WO2021131194A1 - Système d'authentification, dispositif de commande et support non transitoire lisible par ordinateur - Google Patents

Système d'authentification, dispositif de commande et support non transitoire lisible par ordinateur Download PDF

Info

Publication number
WO2021131194A1
WO2021131194A1 PCT/JP2020/036263 JP2020036263W WO2021131194A1 WO 2021131194 A1 WO2021131194 A1 WO 2021131194A1 JP 2020036263 W JP2020036263 W JP 2020036263W WO 2021131194 A1 WO2021131194 A1 WO 2021131194A1
Authority
WO
WIPO (PCT)
Prior art keywords
information
user
biometric information
authentication
reliability
Prior art date
Application number
PCT/JP2020/036263
Other languages
English (en)
Japanese (ja)
Inventor
里仁 大脇
Original Assignee
株式会社東海理化電機製作所
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 株式会社東海理化電機製作所 filed Critical 株式会社東海理化電機製作所
Publication of WO2021131194A1 publication Critical patent/WO2021131194A1/fr

Links

Images

Classifications

    • AHUMAN NECESSITIES
    • A61MEDICAL OR VETERINARY SCIENCE; HYGIENE
    • A61BDIAGNOSIS; SURGERY; IDENTIFICATION
    • A61B5/00Measuring for diagnostic purposes; Identification of persons
    • A61B5/117Identification of persons
    • A61B5/1171Identification of persons based on the shapes or appearances of their bodies or parts thereof
    • A61B5/1172Identification of persons based on the shapes or appearances of their bodies or parts thereof using fingerprinting
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/32User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints

Definitions

  • an authentication system that authenticates a user of a controlled device using biometric information
  • a control device that constitutes a part of the authentication system
  • a computer program that can be executed by a processing unit of the control device are stored.
  • a biometric information acquisition device that acquires biometric information of the person to be authenticated
  • a storage device that associates the biometric information of the user of the controlled device with the reliability information corresponding to the reliability of the biometric information and stores it as authentication information.
  • a control device that determines whether the degree of matching between the biometric information of the person to be authenticated and the biometric information contained in the authentication information exceeds a threshold value, and authenticates the person to be authenticated as the user when the degree of matching exceeds the threshold value.
  • the control device sets the threshold value based on the reliability information associated with the biometric information of the user, which is used to determine the degree of agreement.
  • the reception department that accepts the biometric information of the person to be authenticated and It is determined whether the degree of coincidence between the biometric information of the user of the controlled device stored as a part of the authentication information in the storage device and the biometric information received by the reception unit exceeds the threshold value, and the degree of coincidence exceeds the threshold value.
  • a processing unit that authenticates the person to be authenticated as the user when the number exceeds Is equipped with The processing unit sets the threshold value based on the reliability information corresponding to the reliability of the biometric information associated with the biometric information of the user used for determining the degree of matching as a part of the authentication information. To do.
  • One aspect of achieving the above object is a non-transitory computer-readable medium in which a computer program that can be executed by a processing unit of a control device is stored.
  • the control device is supplied with the control device.
  • Accept the biometric information of the person to be authenticated It is made to judge whether the degree of agreement between the biometric information of the user of the controlled device stored as a part of the authentication information in the storage device and the biometric information received by the reception unit exceeds the threshold value.
  • the threshold value is set based on the reliability information corresponding to the reliability of the biometric information associated with the biometric information of the user used for determining the degree of matching as a part of the authentication information.
  • the degree of agreement exceeds the threshold value, the person to be authenticated is authenticated as the user.
  • the high and low thresholds correspond to the high and low security levels.
  • the higher the security level the lower the probability that authentication will be established based on the biometric information of another person (false acceptance rate), while the probability that authentication will not be established based on the biometric information of the person (false rejection rate) will also increase. To do. That is, there is a trade-off relationship between the security level and the ease with which authentication can be established.
  • the high or low reliability of biometric information tends to reflect whether the user prioritizes a high security level or the ease of establishing authentication when registering biometric information.
  • a user who prioritizes a high level of security tries to improve the reliability of biometric information by performing the biometric information detection work by the biometric information acquisition device more carefully.
  • users who prioritize the ease of establishing authentication tend to register fingerprint information with the attitude that the reliability of biometric information may be low.
  • the threshold value used for authentication is set based on the reliability of biometric information, so that the ease of establishment of authentication is prioritized even for the intention of the user who wants to prioritize a high security level. It can also meet the wishes of the user who wants to. Therefore, it is possible to improve the convenience as compared with the authentication system in which the threshold value used for authentication is constant.
  • the functional configuration of the authentication system according to one embodiment is illustrated.
  • An example is shown in which the authentication system of FIG. 1 is mounted on a vehicle.
  • the authentication information of a plurality of users used for authentication is illustrated.
  • FIG. 1 illustrates the functional configuration of the authentication system 10 according to the embodiment.
  • the authentication system 10 can be used, for example, to authenticate the user 30 of the vehicle 20 illustrated in FIG. 2 and allow the user 30 to use the vehicle 20.
  • the authentication system 10 includes a fingerprint sensor 11.
  • the authentication of the user 30 is performed through fingerprint authentication.
  • the fingerprint sensor 11 is a device configured to be able to acquire the fingerprint information FI of the user 30.
  • Fingerprint information FI is an example of biometric information.
  • the fingerprint sensor 11 is an example of a biometric information acquisition device.
  • Fingerprint information FI can be acquired based on the charge distribution on the surface of the finger, the distribution of the reflection intensity of light or ultrasonic waves from the surface of the finger, and the like. Since these techniques are well known, detailed description thereof will be omitted.
  • the fingerprint sensor 11 is configured to output the acquired fingerprint information FI.
  • the fingerprint information FI may be in the form of analog data or digital data.
  • the authentication system 10 includes a control device 12.
  • the control device 12 includes a reception unit 121, a processing unit 122, and an output unit 123.
  • the reception unit 121 is configured as an interface for receiving the fingerprint information FI.
  • the reception unit 121 includes an appropriate conversion circuit including an A / D converter.
  • the processing unit 122 processes the fingerprint information FI, which is a form of digital data.
  • the authentication system 10 includes a storage device 13.
  • the storage device 13 is a device configured to be able to store the fingerprint information FI.
  • the storage device 13 can be realized in the form of a semiconductor memory or a hard disk device.
  • the storage device 13 may be mounted on the vehicle 20 or may be provided as an external device capable of receiving the fingerprint information FI via the wireless communication network.
  • the processing unit 122 of the control device 12 is configured to be able to execute a process of storing the fingerprint information FI received by the reception unit 121 in the storage device 13.
  • Fingerprint authentication requires the user 30 to register the fingerprint of at least one finger.
  • the user 30 causes the fingerprint sensor 11 to acquire its own fingerprint information FI.
  • the fingerprint is registered.
  • Fingerprints have feature points called center points, deltas, endpoints, and bifurcation points.
  • the fingerprint information FI stored in the storage device 13 includes information such as the number, orientation, and distance from the center point of various feature points.
  • the information is extracted from the fingerprint information acquired by the fingerprint sensor 11 through an image processing technique.
  • the information may be extracted by the fingerprint sensor 11 or by the processing unit 122. Since the information extraction technology itself is well known, detailed description thereof will be omitted.
  • the processing unit 122 is configured to associate the fingerprint information FI with the reliability information RI and store it in the storage device 13.
  • the fingerprint information FI and the reliability information RI constitute the authentication information AI.
  • the reliability information RI can correspond to the number of feature points extracted from the fingerprint information acquired by the fingerprint sensor 11. Although there are individual differences in the number of fingerprint feature points, the greater the number of extracted feature points, the higher the reliability of fingerprint information and the higher the authentication accuracy.
  • the processing unit 122 is configured to be able to execute a process of reading or referencing the authentication information AI stored in the storage device 13.
  • the user 30 who desires authentication causes the fingerprint sensor 11 to acquire his / her fingerprint information FI.
  • the processing unit 122 collates the fingerprint information FI acquired by the fingerprint sensor 11 with the fingerprint information FI stored in the storage device 13.
  • the processing unit 122 establishes the authentication when the degree of coincidence between the two exceeds the threshold value. In other words, when the degree of coincidence between the two exceeds the threshold value, the processing unit 122 authenticates the person to be authenticated who has the fingerprint sensor 11 acquire his / her fingerprint information as the registered user 30.
  • the control device 12 includes an output unit 123.
  • the processing unit 122 allows the output of the control signal CS from the output unit 123.
  • the control signal CS is a signal that controls the operation of the controlled device 14.
  • the control signal CS may be a digital signal or an analog signal.
  • the output unit 123 includes an appropriate conversion circuit including a D / A converter.
  • the controlled device 14 is a device that can be operated when the authentication of the user 30 is established.
  • the locking device, engine, lamp, air conditioner, audiovisual equipment, seat device, etc. in the vehicle 20 can be the controlled device 14.
  • the fingerprint sensor 11 can be provided on the doorknob 21 of the vehicle 20 illustrated in FIG.
  • the above authentication is performed when the user 30 touches the doorknob 21 with the registered finger of the fingerprint information FI.
  • the control signal CS for unlocking the door of the vehicle 20 is output from the control device 12 to the locking device as the controlled device 14.
  • the user 30 can board the vehicle 20.
  • the fingerprint sensor 11 can be provided in the passenger compartment of the vehicle 20.
  • the above authentication is performed when the user 30 touches the fingerprint sensor 11 with a finger registered with the fingerprint information FI.
  • an appropriate control signal CS is output from the control device 12, so that the engine as the controlled device 14 can be started and various facilities in the vehicle interior can be operated.
  • the processing unit 122 of the control device 12 sets a threshold value used for determining the degree of coincidence between the fingerprint information FI acquired by the fingerprint sensor 11 and the fingerprint information FI stored in the storage device 13 during the authentication process. It is configured to be set based on the reliability information RI associated with.
  • the processing unit 122 is configured to set a higher threshold value for the fingerprint information FI associated with the reliability information RI corresponding to the higher reliability.
  • a higher threshold value is set for the fingerprint information FI from which more feature points are extracted.
  • the high and low thresholds correspond to the high and low security levels.
  • the higher the security level the lower the probability that authentication will be established based on the fingerprint of another person (false acceptance rate), while the probability that authentication will not be established based on the fingerprint of the person (false rejection rate) will also increase. That is, there is a trade-off relationship between the security level and the ease with which authentication can be established.
  • the number of feature points extracted from the fingerprint that are effective for authentication tends to reflect whether the user prioritizes a high security level or the ease of authentication establishment when registering the fingerprint information FI.
  • a user who prioritizes a high security level tries to extract more effective feature points by more carefully reading the fingerprint by the fingerprint sensor 11.
  • a relatively high threshold is set for the authentication of the fingerprint information registered by such a user.
  • users who prioritize the ease of establishing authentication tend to register fingerprint information with the attitude that the number of valid fingerprint feature points to be extracted may be small.
  • a relatively low threshold is set for authentication of fingerprint information registered by such a user. As the security level decreases, the false acceptance rate increases, but the ease with which authentication can be established increases.
  • the threshold value used for authentication is set based on the reliability of the fingerprint information, so that the user who wants to prioritize the high security level also wants to prioritize the ease of authentication. Can also meet the intentions of. Therefore, it is possible to improve the convenience as compared with the authentication system in which the threshold value used for authentication is constant.
  • the change of the threshold value used for the authentication based on the reliability information RI may be continuous or gradual. In the latter case, the threshold takes one of a plurality of discrete values.
  • the reliability information RI may be determined according to the place where the fingerprint information FI is acquired.
  • the fingerprint sensor 11 is not limited to the device mounted on the vehicle 20.
  • the fingerprint sensor 11 can be a device installed in a car dealer's store.
  • the fingerprint sensor 11 may be given identification information that identifies a pre-installed location.
  • the processing unit 122 of the control device 12 can set the reliability information RI based on the identification information and associate it with the fingerprint information FI stored in the storage device 13.
  • the fingerprint information FI when a user registers fingerprint information with a fingerprint sensor 11 installed in a car dealer's store, the work is performed with the assistance of the store staff, so that the user has higher reliability (the number of effective feature points). There is a high probability that the fingerprint information FI will be acquired. In other words, users who choose such a registration environment are likely to prioritize a high level of security. Therefore, the fingerprint information FI acquired by the fingerprint sensor 11 installed in the above environment is associated with the reliability information RI corresponding to higher reliability.
  • the fingerprint information FI when the user registers the fingerprint information with the fingerprint sensor 11 mounted on the vehicle 20, the work is often performed without the assistance of another person, and therefore has lower reliability (the number of effective feature points). There is a high probability that the fingerprint information FI will be acquired. In other words, it is highly probable that the user who selects such a registration environment gives priority to the ease of establishing authentication. Therefore, the fingerprint information FI acquired by the fingerprint sensor 11 installed in the above environment is associated with the reliability information RI corresponding to the lower reliability.
  • the reliability information RI can be different depending on the installation location even among a plurality of fingerprint sensors 11 mounted on the same vehicle 20. For example, in the fingerprint sensor 11 installed in the vehicle interior and the fingerprint sensor 11 installed outside the vehicle interior, it can be said that the fingerprint information FI acquired by the former has higher reliability from the viewpoint of the stability of the surrounding environment. Therefore, the reliability information RI corresponding to higher reliability than the fingerprint information FI acquired by the fingerprint sensor 11 installed outside the vehicle interior is applied to the fingerprint information FI acquired by the fingerprint sensor 11 installed inside the vehicle interior. Can be associated with.
  • the reliability information RI is determined by specifying the fingerprint sensor 11 that is the provider of the fingerprint information FI, for example, a process of counting the extracted feature points becomes unnecessary, and an increase in the load of the processing unit 122 can be suppressed. ..
  • the storage device 13 can store fingerprint information of a plurality of users 31 to 33 sharing the vehicle 20. Further, fingerprint information of a plurality of fingers can be stored for each of the plurality of users 31 to 33. Under such circumstances, the reliability may differ between the plurality of fingerprint information.
  • the processing unit 122 of the control device 12 may set the threshold value used for authentication to be constant based on the processing described later.
  • the processing unit 122 can store frequency information corresponding to the frequency at which certain fingerprint information is used for authentication in the storage device 13 in association with the fingerprint information. That is, the frequency information constitutes a part of the authentication information AI. In this case, the processing unit 122 can set a threshold value corresponding to the reliability of the fingerprint information associated with the frequency information corresponding to the highest frequency.
  • the fingerprint 2 of the user 32 is most frequently used for authentication.
  • the reliability information associated with the fingerprint 2 of the user 32 corresponds to low reliability.
  • the processing unit 122 sets the threshold value used for authentication to be relatively low.
  • the setting is made in which priority is given to the ease of establishment of authentication, which is presumed to be the intention of the user 32 who uses the vehicle 20 most frequently.
  • the processing unit 122 sets a relatively high threshold value used for authentication.
  • a setting is made in which a high security level presumed to be the intention of the user 31 who uses the vehicle 20 most frequently is prioritized.
  • the processing unit 122 sets a relatively high threshold value used for authentication. That is, a higher security level setting has higher priority.
  • the frequency of changing the threshold value used for authentication is reduced, and the load increase of the processing unit 122 can be suppressed, while the frequency of use is the highest among the plurality of users sharing the vehicle 20.
  • the decrease in convenience can be suppressed.
  • the frequency is expressed step by step.
  • the number of times each fingerprint information is used for authentication may be recorded, and the number of times may be used as frequency information.
  • the processing unit 122 having various functions described so far can be realized by a general-purpose microprocessor that operates in cooperation with a general-purpose memory.
  • general-purpose microprocessors include CPUs, MPUs, and GPUs.
  • a ROM or RAM can be exemplified as a general-purpose memory.
  • the ROM may store a computer program that executes the above-described processing.
  • a ROM is an example of a non-temporary computer-readable medium in which a computer program is stored.
  • the general-purpose microprocessor specifies at least a part of the program stored in the ROM, expands it on the RAM, and performs the above-described processing in cooperation with the RAM.
  • the above computer program may be pre-installed in the general-purpose memory, or may be downloaded from an external server via a communication network and installed in the general-purpose memory.
  • the external server is an example of a non-transitory computer-readable medium in which a computer program is stored.
  • the processing unit 122 may be realized by a dedicated integrated circuit capable of executing the above-mentioned computer program such as a microprocessor, an ASIC, or an FPGA.
  • the above computer program is pre-installed in the storage element included in the dedicated integrated circuit.
  • the storage element is an example of a non-temporary computer-readable medium in which a computer program is stored.
  • the processing unit 122 can also be realized by a combination of a general-purpose microprocessor and a dedicated integrated circuit.
  • the above embodiment is merely an example for facilitating the understanding of the present disclosure.
  • the configuration according to the above embodiment may be appropriately changed or improved without departing from the gist of the present disclosure.
  • the fingerprint information of the user 30 is acquired by the fingerprint sensor 11 as biometric information.
  • the iris pattern information of the user 30 and the vein pattern information in the palm of the user 30 may be acquired by the fingerprint sensor 11 as biometric information.
  • the control device 12 may be provided as an external device capable of communicating with the fingerprint sensor 11 and the controlled device 14 mounted on the vehicle 20 via a wireless communication network.
  • the authentication system 10 can be applied to mobile objects other than the vehicle 20.
  • mobiles include railroads, aircraft, ships and the like.
  • the moving body does not have to require a driver.
  • the authentication system 10 does not need to be applied to a moving body such as a vehicle 20.
  • the authentication system 10 can be used to control the operation of monitoring devices, locking devices, air conditioners, lighting devices, audiovisual equipment, and the like in houses and facilities.

Landscapes

  • Engineering & Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • Life Sciences & Earth Sciences (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • General Health & Medical Sciences (AREA)
  • Biomedical Technology (AREA)
  • Medical Informatics (AREA)
  • Molecular Biology (AREA)
  • Surgery (AREA)
  • Animal Behavior & Ethology (AREA)
  • Pathology (AREA)
  • Public Health (AREA)
  • Veterinary Medicine (AREA)
  • Heart & Thoracic Surgery (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Biophysics (AREA)
  • Collating Specific Patterns (AREA)
  • Measurement Of The Respiration, Hearing Ability, Form, And Blood Characteristics Of Living Organisms (AREA)

Abstract

Un capteur d'empreinte digitale (11) acquiert des informations d'empreinte digitale (FI) d'une personne qui est en cours d'authentification. Un dispositif de stockage (13) associe des informations d'empreinte digitale (FI) d'un utilisateur d'un dispositif commandé (14) à des informations de fiabilité (RI) correspondant à une fiabilité des informations d'empreinte digitale (FI) de l'utilisateur et stocke les informations associées en tant qu'informations d'authentification (AI). Un dispositif de commande (12) authentifie la personne en cours d'authentification en tant que l'utilisateur lorsqu'un degré de correspondance entre les informations d'empreinte digitale (FI) de la personne en cours d'authentification et les informations d'empreinte digitale (FI) incluses dans les informations d'authentification (AI) excède une valeur seuil. Le dispositif de commande (12) définit la valeur seuil sur la base des informations de fiabilité (RI) associées aux informations d'empreinte digitale (FI) de l'utilisateur soumises à la détermination du degré de correspondance.
PCT/JP2020/036263 2019-12-25 2020-09-25 Système d'authentification, dispositif de commande et support non transitoire lisible par ordinateur WO2021131194A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2019-234238 2019-12-25
JP2019234238A JP2021103419A (ja) 2019-12-25 2019-12-25 認証システム、制御装置、およびコンピュータプログラム

Publications (1)

Publication Number Publication Date
WO2021131194A1 true WO2021131194A1 (fr) 2021-07-01

Family

ID=76575312

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2020/036263 WO2021131194A1 (fr) 2019-12-25 2020-09-25 Système d'authentification, dispositif de commande et support non transitoire lisible par ordinateur

Country Status (2)

Country Link
JP (1) JP2021103419A (fr)
WO (1) WO2021131194A1 (fr)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2001312476A (ja) * 2000-04-28 2001-11-09 Casio Comput Co Ltd ネットワークにおける個人認証装置及び認証取引システム及び個人認証システム
JP2007213126A (ja) * 2006-02-07 2007-08-23 Konica Minolta Holdings Inc 個人照合装置及び個人照合方法
JP2012018432A (ja) * 2010-07-06 2012-01-26 Hitachi Omron Terminal Solutions Corp 生体認証装置および生体認証方法

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2001312476A (ja) * 2000-04-28 2001-11-09 Casio Comput Co Ltd ネットワークにおける個人認証装置及び認証取引システム及び個人認証システム
JP2007213126A (ja) * 2006-02-07 2007-08-23 Konica Minolta Holdings Inc 個人照合装置及び個人照合方法
JP2012018432A (ja) * 2010-07-06 2012-01-26 Hitachi Omron Terminal Solutions Corp 生体認証装置および生体認証方法

Also Published As

Publication number Publication date
JP2021103419A (ja) 2021-07-15

Similar Documents

Publication Publication Date Title
US10586414B2 (en) User identification system
US10384647B2 (en) Electronic key system
US9043048B2 (en) RF biometric ignition control system
CN109080580A (zh) 车辆点火系统和方法
JP2009286343A (ja) 遠隔車両制御システム、乗員認証装置および遠隔車両制御方法
JP2008223387A (ja) 個人認証装置、個人認証装置の認証方法
JP2017115439A (ja) 車載装置及び認証システム
US20200331431A1 (en) Engine switch device
CN113147674A (zh) 车辆的生物识别用户认证密钥和使用方法
WO2021131194A1 (fr) Système d'authentification, dispositif de commande et support non transitoire lisible par ordinateur
KR102093858B1 (ko) 바이오메트릭스 기반 차량 제어 장치 및 이를 이용한 차량 제어 방법
KR20080055170A (ko) 생체 인식을 이용한 차량의 도어 락 해제 장치 및 그 방법
JP2017144777A (ja) 認証システム及び認証装置
US11874908B2 (en) Biometric authentication system, control device, and non-transitory computer readable medium
JP7406423B2 (ja) 認証装置、コンピュータプログラム、および認証システム
US20230040644A1 (en) Control device, non-transitory computer-readable medium, and authentication system
JP2021147949A (ja) 認証システム、モバイル装置、処理装置、およびコンピュータプログラム
JP2021179893A (ja) 認証システム、制御装置、およびコンピュータプログラム
JP2021068085A (ja) 制御装置、コンピュータプログラム、および認証システム
WO2020049967A1 (fr) Dispositif, procédé et système d'authentification
JP2021149813A (ja) 認証装置、コンピュータプログラム、および認証システム
JP2021117670A (ja) 認証システム、制御装置、およびコンピュータプログラム
JP2021152321A (ja) 認証システム、モバイル装置、処理装置、およびコンピュータプログラム
CN115817405A (zh) 信息处理装置以及信息处理方法
KR20190056674A (ko) 외부 기기를 통해 차량의 서비스를 이용하기 위한 방법 및 서버

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 20905032

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 20905032

Country of ref document: EP

Kind code of ref document: A1