WO2016043108A1 - 接続システム及び接続方法 - Google Patents
接続システム及び接続方法 Download PDFInfo
- Publication number
- WO2016043108A1 WO2016043108A1 PCT/JP2015/075617 JP2015075617W WO2016043108A1 WO 2016043108 A1 WO2016043108 A1 WO 2016043108A1 JP 2015075617 W JP2015075617 W JP 2015075617W WO 2016043108 A1 WO2016043108 A1 WO 2016043108A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- passcode
- connection
- user
- terminal
- transmission
- Prior art date
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/14—Session management
- H04L67/141—Setup of application sessions
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M11/00—Telephonic communication systems specially adapted for combination with other electrical systems
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
- H04L63/0838—Network architectures or network communication protocols for network security for authentication of entities using passwords using one-time-passwords
Definitions
- the present invention relates to a connection system and a connection method for establishing a connection between terminals.
- the one-time password is generated by, for example, a random number (see, for example, Patent Document 1 below).
- a conventional system in which a plurality of terminals are connected to each other via a network to transmit and receive information.
- a terminal to be connected and establish a secure connection for example, (1) a user identifier (user-specific ID or address) for identifying a user assigned to a user who uses the terminal.
- a passcode which is a combination of numbers and characters that cannot be known by anyone other than the user who uses the terminal to be connected.
- connection partner The method of calling the connection partner using a user identifier, for example.
- a call can be made by always specifying a connection destination (communication destination) user. Therefore, it is possible to try to connect with the connection partner without having any other communication means (without communicating the user identifier each time).
- connection destination communication destination
- anyone can try to access the user using the user identifier. Therefore, it becomes a problem that it causes harassment communication and nuisance communication. For example, there are mischievous calls due to leaked phone numbers, forcible calls, fraudulent calls, and spam damage due to leaked email addresses.
- this identifier is often used as a login ID when using a communication service for connecting terminals. Since the login ID is disclosed, a malicious third party can perform spoofed login by specifying only the passcode. Therefore, compared with the case where the login ID is concealed, the safety may be greatly impaired.
- a common passcode is shared between users who connect in advance, and the passcode is input to the server that performs the connection from each user's terminal. Information is transmitted and received in a common communication area specific to the user shown.
- a one-time password generation technique described in the cited document 1 can be used.
- a method to share a common passcode in advance apart from the communication service that connects terminals between users who wish to connect to each other, It is conceivable to adopt a method. For example, when telephone communication is established between users and information is transmitted and received by characters using the above communication service, the method (2) may be adopted.
- a passcode having a relatively large number of digits that is difficult to be estimated and inferred by a third party is often set.
- the use of a passcode with a large number of digits often leads to input errors and troubles when transmitting the passcode between users or registering it with the server.
- the pass code is transmitted by voice via telephone communication as described above, the above problem is remarkable.
- simply reducing the number of digits of the passcode may cause duplication of passcodes and safety problems.
- the present invention has been made in order to solve the above-described problems, and can easily transmit and input a pass code used for establishing a connection between terminals to a user and can simply pass a pass. It is an object of the present invention to provide a connection system and a connection method that can prevent the occurrence of problems when the number of digits of a code is reduced.
- a connection system is a connection system that can communicate with a plurality of terminals and establish a connection between the terminals, Passcode generation means for generating and transmitting a first passcode to the first terminal, and passcode for storing the first passcode generated by the passcode generation means in association with the first terminal Stored by the storage means, the passcode receiving means for receiving the first transmission passcode from the second terminal, and the passcode storage means matching the first transmission passcode received by the passcode receiving means Pass code authentication means for determining whether or not there is a first pass code, and connection means for establishing a connection between the first terminal and the second terminal, the pass code generation means, When it is determined by the code authentication means that there is a matching first passcode, a second passcode following the first passcode is generated and transmitted to the second terminal, and the passcode is stored.
- the means stores the first passcode and the combination of the second passcode generated by the passcode generation means in association with the second terminal, and the passcode receiving means receives the second passcode from the first terminal.
- a passcode storage that receives the transmission passcode, and the passcode authentication means matches the combination of the first passcode generated by the passcode generation means and the second transmission passcode received by the passcode reception means It is determined whether or not there is a combination stored by the means, and when the connection means determines that there is a matching combination by the passcode authentication means, A first terminal which is the source of the second transmission path code, to establish a connection between the second terminal stored by associated with the combination of the matching passcode storage means.
- a pass code used for connection between terminals can be generated stepwise and alternately. Accordingly, the number of digits of the pass code transmitted from the connection system to the user at a time can be made relatively small. Thereby, according to the connection system which concerns on one Embodiment of this invention, transmission and input of a passcode can be made with respect to a user easily. In addition, since the passcode is generated a plurality of times, it is possible to prevent duplication of passcodes and safety problems caused by simply reducing the number of digits of the passcode.
- the passcode generating means determines that there is a matching first passcode by the passcode authenticating means, and if the matching first passcode is stored in the passcode storage means in duplicate, 2 passcodes may be generated. According to this configuration, it is possible to generate the second passcode only when there is an overlap. As a result, it is possible to reduce the burden of transmission and input of the user's passcode.
- the passcode generation unit determines that there is a matching combination by the passcode authentication unit, the passcode generation unit generates a new second passcode following the second passcode used for the determination,
- the code authenticating means makes a determination using the new second passcode generated by the passcode generating means, and the connecting means determines that there is a matching combination by the passcode authenticating means a predetermined number of times.
- the connection between the first terminal and the second terminal may be established. According to this configuration, it is possible to generate a passcode three or more times, and to improve the flexibility of passcode generation.
- the connection means may establish a connection between the first terminal and the second terminal when it is determined that there is a matching combination by the set number of times and the passcode authentication means. According to this configuration, it is necessary to input the pass code a set number of times. Therefore, for example, a brute force connection attack by a malicious third party can be avoided, and safety can be improved.
- the passcode generation means may determine the number of digits of the passcode to be generated according to the passcode stored by the passcode storage means. According to this configuration, the number of digits of the pass code can be made appropriate according to the degree of use of the connection system.
- the passcode generation means may generate a passcode according to the passcode stored by the passcode storage means. According to this configuration, for example, it is possible to prevent the generated passcode from being biased such that a large number of duplicates occur only in a specific passcode.
- the passcode generation means may generate the passcode according to the time when the passcode stored by the passcode storage means is generated. According to this configuration, it is possible to prevent the bias of the passcode while suppressing the calculation load.
- the passcode generation means accepts a request from the first terminal and generates a first passcode, and the passcode authentication means determines whether the transmission passcode source is the requesting terminal. It is also possible to make a match determination. According to this configuration, passcode matching can be determined efficiently.
- the connection means When it is determined by the passcode authentication means that there is a matching combination, the connection means is associated with the first terminal that is the transmission source of the second transmission passcode and the matching combination, and the passcode storage means When the confirmation passcode is transmitted to the second terminal stored in step S2 and information indicating that the connection is approved is received from the first terminal and the second terminal in response to the transmission, the first terminal A connection between the terminal and the second terminal may be established. According to this configuration, the safety of the connection can be further improved.
- connection system as described below, as well as an invention of a connection system as described above.
- This is substantially the same invention only in different categories, and has the same operations and effects.
- a connection method is a connection method that is an operation method of a connection system that can communicate with a plurality of terminals and establish a connection between the terminals,
- a passcode generation step for generating and transmitting a first passcode to the first terminal, and a passcode for storing the first passcode generated in the passcode generation step in association with the first terminal Stored in the passcode storing step, the passcode receiving step receiving the first transmission passcode from the second terminal, and the passcode receiving step matching the first transmission passcode received in the passcode receiving step
- a passcode authentication step for determining whether there is a first passcode; a connection step for establishing a connection between the first terminal and the second terminal; And when the passcode generation step determines that there is a matching first passcode in the passcode authentication step, the second passcode following the first passcode is given to the second terminal.
- the first passcode and the combination of the second passcode generated in the passcode generation step are stored in association with the second terminal, and in the passcode reception step Receiving the second transmission passcode from the first terminal, and in the passcode authentication step, the first passcode generated in the passcode generation step and the second transmission passcode received in the passcode reception step Whether there is a combination stored in the passcode storage step that matches the combination of In the connection step, when it is determined that there is a matching combination in the passcode authentication step, the first terminal that is the transmission source of the second transmission passcode is associated with the matching combination. A connection is established with the second terminal stored in the passcode storing step.
- the number of digits of the pass code transmitted from the connection system to the user at a time can be made relatively small.
- transmission and input of a passcode can be made easy for a user.
- the passcode is generated a plurality of times, it is possible to prevent duplication of passcodes and safety problems caused by simply reducing the number of digits of the passcode.
- connection server which is a connection system which concerns on embodiment of this invention. It is a figure which shows the outline
- connection system and a connection method according to the present invention will be described in detail with reference to the drawings.
- the same elements are denoted by the same reference numerals, and redundant description is omitted.
- FIG. 1 shows a connection server (server-side connection device) 10 which is a connection system according to the present embodiment.
- the connection server 10 constitutes a system that can communicate with a plurality of user-side terminals (user-side connection devices) 20 and establish a connection between the user-side terminals 20.
- the connection server 10 and the user-side terminal 20 can communicate with each other via a connection C1 via a communication network 30 including, for example, the Internet and a mobile communication network.
- the user side terminal 20 is a terminal used by the user.
- the user-side terminal 20 is a device that can perform communication, and specifically, for example, a mobile terminal such as a mobile communication terminal and a smartphone, or a PC (personal computer).
- the user-side terminal 20 can be connected to another user-side terminal 20 by the connection server 10 to perform communication (information transmission / reception).
- the connection corresponds to, for example, a Web conference, online chat, or the like.
- an application for using the function of the connection server 10 is installed in the user-side terminal 20, and the user-side terminal 20 is connected to the connection server 10 by the application and receives control from the connection server 10. .
- the connection between the user side terminals 20 is performed via the communication network 30, for example.
- a pass code one-time pass code issued from the connection server 10 is used as will be described later.
- connection between the user-side terminals 20 by the connection server 10 is such that, for example, the users of the user-side terminals 20 have a conversation with each other on the telephone side. This is performed when information for connecting the terminals 20 is not possessed.
- the above-described telephone call may be made by the user-side terminal 20 through a connection C2 via a telephone line as shown in FIG.
- the connection C ⁇ b> 2 may be by any means other than telephone communication as long as it is other than the connection between the user-side terminals 20 established by the connection server 10. Further, the connection C2 may be via the communication network 30.
- the connection between the user side terminals 20 by the connection server 10 is performed when information for connecting the user side terminals 20 is not possessed other than by telephone communication.
- the connection between the user side terminals 20 by the connection server 10 is established, for example, information such as characters, images, and electronic files that cannot be exchanged by telephone communication can be exchanged between the user side terminals 20.
- the connection is made when a user calls a television shopping operator and conveys his / her name and address in order to purchase a product.
- connection server 10 is realized by a server device configured by a computer including hardware such as a CPU (Central Processing Unit), a memory, and a communication module.
- the functions of the connection server 10 to be described later are exhibited by the operation of these components by a program or the like.
- the function of the connection server 10, the communication between the connection server 10 and the user side terminal 20, and the communication between the user side terminals 20 may be realized using a CTI (Computer-Telephony-Integration) function.
- CTI Computer-Telephony-Integration
- the user A terminal 20A requests (requests) a passcode issuance from the user terminal 20A to the connection server 10 by an operation on the user terminal 20A.
- the connection server 10 accepts the request and generates a passcode corresponding to the request.
- a passcode “123” is generated.
- the generated passcode is transmitted from the connection server 10 to the user terminal 20A.
- a passcode is stored in association with the user terminal 20A.
- the user side terminal 20A receives the passcode transmitted from the connection server 10.
- the received passcode is displayed and output, and the passcode is recognized by the user A. Subsequently, the user A is notified to the user B that the pass code “123” has been issued.
- This transmission is performed by telephone as described above, for example.
- the transmission may be performed by a method other than telephone. For example, direct communication between the users A and B may be performed.
- the pass code “123” is registered in the user terminal 20B by the operation of the user B on the user terminal 20B.
- the registered passcode is transmitted from the user terminal 20B to the connection server 10.
- the connection server 10 receives the passcode transmitted from the user side terminal 20B.
- the connection server 10 determines whether there is a passcode that has been issued and stored and that matches the received passcode.
- the pass code “123” is registered in association with the user terminal 20A.
- a passcode “123” is registered in association with the user terminal 20C different from the user terminals 20A and 20B. In this way, the pass code “123” is issued redundantly to a plurality of users (user A and user C).
- connection server 10 generates a new passcode following the passcode “123”.
- a passcode “456” is generated.
- the generated passcode is transmitted from the connection server 10 to the user terminal 20B.
- the pass code received from the user side terminal 20B and the generated pass code are stored in association with the user side terminal 20B. That is, the pass code “123 456” is stored in association with the user terminal 20B.
- the user terminal 20B receives the passcode transmitted from the connection server 10.
- the received passcode is displayed and output, and the passcode is recognized by the user B.
- the fact that the pass code “456” is additionally issued is transmitted from the user B to the user A. This transmission is performed in the same manner as the transmission from the user A to the user B.
- the pass code “456” is registered in the user side terminal 20A by the operation of the user A on the user side terminal 20A.
- the registered passcode is transmitted from the user terminal 20A to the connection server 10.
- the connection server 10 receives the passcode transmitted from the user side terminal 20A.
- the pass code “123 456” is registered in association with the user terminal 20B. Therefore, the connection server 10 determines that the pass code related to the user side terminal 20A matches the pass code related to the user side terminal 20B.
- connection server 10 when there is no duplication of the matched passcode, it is determined that the user side terminals 20A and 20B are terminals connected to each other. That is, the pass codes of the user side terminals 20A and 20B match, and the connection of those terminals is authenticated.
- the connection server 10 performs control for connecting the user terminals 20A and 20B to each other according to the determination. By this control, a connection between the user side terminals 20A and 20B is established. With this connection, for example, characters, images, electronic files, etc. can be exchanged between the user-side terminals 20A and 20B via chat.
- a pass code is issued to the user terminal 20A.
- the pass code issued at one time is three digits and can be easily transmitted between the users A and B.
- the above is an example of the connection between the user side terminals 20 by the connection server 10.
- the connection server 10 includes a passcode generation unit 11, a passcode storage unit 12, a passcode reception unit 13, a passcode authentication unit 14, and a connection unit 15. .
- the passcode generation unit 11 is a passcode generation unit that generates and transmits a passcode to the user terminal 20.
- the passcode generation unit 11 generates a passcode having a set number of digits.
- the passcode is, for example, a numeric string of one or more digits.
- the passcode may include characters other than numbers.
- the number of digits of the pass code issued at one time is arbitrarily set in advance by, for example, an administrator (system side administrator) of the connection server 10 or a user.
- the number of digits may be set for each user terminal 20.
- the generation of the passcode can be performed using a conventional one-time password generation technique such as generation using a random number.
- the passcode generation unit 11 generates and transmits a first passcode that is a preceding passcode (first passcode) to the first terminal that is one of the user-side terminals 20 to be connected. Specifically, the passcode generation unit 11 receives (receives) a passcode request that is a request for issuing a passcode from the first terminal, and receives the passcode request as a trigger. Generate code.
- the passcode request includes a user ID that is information for specifying the user-side terminal 20 that is the request source.
- the passcode generation unit 11 associates the generated first passcode with the user ID, and outputs them to the passcode storage unit 12. Transmission of the passcode to the user terminal 20 is performed via the communication network 30.
- the passcode generation unit 11 generates and transmits a second passcode following the first passcode to the second terminal that is the other user-side terminal 20 to be connected.
- the second passcode is generated based on the determination of the passcode authentication unit 14.
- the passcode generation unit 11 receives a second passcode generation request from the passcode authentication unit 14, and generates a second passcode when the request is received (adding the number of digits of the passcode) ).
- the request includes a user ID that is information for specifying the user-side terminal 20 that is the generation target (transmission destination) of the second passcode.
- the passcode generation unit 11 associates the generated second passcode with the user ID and outputs them to the passcode storage unit 12.
- the passcode generation unit 11 can repeatedly generate a second passcode (additional number of passcode digits (after the second time) is added).
- the pass code generation unit 11 When the pass code generation unit 11 repeatedly generates the second pass code, the pass code generation unit 11 generates the pass code alternately for the first terminal and the second terminal. That is, when a second passcode is newly generated after the second passcode is generated for the second terminal, the second passcode is generated for the first terminal. Thereafter, when a new second passcode is generated, it is generated for the second terminal.
- a session is established between the user-side terminal 20 and the connection server 10 and is performed via the session.
- the passcode storage unit 12 is a passcode storage unit that stores a passcode in association with the user terminal 20.
- the passcode storage unit 12 newly stores (registers) a passcode in association with the user ID associated with the passcode.
- the passcode (described later) is already associated with the user ID associated with the input second passcode. (Including a transmission passcode to be transmitted).
- the passcode storage unit 12 stores (registers) the input second passcode following the passcode that is already stored in association with the user ID. That is, the passcode storage unit 12 stores a combination of the preceding passcode (including the first passcode) and the newly generated second passcode.
- the passcode receiving unit 13 is a passcode receiving unit that receives a transmission passcode transmitted from the user terminal 20.
- the passcode receiving unit 13 receives a first transmission passcode corresponding to the first passcode from the second terminal.
- the passcode receiving unit 13 receives the first second transmission passcode corresponding to the first second passcode from the first terminal.
- the passcode receiving unit 13 sends the second transmission passcode corresponding to the second passcode after that to the first terminal and the second terminal according to the user-side terminal 20 that is the passcode generation target. Receive from either.
- the transmission passcode is received from the user side terminal 20 via the communication network 30.
- the passcode receiving unit 13 receives a user ID, which is information specifying the user terminal 20 that is the transmission source of the transmission passcode, together with the reception of the transmission passcode.
- the passcode receiving unit 13 outputs the received transmission passcode and user ID to the passcode storage unit 12.
- the passcode storage unit 12 stores (registers) the transmission passcode in association with the user ID associated with the transmission passcode.
- a transmission passcode is newly stored (registered). If there is a passcode that is already stored in association with the user ID, the input transmission passcode is stored (registered) following the already stored passcode.
- the passcode receiving unit 13 receives the transmission passcode and stores it in the passcode storage unit 12, it notifies the passcode authentication unit 14 of the user ID.
- the passcode authenticating unit 14 is a passcode authenticating unit that authenticates (verifies) the connection between the user side terminals 20 using the transmission passcode received by the passcode receiving unit 13.
- the passcode authentication unit 14 inputs the user ID (the user ID related to the user terminal 20 that is the transmission source of the received transmission passcode) from the passcode reception unit 13, the passcode storage unit 12 sets the user ID to the user ID.
- the passcode stored in association is read out.
- the passcode authentication unit 14 determines whether there is a passcode stored in the passcode storage unit 12 in association with a user ID that matches the read passcode and is different from the user ID.
- the transmission passcode is the first transmission passcode described above.
- the pass code read by the pass code authenticating unit 14 is only the first transmission pass code (without the preceding pass code). Accordingly, when the first transmission passcode is received, the passcode authentication unit 14 has the first passcode stored by the passcode storage unit 12 that matches the first transmission passcode. Judge whether or not.
- the transmission passcode is the second transmission passcode.
- the passcode read by the passcode authentication unit 14 is a combination of the preceding passcode and the second transmission passcode. Therefore, when the second transmission passcode is received, the passcode authentication unit 14 includes the passcode including the first passcode generated by the passcode generation unit 11 and the received second transmission path. It is determined whether there is a passcode (passcode combination) stored by the passcode storage unit 12 that matches the code combination.
- the passcode authentication unit 14 determines that the matching passcode is stored in the passcode storage unit 12, the connection is made (candidate) with the user terminal 20 that is the transmission passcode source. There is a user-side terminal 20.
- the passcode authentication unit 14 determines whether or not there is only one matched passcode, that is, whether the passcode matches only for two users, or matches the passcode for three or more users.
- the passcode authentication unit 14 determines that there is only one matched passcode (that is, a match of passcodes of only two users), the user side terminal indicated by the user ID associated with the passcode 20 is identified as the user-side terminal 20 connected to the user-side terminal 20 that is the transmission passcode transmission source.
- the passcode authentication unit 14 notifies the connection unit 15 of user IDs related to the user-side terminals 20.
- the passcode authentication unit 14 determines that the number of matched passcodes is not only one (the matched passcodes are stored in the passcode storage unit 12. That is, the passcodes of three or more users are matched). For example, the pass code generation unit 11 is requested to generate a second pass code for the user terminal 20 that is the transmission pass code source. The request includes the user ID related to the user terminal 20 that is the transmission source of the transmission passcode.
- the passcode authentication unit 14 stores the first passcode that matches the first transmission passcode in the passcode storage unit 12. If it is determined that the second pass code is generated, the pass code generation unit 11 is requested to generate a second pass code following the first pass code. If the received transmission passcode is the second transmission passcode, the passcode authentication unit 14 determines that the passcode (passcode combination) that matches the passcode including the second transmission passcode is the passcode. When it is determined that the data has been stored in the storage unit 12, the pass code generation unit 11 is requested to generate a new second pass code following the pass code.
- the passcode authentication unit 14 determines that the matching passcode is not stored in the passcode storage unit 12 (no user other than the user holds the same passcode), there is no matching passcode. As a result, the user side terminal 20 that is the transmission passcode sender is notified and the user is prompted to send the send passcode again.
- the connection processing related to the user-side terminal 20 Is reset to delete the passcode associated with the user ID associated with the user terminal 20 and stored in the passcode storage unit 12. The deleted passcode is not used in the subsequent processing. The connection process may be stopped and the passcode may be reset with a single mismatch.
- the above passcode mismatch only occurs if any of the users who want to connect has made a transmission error or input error.
- the pass codes of both users cannot match even if the pass code is repeatedly input. It is possible to avoid an infinite loop by stopping the connection process and resetting the passcode.
- the connection unit 15 is a connection unit that establishes a connection between the user-side terminals 20 specified by the user ID notified from the passcode authentication unit 14. Connection between the user-side terminals 20 is performed using a conventional technique for connection via a communication network 30 between terminals. This connection may be, for example, connected to a communication area for each user-side terminal 20 provided in the connection server 10 or may be connected without going through the connection server 10.
- the passcode stored in the passcode storage unit 12 in association with the user ID related to the user side terminal 20 is deleted.
- connection process when no information is received from the user terminal 20 for a preset time (passcode is not updated during the time), or the user terminal 20 and the connection server 10 When the session between the two is disconnected due to timeout or the like, the connection process of the user terminal 20 may be stopped (timeout). In this case, a reset for deleting the passcode associated with the user ID related to the user terminal 20 and stored by the passcode storage unit 12 is performed. When the connection process is stopped and the passcode is reset, an error may be displayed on the user terminal 20. If the authentication process is interrupted due to some trouble or intentional operation, it is possible to reduce the number of users who are forced to enter an additional passcode by releasing the combination of passcodes already used.
- the above is the function of the connection server 10 according to the present embodiment.
- connection method processing executed by the connection server 10 as an operation method of the connection server 10 according to the present embodiment will be described with reference to the sequence diagram of FIG.
- An example of screen display on the user terminal 20 will be described with reference to FIGS. 4 and 5 together.
- FIG. 4A shows an initial screen of an application for using the function of the connection server 10 in the user side terminal 20A and the user side terminal 20B.
- a passcode request which is a request for issuing a passcode, is made from the user side terminal 20A to the connection server 10 by an operation of the user A on the user side terminal 20A (S01).
- the operation is, for example, an operation of touching a “REQUEST 1st PASSCODE” button on the initial screen of the application illustrated in FIG.
- the passcode request includes a user ID that is information for specifying the user terminal 20A that is the request source.
- the passcode generation unit 11 receives and accepts the passcode request (S01, passcode generation step). Subsequently, the first passcode that is the first passcode is generated by the passcode generation unit 11 upon receipt of the passcode request (S02, passcode generation step). The generated first passcode is transmitted from the passcode generating unit 11 to the user terminal 20A. The generated first passcode and the user ID are associated with each other and output from the passcode generation unit 11 to the passcode storage unit 12. In the passcode storage unit 12, the input first passcode and the user ID are associated with each other and newly stored (registered) (S03, passcode storage step).
- the user side terminal 20A to which the first pass code has been transmitted receives the first pass code and outputs a display output or the like.
- the first pass code “123” transmitted from the connection server 10 is displayed on the user terminal 20A.
- the first passcode displayed by the user terminal 20A is referred to and recognized by the user A.
- the fact that the pass code “123” has been issued is transmitted from the user A to the user B (S04). This transmission is performed by telephone or the like as described above.
- the pass code transmitted from the user A is input (registered) to the user side terminal 20B by the operation of the user B on the user side terminal 20B (S05).
- the operation is, for example, an operation of inputting a pass code with a numeric key or the like on the initial screen of the application shown in FIG. 4A and touching the “ENTER” button on the initial screen.
- the passcode input to the user side terminal 20B is transmitted from the user side terminal 20B to the connection server 10.
- a user ID that is information for specifying the user-side terminal 20B that is the transmission source is also transmitted.
- the passcode receiving unit 13 receives the passcode and the user ID (S05, passcode receiving step).
- the passcode is the first transmission passcode.
- the received first transmission passcode and the user ID are associated with each other and output from the passcode receiving unit 13 to the passcode storage unit 12.
- the input first transmission passcode and the user ID are associated with each other and newly stored (registered) (S06, passcode receiving step).
- the passcode receiving unit 13 notifies the received user ID to the passcode authenticating unit 14. Subsequently, the passcode authentication unit 14 determines whether or not a passcode that matches the stored passcode is stored (S07, passcode authentication step). . That is, it is determined whether or not the passcode stored in association with the notified user ID is stored in association with two or more users including the user who transmitted the transmission passcode. .
- the first transmission path The user terminal 20B that is the code transmission source is notified that there is no user whose passcode matches, and is urged to transmit the transmission passcode again. For example, in response to the above notification, the user terminal 20B displays to notify the user as shown in FIG. 4C.
- connection processing is stopped and the passcode is reset for the user terminal 20B as error processing. If there is no matching passcode in the following processing, the same processing as described above is performed.
- connection step the connection between the user terminals 20 specified by the notified user ID is established by the connection unit 15 (S08, connection step).
- connection process the connection process
- information can be transmitted and received between the user side terminal 20A and the user side terminal 20B.
- the user side terminal 20A and the user side terminal 20B display that the connection is established as shown in FIG.
- the passcode stored in association with the user ID related to the user terminal 20 with which the connection has been established is deleted (S10). In this case, the process ends here.
- the pass code generation unit 11 generates a second pass code following the first pass code (S11, pass code generation step).
- the generated second passcode is transmitted from the passcode generating unit 11 to the user terminal 20B.
- the generated second passcode and the user ID are associated with each other and output from the passcode generation unit 11 to the passcode storage unit 12.
- the input second passcode is stored (registered) following the passcode (first transmission passcode) already stored in association with the user ID (S12). , Passcode storage step).
- a series of pass codes (“123 456”) stored in succession is used in the authentication processing by the pass code authentication unit 14.
- the user side terminal 20B to which the second pass code has been transmitted receives the second pass code and outputs a display output or the like.
- the user-side terminal 20 ⁇ / b> B displays the second pass code “456” transmitted from the connection server 10.
- a series of pass codes is displayed on the upper left.
- the passcode generated by the connection server 10 is written in parentheses (“(456)” in “123 (456)” in the example of FIG. 5A) and input at the user terminal 20.
- the received passcode transmission passcode
- the second passcode displayed by the user terminal 20B is referred to and recognized by the user B.
- the fact that the pass code “456” following the pass code “123” has been issued is transmitted from the user B to the user A (S13). This transmission is performed by telephone or the like as described above.
- the pass code transmitted from the user B is input (registered) to the user terminal 20A by the operation of the user A on the user terminal 20A (S14). This operation is performed in the same manner as the input on the user side terminal 20B.
- the passcode input to the user terminal 20A is transmitted from the user terminal 20A to the connection server 10. Along with the transmission of the passcode, a user ID that is information for specifying the user terminal 20A as the transmission source is also transmitted.
- the passcode and the user ID are received by the passcode receiving unit 13 (S14, passcode receiving step).
- the pass code is a second transmission pass code.
- the received second transmission passcode and the user ID are associated with each other and output from the passcode receiving unit 13 to the passcode storage unit 12.
- the input second transmission passcode is stored (registered) following the passcode (first passcode) already stored in association with the user ID (S15). , Passcode storage step).
- a series of pass codes (“123 456”) stored in succession is used in the authentication processing by the pass code authentication unit 14.
- the passcode receiving unit 13 notifies the received user ID to the passcode authenticating unit 14. Subsequently, the passcode authentication unit 14 determines whether or not a passcode that matches the stored passcode is stored (S16, passcode authentication step). . That is, it is determined whether or not the passcode stored in association with the notified user ID is stored in association with two or more users including the user who transmitted the transmission passcode. .
- connection process When the mutual connection between the user side terminal 20A and the user side terminal 20B is established by the connection process (S18), information can be transmitted and received between the user side terminal 20A and the user side terminal 20B.
- the passcode stored in association with the user ID related to the user terminal 20 with which the connection has been established is deleted (S19). In this case, the process ends here.
- FIG. 5B shows a screen display of the user terminal 20A when a new passcode (a further second passcode) “001” is issued to the user terminal 20A. This process is repeated until the connection is established or until the connection process is stopped and the passcode is reset as an error process.
- the above is the processing executed by the connection server 10 according to the present embodiment.
- a passcode used for connection between the user-side terminals 20 can be generated in stages. Further, it is possible to generate a pass code alternately for each of the two user terminals 20 to be connected. Accordingly, the number of digits of the pass code transmitted from the connection system to the user at a time can be made relatively small. In addition, even when there is an overlap of passcodes, appropriate connection between the user side terminals 20 can be performed by issuing a new passcode.
- the user can easily transmit and input the passcode.
- the passcode is generated a plurality of times, it is possible to prevent duplication of passcodes and safety problems caused by simply reducing the number of digits of the passcode.
- a third party intercepts a telephone or verbal exchange between users (in the above example, between user A and user B) who have the user-side terminal 20 to be connected. Even if the pass code is alternately issued from the connection server 10 to each user-side terminal 20, there is a security merit that it is difficult for the third party to make an interrupt access.
- a configuration that enables generation of a passcode three or more times for one connection may be adopted. According to this configuration, the flexibility of passcode generation can be improved.
- the passcode authentication unit 14 performs authentication (passcode matching determination) from there. Count the number of times.
- the passcode authenticating unit 14 stores the set number of times in advance, and if the counted number reaches the set number of times, the user ID related to the connected user terminal 20 is stored in the connecting unit 15. Notice.
- connection unit 15 may establish a connection between the user-side terminals 20 when the passcode authentication unit 14 determines that there is a matching passcode combination for the set number of times.
- the number of times described above may not be the number of times since the two connected user-side terminals 20 have determined.
- the connection may be established when the number of times from the first authentication (before the two connected user-side terminals 20 determine) reaches a set number.
- the passcode authentication unit 14 determines whether the passcodes are the same as in the above-described embodiment (S 31, passcode authentication step). Note that this process is the same as S07 and S16 in FIG. If only two users match as a result of the determination in S31 (when the two connected user-side terminals 20 are determined), passcode generation and passcode authentication are performed repeatedly (S32). This repeating unit corresponds to, for example, the processing of S11 to S16 in FIG.
- the pass code authentication unit 14 counts the number of repetitions. When the number of repetitions reaches the set number, the passcode authentication unit 14 notifies the connection unit 15 of the user ID related to the connected user terminal 20. Subsequently, the connection unit 15 establishes a connection between the user-side terminals 20 specified by the notified user ID (S33, connection step). When the mutual connection between the user side terminal 20A and the user side terminal 20B is established by the connection process (S34), information can be transmitted and received between the user side terminal 20A and the user side terminal 20B. Further, after the connection process by the connection unit 15, the passcode stored in association with the user ID related to the user terminal 20 with which the connection has been established is deleted (S35). In this case, the process ends here.
- connection processing is stopped and the passcode is reset for the user terminal 20 (S36).
- the number of digits of the passcode generated in the connection server 10 is set in advance by the administrator of the connection server 10 or the like. In this modification, the number of digits is determined by the connection server 10.
- the passcode generation unit 11 determines the number of digits of the passcode to be generated according to the passcode stored by the passcode storage unit 12. Specifically, the passcode generation unit 11 receives a notification from the passcode authentication unit 14 of how many other passcodes are duplicated (how many duplicate users existed). The passcode generation unit 11 determines the number of digits of the passcode to be generated next based on the rule stored in advance.
- the passcode generation unit 11 stores in advance information associating the number of duplicate users in the previous authentication as shown in FIG. 7A with the number of digits of the passcode to be generated next as the above rule. In the above information, the passcode generation unit 11 determines the number of digits corresponding to the number of duplicate users notified from the passcode authentication unit 14 as the number of digits of the passcode to be generated next. For example, as shown in FIG. 7B, when a 6-digit passcode of 123456 is already assigned to a certain user (user ID), there are 12 duplicate users (user IDs). To do. In this case, based on the information shown in FIG. 7A, the passcode generation unit 11 determines that the next passcode to be generated is two digits and generates a two-digit passcode for the user. To grant.
- the determination of the number of digits in the passcode may be based on the rate of duplicate users, not the number of duplicate users.
- the number of digits of the passcode can be made appropriate according to the degree of use of the connection server 10.
- the number of users is relatively small, it is possible to improve the ease of passcode transmission and input while maintaining security.
- the passcode generation unit 11 may generate a passcode according to the passcode stored by the passcode storage unit 12.
- the passcode generation unit 11 may generate a passcode according to the passcode stored by the passcode storage unit 12.
- the passcode generation unit 11 refers to the passcode stored in the passcode storage unit 12 and stores the number of passcodes stored (generated) for each passcode. Count. This count is performed for each pass code issuance group (a group of pass codes generated by receiving a transmission pass code in a series of pass codes). The passcode generation unit 11 generates a passcode by preferentially drawing from a passcode with a small number of counts (a small number of uses).
- passcode generation is performed.
- the unit 11 When the unit 11 generates the first set of passcodes (first passcode), the unit 11 performs lottery from these three sequences to generate (apply) passcodes.
- a passcode may be generated as follows.
- the passcode generation unit 11 counts the number of a series of passcodes generated and combined multiple times.
- the passcode generation unit 11 confirms the passcode that has already been given to the user who is going to generate a passcode (stored in association with the user ID by the passcode storage unit 12).
- a passcode is generated by preferentially drawing (giving) a passcode with a small number of duplicate users in a series of passcode combinations generated by a passcode (second passcode) issued to .
- a passcode of 123456 has already been assigned to the user to whom a new passcode is to be assigned, and then a 9-digit passcode set is assigned to the user by giving a 3-digit passcode. It is done.
- the pass code generation unit 11 stores the number of pass codes stored (generated) for each of the next three-digit pass codes when “123456” is assigned. Counting.
- the three 9-digit passcode pairs “123456001”, “1234566002”, and “123456003” have no other duplicate users, so “001”, “002”, A lottery is performed from “003” to generate (apply) a passcode.
- the method described using FIG. 8A as an example has a larger calculation amount for counting stored passcodes than the method described using FIG. 8B as an example. Less is enough. Specifically, it is only necessary to count the number of sequences of 10 cubes per set. On the other hand, if there is no number sequence with the counted number 0 and one or more number sequences must be issued as a passcode, duplication cannot be completely prevented.
- the amount of calculation of the number of occurrences of duplication is enormous compared to the method described using FIG. 8A as an example.
- the probability of preventing duplication increases.
- the passcode generation unit 11 may generate a passcode according to the time when the passcode stored by the passcode storage unit 12 is generated.
- the passcode generation unit 11 stores the time when the passcode stored by the passcode storage unit 12 is generated for each passcode (sequence). This storage is performed, for example, at the time of generation of a passcode, and is performed for each passcode issuance group (a set of transmission passcodes generated from a series of passcodes).
- the latest generation date and time which is the latest generation time (last generation time) is stored for each passcode.
- the passcode generation unit 11 performs lottery preferentially from a predetermined number of passcodes (sequences) in order of the latest generation date and time among the passcodes (sequences) stored for the issuance group corresponding to the generated passcode. Passcode is generated (given). About said predetermined number, arbitrary numbers can be preset. For example, as shown by the shaded area in FIG. 11, a password to be generated is selected from 10 passcodes (sequences) in which the latest generation date / time is chronological.
- the probability of preventing duplication is lower than the method described with reference to FIGS. 8A and 8B as an example.
- this method it is possible to suppress calculation load such as calculation of addition / subtraction of the number of passcodes used for each issue group and calculation that overlaps when the passcode of the next issue group is given.
- the entire processing of the connection server 10 can be speeded up. That is, according to this configuration, it is possible to prevent the bias of the pass code while suppressing the calculation load.
- the passcode authenticating unit 14 depends on whether or not the transmission passcode transmission source is the user-side terminal 20 that has made a first passcode generation request (has made a passcode request). It is good also as determining a match.
- both of those user side terminals 20 do not make the first passcode generation request. Therefore, between the user-side terminals 20 that have made the first passcode generation request (users that first receive the first passcode issuance), or between the users that have not made the first passcode generation request The user-side terminals 20 (users that have received the first passcode) are not connected to each other. This modification takes this into consideration.
- the passcode storage unit 12 stores the passcode, whether or not the user ID associated with the passcode is the user-side terminal 20 that has made the first passcode generation request. Are also memorized. That is, it manages which user group each user belongs to.
- the passcode authentication unit 14 When the passcode authentication unit 14 receives the transmission passcode and determines whether the passcode matches, the passcode authentication unit 14 targets only the passcode of the user group opposite to the transmission passcode transmission source (the user group to which the transmission passcode belongs). And it is sufficient. In addition, it is good also as prohibiting a connection, when a match is judged about the passcode with respect to all the users and it is a match of the users of the same user group.
- connection unit 15 determines that there is a matching passcode combination by the passcode authentication unit 14, the connection unit 15 relates to the user-side terminal related to the user ID stored in association with the matching passcode.
- a common pass code for confirmation (dedicated pass code for confirmation) is transmitted to each of 20.
- the connection unit 15 establishes a connection between the user side terminals 20 when receiving information indicating that the connection is approved from both of the user side terminals 20.
- the confirmation dedicated passcode may be stored in advance by the connection unit 15 or may be generated in the same manner as the passcode generation by the passcode generation unit 11.
- the passcode authentication unit 14 determines whether the passcode matches as in the above-described embodiment. Note that this process is the same as S07 and S16 in FIG. As a result of the determination in S31, when only two users match (when two connected user-side terminals 20 are determined), the following processing is performed.
- a confirmation-dedicated passcode is generated by the connection unit 15 and transmitted to the two user-side terminals 20 ⁇ / b> A and 20 ⁇ / b> B to be connected (S ⁇ b> 41, connection step).
- the user-side terminal 20A and the user-side terminal 20B to which the confirmation-dedicated passcode is transmitted receive the confirmation-dedicated passcode and perform display output or the like.
- the confirmation dedicated passcode “9999” transmitted from the connection server 10 is displayed.
- the confirmation-dedicated passcode “9999” transmitted from the connection server 10 is displayed.
- the confirmation-dedicated passcode displayed by the user side terminal 20A and the user side terminal 20B is referred to and recognized by the user A and the user B, respectively.
- the fact that the common confirmation pass code “9999” is received is transmitted between the user A and the user B (S42). This transmission is performed by telephone or the like as described above.
- an input to approve the connection is made by an operation on the user side terminal 20A of the user A who has confirmed that the common confirmation dedicated passcode has been received with the user B (S43).
- the operation is, for example, an operation of touching a “CONNECT TO KENJI” button on the display screen illustrated in FIG.
- the information indicating the connection approval input to the user side terminal 20A is transmitted from the user side terminal 20A to the connection server 10.
- the user side terminal 20B of the user B who has confirmed that the confirmation pass code common to the user A has been received is transmitted to the connection server 10 as in the case of the user side terminal 20A. (S44).
- the connection unit 15 receives the transmitted information indicating that the connection is approved (S43, S44, connection step).
- the connection unit 15 establishes a connection between the user side terminals 20 (S45, connection step).
- the connection process S46
- information can be transmitted and received between the user side terminal 20A and the user side terminal 20B.
- the passcode stored in association with the user ID related to the user terminal 20 with which the connection has been established is deleted (S47). In this case, the process ends here.
- connection safety can be further improved. Specifically, it is possible to reduce the risk of causing erroneous connection.
- the risk of erroneous connection is reduced to the reciprocal of the number multiplied by (number of characters used in passcode) times (number of digits in passcode).
- the connection becomes invalid due to a transmission error or an input error. There is a risk. This function can reduce the risk of final passcode authentication before connection.
- connection process is stopped and the passcode is reset when the passcodes do not match, but the connection process is stopped and the pass is voluntarily started from the user terminal 20 side.
- the code may be reset.
- the user-side terminal 20 that is in the process of connection can transmit information requesting the stop of the connection process and resetting the passcode to the connection server 10 by the user's operation on the user-side terminal 20.
- the connection server 10 stops the connection process and resets the passcode for the user-side terminal 20 related to the request.
- the passcode authentication unit 14 determines whether the passcode matches as in the above-described embodiment (S 51, passcode authentication step). Note that this process is the same as S07 and S16 in FIG. If there is no user who holds the same passcode other than the user as a result of the determination in S51, the connection process is stopped and the passcode is reset for the user terminal 20 related to passcode authentication (S52).
- connection server 10 notifies the user side terminal 20 to that effect, and an error is displayed on the user side terminal 20 (S53).
- the error display is referred to by the user A and recognizes that the authentication has not been performed correctly.
- the fact that the error display has been confirmed is transmitted to the other user (S54).
- information for requesting to stop the connection process and reset the passcode is transmitted to the connection server 10 by the other user's operation on the user side terminal 20 (S55).
- the connection server 10 receives the information and stops the connection process and resets the passcode for the partner user side terminal 20 (S56). The above is the process for this modification.
- connection server 10 can stop the connection process that cannot be substantially connected and reset the passcode, so that resources can be used efficiently.
- the user-side terminal 20 may convert the passcode transmitted from the connection server 10 into voice data or non-voice data and transmit it to the counterpart user-side terminal 20 through telephone communication, for example. Further, the user side terminal 20 may convert the voice data or the non-voice data received from the partner user side terminal 20 into a pass code and transmit the pass code to the connection server 10.
- Conventional voice recognition and voice synthesis techniques can be used for the conversion from voice data to passcode and the conversion from passcode to voice data. Also, any conventional technique can be used for conversion of non-voice data.
- a telephone line can be provided to a healthy person even from a person with hearing or speech disabilities. It is possible to call for connection work such as chat between information terminals and to realize mutual communication.
- the passcode is stored and managed for each user-side terminal 20 in the connection server 10.
- the passcode may be stored and managed for each user-side terminal 20 and each session established by the user-side terminal 20. Thereby, if the user side terminal 20 can establish a plurality of sessions with the connection server 10, a connection can be established with a plurality of other user side terminals 20 for each session.
Landscapes
- Engineering & Computer Science (AREA)
- Signal Processing (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Telephonic Communication Services (AREA)
- Mobile Radio Communication Systems (AREA)
- Communication Control (AREA)
- Information Transfer Between Computers (AREA)
Abstract
Description
上述した実施形態では、パスコード認証の結果、接続される2つのユーザー側端末20が判別したら(図3のS07の2ユーザーのみ一致、S16のS16の2ユーザーのみ一致の場合)、その時点で新たなパスコードは生成せずにユーザー側端末20間の接続を許可していた。本変形例では、接続される2つのユーザー側端末20が判別した後、ユーザー側端末20間の接続を許可する前に設定された回数、追加のパスコード(第2のパスコード)生成と認証を行う。
上述した実施形態では、接続サーバー10において生成されるパスコードの桁数は、予め接続サーバー10の管理者等によって設定されることとしていた。本変形例では、接続サーバー10によって桁数が決定される。
本変形例では、パスコード生成部11は、パスコード記憶部12によって記憶されたパスコードに応じて、パスコードを生成することとしてもよい。パスコードを生成する際に、既に生成済みのパスコードの組み合わせを確認し、重複率の低いパスコードを優先して生成することができる。
本変形例では、パスコード認証部14は、送信パスコードの送信元が第1のパスコードの生成リクエストを行った(パスコードリクエストを行った)ユーザー側端末20であるか否かに応じて一致の判断を行うこととしてもよい。本実施形態では、ユーザー側端末20間で接続を行う場合、それらのユーザー側端末20の両方が第1のパスコードの生成リクエストを行うことはない。従って、第1のパスコードの生成リクエストを行った同士のユーザー側端末20(最初に第1のパスコードの発行を受けるユーザー群)、あるいは第1のパスコードの生成リクエストを行っていない同士のユーザー側端末20(第1のパスコードを伝達されたユーザー群)は、互いに接続対象ではないこととなる。本変形例は、それを考慮したものである。
上述した実施形態では、パスコード認証の結果、接続される2つのユーザー側端末20が判別したら(図3のS07の2ユーザーのみ一致、S16のS16の2ユーザーのみ一致の場合)、ユーザー側端末20間の接続を許可していた。本変形例では、接続される2つのユーザー側端末20が判別した後、接続を行う前に、それらのユーザー側端末20に対して共通の確認専用パスコードを発行し、それらが共通の確認専用パスコードを受け取ったことを確認した上で接続を行う。
上述した実施形態では、パスコードの不一致が行われた場合等に接続処理の停止及びパスコードのリセットを行うこととされていたが、ユーザー側端末20側から自発的に接続処理の停止及びパスコードのリセットを行えるようにしてもよい。この場合、接続処理中のユーザー側端末20は、ユーザーのユーザー側端末20に対する操作によって、接続処理の停止及びパスコードのリセットを要求する情報を接続サーバー10に送信することができる。接続サーバー10では、当該要求を受信すると、当該要求に係るユーザー側端末20について接続処理の停止及びパスコードのリセットを行う。
ユーザー側端末20は、接続サーバー10から送信されたパスコードを音声データ又は非音声データに変換して、例えば、電話通信を通じて相手ユーザー側端末20に伝達することとしてもよい。また、ユーザー側端末20は、相手ユーザー側端末20から受け取った音声データ又は非音声データをパスコードに変換し、接続サーバー10に送信することとしてもよい。音声データからパスコードへの変換、パスコードから音声データへの変換は、従来の音声認識及び音声合成の技術を用いることができる。また、非音声データの変換にも、任意の従来の技術を用いることができる。
Claims (10)
- 複数の端末との間で通信を行うことができると共に当該端末間での接続を確立させる接続システムであって、
第1の端末に対して第1のパスコードを生成して送信するパスコード生成手段と、
前記パスコード生成手段によって生成された第1のパスコードを前記第1の端末に対応付けて記憶するパスコード記憶手段と、
第2の端末から第1の送信パスコードを受信するパスコード受信手段と、
前記パスコード受信手段によって受信された第1の送信パスコードと一致する、前記パスコード記憶手段によって記憶された第1のパスコードがあるか否かを判断するパスコード認証手段と、
前記第1の端末と前記第2の端末との間の接続を確立させる接続手段と、を備え、
前記パスコード生成手段は、前記パスコード認証手段によって一致する第1のパスコードがあると判断された場合に、前記第2の端末に対して当該第1のパスコードに続く第2のパスコードを生成して送信し、
前記パスコード記憶手段は、前記第1のパスコード及び前記パスコード生成手段によって生成された第2のパスコードの組み合わせを前記第2の端末に対応付けて記憶し、
前記パスコード受信手段は、前記第1の端末から第2の送信パスコードを受信し、
前記パスコード認証手段は、前記パスコード生成手段によって生成された第1のパスコード及び前記パスコード受信手段によって受信された第2の送信パスコードの組み合わせと一致する、前記パスコード記憶手段によって記憶された組み合わせがあるか否かを判断し、
前記接続手段は、前記パスコード認証手段によって一致する組み合わせがあると判断された場合に、前記第2の送信パスコードの送信元である第1の端末と、当該一致する組み合わせに対応付けられて前記パスコード記憶手段によって記憶された第2の端末との間の接続を確立させる、接続システム。 - 前記パスコード生成手段は、前記パスコード認証手段によって一致する第1のパスコードがあると判断され、かつ当該一致する第1のパスコードが前記パスコード記憶手段に重複して記憶されていた場合に、前記第2のパスコードを生成する請求項1に記載の接続システム。
- 前記パスコード生成手段は、前記パスコード認証手段によって一致する組み合わせがあると判断された場合に、当該判断に用いられた第2のパスコードに続く、新たな第2のパスコードを生成して、
前記パスコード認証手段は、前記パスコード生成手段によって生成された前記新たな第2のパスコードを用いた判断を行い、
前記接続手段は、所定回数、前記パスコード認証手段によって一致する組み合わせがあると判断された場合に、前記第1の端末と前記第2の端末との間の接続を確立させる、請求項1又は2に記載の接続システム。 - 前記接続手段は、設定された回数、前記パスコード認証手段によって一致する組み合わせがあると判断された場合に、前記第1の端末と前記第2の端末との間の接続を確立させる請求項3に記載の接続システム。
- 前記パスコード生成手段は、前記パスコード記憶手段によって記憶されたパスコードに応じて、生成するパスコードの桁数を決定する請求項1~4の何れか一項に記載の接続システム。
- 前記パスコード生成手段は、前記パスコード記憶手段によって記憶されたパスコードに応じて、パスコードを生成する請求項1~5の何れか一項に記載の接続システム。
- 前記パスコード生成手段は、前記パスコード記憶手段によって記憶されたパスコードが生成された時刻にも応じて、パスコードを生成する請求項6に記載の接続システム。
- 前記パスコード生成手段は、前記第1の端末からの要求を受け付けて第1のパスコードを生成し、
前記パスコード認証手段は、送信パスコードの送信元が前記要求を行った端末であるか否かに応じて一致の判断を行う、請求項1~7の何れか一項に記載の接続システム。 - 前記接続手段は、前記パスコード認証手段によって一致する組み合わせがあると判断された場合に、前記第2の送信パスコードの送信元である第1の端末及び当該一致する組み合わせに対応付けられて前記パスコード記憶手段によって記憶された第2の端末に確認用のパスコードを送信し、当該送信に応じて当該第1の端末及び当該第2の端末から接続を承認する旨の情報を受信したら、当該第1の端末と当該第2の端末との間の接続を確立させる請求項1~8の何れか一項に記載の接続システム。
- 複数の端末との間で通信を行うことができると共に当該端末間での接続を確立させる接続システムの動作方法である接続方法であって、
第1の端末に対して第1のパスコードを生成して送信するパスコード生成ステップと、
前記パスコード生成ステップにおいて生成された第1のパスコードを前記第1の端末に対応付けて記憶するパスコード記憶ステップと、
第2の端末から第1の送信パスコードを受信するパスコード受信ステップと、
前記パスコード受信ステップにおいて受信された第1の送信パスコードと一致する、前記パスコード記憶ステップにおいて記憶された第1のパスコードがあるか否かを判断するパスコード認証ステップと、
前記第1の端末と前記第2の端末との間の接続を確立させる接続ステップと、を備え、
前記パスコード生成ステップにおいて、前記パスコード認証ステップにおいて一致する第1のパスコードがあると判断された場合に、前記第2の端末に対して当該第1のパスコードに続く第2のパスコードを生成して送信し、
前記パスコード記憶ステップにおいて、前記第1のパスコード及び前記パスコード生成ステップにおいて生成された第2のパスコードの組み合わせを前記第2の端末に対応付けて記憶し、
前記パスコード受信ステップにおいて、前記第1の端末から第2の送信パスコードを受信し、
前記パスコード認証ステップにおいて、前記パスコード生成ステップにおいて生成された第1のパスコード及び前記パスコード受信ステップにおいて受信された第2の送信パスコードの組み合わせと一致する、前記パスコード記憶ステップにおいて記憶された組み合わせがあるか否かを判断し、
前記接続ステップにおいて、前記パスコード認証ステップにおいて一致する組み合わせがあると判断された場合に、前記第2の送信パスコードの送信元である第1の端末と、当該一致する組み合わせに対応付けられて前記パスコード記憶ステップにおいて記憶された第2の端末との間の接続を確立させる、接続方法。
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2016548852A JP6214781B2 (ja) | 2014-09-17 | 2015-09-09 | 接続システム及び接続方法 |
US15/512,525 US10243949B2 (en) | 2014-09-17 | 2015-09-09 | Connection system and connection method |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2014-189047 | 2014-09-17 | ||
JP2014189047 | 2014-09-17 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2016043108A1 true WO2016043108A1 (ja) | 2016-03-24 |
Family
ID=55533146
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/JP2015/075617 WO2016043108A1 (ja) | 2014-09-17 | 2015-09-09 | 接続システム及び接続方法 |
Country Status (3)
Country | Link |
---|---|
US (1) | US10243949B2 (ja) |
JP (1) | JP6214781B2 (ja) |
WO (1) | WO2016043108A1 (ja) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2020005060A (ja) * | 2018-06-26 | 2020-01-09 | ニューロネット株式会社 | 面談システム、およびプログラム |
Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2004080723A (ja) * | 2002-08-15 | 2004-03-11 | San Quest:Kk | 番号交換による携帯電話機の1対1マッチングシステム |
WO2009017181A1 (ja) * | 2007-07-27 | 2009-02-05 | Sony Corporation | 一時接続番号管理システム、端末、一時接続番号管理方法、および一時接続番号管理プログラム |
Family Cites Families (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5875394A (en) * | 1996-12-27 | 1999-02-23 | At & T Wireless Services Inc. | Method of mutual authentication for secure wireless service provision |
EP1233570A1 (en) * | 2001-02-16 | 2002-08-21 | TELEFONAKTIEBOLAGET L M ERICSSON (publ) | Method and system for establishing a wireless communications link |
US20040073795A1 (en) * | 2002-10-10 | 2004-04-15 | Jablon David P. | Systems and methods for password-based connection |
US20060083187A1 (en) * | 2004-10-18 | 2006-04-20 | Mobile (R&D) Ltd. | Pairing system and method for wirelessly connecting communication devices |
US7757274B2 (en) * | 2005-04-05 | 2010-07-13 | Mcafee, Inc. | Methods and systems for exchanging security information via peer-to-peer wireless networks |
JP4793751B2 (ja) * | 2005-11-15 | 2011-10-12 | 日本電気株式会社 | パスワード認証装置、方法、プログラム及び携帯電話装置 |
US20080072303A1 (en) * | 2006-09-14 | 2008-03-20 | Schlumberger Technology Corporation | Method and system for one time password based authentication and integrated remote access |
US9407619B2 (en) * | 2013-03-17 | 2016-08-02 | NXT-ID, Inc. | Un-password™: risk aware end-to-end multi-factor authentication via dynamic pairing |
CA2968051C (en) * | 2014-12-22 | 2020-07-14 | University Of South Florida | Systems and methods for authentication using multiple devices |
-
2015
- 2015-09-09 WO PCT/JP2015/075617 patent/WO2016043108A1/ja active Application Filing
- 2015-09-09 JP JP2016548852A patent/JP6214781B2/ja active Active
- 2015-09-09 US US15/512,525 patent/US10243949B2/en active Active
Patent Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2004080723A (ja) * | 2002-08-15 | 2004-03-11 | San Quest:Kk | 番号交換による携帯電話機の1対1マッチングシステム |
WO2009017181A1 (ja) * | 2007-07-27 | 2009-02-05 | Sony Corporation | 一時接続番号管理システム、端末、一時接続番号管理方法、および一時接続番号管理プログラム |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2020005060A (ja) * | 2018-06-26 | 2020-01-09 | ニューロネット株式会社 | 面談システム、およびプログラム |
Also Published As
Publication number | Publication date |
---|---|
JP6214781B2 (ja) | 2017-10-18 |
US10243949B2 (en) | 2019-03-26 |
US20180219850A1 (en) | 2018-08-02 |
JPWO2016043108A1 (ja) | 2017-04-27 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US20080005119A1 (en) | Remotely updating a user status on a presence server | |
US20100212000A1 (en) | System, method and program for user authentication, and recording medium on which the program is recorded | |
JP2016518662A (ja) | 認可認証の方法および装置 | |
US8422650B2 (en) | Authentication in communication systems | |
JP2006295673A (ja) | 通話システム、代理ダイヤルサーバ装置及びそれらに用いる代理ダイヤル方法並びにそのプログラム | |
TW201029423A (en) | Method and system for authentication | |
US10846658B2 (en) | Establishing a communication event | |
US20220067690A1 (en) | Peer-to-peer digital transaction detail error reduction | |
WO2019000885A1 (zh) | 一种身份验证方法及装置,电子设备 | |
US20070254637A1 (en) | Device, Method and Computer Program Product Readable Medium for Establishing a Communication Session | |
JP6214781B2 (ja) | 接続システム及び接続方法 | |
CN117336092A (zh) | 一种客户端登录方法、装置、电子设备和存储介质 | |
JP2016149636A (ja) | 認証装置、電話端末、認証方法および認証プログラム | |
WO2015151251A1 (ja) | ネットワークサービス提供装置、ネットワークサービス提供方法、及びプログラム | |
JP2006113911A (ja) | コンテンツ配信管理装置及びコンテンツ配信管理方法 | |
KR101531198B1 (ko) | 푸쉬 메시지를 이용하여 인증을 수행하는 호 처리 장치 및 방법 | |
JP2002229952A (ja) | ユーザ認証システムおよびユーザ認証方法 | |
CN104767754B (zh) | 为在线通信会话注册客户计算设备 | |
KR20030041942A (ko) | 인터넷 가입자 보안 시스템 및 그 방법 | |
US20180255059A1 (en) | System for authentication center | |
JP2016149652A (ja) | 呼制御サーバ、端末登録方法、端末登録プログラム、及び通信システム | |
WO2023079625A1 (ja) | 認証システム、認証方法、及び、プログラム | |
JP7305072B1 (ja) | 方法およびシステム | |
JP2005222100A (ja) | クライアントサーバシステム、サーバ装置及び通信制御方法 | |
WO2017134922A1 (ja) | サービス提供システム、認証装置、及びプログラム |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 15841543 Country of ref document: EP Kind code of ref document: A1 |
|
ENP | Entry into the national phase |
Ref document number: 2016548852 Country of ref document: JP Kind code of ref document: A |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
WWE | Wipo information: entry into national phase |
Ref document number: 15512525 Country of ref document: US |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 15841543 Country of ref document: EP Kind code of ref document: A1 |