation information are provided.
  • the installer terminal 2 and the local communication unit 10 exchange signals through near field communication such as infrared communication, visible light communication, RFID, and Bluetooth (registered trademark).
  • the IMES device 1 is installed in a plurality for positioning in an area of a predetermined area indoors, and transmits position information (IMES signal) indicating each installation position.
  • the IMES signal is received by a portable terminal (IMES receiver) 5 with a GPS reception function and informs the portable terminal of the location.
  • the verification unit 7 verifies the validity of the certificate issued by the certification authority 3 and the signature of the installation information, and the control unit 6 transmits the position information transmission unit 9 based on the verification result that it is valid. Control as possible. Certificates and signatures are binary data strings.
  • the installer is an installer (infrastructure operator) who installs IMES devices on the indoor ceiling and sets the installation information for each IMES receiver, creates installation information that matches the installation location, Using the installer terminal 2, the authentication authority 3 is requested to authenticate, and the installation information that has been authenticated is passed to the IMES device 1 using the installer terminal 2.
  • the IMES device 1 further includes a main body unit 20 and an abnormality detection unit 21 that detects an abnormality of the IMES device.
  • the abnormality detection unit 21 detects an abnormality when the device is removed from the installation location.
  • a sensor unit 27 for detection, a battery 26 for constantly supplying power to the abnormality detection unit 21, and a control unit 25 are provided.
  • the IMES device 1 needs to be constantly monitored after installation to prevent unauthorized movement of the installation location, and includes an independent battery 26 that constantly supplies power to the abnormality detection unit 21.
  • the sensor unit 27 includes at least one of an optical sensor 27a, a contact point 27b, and a proximity sensor 27c, and detects the removal of the IMES device 1.
  • the main unit 20 includes the control unit 6, the RF unit 22, a power supply circuit 23, and an external power supply 24.
  • the RF unit 22 shows the position information transmission unit 9 and the local communication unit 10 shown in FIG.
  • the control unit 6 changes the device 1 from the activated state (the state in which appropriate installation information is set) to the inactive state (in which the appropriate installation information is set).
  • the verification unit 7 verifies the validity of the re-authentication result of the installation information including the new activation code issued by the certification authority device 3. Since the certification authority 3 indicates a server, it is hereinafter referred to as a certification authority apparatus 3.
  • FIG. 2 is an explanatory diagram showing the work of the preparation stage (preparation phase) before the operation of the system of the embodiment of the present invention.
  • the purpose of this system is to protect "illegal" location information from being transmitted from IMES devices.
  • the procedure for setting a signal (installation information) “appropriate” for the IMES device is called “activation”.
  • a “fair” certification body will determine whether the installation information is appropriate. Whether the certification body is fair or not is certified by a higher-level certification body (root certification body).
  • reference numeral 100 denotes a root certification authority, which authenticates (certifies) the validity of the business of the certification authority apparatus 3.
  • the present invention opens these procedures (opens all specifications and allows anyone to perform IMES devices, certification bodies, and installers) to prevent fraud.
  • the root certification authority 100 issues a digital certificate.
  • the certificate is a root certificate in X509 format (certificate that authenticates itself), and the certificate includes the issuing organization, issue date, public key cryptosystem, and public key (Kjp).
  • the IMES device is stocked in the manufacturer, and a public certificate is recorded in the IMES device at the time of shipment.
  • the root certificate is disclosed on the Web, downloaded by the manufacturer, and recorded in the program of the IMES device.
  • the certification authority device 3 issues its own certificate.
  • the certificate includes the public key Kap.
  • the certificate authority apparatus 3 requests the higher-level root certificate authority 100 to sign the certificate.
  • the root certification authority 100 evaluates the validity of the certificate issued by the certification authority 3. This evaluation determines whether the certification body 3 has the ability to appropriately perform the business. If it is OK, the signature, that is, the hash of the certificate issued by the certification authority 3 encrypted with the private key is calculated. Then, the root certificate authority 100 issues a signed certificate.
  • FIG. 3 is an explanatory diagram of the prior application based on the installation design of the IMES device according to the embodiment of the present invention.
  • the installer performs an installation plan for the IMES device 1.
  • the installer makes an authentication request for the prior application for the installation plan by communicating or manually with the certification authority apparatus 3.
  • the installation plan passes data including the installer information, the IMES device type, installation coordinates, etc. to the certification authority device 3.
  • the serial number for specifying the IMES device may not be passed.
  • the IMES device is introduced in the same manner as equipment such as fluorescent lights and emergency lights, and it is considered that the equipment installation business operator installs the equipment in the same manner as equipment. If an installation operation is attempted by designating a position for each serial number of the IMES device, it is necessary to confirm the correspondence between the serial number and the position before installation, resulting in poor work efficiency. For example, installation work such as serial number 01351 for equipment in conference room A and number 01534 in reception room B is cumbersome to confirm and is not practical. It is more efficient for the installer to check the serial number of the device installed in the conference room A after the installation regardless of the serial number.
  • the certification authority apparatus 3 calculates a “ticket” if the examination is OK.
  • a “ticket” is a single numerical value (number), such as a numbered ticket number or a session ID. It is required that a ticket cannot be easily generated by a third party or the next number cannot be predicted. Usually, a huge random number is used.
  • the certification authority apparatus 3 automatically continues the authentication procedure (without human intervention) without re-examination if the installer gives the “ticket” and the ticket number has already been inspected. It shall be possible.
  • FIG. 4 is an explanatory diagram of authentication of installation information at the time of initial installation of the IMES apparatus of the embodiment of the present invention and its setting.
  • the initial installation is a state in which a large number of IMES devices 1 are installed on a ceiling in a predetermined area indoors by the installer, and authentication settings of authenticated installation information are set in each IMES device 1 installed in this state. Made.
  • the operation in the initial installation phase is as follows.
  • the IMES device 1 is in an inactive state immediately after startup.
  • the IMES device 1 generates a new activation code with a random number every time it is installed.
  • the IMES device 1 transmits the manufacturer ID and serial number of the device together with the activation code to the installer terminal 2 by wireless communication. This transmission is executed by short-range communication via the local communication unit 10. Since the information exchange between the installer terminal 2 and the IMES device 1 is facilitated by the short-range communication, the installation efficiency of the IMES device 1 by the installer and the setting efficiency thereof can be improved.
  • the installer obtains information on the manufacturer ID, serial number, and activation code of the IMES device 1. This information is acquired by a method such as connecting to the IMES device by wireless communication or cable, or reading the display (label) of the IMES device 1 by the installer.
  • the installer refers to the portable terminal and the person who operates it.
  • a wide area connection line that can communicate with the certification authority is connected to the IMES device itself (for example, when the Internet connection is made by a LAN cable, a wireless LAN, a mobile carrier modem, etc.), the mobile terminal is It may be part of the device.
  • the installer creates installation information for each IMES device 1.
  • the installation information includes an installer, a device model ID, a serial number, an activation code, installation coordinates, and a PRN number representing a code string of the IMES transmission signal.
  • the setting information is described in a common formalized format. For example, based on XML, JSON, ASN.1, etc., each field name is defined and is a common text or binary data string.
  • the certification authority apparatus 3 verifies the transmitted installation information.
  • the ticket transmitted from the portable terminal 2 is a ticket issued by itself in the prior phase of FIG. 3, and an installation plan (installer, apparatus type, Verification is performed by comparing whether the installation coordinates) and the currently received installation information match.
  • the installation and maintenance of the IMES device 1 is usually performed during the closed period (nighttime and public holidays) of the place where it is installed, but at that time, if the verification work is not performed, the work will not proceed, so this verification process is This is done automatically without human intervention. 5.
  • the certification authority apparatus 3 calculates the signature of the authentication information, that is, the encryption of the hash of the installation information with the secret key. Since only the certificate authority device 3 itself knows the secret key, this signature can be calculated only by the certificate authority device 3. Also, by using the public key to release the signature, the IMES device 1 can confirm (verify) that this signature has been made by the certification authority device 3.
  • the certification authority device 3 transmits the installation information, the signature of the installation information, and the certificate to the installer terminal 2.
  • the signature is called an “activation code”.
  • the installer terminal (installer) 2 transmits the installation information, the signature of the installation information, and the certificate to the IMES device 1. 8).
  • the IMES device 1 performs the following processing, and the internal verification unit 7 performs the next verification as to whether the setting (transmitted content) is valid. (1) Verify the validity of the certificate signed by the certificate authority. (2) Verify the signature of the installation information. If the result of these verifications is correct, the IMES device 1 is ready for transmission. Here, in the verification of (1) above, it is verified whether or not the certification authority apparatus 3 is valid.
  • the public key Kap is obtained from this certificate.
  • the signature is decrypted using the public key Kap, and it is verified whether this is the certificate authority apparatus 3. Thereafter, the result verified as valid is transmitted from the IMES device 1 to the installer terminal 2.
  • the installer (installer terminal 2) reports the installation information regarding the final installation to the certification authority apparatus 3. Thereby, the certification authority apparatus 3 collects installation information. This is not necessary in terms of activation technology, but is a reporting obligation in the activation procedure.
  • the security of the authentication result can be enhanced by finally verifying the content of the authentication result transmitted by the certification authority device 3 inside the IMES device 1. That is, since authentication is performed by the certification authority apparatus 3 and the IMES apparatus 1, it is possible to prevent tampering of the authenticated installation information. Further, the installer simply issues a request for initial authentication to the certification authority apparatus 3 and passes the authentication result to the IMES apparatus 1, and final authentication and verification are automatically performed by the certification authority apparatus 3 and the IMES apparatus 1. Therefore, it is possible to concentrate on the installation work and improve work efficiency. Since the information exchange between the installer terminal 2 and the IMES device 1 is facilitated by the short-range communication, the installation efficiency of the IMES device 1 by the installer and the setting efficiency thereof can be improved.
  • FIG. 5 is an explanatory diagram of authentication and setting of modified installation information at the time of maintenance when it is desired to change the installation information such as movement of the installation location after the IMES apparatus 1 is installed.
  • This assumes the following case.
  • -When you want to modify the PRN number For example, when adding an IMES device, you want to modify the PRN number of an existing IMES device. The PRN number is the number of the IMES device.
  • -When you want to correct the transmission coordinates (installation position coordinates) This is the case when you make corrections about several meters according to the direction of the radio wave beam.
  • the IMES device is reset, it is necessary to reactivate under the same conditions (however, the activation code is different).
  • an IMES device fails The setting of the failed IMES device is to be transferred to another IMES device.
  • the installer creates correction information (installation information) for the IMES device 1. This corresponds to operation 3 in the initial installation phase.
  • the correction information (installation information) is a difference in installation information, and includes part or all of the installer, device model ID, serial number, activation code, ticket, installation coordinates, and PRN.
  • the correction information is a text or binary data string in a common format that is formalized in the same manner as the installation information.
  • the installer sends the correction information to the certification authority apparatus 3 together with the installer ID and the ticket by the portable terminal 2 to request authentication. 2.
  • the certification authority apparatus 3 verifies the transmitted correction information. This corresponds to operation 4 in the initial installation phase.
  • the certification authority apparatus 3 verifies the correction content included in the correction information, and if there is no problem, calculates a signature for the correction content.
  • This verification is preferably automated as much as possible for work efficiency. Therefore, for example, it is determined whether the correction content is of a scale that requires manual verification. This automatically responds when the transmission coordinate correction is less than a few meters, when the activation code is different, or when the PRN code is different but there is no interference with the neighborhood. 3.
  • the installer passes the installation information, the signature of the installation information, and the certificate to the IMES device 1. This corresponds to operation 7 in the initial installation phase. 4).
  • the IMES device 1 verifies whether the correction is valid. This corresponds to operation 8 in the initial installation phase.
  • FIG. 6 is an explanatory diagram showing state transition of the IMES device 1. The transition will be described in order.
  • the IMES device 1 is in an inactive state immediately after startup. At this time, the IMES device 1 generates a new activation code with a random number. In this state, the RF (wireless) output of the IMES device 1 is always OFF, and no position information is transmitted. 2. If the activation code (authentication) is input to the IMES device 1 and verified that it is valid, the IMES device 1 enters the activation state. The RF (wireless) output of the IMES device 1 is OFF.
  • the IMES device 1 When receiving a transmission start request in an activated state from an installer terminal or the like, the IMES device 1 turns on RF (wireless) output and transmits position information. Depending on the implementation of the IMES device 1, it may transition to the transmitting state immediately after entering the activation state. 4).
  • the IMES device 1 when any abnormality state is detected, such as the abnormality detection unit 21 being illegally moved or transported from the installed state, the IMES device 1 returns to the non-activation state, and a new activation code is generated with a random number. Is generated.
  • the activation code changes, the activation code (authentication) required for activation also changes. Only the certification authority apparatus 3 having the secret key can calculate how it changes. Therefore, the IMES device 1 after movement is prevented from transmitting the coordinates before movement, and fair position information can be transmitted.
  • the abnormality detection unit 21 is independently driven by a battery, and does not detect abnormality even when the external power supply of the main body unit 20 is disconnected (determined as a power failure or simple power interruption). This is because anomaly detection by a security-related sensor must always function even when the external power supply is disconnected.
  • Examples of the cooperation form between the abnormality detection unit 21 and the main body unit 20 include the following. 1. A single microcomputer is used to control by the soft block inside. 2. Provide and control two microcomputers on one board. 3. Control as two parts connected by a connector. In the case of 2 and 3, encryption of the communication protocol (so that it becomes abnormal when the module is exchanged or simply shorted in the middle) is implemented in each microcomputer.
  • the abnormality detection unit 21 includes the following, and at least one of the sensors is used.
  • -Optical sensor 27a detection of disassembly of the main body (light is detected when the device 1 is disassembled), etc.
  • Proximity sensor 27c Detects that the device 1 has been moved from the installation frame or the like (detects the distance to the installation frame)
  • Contact 27b Detection by detecting the disassembly of the main body or the pin being removed during movement The flow of signals will be described with reference to FIG.
  • an abnormality detection inquiry is issued from the main body 20 in a normal state, there is a response indicating no abnormality from the abnormality detection unit 21, and the RF unit is turned on to transmit position information.
  • an abnormal state when an abnormality detection inquiry is issued from the main body 20, an abnormality response is received from the abnormality detection unit 21, and the main body 21 (device 1) is deactivated. After that, when the cause of the abnormality is removed and the verification is OK again, the activation state is entered. Thereafter, with the cancellation of the abnormality detection, the RF unit is turned on to transmit position information.
  • FIG. 9 is an explanatory diagram of the operation of the abnormality detection unit during movement of the IMES device, and shows a contact as the sensor 27 of the abnormality detection unit.
  • the activation mechanism itself uses a generally widely used technique based on certificate chain verification.
  • the features of the present invention are as follows. 1. Existence of new activation code Setting a past setting value (installation information) again by a new activation code is prohibited. 2. This system includes human and non-human power. The IMES device location information transmission permission itself is subject to human judgment. However, at the site where the IMES device is installed, quick work at night and on holidays is required. These are balanced by a mechanism called “ticket issuance”. 3. Manage revision information and accept signed revision information. Thereby, workability in the operation phase is enhanced. It is a great feature that certificate chain verification is performed by the IMES system (in the IMES device).
  • the location information transmission device 1 that creates installation information by the installer terminal 2, requests authentication to the certification authority device 3 by communication, and transmits appropriate location information by setting the installation information authenticated by the certification organization 3.
  • a control unit 6 that generates a new activation code each time a device is installed, a verification unit 7 that verifies the authenticity of authentication by the certification authority 3, and a local communication unit 10 that communicates with the installer terminal 2;
  • a location information transmission unit 9 for transmitting location information, and an abnormality detection unit 21 for detecting an abnormality of the location information transmission device 1, and the verification unit 7 provides validity and installation information of a certificate issued by the certification authority 3.
  • the control unit 7 controls the position information transmitting unit 9 to be in a state in which the signature can be transmitted based on the verification result that the signature is valid.
  • the control unit generates a new activation code with a random number each time the apparatus 1 is installed.
  • the abnormality detection unit 21 includes a sensor unit 27 that detects an abnormality when the apparatus 1 is removed from the installation location, and a battery 26 that supplies power to the abnormality detection unit.
  • the control unit 6 is connected to the sensor unit from the sensor unit. Based on the detected signal, the apparatus 1 is deactivated to generate a new activation code, and the verification unit 7 verifies re-authentication of the installation information including the new activation code issued by the certification authority 3 To verify.
  • the local communication unit 10 exchanges information between the device 1 and the installer terminal 2 by short-range communication.
  • the position information transmitted from the device 1 is compatible with a satellite positioning signal, and includes indoor latitude, longitude, floor information or floor information and altitude information where the device 1 is installed.
  • the sensor unit 27 includes at least one of an optical sensor 27a, a contact point 27b, and a proximity sensor 27c, and detects the removal of the position information transmission device 1.
  • the location information transmitting device 1 for transmitting the location information indicating the installed location, and the installation information including the location information of the location information transmitting device are created and authenticated to the certification authority 3 by communication.
  • the location information transmission device 1 In the authentication system of the location information transmission device comprising the requesting installer terminal 2, the location information transmission device 1 generates an activation code in a non-activated state at each installation and the authentication result of the certification authority device 3
  • the installer terminal 2 creates installation information including the activation code, requests authentication from the certification authority 3, and receives a certificate from the certification authority 3.
  • the certificate is transmitted to the location information transmission device, and the location information transmission device 1 verifies the validity of the received certificate by the verification unit 7 and based on the verification result that it is valid. And controlling the location information to the originating ready Te.
  • the installer terminal 2 When the location information transmission device 1 is newly installed, the installer terminal 2 creates installation information including an activation code and installation coordinates, and requests authentication from the certification authority device through communication. When the installation position of the location information transmission device 1 is moved, the location information transmission device generates a new activation code in a non-activated state, and the installer terminal 2 includes an installer, a new activation code, and corrected installation coordinates. Is created, and authentication is requested from the certification authority device by communication.
  • the position information transmitted from the position information transmission device 1 is compatible with a satellite positioning signal, and includes indoor latitude, longitude, floor information or floor information and altitude information where the position information transmission device 1 is installed.
  • the certification authority 3 issues a signature and a certificate of the installation information based on the verification of the installation information, and the location information transmitting device 1 verifies the certificate and the signature of the installation information by the verification unit 7 and is valid. Based on the verification result, the control unit 6 controls the position information to be transmitted.
  • the location information transmission device 1 further includes a local communication unit 10 that communicates with the installer terminal 2, a location information transmission unit 9 that transmits location information, and an abnormality detection unit that detects an installation abnormality of the location information transmission device 1. 21, the verification unit 7 verifies the validity of the certificate issued by the certification authority 3 and the signature of the installation information, and the control unit 6 determines whether the verification unit 7 is valid. 9 is controlled so as to be able to make a call.
  • the control unit 6 When the abnormality detection unit 21 detects an abnormality, the control unit 6 generates an activation code with a random number with the position information transmission device 1 in an inactivated state, and the local communication unit 10 sends the activation code to the installer terminal 2.
  • the installer terminal 2 creates installation information including an activation code and requests the certification authority 3 for authentication.
  • SYMBOLS 1 Location information transmission device, 2 ... Installer terminal, 3 ... Certification body (certification organization device), 4 ... Internet, 5 ... IMSE receiver (portable terminal), 6 ... Control unit, 7 ... Verification unit, 8 ... Memory , 9 ... Position information transmission unit, 10 ... Local communication unit, 20 ... Main body unit, 21 ... Abnormality detection unit, 26 ... Battery, 27 ... Sensor unit.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Radar, Positioning & Navigation (AREA)
  • Remote Sensing (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Position Fixing By Use Of Radio Waves (AREA)
  • Telephonic Communication Services (AREA)

Abstract

The present invention provides a position information transmission device and an authentication system for a position information transmission device, with which installation information which has been authenticated by an authentication organization can easily and safely be registered in the position information transmission device. The present invention is a position information transmission device that transmits appropriate position information by requesting authentication from an authentication organization and setting installation information which has been authenticated by the authentication organization. This position information transmission device is characterized by being equipped with a control unit that generates a new activation code when the device in question is installed, a verification unit that verifies the legitimacy of the authentication organization, a local communication unit that communicates with an installer terminal, and a position information transmission unit that transmits position information, with the verification unit verifying the legitimacy of a certificate issued by the authentication organization and a signature for the installation information, and the control unit controlling the position information transmission unit so as to be capable of transmitting, on the basis of a verification result indicating legitimacy.

Description

位置情報発信装置および位置情報発信装置の認証システムPOSITION INFORMATION TRANSMITTING DEVICE AND POSITION INFORMATION TRANSMITTING DEVICE AUTHENTICATION SYSTEM
 本発明は、全地球測位システム(GPS: Global Positioning System)を補完する屋内での測位システムを構成する位置情報発信装置および位置情報発信装置の認証システムに関する。 The present invention relates to a position information transmitting apparatus and an authentication system for a position information transmitting apparatus that constitute an indoor positioning system that complements a global positioning system (GPS).
 屋内測位システム(Indoor Messaging System、IMESという)は、屋内の所定広さの領域に測位用の位置情報発信装置を設置して、屋内での測位を可能とする測位システムである。地上補完信号(IMES信号)は、衛星測位信号と同じメッセージ構造の信号を使用するが、衛星軌道データ(航法メッセージ)の代わりに、測位用の位置情報発信装置(IMES装置)の設置位置を示す情報を送信する点に特徴がある。IMES信号(位置情報)は、GPS受信機能付きの受信器で受信され、その測位方法は通常のGPS測位方法と異なり、IMES信号に重畳されている装置の設置場所の位置情報を復調・解読するだけで位置を特定できる極めて簡便な測位方法である。この方法によれば、既存のGPS受信機やGPS受信機能をもつ各種端末(携帯電話)においても、ごく小規模の改修により、屋内測位への対応が可能となる。 The indoor positioning system (Indoor Messaging System, IMES) is a positioning system that enables positioning indoors by installing a positioning information transmission device in a predetermined indoor area. The ground complementary signal (IMES signal) uses the same message structure signal as the satellite positioning signal, but indicates the location of the positioning information transmitter (IMES device) instead of satellite orbit data (navigation message). It is characterized in that information is transmitted. The IMES signal (position information) is received by a receiver with a GPS reception function, and the positioning method is different from the normal GPS positioning method, and the position information of the installation location of the device superimposed on the IMES signal is demodulated and decoded. It is a very simple positioning method that can specify the position by itself. According to this method, existing GPS receivers and various terminals (cell phones) having a GPS reception function can be adapted to indoor positioning with very small modifications.
 屋内測位システムは、全地球測位システムを補完する形で運用されるので、発信する位置情報が正確であることが要求され、位置情報発信装置から送信される位置情報を信頼できる値に保つ必要がある。このため、位置情報を含めた設置情報は不正登録がないように第三者の認証機関の認証を得たものが装置に登録(設定)される。また、位置情報発信装置は屋内の所定広さの領域に多数設置されるが、認証機関の認証を得ながらの多数の設置は、設置者(設置作業者)において多大の工数を必要とする。 Since the indoor positioning system is operated in a form that complements the global positioning system, it is required that the location information transmitted is accurate, and the location information transmitted from the location information transmission device must be kept at a reliable value. is there. For this reason, the installation information including the position information is registered (set) in the apparatus after being certified by a third-party certification body so that there is no unauthorized registration. A large number of location information transmission devices are installed in an area of a predetermined area indoors. However, a large number of installations while obtaining the certification of a certification authority require a great number of man-hours for an installer (installer).
 さらに、屋内の構造物(店舗等)構造に変更があると、既設の位置情報発信装置を移動して位置を変えて再設置する必要がある。この場合、再設置位置と既存の位置情報は一致しなくなり、そのまま発信すると不正な位置情報の発信となるので、設置者により位置情報(設置情報)を修正して再度認証を得て装置に登録する必要がある。しかし、これが遵守されないと、構築後の運用において、屋内測位システムの測位精度に信頼性が得られず問題となる。そして、再設置される位置情報発信装置が多数になった場合、修正位置情報の再認証と装置への再登録作業が容易でなく、設置者での作業工数が多大となる。 Furthermore, if there is a change in the structure of an indoor structure (such as a store), it is necessary to move the existing position information transmission device, change the position, and reinstall it. In this case, the re-installation position and the existing position information do not match, and if it is transmitted as it is, transmission of incorrect position information will be made. There is a need to. However, if this is not observed, reliability will not be obtained in the positioning accuracy of the indoor positioning system in the operation after construction, which becomes a problem. When the number of position information transmitting apparatuses to be re-installed becomes large, re-authentication of the corrected position information and re-registration work to the apparatus are not easy, and the number of work steps for the installer becomes large.
特開2010-226707号公報JP 2010-226707 A 特開2012-109903号公報JP 2012-109903 A
 特許文献1(特開2010-226707号公報)には、地上補完信号(IMES信号、位置情報)の秘匿に関し、IMESインフラ事業者の所有する測位情報管理サーバに、復号可能にする権限を与えるシステムが示されている。このシステムはシステム構築後の運用での不正使用を防止するものである。 Patent Document 1 (Japanese Patent Application Laid-Open No. 2010-226707) discloses a system that grants a right to enable decoding to a positioning information management server owned by an IMES infrastructure provider with regard to concealment of ground complementary signals (IMES signals, location information). It is shown. This system prevents unauthorized use in operation after system construction.
 特許文献2(特開2012-109903号公報)には、複数のIMES送信機(位置情報発信装置)に対して煩雑な設備を必要とせず、位置情報等の各種情報を登録できる位置情報送信装置が示されている。 Patent Document 2 (Japanese Patent Laid-Open No. 2012-109903) discloses a position information transmission apparatus that can register various information such as position information without requiring complicated facilities for a plurality of IMES transmitters (position information transmission apparatuses). It is shown.
 しかしながら、特許文献1、2は、認証機関の認証を得た設置情報の登録および既設の位置情報発信装置の移動については触れていない。 However, Patent Documents 1 and 2 do not mention registration of installation information obtained by certification by a certification body and movement of an existing location information transmission device.
 本発明は、上記従来の問題点にかんがみ、認証機関の認証を得た設置情報を容易にしかも安全に位置情報発信装置に登録できる、位置情報発信装置および位置情報発信装置の認証システムを提供するものである。 In view of the above-described conventional problems, the present invention provides a location information transmission device and a location information transmission device authentication system capable of easily and safely registering installation information obtained by a certification authority with a location information transmission device. Is.
 本発明は上記課題を解決するため、設置者端末によって設置情報を作成して通信により認証機関に認証を要求し、認証機関で認証された設置情報を設定することにより適正な位置情報を発信する位置情報発信装置において、
 位置情報発信装置の設置の度に新たな起動コードを生成する制御部と、前記認証機関の認証の正当性を検証する検証部と、前記設置者端末と通信を行うローカル通信部と、位置情報を発信する位置情報発信部と、位置情報発信装置の異常を検出する異常検出部を備え、
 前記検証部は前記認証機関が発行した証明書の正当性と設置情報の署名を検証し、正当であるとの検証結果に基いて前記制御部は前記位置情報発信部を発信可能な状態に制御することを特徴とする。
In order to solve the above problems, the present invention creates installation information by an installer terminal, requests authentication from a certification authority by communication, and transmits appropriate location information by setting the installation information authenticated by the certification authority. In the location information transmitter,
A control unit that generates a new activation code each time a location information transmission device is installed; a verification unit that verifies the authenticity of the certification authority; a local communication unit that communicates with the installer terminal; and location information A location information transmission unit that transmits the abnormality, and an abnormality detection unit that detects an abnormality of the location information transmission device,
The verification unit verifies the validity of the certificate issued by the certification authority and the signature of the installation information, and the control unit controls the position information transmission unit to be ready based on the verification result that it is valid. It is characterized by doing.
 また、上記の位置情報発信装置において、当該装置の設置の度に、前記制御部は乱数により新たな起動コードを生成することを特徴とする。 Further, in the position information transmission device described above, the control unit generates a new activation code with a random number each time the device is installed.
 また、上記の位置情報発信装置において、前記異常検出部は、当該装置が設置場所から取り外されたことで異常を検出するセンサ部と、異常検出部内に給電する電池を備え、前記制御部は前記センサ部からの検出信号に基づいて当該装置を非アクティベーション状態として新たな起動コードを生成し、前記検証部は前記認証機関が発行した前記新たな起動コードを含む設置情報の再認証の正当性を検証することを特徴とする。 In the position information transmission device, the abnormality detection unit includes a sensor unit that detects an abnormality when the device is removed from the installation location, and a battery that supplies power to the abnormality detection unit. Based on the detection signal from the sensor unit, the apparatus is deactivated to generate a new activation code, and the verification unit is valid for re-authentication of the installation information including the new activation code issued by the certification authority It is characterized by verifying.
 また、上記の位置情報発信装置において、前記ローカル通信部は、当該装置と前記設置者端末とで近距離通信により情報を授受することを特徴とする。 Further, in the position information transmission device described above, the local communication unit transmits and receives information through short-range communication between the device and the installer terminal.
 また、上記の位置情報発信装置において、当該装置から発信される位置情報は、衛星測位信号と互換性を有し、当該装置が設置される屋内の緯度、経度、階情報もしくは階情報と高度情報を含むことを特徴とする。 Further, in the position information transmitting apparatus, the position information transmitted from the apparatus is compatible with the satellite positioning signal, and the latitude, longitude, floor information, or floor information and altitude information indoors where the apparatus is installed. It is characterized by including.
 また、上記の位置情報発信装置において、前記センサ部は光センサ、接点、近接センサの少なくとも一つから構成され、位置情報発信装置の取り外しを検出することを特徴とする。 Further, in the above-described position information transmission device, the sensor unit includes at least one of an optical sensor, a contact, and a proximity sensor, and detects removal of the position information transmission device.
 本発明は上記課題を解決するため、設置された位置を示す位置情報を発信する位置情報発信装置と、前記位置情報発信装置の位置情報を含む設置情報を作成して通信により認証機関に認証を要求する設置者端末からなる位置情報発信装置の認証システムにおいて、
 前記位置情報発信装置は設置の度に、非アクティベーション状態で起動コードを生成する制御部と前記認証機関の認証結果の正当性を検証する検証部を備え、
 前記設置者端末は、前記起動コードを含めて設置情報を作成してその認証を前記認証機関に要求し、前記認証機関から証明書を受信すると共にこの証明書を前記位置情報発信装置に送信し、
 前記位置情報発信装置は、受信した前記証明書の正当性を前記検証部で検証し、正当であるとの検証結果に基いて位置情報を発信可能な状態に制御することを特徴とする。
In order to solve the above-mentioned problem, the present invention creates a location information transmission device that transmits location information indicating the installed location, and installation information that includes the location information of the location information transmission device, and authenticates the certification authority by communication. In the authentication system of the location information transmission device consisting of the installer terminal that requests,
The location information transmission device includes a control unit that generates an activation code in a non-activated state every time it is installed, and a verification unit that verifies the validity of the authentication result of the certification authority,
The installer terminal creates installation information including the activation code, requests authentication from the certification authority, receives a certificate from the certification authority, and transmits the certificate to the location information transmission device. ,
The location information transmitting apparatus verifies the validity of the received certificate by the verification unit, and controls the status information to be transmittable based on a verification result that the certificate is valid.
 また、上記の位置情報発信装置の認証システムにおいて、前記位置情報発信装置は前記制御部により乱数で起動コードを生成することを特徴とする。 Also, in the authentication system for the location information transmission device, the location information transmission device generates an activation code with a random number by the control unit.
 また、上記の位置情報発信装置の認証システムにおいて、前記位置情報発信装置と前記設置者端末は近距離通信により情報を授受することを特徴とする。 Further, in the above-described authentication system for a location information transmission device, the location information transmission device and the installer terminal exchange information by short-range communication.
 また、上記の位置情報発信装置の認証システムにおいて、前記設置者端末は、位置情報発信装置の新規設置に際し、起動コード、設置座標からなる設置情報を作成して、通信により前記認証機関に認証を要求することを特徴とする。 Further, in the authentication system for the location information transmission device, the installer terminal creates installation information including an activation code and installation coordinates when the location information transmission device is newly installed, and authenticates the certification authority by communication. It is characterized by requiring.
 また、上記の位置情報発信装置の認証システムにおいて、位置情報発信装置の設置位置移動に際し、前記位置情報発信装置は非アクティベーション状態で新たな起動コードを生成し、前記設置者端末は、設置者、新たな起動コード、修正後の設置座標からなる設置情報を作成して、通信により認証機関に認証を要求することを特徴とする。 Further, in the above-described position information transmitting apparatus authentication system, when the position information transmitting apparatus is moved to the installation position, the position information transmitting apparatus generates a new activation code in an inactive state, and the installer terminal In this case, installation information including a new activation code and corrected installation coordinates is created, and authentication is requested from the certification authority by communication.
 また、上記の位置情報発信装置の認証システムにおいて、前記位置情報発信装置から発信される位置情報は、衛星測位信号と互換性を有し、位置情報発信装置が設置される屋内の緯度、経度、階情報もしくは階情報と高度情報を含むことを特徴とする。 Further, in the authentication system for the positional information transmission device, the positional information transmitted from the positional information transmission device is compatible with a satellite positioning signal, and the latitude, longitude, indoors where the positional information transmission device is installed, It is characterized by including floor information or floor information and altitude information.
 また、上記の位置情報発信装置の認証システムにおいて、前記認証機関は設置情報の検証に基いて設置情報の署名と証明書を発行し、前記位置情報発信装置は、前記検証部で前記証明書と設置情報の署名を検証し、正当であるとの検証結果に基いて前記制御部により位置情報を発信可能な状態に制御することを特徴とする。 In the authentication system for the location information transmission device, the certification authority issues a signature and certificate of installation information based on verification of the installation information, and the location information transmission device receives the certificate and the certificate at the verification unit. The signature of the installation information is verified, and the control unit controls the position information to be able to be transmitted based on the verification result that it is valid.
 また、上記の位置情報発信装置の認証システムにおいて、前記位置情報発信装置はさらに、前記設置者端末と通信を行うローカル通信部と、位置情報を発信する位置情報発信部と、位置情報発信装置の設置異常を検出する異常検出部を備え、前記検証部は前記認証機関が発行した証明書の正当性と設置情報の署名を検証し、正当であるとの検証結果に基いて前記制御部は前記位置情報発信部を発信可能な状態に制御することを特徴とする。 Moreover, in the authentication system for the location information transmission device, the location information transmission device further includes a local communication unit that communicates with the installer terminal, a location information transmission unit that transmits location information, and a location information transmission device. An abnormality detection unit for detecting an installation abnormality is provided, the verification unit verifies the validity of the certificate issued by the certification authority and the signature of the installation information, and the control unit is configured based on the verification result that the certificate is valid. The position information transmitting unit is controlled to be able to transmit.
 また、上記の位置情報発信装置の認証システムにおいて、前記異常検出部が異常を検出したとき、前記制御部は前記位置情報発信装置を非アクティベーション状態として乱数で起動コードを生成して、前記ローカル通信部から前記設置者端末に送信し、前記設置者端末は、起動コードを含めて設置情報を作成して前記認証機関に認証を要求することを特徴とする。 Further, in the authentication system for the location information transmission device, when the abnormality detection unit detects an abnormality, the control unit generates an activation code with a random number with the location information transmission device in an inactive state, and the local information The information is transmitted from the communication unit to the installer terminal, and the installer terminal creates installation information including an activation code and requests authentication from the certification authority.
 上記の構成で、不正な信号を位置情報発信装置が送信しないように保護するため、適切な信号を設定する手続きを行う。信号が適切かどうかは公正な認証機関が判断し、位置情報発信装置が移動した場合は移動前に適切であった信号が、不正なものとして取り扱わなければならない。認証機関の業務が公正なものであるかは、ルート証明機関が行うものとする。これらの手続きを公開し、不正ができないようにする。 In the above configuration, a procedure for setting an appropriate signal is performed in order to protect an unauthorized signal from being transmitted by the location information transmission device. A fair certification body judges whether or not the signal is appropriate, and if the position information transmission device moves, the signal that was appropriate before the movement must be treated as illegal. It is up to the root certification authority to verify that the work of the certification body is fair. Publish these procedures to prevent fraud.
 本発明によれば、位置情報発信装置が設置の度に新たな起動コードを生成し、この起動コードを含めた設置情報に認証を受け、認証の正当性の検証を人の介在なしに当該装置内で実行するので、設置情報が不正に設定されることが無い。また、検証と設定作業に設置者の手間を掛けないので、位置情報発信装置の設置と設定作業が効率良く行える。 According to the present invention, each time the location information transmission device is installed, a new activation code is generated, the installation information including the activation code is authenticated, and the verification of the validity of the authentication is performed without human intervention. The installation information is not set improperly. In addition, since the installation and setting work of the position information transmission device can be performed efficiently because the installation and setting work are not time-consuming.
本発明実施例のシステムを示すシステム構成図。The system block diagram which shows the system of this invention Example. 本発明実施例の稼働前の準備作業を示す説明図。Explanatory drawing which shows the preparatory work before operation | movement of this invention Example. 同じくIMES装置の設置設計に基づく事前申請の説明図。Explanatory drawing of advance application based on installation design of IMES equipment. 本発明実施例のIMES装置の初回設置時の設置情報の認証と設定の説明図。Explanatory drawing of the authentication and setting of the installation information at the time of the first time installation of the IMES apparatus of this invention Example. 同じくIMES装置の保守時の修正設置情報の認証と設定の説明図。Explanatory drawing of authentication and setting of modified installation information during maintenance of the IMES device. 同じくIMES装置の状態の推移を示す推移説明図。Transition explanatory drawing which similarly shows the transition of the state of an IMES apparatus. 同じくIMES装置の異常時の装置内での信号の流れの説明図。Similarly explanatory drawing of the flow of the signal in the apparatus at the time of abnormality of the IMES apparatus. 同じくIMES装置の内部構成を示すブロック図。The block diagram which similarly shows the internal structure of an IMES apparatus. 同じくIMES装置の移動時の異常検出部の動作の説明図。Explanatory drawing of operation | movement of the abnormality detection part at the time of movement of an IMES apparatus similarly.
 以下、図面を用いて実施形態を詳細に説明する。図1は、本発明実施例の位置情報発信装置の認証システムの全体を示す構成図である。 Hereinafter, embodiments will be described in detail with reference to the drawings. FIG. 1 is a block diagram showing the entire authentication system for a location information transmitting apparatus according to an embodiment of the present invention.
 1は、適正な位置情報を発信する位置情報発信装置(IMES装置)である。設置者(設置者端末)2は、設置情報を作成してインターネット4を介した通信により認証機関(サーバ)3に認証を要求し、IMES装置1は認証機関3で認証された設置情報が設定されることにより、適正な位置情報を発信する。IMES装置1は、当該装置が設置の度に新たな起動コードを生成する制御部6と、前記認証機関3の認証の正当性を検証する検証部7と、前記設置者端末2と通信を行うローカル通信部10と、位置情報を発信する位置情報発信部9と、設置情報を設定し記憶するメモリ8を備える。前記設置者端末2とローカル通信部10は、赤外線通信、可視光線通信、RFID、Bluetooth(登録商標)等の近距離通信で信号の授受を行う。 1 is a location information transmission device (IMES device) that transmits appropriate location information. The installer (installer terminal) 2 creates the installation information and requests authentication from the certification authority (server) 3 through communication via the Internet 4, and the IMES device 1 sets the installation information authenticated by the certification authority 3. As a result, appropriate location information is transmitted. The IMES device 1 communicates with the control unit 6 that generates a new activation code each time the device is installed, the verification unit 7 that verifies the authenticity of the authentication authority 3, and the installer terminal 2. A local communication unit 10, a position information transmission unit 9 for transmitting position information, and a memory 8 for setting and storing installation information are provided. The installer terminal 2 and the local communication unit 10 exchange signals through near field communication such as infrared communication, visible light communication, RFID, and Bluetooth (registered trademark).
 IMES装置1は、屋内の所定広さの領域の測位のために複数設置され、各設置位置を示す位置情報(IMES信号)を発信する。IMES信号は、GPS受信機能付きの携帯端末(IMES受信器)5で受信され、携帯端末に所在位置を知らせる。 The IMES device 1 is installed in a plurality for positioning in an area of a predetermined area indoors, and transmits position information (IMES signal) indicating each installation position. The IMES signal is received by a portable terminal (IMES receiver) 5 with a GPS reception function and informs the portable terminal of the location.
 前記検証部7は前記認証機関3が発行した証明書の正当性と設置情報の署名を検証し、前記制御部6は、正当であるとの検証結果に基いて前記位置情報発信部9を発信可能な状態に制御する。証明書、署名とはバイナリデータ列である。 The verification unit 7 verifies the validity of the certificate issued by the certification authority 3 and the signature of the installation information, and the control unit 6 transmits the position information transmission unit 9 based on the verification result that it is valid. Control as possible. Certificates and signatures are binary data strings.
 設置者は、IMES装置を屋内の天井などに設置して、各IMES受信器に設置情報を設定する作業を行う設置者(インフラ事業者)であり、設置場所に合わせた設置情報を作成し、設置者端末2を用いて認証機関3に認証を要求し、認証を受けた設置情報を設置者端末2を用いてIMES装置1に渡す。 The installer is an installer (infrastructure operator) who installs IMES devices on the indoor ceiling and sets the installation information for each IMES receiver, creates installation information that matches the installation location, Using the installer terminal 2, the authentication authority 3 is requested to authenticate, and the installation information that has been authenticated is passed to the IMES device 1 using the installer terminal 2.
 IMES装置1は、さらに図8に示すように、本体部20とIMES装置の異常を検出する異常検出部21からなり、異常検出部21は、当該装置が設置場所から取り外されたことで異常を検出するセンサ部27と、異常検出部21内に常時給電する電池26と、制御部25を備える。IMES装置1は設置後、不正に設置場所の移動などがなされないように常時監視される必要があり、異常検出部21内に常時給電する独立した電池26を備えている。異常検出部21は、センサ部27は、光センサ27a、接点27b、近接センサ27cの少なくとも一つから構成され、IMES装置1の取り外しを検出する。 As shown in FIG. 8, the IMES device 1 further includes a main body unit 20 and an abnormality detection unit 21 that detects an abnormality of the IMES device. The abnormality detection unit 21 detects an abnormality when the device is removed from the installation location. A sensor unit 27 for detection, a battery 26 for constantly supplying power to the abnormality detection unit 21, and a control unit 25 are provided. The IMES device 1 needs to be constantly monitored after installation to prevent unauthorized movement of the installation location, and includes an independent battery 26 that constantly supplies power to the abnormality detection unit 21. In the abnormality detection unit 21, the sensor unit 27 includes at least one of an optical sensor 27a, a contact point 27b, and a proximity sensor 27c, and detects the removal of the IMES device 1.
 本体部20は、前記制御部6と、RF部22と、電源回路23、外部電源24を備える。RF部22は、図1に示される前記位置情報発信部9と、ローカル通信部10を合せて示す。 The main unit 20 includes the control unit 6, the RF unit 22, a power supply circuit 23, and an external power supply 24. The RF unit 22 shows the position information transmission unit 9 and the local communication unit 10 shown in FIG.
 前記制御部6は前記センサ部27からの検出信号に基づいて、当該装置1をアクティベーション状態(適切な設置情報が設定手続された状態)から非アクティベーション状態(適切な設置情報が設定手続されてない状態)にして、新たな起動コードを生成し、前記検証部7は前記認証機関装置3が発行した前記新たな起動コードを含む設置情報の再認証結果の正当性を検証する。認証機関3はサーバを指すので、以下認証機関装置3と称する。 Based on the detection signal from the sensor unit 27, the control unit 6 changes the device 1 from the activated state (the state in which appropriate installation information is set) to the inactive state (in which the appropriate installation information is set). The verification unit 7 verifies the validity of the re-authentication result of the installation information including the new activation code issued by the certification authority device 3. Since the certification authority 3 indicates a server, it is hereinafter referred to as a certification authority apparatus 3.
 図2は、本発明実施例のシステムの稼働前の準備段階(準備フェーズ)の作業を示す説明図である。このシステムの目的は、「不正」な位置情報をIMES装置から送信されないように保護することである。IMES装置に「適切」な信号(設置情報)の設定手続きを「アクティベーション」と称する。設置情報が適切かどうかは「公正」な認証機関が判断する。この認証機関が公正かどうかは上位の認証機関(ルート認証機関)が認証する。図2で、100はルート認証機関であり、認証機関装置3の業務の正当性を認証(証明)する。本発明は、これらの手続きをオープン(すべての仕様を公開し、また、だれでもIMES装置、認証機関、設置者を行うことができる)にした上で、不正ができないようにする。 FIG. 2 is an explanatory diagram showing the work of the preparation stage (preparation phase) before the operation of the system of the embodiment of the present invention. The purpose of this system is to protect "illegal" location information from being transmitted from IMES devices. The procedure for setting a signal (installation information) “appropriate” for the IMES device is called “activation”. A “fair” certification body will determine whether the installation information is appropriate. Whether the certification body is fair or not is certified by a higher-level certification body (root certification body). In FIG. 2, reference numeral 100 denotes a root certification authority, which authenticates (certifies) the validity of the business of the certification authority apparatus 3. The present invention opens these procedures (opens all specifications and allows anyone to perform IMES devices, certification bodies, and installers) to prevent fraud.
 準備フェーズにおいては、以下の作業が必要である。 In the preparation phase, the following work is required.
 1.ルート認証機関100はデジタル証明書を発行する。 
証明書はX509フォーマットとしたルート証明書(自らを認証する証明書)となり、証明書には、発行組織、発行日、公開鍵暗号方式、公開鍵(Kjpとする)が含まれる。
1. The root certification authority 100 issues a digital certificate.
The certificate is a root certificate in X509 format (certificate that authenticates itself), and the certificate includes the issuing organization, issue date, public key cryptosystem, and public key (Kjp).
 2.この段階でIMES装置はメーカ内に在庫されており、公開されている証明書が出荷時に当該IMES装置に記録される。
たとえば、ルート証明書をWeb上で公開しておき、メーカがダウンロードし、IMES装置のプログラムに組み込む、というような運用で記録される。 
 3.認証機関装置3が自ら証明書を発行する。証明書には公開鍵Kapが含まれる。
2. At this stage, the IMES device is stocked in the manufacturer, and a public certificate is recorded in the IMES device at the time of shipment.
For example, the root certificate is disclosed on the Web, downloaded by the manufacturer, and recorded in the program of the IMES device.
3. The certification authority device 3 issues its own certificate. The certificate includes the public key Kap.
 4.この証明書は、正当性が認証されてないので、認証機関装置3から上位のルート認証機関100に対して、この証明書に対して署名を請求する。 4. Since the validity of this certificate is not authenticated, the certificate authority apparatus 3 requests the higher-level root certificate authority 100 to sign the certificate.
 5.ルート認証機関100は、認証機関3の発行した証明書の正当性を評価する。
この評価は、認証機関3が業務を適切に行う能力があるかを判断する。それがOKであれば、署名、すなわち、認証機関3の発行した証明書のハッシュを秘密鍵で暗号化したもの、を計算する。そして、ルート認証機関100で署名付き証明書を発行する。
5. The root certification authority 100 evaluates the validity of the certificate issued by the certification authority 3.
This evaluation determines whether the certification body 3 has the ability to appropriately perform the business. If it is OK, the signature, that is, the hash of the certificate issued by the certification authority 3 encrypted with the private key is calculated. Then, the root certificate authority 100 issues a signed certificate.
 秘密鍵はルート認証機関100しか知らないため、この署名が計算できるのはルート認証機関100だけである。一方、公開鍵は公開されているので、署名を解くことによって、だれでも、この署名が、ルート認証機関100によってなされたものであることを確認(検証)することができる。 
 図3は、本発明実施例のIMES装置の設置設計に基づく事前申請の説明図である。
事前フェーズにおいては、以下の作業が必要である。
1.設置者はIMES装置1の設置計画を行う。 
2.設置者は設置計画の事前申請の認証要求を認証機関装置3に対して通信または人手で行う。
この際、設置計画は設置者情報、IMES装置の型式、設置座標などを含むデータを認証機関装置3に渡す。ここで、IMES装置を特定するためのシリアル番号は渡さなくてもよい。
Since only the root certification authority 100 knows the secret key, only the root certification authority 100 can calculate this signature. On the other hand, since the public key is made public, anyone can confirm (verify) that the signature is made by the root certification authority 100 by releasing the signature.
FIG. 3 is an explanatory diagram of the prior application based on the installation design of the IMES device according to the embodiment of the present invention.
In the preliminary phase, the following work is required.
1. The installer performs an installation plan for the IMES device 1.
2. The installer makes an authentication request for the prior application for the installation plan by communicating or manually with the certification authority apparatus 3.
At this time, the installation plan passes data including the installer information, the IMES device type, installation coordinates, etc. to the certification authority device 3. Here, the serial number for specifying the IMES device may not be passed.
 すなわち、IMES装置は、蛍光灯や非常灯などの設備品と同様な扱いで導入され、設備設営業者によって設備品と同様な作業で設置がなされると考えられる。そして、IMES装置のシリアル番号毎に位置を指定して設置作業をしようとすると、設置前にシリアル番号と位置の対応の確認が必要となり作業効率が悪くなる。たとえば、設備品のシリアル番号01351を会議室Aに、番号01534を応接室Bに、といった設置作業は確認が面倒で現実的でない。シリアル番号に関係なく設置した後に、設置者が会議室Aに設置された機器のシリアル番号を調べるほうが作業効率が良い。 That is, the IMES device is introduced in the same manner as equipment such as fluorescent lights and emergency lights, and it is considered that the equipment installation business operator installs the equipment in the same manner as equipment. If an installation operation is attempted by designating a position for each serial number of the IMES device, it is necessary to confirm the correspondence between the serial number and the position before installation, resulting in poor work efficiency. For example, installation work such as serial number 01351 for equipment in conference room A and number 01534 in reception room B is cumbersome to confirm and is not practical. It is more efficient for the installer to check the serial number of the device installed in the conference room A after the installation regardless of the serial number.
 そのため、事前申請での認証要求の時点では、IMES装置のシリアル番号にかかわらず、その信号を送信することが適切かどうかの「審査」のみを行い、実際のシリアル番号と設置位置が確定した後に、それを運用管理データベースに格納するという手順となる。ここでの審査は人手によるものであっても良い。また、事前申請データの入力はWebフォーム形式やexcel形式などでよく、共通フォーマットを定義する必要は必ずしもない。 Therefore, at the time of the authentication request in the prior application, regardless of the serial number of the IMES device, only “examination” is performed to determine whether it is appropriate to transmit the signal, and after the actual serial number and installation position are determined The procedure is to store it in the operation management database. The examination here may be done manually. Also, prior application data can be entered in Web form format or excel format, and it is not always necessary to define a common format.
 3.認証機関装置3は、審査OKであれば、「チケット」を計算する。「チケット」は1つの数値(番号)であり、整理券番号やセッションIDのようなものである。チケットは第三者が容易に生成したり、次の番号を予測したりできないことが求められ、通常は、巨大な乱数が用いられる。認証機関装置3は、設置者が「チケット」を渡した際に、それが審査済みのチケット番号であれば、再審査することなく、自動的に(人手の介在なしに)認証手続きを継続することができるものとする。 3. The certification authority apparatus 3 calculates a “ticket” if the examination is OK. A “ticket” is a single numerical value (number), such as a numbered ticket number or a session ID. It is required that a ticket cannot be easily generated by a third party or the next number cannot be predicted. Usually, a huge random number is used. The certification authority apparatus 3 automatically continues the authentication procedure (without human intervention) without re-examination if the installer gives the “ticket” and the ticket number has already been inspected. It shall be possible.
 なお、IMES装置のアクティベーションのために、IMES装置にこのチケットの数値を入力するわけではない。そのような運用では、認証済みチケットが大量にコピーされて、いくらでも不正な信号を出力することができてしまうためである。 
 図4は、本発明実施例のIMES装置の初回設置時の設置情報の認証と、その設定の説明図である。初回設置時とは、設置者により多数のIMES装置1が屋内の所定エリアの天井に設置された状態であり、この状態で設置された各IMES装置1へ認証済の設置情報の認証の設定がなされる。初回設置フェーズでの動作は次の通りである。
Note that the numerical value of this ticket is not input to the IMES device for activation of the IMES device. This is because in such an operation, a large number of authenticated tickets are copied, and any number of illegal signals can be output.
FIG. 4 is an explanatory diagram of authentication of installation information at the time of initial installation of the IMES apparatus of the embodiment of the present invention and its setting. The initial installation is a state in which a large number of IMES devices 1 are installed on a ceiling in a predetermined area indoors by the installer, and authentication settings of authenticated installation information are set in each IMES device 1 installed in this state. Made. The operation in the initial installation phase is as follows.
 1.IMES装置1は起動直後は、非アクティベーション状態である。IMES装置1は、設置の度に乱数により新たな起動コードを生成する。IMES装置1は、起動コードと共に当該装置のメーカID、シリアル番号を無線通信により設置者端末2に送信する。この送信は、ローカル通信部10を介して近距離通信により実行される。近距離通信により、設置者端末2とIMES装置1の情報の授受が容易になされるので、設置者によるIMES装置1の設置とその設定の作業効率を向上させることができる。 1. The IMES device 1 is in an inactive state immediately after startup. The IMES device 1 generates a new activation code with a random number every time it is installed. The IMES device 1 transmits the manufacturer ID and serial number of the device together with the activation code to the installer terminal 2 by wireless communication. This transmission is executed by short-range communication via the local communication unit 10. Since the information exchange between the installer terminal 2 and the IMES device 1 is facilitated by the short-range communication, the installation efficiency of the IMES device 1 by the installer and the setting efficiency thereof can be improved.
 2.設置者は、IMES装置1のメーカID、シリアル番号、起動コードの情報を得る。この情報の取得は、無線による通信やケーブルでIMES装置と接続するか、またはIMES装置1の表示(ラベル)を設置者が読み取る、などの方法でなされる。 
ここで、設置者とは携帯端末とそれを操作する人を指す。なお、IMES装置自体に、認証機関と通信可能な広域接続回線が接続されている場合(たとえば、LANケーブル、無線LAN、携帯キャリアのモデム等によるインターネット接続がなされている場合)、携帯端末はIMES装置の一部であっても良い。 
 3.設置者は、各IMES装置1の設置情報を作成する。
設置情報とは、設置者、装置型式ID、シリアル番号、起動コード、設置座標、IMES送信信号のコード列を表すPRN番号が含まれる。設定情報は、形式化された共通のフォーマットで記述されている。たとえば、XML、JSON、ASN.1などをベースとして、それぞれのフィールド名が定義され、共通化された、テキストまたはバイナリデータ列である。その後、設置者は携帯端末2により、設置者ID、チケットとともに、設置情報を認証機関装置3に送信して認証を要求する。
2. The installer obtains information on the manufacturer ID, serial number, and activation code of the IMES device 1. This information is acquired by a method such as connecting to the IMES device by wireless communication or cable, or reading the display (label) of the IMES device 1 by the installer.
Here, the installer refers to the portable terminal and the person who operates it. When a wide area connection line that can communicate with the certification authority is connected to the IMES device itself (for example, when the Internet connection is made by a LAN cable, a wireless LAN, a mobile carrier modem, etc.), the mobile terminal is It may be part of the device.
3. The installer creates installation information for each IMES device 1.
The installation information includes an installer, a device model ID, a serial number, an activation code, installation coordinates, and a PRN number representing a code string of the IMES transmission signal. The setting information is described in a common formalized format. For example, based on XML, JSON, ASN.1, etc., each field name is defined and is a common text or binary data string. After that, the installer sends the installation information to the certification authority apparatus 3 together with the installer ID and ticket by the portable terminal 2 to request authentication.
 4.認証機関装置3は、送信された設置情報を検証する。 
認証機関装置3は、携帯端末2から送信されたチケットが、図3の事前フェーズで自分自身が発行したチケットであって、また、そのチケットを発行した際の設置計画(設置者、装置形式、設置座標)と、現在受け取った設置情報が一致しているかどうかを比較することによって検証を行う。
IMES装置1の設置や保守は、設置する場所の休業期間(夜間や祝祭日)に行われるのが通常であるが、その際、認証業務が行われないと作業が進まないので、この検証処理は人手を介さずに自動的に行われる。 
 5.認証機関装置3は、検証の結果OKであれば認証情報の署名、すなわち、設置情報のハッシュを秘密鍵で暗号化したものを計算する。秘密鍵は認証機関装置3自身しか知らないため、この署名が計算できるのは認証機関装置3だけである。また、公開鍵を使って署名を解くことによって、IMES装置1は、この署名が認証機関装置3によってなされたものであることを確認(検証)することができる。
4). The certification authority apparatus 3 verifies the transmitted installation information.
In the certification authority apparatus 3, the ticket transmitted from the portable terminal 2 is a ticket issued by itself in the prior phase of FIG. 3, and an installation plan (installer, apparatus type, Verification is performed by comparing whether the installation coordinates) and the currently received installation information match.
The installation and maintenance of the IMES device 1 is usually performed during the closed period (nighttime and public holidays) of the place where it is installed, but at that time, if the verification work is not performed, the work will not proceed, so this verification process is This is done automatically without human intervention.
5. If the verification result is OK, the certification authority apparatus 3 calculates the signature of the authentication information, that is, the encryption of the hash of the installation information with the secret key. Since only the certificate authority device 3 itself knows the secret key, this signature can be calculated only by the certificate authority device 3. Also, by using the public key to release the signature, the IMES device 1 can confirm (verify) that this signature has been made by the certification authority device 3.
 6.認証機関装置3は、設置情報、設置情報の署名、証明書を設置者端末2に送信する。ここで、署名を「アクティベーションコード」と呼ぶ。 
 7.設置者端末(設置者)2は、設置情報、設置情報の署名、証明書をIMES装置1に送信する。 
 8.IMES装置1は以下の処理を行い、設定(送信された内容)が正当かどうか内部の検証部7で次の検証を行う。
(1)認証機関の署名つき証明書の正当性を検証する。
(2)設置情報の署名を検証する。 
これらの検証の結果、正しければIMES装置1は送信可能状態となる。 
ここで、上記(1)の検証では、認証機関装置3が正当であるかどうかを検証する。これにより、認証機関装置3のなりすまし攻撃を防ぐことができる。この証明書から公開鍵Kapを得る。上記(2)の検証では、公開鍵Kapを用いて署名を解いて、これが認証機関装置3によってなされたものであるかを検証する。その後、正当であると検証された結果は、IMES装置1から設置者端末2に送信される。
6). The certification authority device 3 transmits the installation information, the signature of the installation information, and the certificate to the installer terminal 2. Here, the signature is called an “activation code”.
7). The installer terminal (installer) 2 transmits the installation information, the signature of the installation information, and the certificate to the IMES device 1.
8). The IMES device 1 performs the following processing, and the internal verification unit 7 performs the next verification as to whether the setting (transmitted content) is valid.
(1) Verify the validity of the certificate signed by the certificate authority.
(2) Verify the signature of the installation information.
If the result of these verifications is correct, the IMES device 1 is ready for transmission.
Here, in the verification of (1) above, it is verified whether or not the certification authority apparatus 3 is valid. Thereby, the spoofing attack of the certification authority apparatus 3 can be prevented. The public key Kap is obtained from this certificate. In the verification of (2) above, the signature is decrypted using the public key Kap, and it is verified whether this is the certificate authority apparatus 3. Thereafter, the result verified as valid is transmitted from the IMES device 1 to the installer terminal 2.
 9.設置者(設置者端末2)は、認証機関装置3に最終的な設置に関する設置情報を報告する。これにより、認証機関装置3は設置情報を収集する。これは、アクティベーションの技術上は必要ではないが、アクティベーション手続きにおける、報告義務として行うものである。 9. The installer (installer terminal 2) reports the installation information regarding the final installation to the certification authority apparatus 3. Thereby, the certification authority apparatus 3 collects installation information. This is not necessary in terms of activation technology, but is a reporting obligation in the activation procedure.
 このように、認証機関装置3の送信した認証結果の内容を、最終的にIMES装置1内部で検証することにより、認証結果のセキュリティーを高めることができる。すなわち、認証は認証機関装置3とIMES装置1で行われるので、認証された設置情報の改ざんを阻止することができる。また、設置者は最初の認証の要求を証機関装置3に出し、認証結果をIMES装置1に渡すのみで、最終的な認証とその検証を認証機関装置3とIMES装置1で自動的に行うので、設置作業に専念でき作業効率を高めることができる。近距離通信により、設置者端末2とIMES装置1の情報の授受が容易になされるので、設置者によるIMES装置1の設置とその設定の作業効率を向上させることができる。 Thus, the security of the authentication result can be enhanced by finally verifying the content of the authentication result transmitted by the certification authority device 3 inside the IMES device 1. That is, since authentication is performed by the certification authority apparatus 3 and the IMES apparatus 1, it is possible to prevent tampering of the authenticated installation information. Further, the installer simply issues a request for initial authentication to the certification authority apparatus 3 and passes the authentication result to the IMES apparatus 1, and final authentication and verification are automatically performed by the certification authority apparatus 3 and the IMES apparatus 1. Therefore, it is possible to concentrate on the installation work and improve work efficiency. Since the information exchange between the installer terminal 2 and the IMES device 1 is facilitated by the short-range communication, the installation efficiency of the IMES device 1 by the installer and the setting efficiency thereof can be improved.
 図5は、IMES装置1を設置後、設置場所の移動などの設置情報を変更したい場合の、保守時の修正設置情報の認証と設定の説明図である。これは、以下のような場合を想定している。 
・PRN番号を修正したい場合
たとえば、IMES装置を追加した際に、既存のIMES装置のPRN番号を修正する場合である。PRN番号は、IMES装置の番号である。
・送信座標(設置位置座標)を修正したい場合
電波のビーム方向に合わせて、数m程度の修正を行う場合である。 
・IMES装置がリセットされた場合
同一の条件で(但し起動コードが違う)再アクティベーションが必要になった場合である。 
・IMES装置が故障した場合
故障したIMES装置の設定を別のIMES装置に引き継がせたい場合である。
FIG. 5 is an explanatory diagram of authentication and setting of modified installation information at the time of maintenance when it is desired to change the installation information such as movement of the installation location after the IMES apparatus 1 is installed. This assumes the following case.
-When you want to modify the PRN number For example, when adding an IMES device, you want to modify the PRN number of an existing IMES device. The PRN number is the number of the IMES device.
-When you want to correct the transmission coordinates (installation position coordinates) This is the case when you make corrections about several meters according to the direction of the radio wave beam.
-When the IMES device is reset, it is necessary to reactivate under the same conditions (however, the activation code is different).
-When an IMES device fails The setting of the failed IMES device is to be transferred to another IMES device.
 上記のような場合には迅速な対応が求められるが、前述した図3の事前フェーズからの設置情報の変更手続きでは時間・手間が多くかかる。そのため、次の修正手続きを行う。
 1.設置者は、IMES装置1の修正情報(設置情報)を作成する。これは、初回設置フェーズでの動作3に相当する。
修正情報(設置情報)とは、設置情報の差分であり、設置者、装置型式ID、シリアル番号、起動コード、チケット、設置座標、PRNの一部または全部が含まれる。修正情報は設置情報と同様に形式化された共通のフォーマットによるテキストまたはバイナリデータ列である。その後、設置者は携帯端末2により、設置者ID、チケットとともに、修正情報を認証機関装置3に送信して認証を要求する。 
 2.認証機関装置3は、送信された修正情報を検証する。これは、初回設置フェーズでの動作4に相当する。 
認証機関装置3は、修正情報に含まれる修正内容を検証し、問題がない場合この修正内容に対して署名を計算する。この検証は、作業効率上、できるだけ自動化されるのが好ましい。そのため、例えば修正内容が、人手による検証が必要な規模のものかを判断する。これは、送信座標の修正が数m以下である場合、単に起動コードが違う場合、PRNコードが違うが近隣と干渉がない場合、などは自動で応答する。 
 3.設置者は、設置情報、設置情報の署名、証明書をIMES装置1に渡す。これは、初回設置フェーズでの動作7に相当する。 
 4.IMES装置1は修正が正当かどうか検証する。これは、初回設置フェーズでの動作8に相当する。 
これらの検証処理は、前述した初回設置フェーズでの設置情報に関する処理と同様である。 
 図6は、IMES装置1の状態の遷移を示す説明図である。遷移を順に説明する。
In such a case, a quick response is required, but the procedure for changing the installation information from the previous phase of FIG. 3 described above takes a lot of time and effort. Therefore, the following correction procedure is performed.
1. The installer creates correction information (installation information) for the IMES device 1. This corresponds to operation 3 in the initial installation phase.
The correction information (installation information) is a difference in installation information, and includes part or all of the installer, device model ID, serial number, activation code, ticket, installation coordinates, and PRN. The correction information is a text or binary data string in a common format that is formalized in the same manner as the installation information. Thereafter, the installer sends the correction information to the certification authority apparatus 3 together with the installer ID and the ticket by the portable terminal 2 to request authentication.
2. The certification authority apparatus 3 verifies the transmitted correction information. This corresponds to operation 4 in the initial installation phase.
The certification authority apparatus 3 verifies the correction content included in the correction information, and if there is no problem, calculates a signature for the correction content. This verification is preferably automated as much as possible for work efficiency. Therefore, for example, it is determined whether the correction content is of a scale that requires manual verification. This automatically responds when the transmission coordinate correction is less than a few meters, when the activation code is different, or when the PRN code is different but there is no interference with the neighborhood.
3. The installer passes the installation information, the signature of the installation information, and the certificate to the IMES device 1. This corresponds to operation 7 in the initial installation phase.
4). The IMES device 1 verifies whether the correction is valid. This corresponds to operation 8 in the initial installation phase.
These verification processes are the same as the processes related to the installation information in the initial installation phase described above.
FIG. 6 is an explanatory diagram showing state transition of the IMES device 1. The transition will be described in order.
 1.IMES装置1は、起動直後は非アクティベーション状態である。この際、IMES装置1は乱数で新たな起動コードを生成する。この状態では、IMES装置1のRF(無線)出力は常にOFFで、位置情報は発信されていない。 
 2.アクティベーションコード(認証)をIMES装置1に入力し、それが正当であると検証されれば、IMES装置1はアクティベーション状態となる。IMES装置1のRF(無線)出力はOFFの状態である。
1. The IMES device 1 is in an inactive state immediately after startup. At this time, the IMES device 1 generates a new activation code with a random number. In this state, the RF (wireless) output of the IMES device 1 is always OFF, and no position information is transmitted.
2. If the activation code (authentication) is input to the IMES device 1 and verified that it is valid, the IMES device 1 enters the activation state. The RF (wireless) output of the IMES device 1 is OFF.
 3.設置者端末などからアクティベーション状態で送信開始要求を受けると、IMES装置1はRF(無線)出力がONになり、位置情報を発信する。IMES装置1の実装によっては、アクティベーション状態になると直ちに送信中状態に遷移してもよい。 
 4.IMES装置1において異常検出部21が設置状態から不正に移動させられたり、輸送されたりするの等、何らかの異常状態を検出すると、IMES装置1は非アクティベーション状態に戻り、乱数で新たな起動コードを生成する。起動コードが変化すると、アクティベーションに必要なアクティベーションコード(認証)も変化する。どのように変化するかは、秘密鍵を持っている認証機関装置3しか計算できない。そのため、移動後のIMES装置1が移動前の座標を発信することが防止され、公正な位置情報を発信することができる。
3. When receiving a transmission start request in an activated state from an installer terminal or the like, the IMES device 1 turns on RF (wireless) output and transmits position information. Depending on the implementation of the IMES device 1, it may transition to the transmitting state immediately after entering the activation state.
4). In the IMES device 1, when any abnormality state is detected, such as the abnormality detection unit 21 being illegally moved or transported from the installed state, the IMES device 1 returns to the non-activation state, and a new activation code is generated with a random number. Is generated. When the activation code changes, the activation code (authentication) required for activation also changes. Only the certification authority apparatus 3 having the secret key can calculate how it changes. Therefore, the IMES device 1 after movement is prevented from transmitting the coordinates before movement, and fair position information can be transmitted.
 図7、図8を用いて、IMES装置1の異常時の装置内での信号の流れを説明する。
異常検出部21は独立して電池で駆動されており、本体部20の外部電源が切り離されても異常検出とはしない(停電や単なる電源断と判定)。セキュリティーに関わるセンサによる異常検知は、外部電源が切り離された状態においても、常時機能しなければならないためである。
A signal flow in the apparatus when the IMES apparatus 1 is abnormal will be described with reference to FIGS.
The abnormality detection unit 21 is independently driven by a battery, and does not detect abnormality even when the external power supply of the main body unit 20 is disconnected (determined as a power failure or simple power interruption). This is because anomaly detection by a security-related sensor must always function even when the external power supply is disconnected.
 異常検出部21と本体部20の連携形態としては以下のものがある。
1.1つのマイコンで中のソフトブロックで切り分けて制御する。 
2.1つの基板上の2個のマイコンを設けて制御する。 
3.コネクタで接続された2個の部品として制御する。 
2と3の場合、通信プロトコルの暗号化(途中でモジュールが交換されたり、単にショートされたりした場合に異常になるように)が、それぞれのマイコンで実装される。
Examples of the cooperation form between the abnormality detection unit 21 and the main body unit 20 include the following.
1. A single microcomputer is used to control by the soft block inside.
2. Provide and control two microcomputers on one board.
3. Control as two parts connected by a connector.
In the case of 2 and 3, encryption of the communication protocol (so that it becomes abnormal when the module is exchanged or simply shorted in the middle) is implemented in each microcomputer.
 異常検出部21の具体例としては次のものがあり、少なくてもいずれかの1個のセンサが用いられる。
・光センサ27a:本体の分解検知(装置1を分解すると光が入って検出する)など 
・近接センサ27c:設置枠などから装置1が移動されたことを検知(設置枠までの距離を検出)
・接点27b:本体の分解検知や移動時にピンが抜けることで検出するなど 
 図7で信号の流れを説明する。正常状態で本体20から異常検出の問い合わせを出すと、異常検出部21から異常なしの応答があり、RF部がON状態となり位置情報を発信する。異常状態では、本体20から異常検出の問い合わせを出すと、異常検出部21から異常の応答があり、本体21(装置1)を非アクティベーション状態とする。その後、異常原因が除かれて再度の検証がOKとなるとクティベーション状態となる。その後、異常検出の解除に伴って、RF部がON状態となり位置情報を発信する。
Specific examples of the abnormality detection unit 21 include the following, and at least one of the sensors is used.
-Optical sensor 27a: detection of disassembly of the main body (light is detected when the device 1 is disassembled), etc.
Proximity sensor 27c: Detects that the device 1 has been moved from the installation frame or the like (detects the distance to the installation frame)
Contact 27b: Detection by detecting the disassembly of the main body or the pin being removed during movement
The flow of signals will be described with reference to FIG. When an abnormality detection inquiry is issued from the main body 20 in a normal state, there is a response indicating no abnormality from the abnormality detection unit 21, and the RF unit is turned on to transmit position information. In an abnormal state, when an abnormality detection inquiry is issued from the main body 20, an abnormality response is received from the abnormality detection unit 21, and the main body 21 (device 1) is deactivated. After that, when the cause of the abnormality is removed and the verification is OK again, the activation state is entered. Thereafter, with the cancellation of the abnormality detection, the RF unit is turned on to transmit position information.
 図9はIMES装置の移動時の異常検出部の動作の説明図で、異常検出部のセンサ27として接点を示している。天井に設置されたIMES装置1が取り外されると、ピンが抜けて上方に移動し、この移動で接点が動作する構造となっている。このようにしてIMES装置1の移動などの異常が検出される。 FIG. 9 is an explanatory diagram of the operation of the abnormality detection unit during movement of the IMES device, and shows a contact as the sensor 27 of the abnormality detection unit. When the IMES device 1 installed on the ceiling is removed, the pin is pulled out and moves upward, and the contact operates by this movement. In this way, an abnormality such as movement of the IMES device 1 is detected.
 実施例では、アクティベーションの仕組みそのものは、証明書のチェインの検証に基づいた、一般的に広く用いられている技術を用いている。そして本発明の特徴は次に示す通りである。 
1.新たな起動コードの存在 
新たな起動コードによって、過去の設定値(設置情報)を再び設定することを禁止している。
2.人力、非人力を含むシステムである。IMES装置の位置情報の送信許可そのものは、人の判断にゆだねられる部分もある。しかしながら、IMES装置の設置現場では、夜間、休日での迅速な作業が求められる。これらを「チケットの発行」という仕組みによって両立させている。 
3.修正情報を管理し、署名付き修正情報を受け入れる。これにより、運用フェーズでの作業性が高まる。証明書のチェインの検証をIMESシステム(IMES装置内)で行うことは大きな特徴である。
In the embodiment, the activation mechanism itself uses a generally widely used technique based on certificate chain verification. The features of the present invention are as follows.
1. Existence of new activation code
Setting a past setting value (installation information) again by a new activation code is prohibited.
2. This system includes human and non-human power. The IMES device location information transmission permission itself is subject to human judgment. However, at the site where the IMES device is installed, quick work at night and on holidays is required. These are balanced by a mechanism called “ticket issuance”.
3. Manage revision information and accept signed revision information. Thereby, workability in the operation phase is enhanced. It is a great feature that certificate chain verification is performed by the IMES system (in the IMES device).
 本発明実施例をまとめると、
 設置者端末2によって設置情報を作成して通信により認証機関装置3に認証を要求し、認証機関3で認証された設置情報を設定することにより適正な位置情報を発信する位置情報発信装置1において、装置の設置の度に新たな起動コードを生成する制御部6と、前記認証機関3の認証の正当性を検証する検証部7と、前記設置者端末2と通信を行うローカル通信部10と、位置情報を発信する位置情報発信部9と、位置情報発信装置1の異常を検出する異常検出部21を備え、前記検証部7は前記認証機関3が発行した証明書の正当性と設置情報の署名を検証し、正当であるとの検証結果に基いて前記制御部7は前記位置情報発信部9を発信可能な状態に制御することを特徴とする。
To summarize the examples of the present invention:
In the location information transmission device 1 that creates installation information by the installer terminal 2, requests authentication to the certification authority device 3 by communication, and transmits appropriate location information by setting the installation information authenticated by the certification organization 3. A control unit 6 that generates a new activation code each time a device is installed, a verification unit 7 that verifies the authenticity of authentication by the certification authority 3, and a local communication unit 10 that communicates with the installer terminal 2; A location information transmission unit 9 for transmitting location information, and an abnormality detection unit 21 for detecting an abnormality of the location information transmission device 1, and the verification unit 7 provides validity and installation information of a certificate issued by the certification authority 3. The control unit 7 controls the position information transmitting unit 9 to be in a state in which the signature can be transmitted based on the verification result that the signature is valid.
 前記制御部は、当該装置1の設置の度に、乱数により新たな起動コードを生成する。また、前記異常検出部21は、当該装置1が設置場所から取り外されたことで異常を検出するセンサ部27と、異常検出部内に給電する電池26を備え、前記制御部6は前記センサ部からの検出信号に基づいて当該装置1を非アクティベーション状態として新たな起動コードを生成し、前記検証部7は前記認証機関3が発行した前記新たな起動コードを含む設置情報の再認証の正当性を検証する。 The control unit generates a new activation code with a random number each time the apparatus 1 is installed. The abnormality detection unit 21 includes a sensor unit 27 that detects an abnormality when the apparatus 1 is removed from the installation location, and a battery 26 that supplies power to the abnormality detection unit. The control unit 6 is connected to the sensor unit from the sensor unit. Based on the detected signal, the apparatus 1 is deactivated to generate a new activation code, and the verification unit 7 verifies re-authentication of the installation information including the new activation code issued by the certification authority 3 To verify.
 前記ローカル通信部10は、当該装置1と前記設置者端末2とで近距離通信により情報を授受する。また、当該装置1から発信される位置情報は、衛星測位信号と互換性を有し、当該装置1が設置される屋内の緯度、経度、階情報もしくは階情報と高度情報を含む。また、前記センサ部27は光センサ27a、接点27b、近接センサ27cの少なくとも一つから構成され、位置情報発信装置1の取り外しを検出する。 The local communication unit 10 exchanges information between the device 1 and the installer terminal 2 by short-range communication. The position information transmitted from the device 1 is compatible with a satellite positioning signal, and includes indoor latitude, longitude, floor information or floor information and altitude information where the device 1 is installed. The sensor unit 27 includes at least one of an optical sensor 27a, a contact point 27b, and a proximity sensor 27c, and detects the removal of the position information transmission device 1.
 さらに、本発明実施例は、設置された位置を示す位置情報を発信する位置情報発信装置1と、前記位置情報発信装置の位置情報を含む設置情報を作成して通信により認証機関3に認証を要求する設置者端末2からなる位置情報発信装置の認証システムにおいて、前記位置情報発信装置1は設置の度に、非アクティベーション状態で起動コードを生成する制御部と前記認証機関装置3の認証結果の正当性を検証する検証部7を備え、前記設置者端末2は、前記起動コードを含めて設置情報を作成してその認証を前記認証機関3に要求し、前記認証機関3から証明書を受信すると共にこの証明書を前記位置情報発信装置に送信し、前記位置情報発信装置1は、受信した前記証明書の正当性を前記検証部7で検証し、正当であるとの検証結果に基いて位置情報を発信可能な状態に制御することを特徴とする。 Further, according to the embodiment of the present invention, the location information transmitting device 1 for transmitting the location information indicating the installed location, and the installation information including the location information of the location information transmitting device are created and authenticated to the certification authority 3 by communication. In the authentication system of the location information transmission device comprising the requesting installer terminal 2, the location information transmission device 1 generates an activation code in a non-activated state at each installation and the authentication result of the certification authority device 3 The installer terminal 2 creates installation information including the activation code, requests authentication from the certification authority 3, and receives a certificate from the certification authority 3. At the same time, the certificate is transmitted to the location information transmission device, and the location information transmission device 1 verifies the validity of the received certificate by the verification unit 7 and based on the verification result that it is valid. And controlling the location information to the originating ready Te.
 前記設置者端末2は、位置情報発信装置1の新規設置に際し、起動コード、設置座標からなる設置情報を作成して、通信により前記認証機関装置に認証を要求する。位置情報発信装置1の設置位置移動に際し、前記位置情報発信装置は非アクティベーション状態で新たな起動コードを生成し、前記設置者端末2は、設置者、新たな起動コード、修正後の設置座標からなる設置情報を作成して、通信により認証機関装置に認証を要求する。 When the location information transmission device 1 is newly installed, the installer terminal 2 creates installation information including an activation code and installation coordinates, and requests authentication from the certification authority device through communication. When the installation position of the location information transmission device 1 is moved, the location information transmission device generates a new activation code in a non-activated state, and the installer terminal 2 includes an installer, a new activation code, and corrected installation coordinates. Is created, and authentication is requested from the certification authority device by communication.
 前記位置情報発信装置1から発信される位置情報は、衛星測位信号と互換性を有し、位置情報発信装置1が設置される屋内の緯度、経度、階情報もしくは階情報と高度情報を含む。 The position information transmitted from the position information transmission device 1 is compatible with a satellite positioning signal, and includes indoor latitude, longitude, floor information or floor information and altitude information where the position information transmission device 1 is installed.
 前記認証機関3は設置情報の検証に基いて設置情報の署名と証明書を発行し、前記位置情報発信装置1は、前記検証部7で前記証明書と設置情報の署名を検証し、正当であるとの検証結果に基いて前記制御部6により位置情報を発信可能な状態に制御する。前記位置情報発信装置1はさらに、前記設置者端末2と通信を行うローカル通信部10と、位置情報を発信する位置情報発信部9と、位置情報発信装置1の設置異常を検出する異常検出部21を備え、前記検証部7は前記認証機関3が発行した証明書の正当性と設置情報の署名を検証し、正当であるとの検証結果に基いて前記制御部6は前記位置情報発信部9を発信可能な状態に制御する。前記異常検出部21が異常を検出したとき、前記制御部6は前記位置情報発信装置1を非アクティベーション状態として乱数で起動コードを生成して、前記ローカル通信部10から前記設置者端末2に送信し、前記設置者端末2は、起動コードを含めて設置情報を作成して前記認証機関3に認証を要求する。 The certification authority 3 issues a signature and a certificate of the installation information based on the verification of the installation information, and the location information transmitting device 1 verifies the certificate and the signature of the installation information by the verification unit 7 and is valid. Based on the verification result, the control unit 6 controls the position information to be transmitted. The location information transmission device 1 further includes a local communication unit 10 that communicates with the installer terminal 2, a location information transmission unit 9 that transmits location information, and an abnormality detection unit that detects an installation abnormality of the location information transmission device 1. 21, the verification unit 7 verifies the validity of the certificate issued by the certification authority 3 and the signature of the installation information, and the control unit 6 determines whether the verification unit 7 is valid. 9 is controlled so as to be able to make a call. When the abnormality detection unit 21 detects an abnormality, the control unit 6 generates an activation code with a random number with the position information transmission device 1 in an inactivated state, and the local communication unit 10 sends the activation code to the installer terminal 2. The installer terminal 2 creates installation information including an activation code and requests the certification authority 3 for authentication.
 1…位置情報発信装置、2…設置者端末、3…認証機関(認証機関装置)、4…インターネット、5…IMSE受信機(携帯端末)、6…制御部、7…検証部、8…メモリ、9…位置情報発信部、10…ローカル通信部、20…本体部、21…異常検出部、26…電池、27…センサ部。 DESCRIPTION OF SYMBOLS 1 ... Location information transmission device, 2 ... Installer terminal, 3 ... Certification body (certification organization device), 4 ... Internet, 5 ... IMSE receiver (portable terminal), 6 ... Control unit, 7 ... Verification unit, 8 ... Memory , 9 ... Position information transmission unit, 10 ... Local communication unit, 20 ... Main body unit, 21 ... Abnormality detection unit, 26 ... Battery, 27 ... Sensor unit.

Claims (15)

  1.  設置者端末によって設置情報を作成して通信により認証機関に認証を要求し、認証機関で認証された設置情報を設定することにより適正な位置情報を発信する位置情報発信装置において、
     位置情報発信装置の設置の度に新たな起動コードを生成する制御部と、前記認証機関の認証の正当性を検証する検証部と、前記設置者端末と通信を行うローカル通信部と、位置情報を発信する位置情報発信部と、位置情報発信装置の異常を検出する異常検出部を備え、
     前記検証部は前記認証機関が発行した証明書の正当性と設置情報の署名を検証し、正当であるとの検証結果に基いて前記制御部は前記位置情報発信部を発信可能な状態に制御することを特徴とする位置情報発信装置。
    In the location information transmission device that creates the installation information by the installer terminal, requests authentication to the certification authority by communication, and transmits the appropriate location information by setting the installation information authenticated by the certification authority.
    A control unit that generates a new activation code each time a location information transmission device is installed; a verification unit that verifies the authenticity of the certification authority; a local communication unit that communicates with the installer terminal; and location information A location information transmission unit that transmits the abnormality, and an abnormality detection unit that detects an abnormality of the location information transmission device,
    The verification unit verifies the validity of the certificate issued by the certification authority and the signature of the installation information, and the control unit controls the position information transmission unit to be ready based on the verification result that it is valid. A position information transmission device characterized by:
  2.  請求項1に記載の位置情報発信装置において、
     当該装置の設置の度に、前記制御部は乱数により新たな起動コードを生成することを特徴とする位置情報発信装置。
    In the position information transmission device according to claim 1,
    Each time the apparatus is installed, the control unit generates a new activation code using a random number.
  3.  請求項1に記載の位置情報発信装置において、
     前記異常検出部は、当該装置が設置場所から取り外されたことで異常を検出するセンサ部と、異常検出部内に給電する電池を備え、前記制御部は前記センサ部からの検出信号に基づいて当該装置を非アクティベーション状態として新たな起動コードを生成し、前記検証部は前記認証機関が発行した前記新たな起動コードを含む設置情報の再認証の正当性を検証することを特徴とする位置情報発信装置。
    In the position information transmission device according to claim 1,
    The abnormality detection unit includes a sensor unit that detects an abnormality when the device is removed from the installation location, and a battery that supplies power to the abnormality detection unit, and the control unit is configured based on a detection signal from the sensor unit. Position information characterized by generating a new activation code with the device deactivated, and the verification unit verifies the validity of re-authentication of the installation information including the new activation code issued by the certification authority Calling device.
  4.  請求項1に記載の位置情報発信装置において、
     前記ローカル通信部は、当該装置と前記設置者端末とで近距離通信により情報を授受することを特徴とする位置情報発信装置。
    In the position information transmission device according to claim 1,
    The local communication unit transmits and receives information by short-range communication between the apparatus and the installer terminal.
  5.  請求項1に記載の位置情報発信装置において、
     当該装置から発信される位置情報は、衛星測位信号と互換性を有し、当該装置が設置される屋内の緯度、経度、階情報もしくは階情報と高度情報を含むことを特徴とする位置情報発信装置。
    In the position information transmission device according to claim 1,
    Position information transmitted from the device is compatible with satellite positioning signals and includes indoor latitude, longitude, floor information or floor information and altitude information where the device is installed. apparatus.
  6.  請求項1に記載の位置情報発信装置において、
     前記センサ部は光センサ、接点、近接センサの少なくとも一つから構成され、位置情報発信装置の取り外しを検出することを特徴とする位置情報発信装置。
    In the position information transmission device according to claim 1,
    The position information transmitting device is characterized in that the sensor unit includes at least one of an optical sensor, a contact point, and a proximity sensor, and detects removal of the position information transmitting device.
  7.  設置された位置を示す位置情報を発信する位置情報発信装置と、前記位置情報発信装置の位置情報を含む設置情報を作成して通信により認証機関に認証を要求する設置者端末からなる位置情報発信装置の認証システムにおいて、
     前記位置情報発信装置は設置の度に、非アクティベーション状態で起動コードを生成する制御部と前記認証機関の認証結果の正当性を検証する検証部を備え、
     前記設置者端末は、前記起動コードを含めて設置情報を作成してその認証を前記認証機関に要求し、前記認証機関から証明書を受信すると共にこの証明書を前記位置情報発信装置に送信し、
     前記位置情報発信装置は、受信した前記証明書の正当性を前記検証部で検証し、正当であるとの検証結果に基いて位置情報を発信可能な状態に制御することを特徴とする位置情報発信装置の認証システム。
    Location information transmission device comprising a location information transmission device that transmits location information indicating the installed location, and an installer terminal that creates installation information including the location information of the location information transmission device and requests authentication from the certification authority through communication In the device authentication system,
    The location information transmission device includes a control unit that generates an activation code in a non-activated state every time it is installed, and a verification unit that verifies the validity of the authentication result of the certification authority,
    The installer terminal creates installation information including the activation code, requests authentication from the certification authority, receives a certificate from the certification authority, and transmits the certificate to the location information transmission device. ,
    The positional information transmission device verifies the validity of the received certificate by the verification unit, and controls the positional information to be able to transmit the positional information based on a verification result that is valid. An authentication system for a calling device.
  8.  請求項7に記載の位置情報発信装置の認証システムにおいて、
     前記位置情報発信装置は前記制御部により乱数で起動コードを生成することを特徴とする位置情報発信装置の認証システム。
    In the authentication system of the positional information transmission device according to claim 7,
    The location information transmission device generates an activation code with a random number by the control unit, and is an authentication system for a location information transmission device.
  9.  請求項7に記載の位置情報発信装置の認証システムにおいて、
     前記位置情報発信装置と前記設置者端末は近距離通信により情報を授受することを特徴とする位置情報発信装置の認証システム。
    In the authentication system of the positional information transmission device according to claim 7,
    An authentication system for a location information transmission device, wherein the location information transmission device and the installer terminal exchange information by short-range communication.
  10.  請求項7に記載の位置情報発信装置の認証システムにおいて、
     前記設置者端末は、位置情報発信装置の新規設置に際し、起動コード、設置座標からなる設置情報を作成して、通信により前記認証機関に認証を要求することを特徴とする位置情報発信装置の認証システム。
    In the authentication system of the positional information transmission device according to claim 7,
    The installer terminal creates an installation information including an activation code and installation coordinates when newly installing the location information transmission device, and requests authentication from the certification authority through communication. system.
  11.  請求項7に記載の位置情報発信装置の認証システムにおいて、
     位置情報発信装置の設置位置移動に際し、前記位置情報発信装置は非アクティベーション状態で新たな起動コードを生成し、前記設置者端末は、設置者、新たな起動コード、修正後の設置座標からなる設置情報を作成して、通信により認証機関に認証を要求することを特徴とする位置情報発信装置の認証システム。
    In the authentication system of the positional information transmission device according to claim 7,
    When moving the installation position of the position information transmission device, the position information transmission device generates a new activation code in a non-activated state, and the installer terminal includes the installer, a new activation code, and corrected installation coordinates. An authentication system for a position information transmission device, characterized in that installation information is created and authentication is requested from a certification authority by communication.
  12.  請求項7に記載の位置情報発信装置の認証システムにおいて、
     前記位置情報発信装置から発信される位置情報は、衛星測位信号と互換性を有し、位置情報発信装置が設置される屋内の緯度、経度、階情報もしくは階情報と高度情報を含むことを特徴とする位置情報発信装置の認証システム。
    In the authentication system of the positional information transmission device according to claim 7,
    The positional information transmitted from the positional information transmitter is compatible with a satellite positioning signal, and includes indoor latitude, longitude, floor information or floor information and altitude information in which the positional information transmitter is installed. An authentication system for a location information transmitter.
  13.  請求項7に記載の位置情報発信装置の認証システムにおいて、
     前記認証機関は設置情報の検証に基いて設置情報の署名と証明書を発行し、前記位置情報発信装置は、前記検証部で前記証明書と設置情報の署名を検証し、正当であるとの検証結果に基いて前記制御部により位置情報を発信可能な状態に制御することを特徴とする位置情報発信装置の認証システム。
    In the authentication system of the positional information transmission device according to claim 7,
    The certification body issues a signature and certificate of installation information based on verification of the installation information, and the location information transmission device verifies the certificate and signature of the installation information by the verification unit and is valid. An authentication system for a position information transmitting apparatus, wherein the control unit controls the position information to be transmitted based on a verification result.
  14.  請求項7に記載の位置情報発信装置の認証システムにおいて、
     前記位置情報発信装置はさらに、前記設置者端末と通信を行うローカル通信部と、位置情報を発信する位置情報発信部と、位置情報発信装置の設置異常を検出する異常検出部を備え、
     前記検証部は前記認証機関が発行した証明書の正当性と設置情報の署名を検証し、正当であるとの検証結果に基いて前記制御部は前記位置情報発信部を発信可能な状態に制御することを特徴とする位置情報発信装置の認証システム。
    In the authentication system of the positional information transmission device according to claim 7,
    The location information transmission device further includes a local communication unit that communicates with the installer terminal, a location information transmission unit that transmits location information, and an abnormality detection unit that detects an installation error of the location information transmission device,
    The verification unit verifies the validity of the certificate issued by the certification authority and the signature of the installation information, and the control unit controls the position information transmission unit to be ready based on the verification result that it is valid. An authentication system for a location information transmitting device.
  15.  請求項14に記載の位置情報発信装置の認証システムにおいて、
     前記異常検出部が異常を検出したとき、前記制御部は前記位置情報発信装置を非アクティベーション状態として乱数で起動コードを生成して、前記ローカル通信部から前記設置者端末に送信し、前記設置者端末は、起動コードを含めて設置情報を作成して前記認証機関に認証を要求することを特徴とする位置情報発信装置の認証システム。
    In the authentication system of the positional information transmitter according to claim 14,
    When the abnormality detection unit detects an abnormality, the control unit generates an activation code with a random number with the position information transmission device in an inactivated state, and transmits the activation code from the local communication unit to the installer terminal, and the installation An authentication system for a location information transmission device, wherein an operator terminal creates installation information including an activation code and requests authentication from the certification authority.
PCT/JP2014/051521 2013-04-12 2014-01-24 Position information transmission device and authentication system for position information transmission device WO2014167872A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2013-083694 2013-04-12
JP2013083694A JP6005576B2 (en) 2013-04-12 2013-04-12 POSITION INFORMATION TRANSMITTING DEVICE AND POSITION INFORMATION TRANSMITTING DEVICE AUTHENTICATION SYSTEM

Publications (1)

Publication Number Publication Date
WO2014167872A1 true WO2014167872A1 (en) 2014-10-16

Family

ID=51689290

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2014/051521 WO2014167872A1 (en) 2013-04-12 2014-01-24 Position information transmission device and authentication system for position information transmission device

Country Status (2)

Country Link
JP (1) JP6005576B2 (en)
WO (1) WO2014167872A1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2016085174A (en) * 2014-10-28 2016-05-19 株式会社日立産機システム Positioning signal transmitter for indoor positioning, and coordinate registration device of transmitter
WO2020137971A1 (en) * 2018-12-25 2020-07-02 イネーブラー株式会社 Location information providing system and location information providing method
JP2021514083A (en) * 2018-02-16 2021-06-03 インテグリティ セキュリティ サービシーズ エルエルシー Systems, methods, and equipment for provisioning and processing geolocation information for computerized equipment.

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP6427889B2 (en) * 2014-02-06 2018-11-28 株式会社デンソー Navigation message authentication system, receiving terminal, and authentication processing device
JP6622507B2 (en) * 2015-08-04 2019-12-18 株式会社日立産機システム Method for detecting installation abnormality of position information transmitting apparatus, position information transmitting apparatus and position information transmitting system using the same
CN112763098A (en) * 2021-01-20 2021-05-07 广东邦盛北斗技术服务有限公司 Forest zone fire prevention temperature monitoring equipment installation position confirmation system, server and positioning equipment

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2007206743A (en) * 2006-01-30 2007-08-16 Mitsubishi Electric Corp Access control system and access control method
JP2009037380A (en) * 2007-08-01 2009-02-19 Seiko Epson Corp Electronic equipment and method for starting electronic equipment
WO2009110471A1 (en) * 2008-03-07 2009-09-11 株式会社日立製作所 Position information system

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2007206743A (en) * 2006-01-30 2007-08-16 Mitsubishi Electric Corp Access control system and access control method
JP2009037380A (en) * 2007-08-01 2009-02-19 Seiko Epson Corp Electronic equipment and method for starting electronic equipment
WO2009110471A1 (en) * 2008-03-07 2009-09-11 株式会社日立製作所 Position information system

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2016085174A (en) * 2014-10-28 2016-05-19 株式会社日立産機システム Positioning signal transmitter for indoor positioning, and coordinate registration device of transmitter
JP2021514083A (en) * 2018-02-16 2021-06-03 インテグリティ セキュリティ サービシーズ エルエルシー Systems, methods, and equipment for provisioning and processing geolocation information for computerized equipment.
JP7254822B2 (en) 2018-02-16 2023-04-10 インテグリティ セキュリティ サービシーズ エルエルシー Systems, methods, and apparatus for provisioning and processing geolocation information for computerized devices
WO2020137971A1 (en) * 2018-12-25 2020-07-02 イネーブラー株式会社 Location information providing system and location information providing method
JP2020101507A (en) * 2018-12-25 2020-07-02 イネーブラー株式会社 Positional information provision system and positional information providing method

Also Published As

Publication number Publication date
JP2014207549A (en) 2014-10-30
JP6005576B2 (en) 2016-10-12

Similar Documents

Publication Publication Date Title
JP6005576B2 (en) POSITION INFORMATION TRANSMITTING DEVICE AND POSITION INFORMATION TRANSMITTING DEVICE AUTHENTICATION SYSTEM
US10171478B2 (en) Efficient and secure method and apparatus for firmware update
CN110326252B (en) Secure provisioning and management of devices
CN106537871B (en) System, method and apparatus for providing registration of devices in a network
EP3496054B1 (en) Secure seamless access control
US11373762B2 (en) Information communication device, authentication program for information communication device, and authentication method
EP3094040A1 (en) Communication device
CN102045340B (en) Secure data exchange method and system for electric vehicle and charging and exchanging power station
TWI673658B (en) Threat-monitoring systems and related methods, computer readable media and computing device
US11212105B2 (en) Systems and methods of providing and validating digital tickets
JP6344970B2 (en) POSITION INFORMATION VERIFICATION DEVICE, RELAY DEVICE, MOBILE DEVICE, POSITION INFORMATION VERIFICATION PROGRAM, RELAY PROGRAM, AND MOBILE PROGRAM
JP2006267024A (en) Position authentication system, position calculator, and program
WO2007094035A1 (en) Verifying server device
CN105823168A (en) Protection method for communication module and air conditioner
US20230232238A1 (en) Method for securing communication
CN107077666B (en) Method and apparatus for authorizing actions at a self-service system
KR20160146753A (en) Network node security using short range communication
KR20130116392A (en) Method for time synchronization of programmable logic controller system using mobile device with built-in gps functionality
WO2007094036A1 (en) Information processing system
US20170142104A1 (en) Communication system, communication method, and management device
Mansor et al. Let’s get mobile: Secure FOTA for automotive system
JP6238858B2 (en) Data processing system, verification apparatus, verification method, and program
US20220337430A1 (en) Control method, control program, and information processing device
US11828861B1 (en) Systems and methods for establishing a confidence level for device operational data
US20220269770A1 (en) Information processing system, server apparatus, information processing method, and computer program product

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 14782118

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 14782118

Country of ref document: EP

Kind code of ref document: A1