WO2022190310A1 - 入場制御装置、入場制御システム、入場制御方法、及び非一時的なコンピュータ可読媒体 - Google Patents
入場制御装置、入場制御システム、入場制御方法、及び非一時的なコンピュータ可読媒体 Download PDFInfo
- Publication number
- WO2022190310A1 WO2022190310A1 PCT/JP2021/009744 JP2021009744W WO2022190310A1 WO 2022190310 A1 WO2022190310 A1 WO 2022190310A1 JP 2021009744 W JP2021009744 W JP 2021009744W WO 2022190310 A1 WO2022190310 A1 WO 2022190310A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- user
- authentication
- biometric
- information
- biometric authentication
- Prior art date
Links
- 238000000034 method Methods 0.000 title claims description 78
- 230000008569 process Effects 0.000 claims description 41
- 238000003384 imaging method Methods 0.000 description 23
- 238000012545 processing Methods 0.000 description 21
- 238000010586 diagram Methods 0.000 description 17
- 238000001514 detection method Methods 0.000 description 11
- 238000004891 communication Methods 0.000 description 9
- 238000000605 extraction Methods 0.000 description 9
- 238000012217 deletion Methods 0.000 description 6
- 230000037430 deletion Effects 0.000 description 6
- 239000000284 extract Substances 0.000 description 6
- 230000001815 facial effect Effects 0.000 description 5
- 230000006870 function Effects 0.000 description 5
- 230000010365 information processing Effects 0.000 description 5
- 238000004590 computer program Methods 0.000 description 4
- 238000005516 engineering process Methods 0.000 description 3
- 230000004044 response Effects 0.000 description 3
- 230000008859 change Effects 0.000 description 2
- 210000003462 vein Anatomy 0.000 description 2
- 208000035473 Communicable disease Diseases 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 238000012790 confirmation Methods 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 238000009434 installation Methods 0.000 description 1
- 238000007726 management method Methods 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 239000013307 optical fiber Substances 0.000 description 1
- 230000002265 prevention Effects 0.000 description 1
- 210000001525 retina Anatomy 0.000 description 1
- 239000004065 semiconductor Substances 0.000 description 1
- 239000007787 solid Substances 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C9/00—Individual registration on entry or exit
- G07C9/00174—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
- G07C9/00563—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys using personal physical data of the operator, e.g. finger prints, retinal images, voicepatterns
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C9/00—Individual registration on entry or exit
- G07C9/30—Individual registration on entry or exit not involving the use of a pass
- G07C9/32—Individual registration on entry or exit not involving the use of a pass in combination with an identity check
- G07C9/37—Individual registration on entry or exit not involving the use of a pass in combination with an identity check using biometric data, e.g. fingerprints, iris scans or voice recognition
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C9/00—Individual registration on entry or exit
- G07C9/30—Individual registration on entry or exit not involving the use of a pass
- G07C9/38—Individual registration on entry or exit not involving the use of a pass with central registration
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C2209/00—Indexing scheme relating to groups G07C9/00 - G07C9/38
- G07C2209/02—Access control comprising means for the enrolment of users
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C2209/00—Indexing scheme relating to groups G07C9/00 - G07C9/38
- G07C2209/04—Access control involving a hierarchy in access rights
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C2209/00—Indexing scheme relating to groups G07C9/00 - G07C9/38
- G07C2209/12—Comprising means for protecting or securing the privacy of biometric data, e.g. cancellable biometrics
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C2209/00—Indexing scheme relating to groups G07C9/00 - G07C9/38
- G07C2209/14—With a sequence of inputs of different identification information
Definitions
- the present disclosure relates to an admission control device, admission control system, admission control method, and non-transitory computer-readable medium.
- Patent Literature 1 discloses an electronic input system that allows only an authenticated person to perform operations and inputs for input.
- the system includes an iris reading unit for reading user's iris information, a display unit for displaying an information input screen, an information input unit for inputting information by the user using the information input screen, and input information and read iris information. and an input control for transmitting information to the electronic input management device.
- the system also includes a user information storage unit in which iris information of a predetermined user is registered, an iris authentication unit that performs iris authentication and determines the result based on the authentication result, and information that is input when the iris authentication result is successful. to an external output unit.
- the iris authentication section performs iris authentication using the iris information registered in the user information storage section and the iris information read by the iris reading section.
- the display unit displays the information input screen when the iris authentication result is successful.
- Patent Document 1 displays an input screen for, for example, voting in an election only for users who have successfully authenticated themselves, and accepts user input. Since the input screen is not displayed for a user who has failed in personal authentication, it is possible to prevent unauthorized voting by a user other than the person himself/herself.
- Patent Document 2 discloses an authentication system that performs authentication by setting multiple authentication stages.
- the authentication system includes a first stage authentication device, a second stage authentication device, and a third stage authentication device.
- the first-step authentication device performs authentication by comparing the first biometric information acquired from the user with the first registration information, and transmits the authenticated first biometric information to the second-step authentication device. do.
- the second-stage authentication device performs authentication by comparing the second biometric information acquired from the user with the second registration information and the first biometric information, and performs authentication using the first biometric information and/or the authentication. and the received second biometric information to the third stage authentication device.
- the third stage authentication device performs authentication by comparing the third biometric information acquired from the user with the third registration information, the first biometric information and/or the second biometric information.
- the system disclosed in Patent Document 2 multiplexes the biometric information registered in each multistage biometric authentication device and the biometric information acquired within a certain period of time when there is little fluctuation in the authentication range. can be used effectively. Therefore, it is possible to prevent the acceptance of others and to enhance the security.
- the system since the system performs authentication using biometric information authenticated in the previous stage and biometric information acquired within a certain period of time, it prevents refusal to accept the person, improves authentication accuracy, and eliminates the hassle of user authentication. can be prevented.
- biometric authentication is used to permit entry to an entrance or residence in an apartment building or other housing complex.
- residents of the condominium can use biometric authentication in the condominium by registering their own biometric information such as face images and iris images in a predetermined server when moving into the condominium.
- a resident performs face authentication in front of the entrance, and can enter the condominium if the face authentication is successful.
- the resident performs authentication by face authentication and iris authentication, and by succeeding in both, can enter these areas. By doing so, it is possible to perform personal authentication more strictly when entering a residence or the like, which requires a higher security level than when entering an entrance.
- residents may use services such as housekeepers and babysitters.
- a housekeeper or the like enters the condominium and performs duties such as housekeeping in the contractor's residence.
- the entrance or the door of the residence can be unlocked through an intercom or the like, but it is often desired that such a service be provided while the resident is away.
- an object of the present disclosure is to provide an entrance control device, an entrance control system, an entrance control method, and a non-temporary entrance control method that can appropriately manage the entrance of a user permitted to enter a predetermined area.
- the object is to provide a computer-readable medium.
- the admission control device is a first biometric authentication control means for acquiring first biometric information from a predetermined user who is about to enter a facility having a plurality of areas where entry is restricted in each of a plurality of locking systems, and controlling the first biometric authentication; , attribute information acquisition means for acquiring attribute information of the user when the first biometric authentication is successful; When the attribute of the user is that of a regular user who has been previously permitted to enter a predetermined area of the facility by a user of the facility, the second biometric information acquired from the user is stored in association with the user.
- registration means for registering in the device;
- biometric information including the second biometric information is acquired from the user, and second biometric authentication using the acquired biometric information is controlled.
- a second biometric control means for an unlocking control means for instructing unlocking to the locking system installed at the entrance of the predetermined area when the second biometric authentication is successful.
- the admission control system is a plurality of locking systems installed at the entrances of each of the plurality of areas to restrict entry; an admission control device; with The admission control device a first biometric authentication control means for acquiring first biometric information from a predetermined user who is about to enter the facility having the plurality of areas and controlling the first biometric authentication; attribute information acquisition means for acquiring attribute information of the user when the first biometric authentication is successful; When the attribute of the user is that of a regular user who has been previously permitted to enter a predetermined area of the facility by a user of the facility, the second biometric information acquired from the user is stored in association with the user.
- registration means for registering in the device;
- biometric information including the second biometric information is acquired from the user, and second biometric authentication using the acquired biometric information is controlled.
- a second biometric control means for an unlocking control means for instructing unlocking to the locking system installed at the entrance of the predetermined area when the second biometric authentication is successful.
- the admission control method is the computer Obtaining first biometric information from a predetermined user who is about to enter a facility having a plurality of areas where entry is restricted in each of a plurality of locking systems, and controlling a first biometric authentication; If the first biometric authentication is successful, obtain attribute information of the user, When the attribute of the user is that of a regular user who has been previously permitted to enter a predetermined area of the facility by a user of the facility, the second biometric information acquired from the user is stored in association with the user. register on the device and When the user enters the predetermined area to which entry is permitted in advance, biometric information including the second biometric information is acquired from the user, and second biometric authentication using the acquired biometric information is controlled. death, If the second biometric authentication is successful, the locking system installed at the entrance of the predetermined area is instructed to unlock.
- a non-transitory computer-readable medium storing an admission control program is a first biometric authentication control process of acquiring first biometric information from a predetermined user who is about to enter a facility having a plurality of areas where entry is restricted in each of a plurality of locking systems, and controlling the first biometric authentication; , an attribute information acquisition process for acquiring attribute information of the user when the first biometric authentication is successful;
- the attribute of the user is that of a regular user who has been previously permitted to enter a predetermined area of the facility by a user of the facility, the second biometric information acquired from the user is stored in association with the user.
- a registration process for registering in the device When the user enters the predetermined area to which entry is permitted in advance, biometric information including the second biometric information is acquired from the user, and second biometric authentication using the acquired biometric information is controlled.
- the admission control device, admission control system, admission control method, and non-temporary computer-readable medium according to the present disclosure make it possible to appropriately manage the admission of users permitted to enter a predetermined area.
- FIG. 1 is a block diagram showing the configuration of an admission control device according to a first embodiment
- FIG. 4 is a flowchart showing processing of the admission control device according to the first embodiment
- FIG. 11 is a block diagram showing the configuration of an entrance control system according to a second embodiment
- FIG. 10 is a diagram showing an overview of the flow of registration of a visitor's iris image according to the second embodiment
- 2 is a block diagram showing the configuration of an authentication device according to a second embodiment
- FIG. 9 is a flowchart showing the flow of biometric information registration processing according to the second embodiment
- 9 is a flowchart showing the flow of biometric authentication processing according to the second embodiment
- FIG. 9 is a block diagram showing the configuration of an authentication terminal (locking system) according to the second embodiment
- FIG. 9 is a block diagram showing the configuration of an authentication terminal (locking system) according to the second embodiment
- FIG. 11 is a block diagram showing the configuration of an admission control device according to a second embodiment;
- FIG. FIG. 11 is a diagram showing area identification information according to the second embodiment;
- FIG. 10 is a diagram showing an input screen according to the second embodiment;
- FIG. 9 is a flowchart showing processing performed by the admission control device according to the second embodiment;
- 9 is a flowchart showing processing performed by the admission control device according to the second embodiment; It is a figure which shows the hardware structural examples, such as an entrance control apparatus concerning embodiment.
- FIG. 1 is a block diagram showing the configuration of an admission control device 10 according to this embodiment.
- the entrance control device 10 includes a first biometric authentication control section 11 , an attribute information acquisition section 12 , a registration section 13 , a second biometric authentication control section 14 and an unlocking control section 15 .
- a first biometric authentication control unit 11 acquires first biometric information from a predetermined user who is about to enter a facility having a plurality of areas where entry is restricted in each of a plurality of locking systems, and performs a first biometric authentication. Control.
- the attribute information acquisition unit 12 acquires the user's attribute information when the user succeeds in the first biometric authentication. If the attribute of the user acquired by the attribute information acquisition unit 12 is that of an authorized user who has been previously permitted to enter a predetermined area of the facility by the user of the facility, the registration unit 13 registers the second biometric acquired from the user. Information is associated with a user and registered in a storage device.
- the second biometric authentication control unit 14 acquires biometric information including the second biometric information from the user when the user enters a predetermined area that is permitted to enter in advance, and uses the acquired biometric information to obtain the biometric information. 2 Control biometric authentication.
- the unlock control unit 15 instructs the locking system installed at the entrance of the predetermined area to unlock.
- FIG. 2 is a flowchart showing the processing of the admission control device 10.
- the first biometric authentication control unit 11 acquires first biometric information from a predetermined user and controls the first biometric authentication (S11).
- the attribute information acquisition unit 12 determines whether or not the user has succeeded in the first biometric authentication (S12). When the user succeeds in the first biometric authentication (Yes in S12), the attribute information acquisition unit 12 acquires the user's attribute information (S13).
- the registration unit 13 determines whether or not the user attribute acquired in the process of S13 is an authorized user who has been previously permitted to enter the predetermined area of the facility by the user of the facility (S14). If the attribute of the user is that of an authorized user (Yes in S14), the second biometric information acquired from the user is registered in the storage device in association with the user (S15).
- the second biometric authentication control unit 14 acquires biometric information including the second biometric information from the user when the user enters a predetermined area that is permitted to enter in advance (S16). The second biometric authentication control unit 14 controls the second biometric authentication using the acquired biometric information (S17).
- the unlock control unit 15 determines whether or not the user has succeeded in the second biometric authentication (S18). If the user succeeds in the second biometric authentication (Yes in S18), the unlock control unit 15 instructs the locking system installed at the entrance of the predetermined area to unlock (S19).
- the first biometric authentication control unit 11 acquires the first biometric information of the user, and controls the first biometric authentication using the acquired first biometric information. do.
- the attribute information acquisition unit 12 acquires the user's attribute information. If the acquired attribute information is that of the authorized user, the registration unit 13 registers the second biometric information acquired from the user in the storage device in association with the user.
- the second biometric authentication control unit 14 acquires biometric information including the second biometric information, and controls the second biometric authentication using the acquired biometric information.
- the unlock control unit 15 instructs the locking system installed at the entrance of the predetermined area to unlock.
- the entrance control device 10 confirms that the user who has successfully passed the first biometric authentication is an authorized user who has been previously permitted to enter the predetermined area, and then issues the second biometric authentication to the user.
- a biometric authentication can be performed and, depending on its success, admission to the area can be granted. Therefore, according to the entrance control device 10 according to the present embodiment, it is possible to appropriately manage the entrance of users permitted to enter the predetermined area.
- the entrance control device 10 is provided with a processor, memory and storage device (not shown). Further, the storage device stores a computer program in which the processing of the admission control method according to the present embodiment is implemented. Then, the processor loads the computer program from the storage device into the memory and executes the computer program. Thereby, the processor implements the functions of the first biometric authentication control unit 11 , the attribute information acquisition unit 12 , the registration unit 13 , the second biometric authentication control unit 14 , and the unlocking control unit 15 .
- the first biometric authentication control unit 11, the attribute information acquisition unit 12, the registration unit 13, the second biometric authentication control unit 14, and the unlocking control unit 15 may each be realized by dedicated hardware.
- part or all of each component of each device may be realized by general-purpose or dedicated circuitry, processors, etc., or combinations thereof. These may be composed of a single chip, or may be composed of multiple chips connected via a bus. A part or all of each component of each device may be implemented by a combination of the above-described circuits and the like and programs.
- a processor a CPU (Central Processing Unit), a GPU (Graphics Processing Unit), an FPGA (field-programmable gate array), a quantum processor (quantum computer control chip), or the like can be used.
- each component of the admission control device 10 when a part or all of each component of the admission control device 10 is realized by a plurality of information processing devices, circuits, etc., the plurality of information processing devices, circuits, etc. may be centrally arranged, They may be distributed.
- the information processing device, circuits, and the like may be implemented as a form in which each is connected via a communication network, such as a client-server system, a cloud computing system, or the like.
- the functions of the admission control device 10 may be provided in a SaaS (Software as a Service) format.
- FIG. 3 is a block diagram showing the configuration of the entrance control system 1000 according to this embodiment.
- the entry control system 1000 can be applied in a facility with multiple areas with restricted entry at each of multiple locking systems.
- the facility will be explained assuming that it is a housing complex 500 such as a condominium or an apartment.
- the entrance control system 1000 is an information system for controlling entrance to each area existing in the housing complex 500 .
- the entrance control system 1000 may be applied not only to housing complexes but also to offices and the like.
- the housing complex 500 has an entrance 501 and a residential area 510.
- the residential area 510 there are residences 511, 512, and 513.
- the entrance 501, residential area 510, and residential areas 511 to 513 are hereinafter referred to as "regions.”
- the area may include shared facilities. Shared facilities may include, for example, not only fitness studios and theater rooms that residents can use, but also kids' rooms and study rooms that babysitters, tutors, and the like use to provide services.
- the admission control system 1000 includes authentication terminals 400-1 to 400-5, gate devices 600-1 to 600-5, a manager terminal 300, an imaging device 350, an admission control device 200, and an authentication device 100.
- Authentication terminals 400-1 to 400-5, administrator terminal 300, admission control device 200, and authentication device 100 are connected via network N, respectively.
- the network N is a wired or wireless communication line.
- authentication terminals 400-1 to 400-5 and corresponding gate devices 600-1 to 600-5 are installed.
- an authentication terminal 400-1 and a gate device 600-1 are installed.
- Authentication terminal 400-1 and gate device 600-1 are connected.
- biometric information acquired from a user is assumed to be facial feature information and iris feature information.
- biometric authentication and biometric information can be applied to other techniques using captured images.
- biometric information may use data (feature amounts) calculated from physical features unique to an individual, such as fingerprints, voiceprints, veins, and retinas.
- the authentication terminals 400-1 to 400-5 may be simply referred to as the authentication terminal 400.
- gate devices 600-1 to 600-5 may be simply referred to as gate device 600 in some cases.
- each of authentication terminals 400-1 to 400-5 is an example of a locking system.
- the gate device 600 is, for example, a flapper gate, an automatic door, or a normal door, and can be unlocked according to an unlocking instruction from the connected authentication terminal 400 .
- a resident U1 of the housing complex 500 registers his/her own personal information (name, gender, room number, contact information, etc.) in the entrance control device 200 in advance, and registers his/her own face image and iris image in the authentication device 100. do. These pieces of information are managed as identification information that identifies the resident U1, and can be mutually referred to by the authentication device 100 and the admission control device 200.
- FIG. Resident U1 may register the personal information, face image, and iris image from manager terminal 300, or may register using a communication terminal or the like owned by resident U1. By registering the face image and the iris image in advance in the authentication device 100 in this way, the resident U1 can enter each area in the housing complex 500 using face authentication and iris authentication.
- a visitor U2 is a person who visits the housing complex 500.
- the visitor U2 may be a person who stays in a predetermined area within the housing complex 500 for a predetermined time and provides a predetermined service.
- Visitors U2 may include, for example, housekeepers, domestic helpers, babysitters, tutors, or the like.
- each of the resident U1 and the visitor U2 may simply be referred to as a user.
- Resident U1 requests work from visitor U2 through a dedicated application (hereinafter referred to as a dedicated application) for registering a housekeeper, a website, etc., performs a predetermined procedure, and concludes a contract with visitor U2.
- a dedicated application for registering a housekeeper, a website, etc.
- the details of the contract include, for example, the date and time when the visitor U2 provides the service, the details, the fee, and the like.
- the admission control device 200 can acquire information included in the above contract details and store it in the storage unit 210 via a dedicated application.
- resident U1 makes a business request to visitor U2 through a dedicated app.
- the dedicated application notifies the visitor U2 of necessary items regarding service provision.
- the necessary items include, for example, the name of the resident U1, the location of the housing complex 500 where the service is provided, the room number, the date and time of service provision, the content of service provision, and the fee.
- the visitor U2 confirms the contents of the notification and accepts the request from the resident U1, and the contract is established between the resident U1 and the visitor U2.
- the admission control device 200 acquires the contract details including the necessary items from the dedicated application and stores them in the storage unit 210 .
- the admission control device 200 may notify the resident U1 and the visitor U2 of the conclusion of the contract and the content of the contract via a dedicated application. Further, the admission control device 200 may receive inputs from the resident U1 and the visitor U2 to change the contents of the contract.
- the resident U1 urges the visitor U2 to register his face image in the authentication device 100.
- resident U1 notifies visitor U2 of the URL of the web page for registration via a dedicated application, and requests visitor U2 to register a face image.
- the registration request may be made automatically from a dedicated application.
- the visitor U2 registers his/her own facial image in the authentication device 100 by the date and time when the service is provided.
- the dedicated application may notify the resident U1 that registration of the face image has been completed and the face image of the visitor U2 so that the resident U1 can confirm the registration details.
- the resident U1 may register the face image in the authentication device 100 as an image for authentication.
- a dedicated application may automatically perform this registration process.
- the visitor U2 can use face authentication and iris authentication in the housing complex 500. becomes possible.
- a camera capable of detecting an infrared region which is a sensor for identifying the iris, is expensive, and it may be difficult to register an iris image from a communication terminal or the like owned by the visitor U2. Therefore, in this embodiment, the visitor U2 registers only the face image in the authentication device 100 in advance, and uses the imaging device 350 and the janitor terminal 300 to obtain the iris image when visiting the housing complex 500. We will register.
- FIG. 4 is a diagram showing an overview of the flow of registering the iris image of the visitor U2 in this embodiment.
- the unidirectional arrows shown in FIG. 1 simply indicate the flow of information (data, signals, etc.), and do not exclude bidirectionality of information.
- visitor U2 registers his/her own face image in authentication device 100 via a dedicated application.
- the authentication device 100 associates the face information of the visitor U2 with the room number of the room where the visitor U2 works and stores it in the biometric information DB (DataBase) 110 .
- the room number As for the room number, the room number of the resident U1 may be automatically obtained via a dedicated application.
- the visitor U2 may register in the authentication device 100 the date and time of service provision in the collective housing 500 and the purpose of visiting the collective housing 500 in association with the face image and the room number. The date and time of service provision and the purpose of the visit may be automatically obtained from the details of the contract between the resident U1 and the visitor U2 via a dedicated application.
- the information may be obtained by the visitor U2 inputting the information from a dedicated application.
- the authentication device 100 associates the face information of the visitor U2, the room number, the service provision date and time, and the purpose of the visit, and stores them in the biometric information DB 110 .
- the visitor U2 visits the housing complex 500 according to the service provision date and time.
- the authentication terminal 400-1 installed in front of the entrance 501 authenticates the face of the visitor U2. If the face authentication is successful, the visitor U2 can enter the entrance 501 .
- the authentication terminal 400-1 may authenticate the visitor U2 more strictly by using the room number, the date and time of service provision, or the purpose of the visit, in addition to face authentication.
- the visitor U2 takes an iris image using the imaging device 350 in the presence of the manager (concierge) C1.
- Manager C1 uses manager terminal 300 to transmit the iris image of visitor U2 to authentication device 100 .
- the authentication device 100 performs a predetermined registration process to register the iris information of the visitor U2.
- the authentication device 100 stores the iris information of the visitor U2 in the biometric information DB 110 in association with the pre-registered face information of the visitor U2, the room number, the date and time of service provision, and the visit purpose. By doing so, the visitor U2 can use both face authentication and iris authentication in the collective housing 500 .
- the authentication apparatus 100 stores all the face information, room number, service provision date and time, visit purpose, and iris information.
- the authentication device 100 may store the information, and the admission control device 200 may store the room number, service provision date and time, and the purpose of the visit.
- the visitor U2 has completed the registration of the face image in advance and registered only the iris image from the manager terminal 300, but the present invention is not limited to this.
- Visitor U2 may use manager terminal 300 to register both the face image and the iris image. In that case, the visitor U2 enters the entrance 501 by performing personal authentication using another authentication method at the authentication terminal 400-1 or by calling the manager C1.
- FIG. 5 is a block diagram showing the configuration of the authentication device 100 according to the second embodiment.
- the authentication device 100 includes a biometric information DB 110 , a detection unit 120 , a feature point extraction unit 130 , a registration unit 140 and an authentication unit 150 .
- the biometric information DB 110 stores a user ID 111, biometric characteristic information 112 of the user ID, and biometric authentication method 113 in association with each other.
- the biometric feature information 112 is a set of feature points extracted from a face image or an iris image.
- a biometric authentication method 113 is an authentication method such as face authentication, iris authentication, or vein authentication. Here, description will be made using face authentication and iris authentication.
- the authentication apparatus 100 may delete the biometric feature information 112 in the biometric information DB 110 in response to a request from the registered user of the biometric feature information 112 .
- the authentication device 100 may delete the biometric information 112 after a certain period of time has passed since it was registered.
- the detection unit 120 detects the face and iris regions included in the registration image for registering the biometric information, and outputs the detected regions to the feature point extraction unit 130 .
- the feature point extraction unit 130 extracts feature points from the face area or the like detected by the detection unit 120 and outputs biometric feature information to the registration unit 140 . Further, the feature point extraction unit 130 extracts feature points included in the face image or the like received from the admission control device 200 and outputs biometric feature information to the authentication unit 150 .
- the detection unit 120 may detect a plurality of areas from one registered image. In that case, the feature point extraction unit 130 may extract feature points from each of the plurality of extracted regions. For example, the detection unit 120 detects a face area and an iris area included in the face image.
- the feature point extraction section 130 may extract feature points from the face area and the iris area detected by the detection section 120 and output facial feature information and iris feature information to the registration section 140 .
- the registration unit 140 newly issues a user ID 111 when registering biometric feature information. Also, the registration unit 140 specifies the biometric authentication method 113 according to the area detected by the detection unit 120 . For example, when the detection unit 120 detects a face region, the registration unit 140 specifies the biometric authentication method 113 as face authentication, and when the detection unit 120 detects an iris region, the registration unit 140 specifies the biometric authentication method 113. Identify as iris authentication.
- the registration unit 140 associates the issued user ID 111 , the biometric feature information 112 extracted from the registered image, and the specified biometric authentication method 113 and registers them in the biometric information DB 110 .
- the authentication unit 150 performs biometric authentication using the biometric feature information 112 .
- the authentication unit 150 identifies a biometric authentication method according to the extracted biometric feature information.
- the authentication unit 150 collates the biometric feature information extracted from the facial image or the like with the biometric feature information 112 in the biometric information DB 110 corresponding to the specified biometric authentication method 113 .
- the authentication unit 150 returns to the admission control device 200 whether or not the biometric information matches. Whether the biometric feature information matches or not corresponds to the success or failure of the authentication.
- matching biometric feature information means that the degree of matching is equal to or greater than a predetermined value.
- FIG. 6 is a flowchart showing the flow of biometric information registration processing according to the second embodiment.
- the authentication device 100 acquires the registration image included in the biometric information registration request (S21).
- the authentication device 100 receives a biometric information registration request from the authentication terminal 400, the administrator terminal 300, a registration website, or the like via the network N.
- FIG. 1 is a flowchart showing the flow of biometric information registration processing according to the second embodiment.
- the detection unit 120 detects the user's face area and the like included in the registered image (S22).
- the feature point extraction unit 130 extracts feature points from the face area or the like detected in step S22, and outputs biometric feature information to the registration unit 140 (S23).
- the registration unit 140 issues the user ID 111, associates the user ID 111, the biometric feature information 112, and the biometric authentication method 113, and registers them in the biometric information DB 110 (S24).
- the authentication apparatus 100 may receive the biometric characteristic information 112 from a terminal or the like owned by the user, associate the biometric characteristic information 112 with the user ID 111 and the biometric authentication method 113, and register them in the biometric information DB 110 .
- FIG. 7 is a flow chart showing the flow of biometric authentication processing by the authentication device 100 according to the second embodiment.
- the feature point extraction unit 130 acquires a face image for authentication and the like included in the biometric authentication request (S31).
- the authentication device 100 receives a biometric authentication request from the entrance control device 200 via the network N, and extracts biometric feature information from the biometric image included in the biometric authentication request in steps S21 to S23.
- the authentication device 100 may receive biometric information from the admission control device 200 .
- the authentication unit 150 collates the acquired biometric feature information with the biometric feature information 112 of the biometric information DB 110 (S32).
- the biometric feature information matches that is, when the matching degree of the biometric feature information is equal to or greater than a predetermined value (Yes in S33)
- the authentication unit 150 identifies the user ID 111 of the user whose biometric feature information matches (S34).
- the authentication unit 150 does not need to attempt matching with all of the biometric feature information 112 in the biometric information DB 110.
- the authentication unit 150 can receive the biometric authentication request including the biometric authentication method 113, and perform matching from among the biometric authentication methods 113 that match.
- the authentication unit 150 may preferentially try to match biometric feature information registered during the period from the day the biometric authentication request is received until several days before. These can improve matching speed. Also, if the preferential collation fails, it is preferable to collate with all the remaining biometric feature information. Further, the authentication unit 150 may include the biometric authentication method for which the authentication was successful in the authentication result.
- FIG. 8 is a block diagram showing the configuration of the authentication terminal 400 according to the second embodiment.
- the authentication terminal 400 includes a first camera 410 , a second camera 411 , a storage section 420 , a communication section 430 , an input/output section 440 and a control section 450 .
- the first camera 410 and the second camera 411 are imaging devices that perform imaging under the control of the control unit 450 .
- the first camera 410 photographs the user's face
- the second camera 411 photographs the user's iris.
- the second camera 411 is, for example, an infrared camera capable of photographing the iris.
- the storage unit 420 is a storage device in which programs for realizing each function of the authentication terminal 400 are stored.
- a communication unit 430 is a communication interface with the network N. FIG.
- the input/output unit 440 is at least a display device. Also, the input/output unit 440 may be an input/output unit including a display device and an input device. The input/output unit 440 may be capable of receiving input by the user's gaze, finger gestures, or voice. Further, input/output unit 440 may be a touch panel capable of receiving a user's touch operation.
- the control unit 450 controls the hardware of the authentication terminal 400.
- the control unit 450 includes an imaging control unit 451 , a registration unit 452 , an authentication control unit 453 , a display control unit 454 and a locking control unit 455 .
- the imaging control unit 451 controls the first camera 410 and the second camera 411 to capture the user's registration image or authentication image.
- the registration image and the authentication image captured by the first camera 410 and the second camera 411 are images including at least the user's face area and iris area, respectively.
- the imaging control section 451 outputs the registration image to the registration section 452 .
- the imaging control unit 451 also outputs the authentication image to the authentication control unit 453 .
- the first camera 410 photographs the user's face and the second camera 411 photographs the user's iris, but the first camera 410 photographs both the user's face and iris. You may
- the registration unit 452 transmits a biometric information registration request including the registration image to the authentication device 100 via the network N.
- the registration unit 452 may include the biometric authentication method in the biometric information registration request.
- the authentication control unit 453 transmits a biometric authentication request including the authentication image to the entrance control device 200 via the network N.
- the authentication control unit 453 includes area identification information for identifying the area in which the authentication terminal 400 is installed and the photographing time of the authentication image (face image and iris image) in the biometric authentication request, and performs entrance control. Send to device 200 .
- the authentication control unit 453 may include terminal identification information for identifying the authentication terminal 400 instead of the area identification information in the biometric authentication request and transmit it to the entrance control device 200 .
- the admission control device 200 associates the terminal identification information of the authentication terminal 400 with the area identification information of the installation location of the authentication terminal 400 and stores them in the storage unit 210 in advance.
- the admission control device 200 refers to the storage unit 210 based on the terminal identification information included in the received biometric authentication request, and acquires the area identification information of the area where the authentication terminal 400 is installed. can do.
- the authentication control unit 453 receives the biometric authentication result and outputs the biometric authentication result to the display control unit 454 and the locking control unit 455.
- the display control unit 454 receives various screen data from the entrance control device 200 via the network N, and displays the received screen data on the input/output unit 440 . For example, the display control unit 454 displays on the input/output unit 440 the display content corresponding to the biometric authentication result.
- the locking control unit 455 Upon receiving an unlocking instruction from the entrance control device 200 via the network N, the locking control unit 455 outputs the unlocking instruction to the corresponding gate device 600 . Similarly, when receiving a lock instruction from the entrance control device 200 , the lock control unit 455 may output the lock instruction to the corresponding gate device 600 . Further, the lock control unit 455 may receive a security system setting instruction or cancellation instruction for each area from the admission control device 200 and output the setting instruction or cancellation instruction to the corresponding security system.
- the manager terminal 300 is an information terminal managed by the manager C1 of the collective housing 500 .
- the manager terminal 300 is, for example, an information processing device such as a personal computer, a smart phone, or a tablet terminal.
- the administrator terminal 300 is connected to the imaging device 350 by wire or wirelessly.
- the imaging device 350 is an imaging device capable of capturing an iris image of the user.
- Imaging device 350 may be, for example, an infrared camera.
- the imaging device 350 will be described as a camera capable of imaging a user's face image and iris image.
- the imaging device 350 may be installed in the manager terminal 300 .
- the manager terminal 300 captures the user's face image and iris image using the imaging device 350 and transmits the captured face image and iris image to the entrance control device 200 .
- the visitor U2 can perform face authentication using a pre-registered face image and newly register an iris image at the manager terminal 300 . If the visitor U2 is an authorized user, the manager terminal 300 may output that fact to an input/output device (not shown) or the like.
- the manager terminal 300 for example, outputs messages to the input/output device, such as "Face authentication succeeded", "Room 511 scheduled to visit from 14:00 to 16:00 Mr. XX", "Iris image acquired", etc.
- the manager terminal 300 may output to the input/output device a guide that iris authentication will be used when entering each room.
- the manager terminal 300 may perform personal authentication of the visitor U2 by combining one or more conditions of the room number, the length of stay, and the purpose of the visit.
- FIG. 9 is a block diagram showing the configuration of the admission control device 200.
- the entrance control device 200 is an information processing device for controlling entrance of a user (resident U1 or visitor U2) to a predetermined area.
- the admission control device 200 may be made redundant by a plurality of servers, and each functional block may be realized by a plurality of computers.
- the admission control device 200 includes a storage section 210 , a memory 220 , an IF (InterFace) section 230 and a control section 240 .
- IF InterFace
- the storage unit 210 is an example of a storage device such as a hard disk or flash memory.
- the storage unit 210 stores a program 211 and attribute information 212 .
- the program 211 is a computer program in which the processing of the admission control method according to the second embodiment is implemented.
- the attribute information 212 is information for managing user attributes.
- the attribute information 212 is associated with a user ID 2121 that identifies a user, area identification information 2122 that identifies an area, and user attributes 2123 .
- FIG. 10 is a diagram showing an example of the attribute information 212.
- the attribute information 212 includes the user ID 2121, area identification information 2122, and attribute 2123 described above, as well as the user's name, area name, permitted period of stay, and visit purpose.
- the area identification information 2122 is information that identifies each of a plurality of predetermined areas. Area identification information 2122 may be, for example, a room number of a residence.
- the attribute 2123 indicates the relationship between the user and the housing complex 500.
- the attribute information 212 may include, for example, information as to whether the user is a resident of the housing complex 500 or a visitor.
- the attribute 2123 distinguishes users, such as housekeepers, who stay in the dwelling of residents for a predetermined time or longer from other visitors.
- a user such as a housekeeper is defined as a "regular user”.
- a delivery company, a postman, etc. who temporarily stay at the entrance or the like are defined as "non-authorized users”.
- the attribute 2123 is set for each area available to the user.
- user D indicates a housekeeper who has a contract with a resident of room 511 (house 511).
- User D has an attribute of a regular user for the residence 511 , but is not a regular user for areas other than the residence 511 .
- a plurality of attributes 2123 may be set for one user.
- User E shown in the figure is a babysitter who has a contract with the resident of room 512 (house 512).
- user E may be registered as an authorized user not only for residence 512 but also for kids' room.
- the attribute information 212 may include the user's permitted period of stay.
- the length of stay may be set based on the service provision time.
- the allowable stay time may be set from the start date and time of the service provision period to the end date and time, or may be set to include a predetermined time (for example, 15 minutes) before and after the service provision period. By doing so, even if the attribute of the user is a regular user, if the user tries to enter the predetermined area outside the permitted period of stay, it is possible not to allow the user to enter.
- a predetermined length of stay may be determined without determining the start and end of the length of stay. For example, for housekeepers who work many days, only the allowable stay time such as a predetermined time (for example, 3 hours) from the time of entry may be set.
- the attribute information 212 may include the purpose of the user's visit.
- the visit purpose is the purpose of the user visiting the housing complex 500 .
- the purpose of the visit may indicate service content such as "housekeeper” or "babysitter", for example.
- the memory 220 is a volatile storage device such as a RAM (Random Access Memory), and is a storage area for temporarily holding information when the control unit 540 operates.
- the IF section 230 is a communication interface with the network N. FIG.
- the control unit 240 is a processor that controls each component of the admission control device 200, that is, a control device.
- the control unit 240 loads the program 211 from the storage unit 210 into the memory 220 and executes the program 211 .
- the control unit 240 realizes the functions of the first biometric authentication control unit 241 , the attribute information acquisition unit 242 , the registration unit 243 , the second biometric authentication control unit 244 , the unlocking control unit 245 and the deletion unit 246 .
- the first biometric authentication control unit 241 corresponds to the first biometric authentication control unit 11 of the first embodiment.
- the first biometric authentication control unit 241 acquires first biometric information from a predetermined user who is about to enter a facility having a plurality of areas where entry is restricted in each of a plurality of locking systems, and performs first biometric authentication. Control.
- the first biometric authentication control unit 241 controls face authentication of the visitor U2 in the authentication terminal 400-1 and the manager terminal 300.
- the attribute information acquisition unit 242 corresponds to the attribute information acquisition unit 12 of the first embodiment.
- the attribute information acquisition unit 242 acquires the attribute information of the user by referring to the attribute information 212 when the user succeeds in the first biometric authentication.
- the attribute information acquisition unit 242 refers to the attribute information 212 and acquires the attributes of the visitor U2 when the manager terminal 300 successfully authenticates the visitor U2's face.
- the attribute information acquisition unit 242 receives input of the area identification information 2122 from the visitor U2, and the content of the received input matches the area identification information 2122 of the predetermined area to which the visitor U2 is permitted to enter in advance. Attribute information may be obtained when
- the visitor U2 inputs "511", which is the area identification information 2122 of the residence 511 to be visited, to the manager terminal 300 via the input/output device of the manager terminal 300.
- the attribute information acquisition unit 242 obtains the information that the attribute of the visitor U2 is an authorized user. get. In this way, security can be improved by accepting the input of the room number from the visitor U2.
- the attribute information acquisition unit 242 uses information on the content of the contract between the resident U1 and the visitor U2, in addition to face authentication and input of the room number, to more strictly authenticate the identity of the visitor U2, and acquires the attribute information. may be obtained.
- the attribute information acquisition unit 242 refers to the attribute information 212 and acquires the length of stay of the visitor U2.
- the attribute information acquisition unit 242 determines whether or not the face authentication implementation date and time are within the permitted period of stay. If the date and time of face authentication is within the permitted period of stay, the attribute information acquisition unit 242 acquires information that the attribute of the visitor U2 is a regular user.
- the attribute information acquisition unit 242 acquires the visit purpose of the visitor U2 by referring to the attribute information 212, and performs further authentication using the acquired visit purpose. good too.
- the attribute information acquisition unit 242 receives input of the visit purpose from the visitor U2 and determines whether or not the selection is correct. The input may be a free input by the visitor U2, or alternatives may be displayed on an input/output device or the like to allow the visitor U2 to make a selection. If the input of the visit purpose is correct, the attribute information acquisition unit 242 acquires information that the attribute of the visitor U2 is a regular user.
- the attribute information acquisition unit 242 may acquire the attribute information of the visitor U2 according to the success of the face authentication, and additionally, one of the room number, the length of stay, and the purpose of the visit may be acquired.
- Personal authentication may be performed by combining two or more conditions. Such personal authentication may be performed at a terminal other than the administrator terminal 300. FIG. For example, similar processing may be performed in authentication terminal 400-1. By doing so, even if the visitor U2 has already made a contract with the resident U1, if the visitor U2 visits on a different date and time or for a purpose different from the contract content, the visitor U2 will be dealt with before entering the entrance 501. be able to.
- authentication terminal 400-1 may display on input/output unit 440 that visitor U2 cannot enter entrance 501, or the like.
- the registration unit 243 corresponds to the registration unit 13 of the first embodiment. If the attribute of the user is that of an authorized user who has been previously permitted to enter a predetermined area of the facility by the user of the facility, the registration unit 243 stores the second biometric information acquired from the user in association with the user. Register with the device.
- the user of the facility may be a person who has authority to permit the user to enter the predetermined area.
- a user of the facility may be, for example, a resident of the collective housing 500, a manager, a manager, or the like.
- the resident U1 who made a contract with the visitor U2 corresponds to the user of the facility.
- the visitor U2 takes an iris image using the imaging device 350 in the presence of the manager C1.
- the manager terminal 300 acquires an iris image captured by the imaging device 350 according to the operation of the manager C1 and transmits the iris image to the entrance control device 200 .
- the registration unit 243 receives the transmitted iris image, sets the biometric authentication method to iris authentication, and registers the iris image in the authentication device 100 as biometric information of the visitor U2.
- the face image (first biometric information) of visitor U2 is registered in authentication device 100 in advance.
- the registration unit 243 associates the registered face information of the visitor U2 with the iris information (second biometric information) acquired from the manager terminal 300 and registers them in the authentication device 100 .
- the face information and iris information of the visitor U2 are stored in the authentication device 100, and the visitor U2 is required to perform face authentication in order to enter a predetermined area in the housing complex 500 to which entry is permitted. and iris authentication can be used.
- the admission control device 200 can manage not only face information but also iris information in association with the visitor U2 and the resident U1.
- the second biometric authentication control unit 244 corresponds to the second biometric authentication control unit 14 of the first embodiment.
- the second biometric authentication control unit 244 acquires biometric information including the second biometric information from the user when the user enters a predetermined area that is permitted to enter in advance.
- the second biometric authentication control unit 244 controls second biometric authentication using the acquired biometric information.
- visitor U2 when registration of the iris image of visitor U2 to authentication device 100 is completed in registration unit 243, visitor U2 performs face authentication and iris authentication at authentication terminal 400 installed at the entrance of each area. can be used.
- FIG. 3 For example, in the example of FIG. 3, assume that the visitor U2 moves from the entrance 501 to the contracted residence 511. Visitor U2 performs biometric authentication using authentication terminal 400-2 in order to pass through gate device 600-2 installed between entrance 501 and residential area 510.
- FIG. Authentication terminal 400-2 detects the presence of visitor U2, takes an image of visitor U2's face and iris, and transmits a biometric authentication request to entrance control device 200 together with the face image and iris image.
- the second biometric authentication control unit 244 receives the biometric information and the biometric authentication request and transmits them to the authentication device 100 . Second biometric authentication control unit 244 receives the authentication result from authentication device 100 and transmits the authentication result to authentication terminal 400-2.
- the gate device 600-2 is unlocked and the visitor U2 can enter the residential area 510.
- the visitor U2 similarly performs face authentication and iris authentication at the authentication terminal 400-3 installed in front of the residence 511.
- FIG. Therefore, the second biometric authentication control unit 244 receives the biometric authentication request from the authentication terminal 400-3 and controls the second biometric authentication in the same manner as the authentication terminal 400-2.
- face authentication and iris authentication are used here, other authentication methods may be used for authentication.
- Other biometric authentication may be further combined with face authentication and iris authentication, and other authentication methods may be used instead of face authentication.
- both authentication terminal 400-2 and authentication terminal 400-3 use face authentication and iris authentication, but the present invention is not limited to this.
- the second biometric authentication control unit 244 may control the second biometric authentication using different authentication methods according to the security level of each area. For example, at authentication terminal 400-2, authentication may be performed only by iris authentication, and at authentication terminals 400-3 to 400-5, face authentication and iris authentication may be used. Conversely, authentication terminal 400-2 may perform face authentication and iris authentication, and authentication terminals 400-3 to 400-5 may perform authentication only by face authentication in the same manner as authentication terminal 400-1. . In that case, authentication terminals 400 - 3 to 400 - 5 may be terminals without second camera 411 . Also, the user may enter the residence using a physical key without performing biometric authentication. By doing so, it is possible to reduce the cost of the authentication terminal 400 installed at the entrance of each room while more strictly authenticating the user when entering the residential area 510 from the entrance 501 .
- the authentication terminal 400-1 may be a terminal compatible only with the required authentication method.
- the authentication terminal 400-1 may not have the second camera 411. FIG.
- the second biometric authentication control unit 244 may perform a plurality of authentications, and the user's authentication may be successful if some of the authentications are successful.
- the second biometric authentication control unit 244 acquires a user's face image and iris authentication, and controls authentication so that both face authentication and iris authentication are performed. Assume that among these, the face recognition fails and the iris recognition succeeds. Even in such a case, the second biometric authentication control unit 244 may assume that the second biometric authentication has succeeded according to the security level of the area. By doing so, for example, even when the user wears a mask, the probability of authentication success can be increased, so the user's convenience can be improved.
- the unlock control section 245 corresponds to the unlock control section 15 of the first embodiment.
- the unlock control unit 245 instructs the locking system installed at the entrance of the predetermined area to unlock.
- the unlock control unit 245 instructs the authentication terminal 400-2 to unlock. do.
- the unlocking control unit 245 instructs the locking system installed at the entrance of the predetermined area to unlock when the user succeeds in the first biometric authentication according to the security level.
- the unlocking control unit 245 instructs to unlock the authentication terminal 400-1 only in response to the success of face authentication of the visitor U2. In this way, even when only the face information of the user is registered and the iris information is not registered, a certain security effect can be obtained by performing the first-stage authentication based on the face information.
- the unlock control unit 245 may receive non-contact input from the user and instruct the locking system to lock or unlock according to the content of the input.
- the unlock control unit 245 may cause the input/output unit 440 of the authentication terminal 400 to display a predetermined input screen in order to receive input from the user.
- FIG. 11 is a diagram showing an example of the predetermined input screen 441. As shown in FIG.
- the input screen 441 displays an "unlock” button and a "lock” button.
- the user looks in the direction of the “unlock” button on the input screen 441 .
- the authentication terminal 400 uses the line-of-sight estimation technology to accept an input of the operation content desired by the user.
- the authentication terminal 400 accepts the user's request for unlocking, and instructs the gate device 600 to unlock.
- the gate device 600 unlocks according to the unlocking instruction. By doing so, the user can enter the predetermined area only by directing the line of sight to the input screen 441 . Therefore, even when the user holds luggage in both hands, the lock can be easily unlocked.
- it since it does not require contact with a touch panel or the like, it is also effective as a countermeasure against infectious diseases.
- the unlock control unit 245 may change the content of the input screen 441 according to the attributes of the user. For example, for the visitor U2, only an "unlock” button or a "call manager” button may be displayed. Also, the input screen 441 may be applied in the gate device 600 . For example, when the user enters each room, the unlocking control unit 245 displays the input screen 441 on the display device (not shown) included in the gate devices 600-3 to 600-5 to accept input from the user. may be accepted.
- the unlocking control unit 245 may control the setting or unlocking of the security system for each area, in addition to controlling the unlocking or locking of the doors.
- the security system is a crime prevention system or the like that detects an intrusion by a suspicious person when the resident is absent. For example, when the resident leaves the residence or exits the entrance 501, the resident locks the residence and sets the security system. By doing so, the locking of the residence and the setting of the security system can be performed substantially at the same time, which leads to an improvement in security.
- the user's intention may be acquired using a touch operation or the like on the input/output unit 440 .
- the deletion unit 246 deletes the iris information (second biometric information) from the authentication device 100 after a predetermined period of time has passed since the iris information (second biometric information) of the visitor U2 was registered. By doing so, the visitor U2 will not be able to enter the area requiring iris authentication after the predetermined time has passed, so the security of the residence or the like can be ensured.
- the deletion unit 246 may further delete the face information (first biometric information) of the visitor U2 after a predetermined period of time has elapsed.
- FIG. 12 and 13 are flowcharts showing the processing performed by the admission control device 200.
- FIG. it is assumed that the contract between the resident U1 and the visitor U2 has been completed, and the visitor U2 has already registered his/her face image.
- the first biometric authentication control unit 241 acquires the face image of the visitor U2 from the authentication terminal 400-1 and controls face authentication (S101). The first biometric authentication control unit 241 transmits the face image to the authentication device 100 to request biometric authentication.
- the first biometric authentication control unit 241 receives the authentication result from the authentication device 100 and determines whether or not the face authentication has succeeded (S102). If the face authentication succeeds (Yes in S102), the process proceeds to the next process, and if it fails (No in S102), the process ends.
- the unlock control unit 245 instructs the authentication terminal 400-1 to unlock (S103). This allows the visitor U2 to enter the entrance 501. FIG.
- the visitor U2 performs face authentication using the imaging device 350 and the manager terminal 300 in the presence of the manager C1.
- the first biometric authentication control unit 241 acquires the face information of the visitor U2 and controls face authentication in the same manner as in the process of S101 (S104).
- the manager C1 displays the face image of the visitor U2 acquired by the authentication terminal 400-1 on the manager terminal 300, confirms the displayed face image, etc. Face recognition can be omitted.
- the attribute information acquisition unit 242 receives the authentication result from the authentication device 100 and determines whether or not the face authentication has succeeded (S105). If the face authentication succeeds (Yes in S105), the process proceeds to the next process, and if it fails (No in S105), the process ends. When the face authentication is successful, the attribute information acquisition unit 242 acquires the user ID of the identified user from the authentication device 100 .
- the attribute information acquisition unit 242 receives input of the room number of the visitor from the visitor U2 (S106). Here, the visitor U2 inputs the room number “511” of the visited place to the manager terminal 300. FIG. The attribute information acquisition unit 242 determines whether the input room number is correct (S107). If the input content is correct (Yes in S107), the process proceeds to the next process, and if it fails (No in S107), the process ends. Also, if the room number is incorrect, the input may be accepted up to a predetermined number of times.
- the attribute information acquisition unit 242 refers to the attribute information 212 and acquires the attribute information of the visitor U2 based on the user ID received from the authentication device 100 and the room number received in the process of S106 (S108). Note that the attribute information acquisition unit 242 acquires the attribute information of the visitor U2 in response to the success of the face authentication of the visitor U2 (Yes in S105), without accepting the input of the room number of the visited place from the visitor U2. You may In that case, the attribute information acquisition unit 242 refers to the attribute information 212 and acquires the attribute information of the visitor U2 based on the user ID received from the authentication device 100 (S108). In addition, the attribute information acquisition unit 242 may perform personal authentication of the visitor U2 using not only the face authentication and the room number, but also the length of stay and the purpose of the visit.
- the registration unit 243 determines whether the attribute of the visitor U2 is that of an authorized user who has been previously permitted to enter a predetermined area of the facility by the user of the facility (S109). If the visitor U2 is an authorized user (Yes in S109), the process proceeds to the next step, and if the visitor U2 is not an authorized user (No in S109), the process ends. In this case, the visitor U2 is an authorized user who has been previously permitted to enter the residence 511 according to the contract with the resident of the residence 511, so the process proceeds to the next step.
- the manager C1 captures the iris image of the visitor U2 using the imaging device 350, and the manager terminal 300 transmits the iris image captured by the imaging device 350 to the admission control device 200.
- the registration unit 243 registers the iris information acquired from the visitor U2 in the storage device in association with the resident U1 (S110). Specifically, registration unit 243 transmits the iris image of visitor U2 to authentication device 100, and associates the already registered face information of visitor U2 with the iris information obtained from the iris image. sign up.
- the entrance control device 200 based on the user ID 2121, stores the face information and iris information of the visitor U2 stored in the biometric information DB 110, and the area identification information of the area permitted to enter (here, , room number) can be associated and managed.
- the area identification information may be stored in the biometric information DB 110 together with the face information and the iris information.
- Visitor U2 moves in front of authentication terminal 400-2 installed in front of residential area 510 in order to move from entrance 501 to residential area 510 to do business.
- the authentication terminal 400-2 detects the presence of the visitor U2 and authenticates the visitor U2, like the authentication terminal 400-1. Since relatively high security is required here compared to the entrance 501, the authentication terminal 400-2 performs face authentication and iris authentication on the visitor U2. Therefore, authentication terminal 400-2 captures the face image and iris image of visitor U2.
- the second biometric authentication control unit 244 acquires the face information and iris information of the visitor U2 from the authentication terminal 400-2 (S111).
- the deletion unit 246 determines whether a predetermined time has passed since the iris information of the visitor U2 was registered (S112). If the predetermined period of time has not elapsed (No in S112), the process proceeds to the next process, and if the predetermined period of time has elapsed (Yes in S112), the iris information of the visitor U2 is deleted (S116). It should be noted that the administrator C1 or the like may perform confirmation without performing the deletion process immediately.
- the second biometric authentication control unit 244 controls face authentication and iris authentication of visitor U2 (S113).
- the second biometric authentication control unit 244 sends the face image and the iris image to the authentication device 100 to request biometric authentication, and acquires the authentication result.
- the unlock control unit 245 determines whether or not the authentication has succeeded (S114). If the authentication succeeds (Yes in S114), the process proceeds to the next process, and if the authentication fails (No in S114), the process ends. If the authentication is successful (Yes in S114), the unlock control unit 245 instructs the authentication terminal 400-2 to unlock (S115). Authentication terminal 400-2 outputs an unlocking instruction to gate device 600-2, and gate device 600-2 unlocks. This allows the visitor U2 to enter the residential area 510. FIG.
- the admission control device 200 performs the same authentication process as at the authentication terminal 400-2.
- the visitor U2 can enter the residence 511 by being successfully authenticated. If the visitor U2 erroneously attempts authentication in a residence other than the residence 511, the admission control device 200 may display on the input/output unit 440 that the room is incorrect.
- the visitor can 1 Biometric authentication can be performed.
- the visitor can enter the housing complex by successfully performing the first biometric authentication.
- visitors will be able to use face authentication and iris authentication in the collective housing by registering the iris information required for the second biometric authentication in the presence of the manager. By doing so, it is possible to perform face authentication and iris authentication on the visitor when entering a residential area or each house where a higher security level is required, and restrict entry.
- registration of iris information it is determined whether or not the visitor is an authorized user by using pre-registered face information and area identification information of the area to be entered. can be done.
- the entrance control system 1000 can store newly acquired iris information in association with face information and area identification information, thereby improving security. Therefore, according to the entrance control system 1000 according to this embodiment, it is possible to appropriately manage the entrance of users who are permitted to enter the predetermined area.
- Each functional component of the authentication device 100, the admission control device 200, the manager terminal 300, the authentication terminal 400, and the gate device 600 is implemented by hardware (eg, hardwired electronic circuit, etc.) that implements each functional component. It may be realized, or it may be realized by a combination of hardware and software (for example, a combination of an electronic circuit and a program for controlling it). A case in which each functional component of the entrance control device 200 and the like is implemented by a combination of hardware and software will be further described below.
- FIG. 14 is a block diagram illustrating the hardware configuration of a computer 900 that implements the entrance control device 200 and the like.
- the computer 900 may be a dedicated computer designed to implement the entrance control device 200 or the like, or may be a general-purpose computer.
- the computer 900 may be a portable computer such as a smart phone or a tablet terminal.
- the computer 900 implements the functions of the entrance control device 200 and the like.
- the application is configured by a program for realizing the functional components of the admission control device 200 and the like.
- Computer 900 has bus 902 , processor 904 , memory 906 , storage device 908 , input/output interface 910 and network interface 912 .
- a bus 902 is a data transmission path for the processor 904, memory 906, storage device 908, input/output interface 910, and network interface 912 to transmit and receive data to and from each other.
- the method of connecting the processors 904 and the like to each other is not limited to bus connection.
- the processor 904 is various processors such as a CPU (Central Processing Unit), a GPU (Graphics Processing Unit), or an FPGA (Field-Programmable Gate Array).
- the memory 906 is a main memory implemented using a RAM (Random Access Memory) or the like.
- the storage device 908 is an auxiliary storage device implemented using a hard disk, SSD (Solid State Drive), memory card, ROM (Read Only Memory), or the like.
- the input/output interface 910 is an interface for connecting the computer 900 and input/output devices.
- the input/output interface 910 is connected to an input device such as a keyboard and an output device such as a display device.
- a network interface 912 is an interface for connecting the computer 900 to a network.
- This network may be a LAN (Local Area Network) or a WAN (Wide Area Network).
- the storage device 908 stores a program (a program for realizing the above-described application) that implements each functional component of the entrance control device 200 and the like.
- the processor 904 reads out this program into the memory 906 and executes it, thereby realizing each functional component of the entrance control device 200 and the like.
- Non-transitory computer readable media include various types of tangible storage media. Examples of non-transitory computer-readable media include magnetic recording media (e.g., floppy disks, magnetic tapes, hard disk drives), magneto-optical recording media (e.g., magneto-optical discs), CDs (compact discs), or DVDs (digital versatile disk), semiconductor memory (eg, mask ROM, PROM (Programmable ROM), EPROM (Erasable PROM), flash ROM, RAM).
- magnetic recording media e.g., floppy disks, magnetic tapes, hard disk drives
- magneto-optical recording media e.g., magneto-optical discs
- CDs compact discs
- DVDs digital versatile disk
- semiconductor memory eg, mask ROM, PROM (Programmable ROM), EPROM (Erasable PROM), flash ROM, RAM).
- the program may also be provided to the computer on various types of transitory computer readable medium.
- Examples of transitory computer-readable media include electrical signals, optical signals, and electromagnetic waves.
- Transitory computer-readable media can deliver the program to the computer via wired channels, such as wires and optical fibers, or wireless channels.
- a first biometric authentication control means for acquiring first biometric information from a predetermined user who is about to enter a facility having a plurality of areas where entry is restricted in each of a plurality of locking systems, and controlling the first biometric authentication;
- attribute information acquisition means for acquiring attribute information of the user when the first biometric authentication is successful;
- registration means for registering in the device; When the user enters the predetermined area to which entry is permitted in advance, biometric information including the second biometric information is acquired from the user, and second biometric authentication using the acquired biometric information is controlled.
- the admission control device according to appendix 1 or 2, wherein the unlocking control means receives non-contact input from the user and instructs locking or unlocking of the locking system according to the content of the input.
- the attribute information acquisition means receives from the user input of area identification information identifying the plurality of areas, and the content of the input matches area identification information of a predetermined area to which the user is permitted to enter in advance. 4.
- the admission control device according to any one of Appendices 1 to 3, wherein the attribute information is obtained when the attribute information is acquired.
- the unlocking control means instructs the locking system installed at the entrance of the area where the second biometric information is acquired to unlock. 5.
- the entrance control device according to any one of 4.
- (Appendix 6) The admission control device according to any one of appendices 1 to 5, further comprising deleting means for deleting the second biometric information after a predetermined time has passed since the registration of the second biometric information.
- (Appendix 7) a plurality of locking systems installed at the entrances of each of the plurality of areas to restrict entry; an admission control device; with The admission control device a first biometric authentication control means for acquiring first biometric information from a predetermined user who is about to enter the facility having the plurality of areas and controlling the first biometric authentication; attribute information acquisition means for acquiring attribute information of the user when the first biometric authentication is successful; When the attribute of the user is that of a regular user who has been previously permitted to enter a predetermined area of the facility by a user of the facility, the second biometric information acquired from the user is stored in association with the user.
- registration means for registering in the device; When the user enters the predetermined area to which entry is permitted in advance, biometric information including the second biometric information is acquired from the user, and second biometric authentication using the acquired biometric information is controlled.
- a second biometric control means for An entrance control system comprising unlock control means for instructing unlocking to the locking system installed at the entrance of the predetermined area when the second biometric authentication is successful.
- (Appendix 9) the computer Obtaining first biometric information from a predetermined user who is about to enter a facility having a plurality of areas where entry is restricted in each of a plurality of locking systems, and controlling a first biometric authentication; If the first biometric authentication is successful, obtain attribute information of the user, When the attribute of the user is that of a regular user who has been previously permitted to enter a predetermined area of the facility by a user of the facility, the second biometric information acquired from the user is stored in association with the user. register on the device and When the user enters the predetermined area to which entry is permitted in advance, biometric information including the second biometric information is acquired from the user, and second biometric authentication using the acquired biometric information is controlled.
- An entrance control method for instructing unlocking to the locking system installed at the entrance of the predetermined area when the second biometric authentication is successful (Appendix 10) a first biometric authentication control process of acquiring first biometric information from a predetermined user who is about to enter a facility having a plurality of areas where entry is restricted in each of a plurality of locking systems, and controlling the first biometric authentication; , an attribute information acquisition process for acquiring attribute information of the user when the first biometric authentication is successful;
- the attribute of the user is that of a regular user who has been previously permitted to enter a predetermined area of the facility by a user of the facility, the second biometric information acquired from the user is stored in association with the user.
- a registration process for registering in the device When the user enters the predetermined area to which entry is permitted in advance, biometric information including the second biometric information is acquired from the user, and second biometric authentication using the acquired biometric information is controlled.
- a second biometric authentication control process to A non-temporary entry control program that causes a computer to execute an unlocking control process that instructs the locking system installed at the entrance of the predetermined area to unlock when the second biometric authentication is successful.
Landscapes
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Engineering & Computer Science (AREA)
- Human Computer Interaction (AREA)
- Collating Specific Patterns (AREA)
- Time Recorders, Dirve Recorders, Access Control (AREA)
Abstract
Description
複数の施錠システムのそれぞれにおいて入場が制限された複数の領域を備える施設に入場しようとする所定のユーザから、第1生体情報を取得して第1生体認証を制御する第1生体認証制御手段と、
前記第1生体認証に成功した場合、前記ユーザの属性情報を取得する属性情報取得手段と、
前記ユーザの属性が、前記施設の所定領域への入場を前記施設の利用者から予め許可された正規ユーザである場合、前記ユーザから取得された第2生体情報を前記利用者と対応付けて記憶装置に登録する登録手段と、
前記ユーザが、予め入場が許可された前記所定領域へ入場する際に、前記ユーザから前記第2生体情報を含む生体情報を取得し、当該取得された生体情報を用いた第2生体認証を制御する第2生体認証制御手段と、
前記第2生体認証に成功した場合、前記所定領域の入口に設置された前記施錠システムに対して解錠を指示する解錠制御手段と、を備える。
複数の領域のそれぞれの入口に設置され、入場を制限する複数の施錠システムと、
入場制御装置と、
を備え、
前記入場制御装置は、
前記複数の領域を備える施設に入場しようとする所定のユーザから、第1生体情報を取得して第1生体認証を制御する第1生体認証制御手段と、
前記第1生体認証に成功した場合、前記ユーザの属性情報を取得する属性情報取得手段と、
前記ユーザの属性が、前記施設の所定領域への入場を前記施設の利用者から予め許可された正規ユーザである場合、前記ユーザから取得された第2生体情報を前記利用者と対応付けて記憶装置に登録する登録手段と、
前記ユーザが、予め入場が許可された前記所定領域へ入場する際に、前記ユーザから前記第2生体情報を含む生体情報を取得し、当該取得された生体情報を用いた第2生体認証を制御する第2生体認証制御手段と、
前記第2生体認証に成功した場合、前記所定領域の入口に設置された前記施錠システムに対して解錠を指示する解錠制御手段と、を備える。
コンピュータが、
複数の施錠システムのそれぞれにおいて入場が制限された複数の領域を備える施設に入場しようとする所定のユーザから、第1生体情報を取得して第1生体認証を制御し、
前記第1生体認証に成功した場合、前記ユーザの属性情報を取得し、
前記ユーザの属性が、前記施設の所定領域への入場を前記施設の利用者から予め許可された正規ユーザである場合、前記ユーザから取得された第2生体情報を前記利用者と対応付けて記憶装置に登録し、
前記ユーザが、予め入場が許可された前記所定領域へ入場する際に、前記ユーザから前記第2生体情報を含む生体情報を取得し、当該取得された生体情報を用いた第2生体認証を制御し、
前記第2生体認証に成功した場合、前記所定領域の入口に設置された前記施錠システムに対して解錠を指示する。
複数の施錠システムのそれぞれにおいて入場が制限された複数の領域を備える施設に入場しようとする所定のユーザから、第1生体情報を取得して第1生体認証を制御する第1生体認証制御処理と、
前記第1生体認証に成功した場合、前記ユーザの属性情報を取得する属性情報取得処理と、
前記ユーザの属性が、前記施設の所定領域への入場を前記施設の利用者から予め許可された正規ユーザである場合、前記ユーザから取得された第2生体情報を前記利用者と対応付けて記憶装置に登録する登録処理と、
前記ユーザが、予め入場が許可された前記所定領域へ入場する際に、前記ユーザから前記第2生体情報を含む生体情報を取得し、当該取得された生体情報を用いた第2生体認証を制御する第2生体認証制御処理と、
前記第2生体認証に成功した場合、前記所定領域の入口に設置された前記施錠システムに対して解錠を指示する解錠制御処理と、を
コンピュータに実行させる。
以下、図面を参照して本開示の実施形態について説明する。図1は、本実施形態にかかる入場制御装置10の構成を示すブロック図である。入場制御装置10は、第1生体認証制御部11、属性情報取得部12、登録部13、第2生体認証制御部14、及び解錠制御部15を備えている。
属性情報取得部12は、ユーザが第1生体認証に成功した場合、ユーザの属性情報を取得する。
登録部13は、属性情報取得部12において取得されたユーザの属性が、施設の所定領域への入場を施設の利用者から予め許可された正規ユーザである場合、ユーザから取得された第2生体情報を利用者と対応付けて記憶装置に登録する。
第2生体認証制御部14は、ユーザが、予め入場が許可された所定領域へ入場する際に、ユーザから第2生体情報を含む生体情報を取得し、当該取得された生体情報を用いた第2生体認証を制御する。
解錠制御部15は、ユーザが第2生体認証に成功した場合、所定領域の入口に設置された施錠システムに対して解錠を指示する。
実施形態2は、上述した実施形態1の具体例である。図3は、本実施形態にかかる入場制御システム1000の構成を示すブロック図である。入場制御システム1000は、複数の施錠システムのそれぞれにおいて入場が制限された複数の領域を備える施設において適用することができる。ここでは、当該施設がマンション又はアパートなどの集合住宅500であるものとして説明を行う。入場制御システム1000は、集合住宅500に存在する各領域への入場を制御するための情報システムである。入場制御システム1000は、集合住宅に限らず、オフィスなどに適用されてもよい。
認証装置100、入場制御装置200、管理人端末300、認証端末400、及びゲート装置600の各機能構成部は、各機能構成部を実現するハードウエア(例:ハードワイヤードされた電子回路など)で実現されてもよいし、ハードウエアとソフトウエアとの組み合わせ(例:電子回路とそれを制御するプログラムの組み合わせなど)で実現されてもよい。以下、入場制御装置200等の各機能構成部がハードウエアとソフトウエアとの組み合わせで実現される場合について、さらに説明する。
(付記1)
複数の施錠システムのそれぞれにおいて入場が制限された複数の領域を備える施設に入場しようとする所定のユーザから、第1生体情報を取得して第1生体認証を制御する第1生体認証制御手段と、
前記第1生体認証に成功した場合、前記ユーザの属性情報を取得する属性情報取得手段と、
前記ユーザの属性が、前記施設の所定領域への入場を前記施設の利用者から予め許可された正規ユーザである場合、前記ユーザから取得された第2生体情報を前記利用者と対応付けて記憶装置に登録する登録手段と、
前記ユーザが、予め入場が許可された前記所定領域へ入場する際に、前記ユーザから前記第2生体情報を含む生体情報を取得し、当該取得された生体情報を用いた第2生体認証を制御する第2生体認証制御手段と、
前記第2生体認証に成功した場合、前記所定領域の入口に設置された前記施錠システムに対して解錠を指示する解錠制御手段と、を備える
入場制御装置。
(付記2)
前記登録手段は、前記施設の管理人が管理する管理人端末において前記ユーザから取得された前記第2生体情報を用いる
付記1に記載の入場制御装置。
(付記3)
前記解錠制御手段は、前記ユーザから非接触の入力を受け付けて、前記入力の内容に応じて前記施錠システムに対する施錠又は解錠を指示する
付記1又は2に記載の入場制御装置。
(付記4)
前記属性情報取得手段は、前記複数の領域を識別する領域識別情報の入力を前記ユーザから受け付けて、前記入力の内容が、前記ユーザの入場が予め許可された所定領域の領域識別情報と一致する場合に、前記属性情報を取得する
付記1~3のいずれか1項に記載の入場制御装置。
(付記5)
前記解錠制御手段は、前記ユーザが前記第1生体認証に成功した場合、前記第2生体情報が取得された領域の入口に設置された前記施錠システムに対して解錠を指示する
付記1~4のいずれか1項に記載の入場制御装置。
(付記6)
前記第2生体情報の登録から所定時間経過後に前記第2生体情報を削除する削除手段を更に備える
付記1~5のいずれか1項に記載の入場制御装置。
(付記7)
複数の領域のそれぞれの入口に設置され、入場を制限する複数の施錠システムと、
入場制御装置と、
を備え、
前記入場制御装置は、
前記複数の領域を備える施設に入場しようとする所定のユーザから、第1生体情報を取得して第1生体認証を制御する第1生体認証制御手段と、
前記第1生体認証に成功した場合、前記ユーザの属性情報を取得する属性情報取得手段と、
前記ユーザの属性が、前記施設の所定領域への入場を前記施設の利用者から予め許可された正規ユーザである場合、前記ユーザから取得された第2生体情報を前記利用者と対応付けて記憶装置に登録する登録手段と、
前記ユーザが、予め入場が許可された前記所定領域へ入場する際に、前記ユーザから前記第2生体情報を含む生体情報を取得し、当該取得された生体情報を用いた第2生体認証を制御する第2生体認証制御手段と、
前記第2生体認証に成功した場合、前記所定領域の入口に設置された前記施錠システムに対して解錠を指示する解錠制御手段と、を備える
入場制御システム。
(付記8)
前記登録手段は、前記施設の管理人が管理する管理人端末において前記ユーザから取得された前記第2生体情報を用いる
付記7に記載の入場制御システム。
(付記9)
コンピュータが、
複数の施錠システムのそれぞれにおいて入場が制限された複数の領域を備える施設に入場しようとする所定のユーザから、第1生体情報を取得して第1生体認証を制御し、
前記第1生体認証に成功した場合、前記ユーザの属性情報を取得し、
前記ユーザの属性が、前記施設の所定領域への入場を前記施設の利用者から予め許可された正規ユーザである場合、前記ユーザから取得された第2生体情報を前記利用者と対応付けて記憶装置に登録し、
前記ユーザが、予め入場が許可された前記所定領域へ入場する際に、前記ユーザから前記第2生体情報を含む生体情報を取得し、当該取得された生体情報を用いた第2生体認証を制御し、
前記第2生体認証に成功した場合、前記所定領域の入口に設置された前記施錠システムに対して解錠を指示する
入場制御方法。
(付記10)
複数の施錠システムのそれぞれにおいて入場が制限された複数の領域を備える施設に入場しようとする所定のユーザから、第1生体情報を取得して第1生体認証を制御する第1生体認証制御処理と、
前記第1生体認証に成功した場合、前記ユーザの属性情報を取得する属性情報取得処理と、
前記ユーザの属性が、前記施設の所定領域への入場を前記施設の利用者から予め許可された正規ユーザである場合、前記ユーザから取得された第2生体情報を前記利用者と対応付けて記憶装置に登録する登録処理と、
前記ユーザが、予め入場が許可された前記所定領域へ入場する際に、前記ユーザから前記第2生体情報を含む生体情報を取得し、当該取得された生体情報を用いた第2生体認証を制御する第2生体認証制御処理と、
前記第2生体認証に成功した場合、前記所定領域の入口に設置された前記施錠システムに対して解錠を指示する解錠制御処理と、を
コンピュータに実行させる入場制御プログラムが格納された非一時的なコンピュータ可読媒体。
11 第1生体認証制御部
12 属性情報取得部
13 登録部
14 第2生体認証制御部
15 解錠制御部
100 認証装置
110 生体情報DB
111 ユーザID
112 生体特徴情報
120 検出部
130 特徴点抽出部
140 登録部
150 認証部
200 入場制御装置
210 記憶部
211 プログラム
212 属性情報
2121 ユーザID
2122 領域識別情報
2123 属性
220 メモリ
230 IF部
240 制御部
241 第1生体認証制御部
242 属性情報取得部
243 登録部
244 第2生体認証制御部
245 解錠制御部
246 削除部
300 管理人端末
350 撮像装置
400、400-1~400-5 認証端末
410 第1のカメラ
411 第2のカメラ
420 記憶部
430 通信部
440 入出力部
441 入力画面
450 制御部
451 撮影制御部
452 登録部
453 認証制御部
454 表示制御部
455 施錠制御部
500 集合住宅
501 エントランス
510 住居エリア
511~513 住居
540 制御部
600、600-1~600-5 ゲート装置
900 コンピュータ
902 バス
904 プロセッサ
906 メモリ
908 ストレージデバイス
910 入出力インタフェース
912 ネットワークインタフェース
1000 入場制御システム
N ネットワーク
U1 住人
U2 訪問者
C1 管理人
Claims (10)
- 複数の施錠システムのそれぞれにおいて入場が制限された複数の領域を備える施設に入場しようとする所定のユーザから、第1生体情報を取得して第1生体認証を制御する第1生体認証制御手段と、
前記第1生体認証に成功した場合、前記ユーザの属性情報を取得する属性情報取得手段と、
前記ユーザの属性が、前記施設の所定領域への入場を前記施設の利用者から予め許可された正規ユーザである場合、前記ユーザから取得された第2生体情報を前記利用者と対応付けて記憶装置に登録する登録手段と、
前記ユーザが、予め入場が許可された前記所定領域へ入場する際に、前記ユーザから前記第2生体情報を含む生体情報を取得し、当該取得された生体情報を用いた第2生体認証を制御する第2生体認証制御手段と、
前記第2生体認証に成功した場合、前記所定領域の入口に設置された前記施錠システムに対して解錠を指示する解錠制御手段と、を備える
入場制御装置。 - 前記登録手段は、前記施設の管理人が管理する管理人端末において前記ユーザから取得された前記第2生体情報を用いる
請求項1に記載の入場制御装置。 - 前記解錠制御手段は、前記ユーザから非接触の入力を受け付けて、前記入力の内容に応じて前記施錠システムに対する施錠又は解錠を指示する
請求項1又は2に記載の入場制御装置。 - 前記属性情報取得手段は、前記複数の領域を識別する領域識別情報の入力を前記ユーザから受け付けて、前記入力の内容が、前記ユーザの入場が予め許可された所定領域の領域識別情報と一致する場合に、前記属性情報を取得する
請求項1~3のいずれか1項に記載の入場制御装置。 - 前記解錠制御手段は、前記ユーザが前記第1生体認証に成功した場合、前記第2生体情報が取得された領域の入口に設置された前記施錠システムに対して解錠を指示する
請求項1~4のいずれか1項に記載の入場制御装置。 - 前記第2生体情報の登録から所定時間経過後に前記第2生体情報を削除する削除手段を更に備える
請求項1~5のいずれか1項に記載の入場制御装置。 - 複数の領域のそれぞれの入口に設置され、入場を制限する複数の施錠システムと、
入場制御装置と、
を備え、
前記入場制御装置は、
前記複数の領域を備える施設に入場しようとする所定のユーザから、第1生体情報を取得して第1生体認証を制御する第1生体認証制御手段と、
前記第1生体認証に成功した場合、前記ユーザの属性情報を取得する属性情報取得手段と、
前記ユーザの属性が、前記施設の所定領域への入場を前記施設の利用者から予め許可された正規ユーザである場合、前記ユーザから取得された第2生体情報を前記利用者と対応付けて記憶装置に登録する登録手段と、
前記ユーザが、予め入場が許可された前記所定領域へ入場する際に、前記ユーザから前記第2生体情報を含む生体情報を取得し、当該取得された生体情報を用いた第2生体認証を制御する第2生体認証制御手段と、
前記第2生体認証に成功した場合、前記所定領域の入口に設置された前記施錠システムに対して解錠を指示する解錠制御手段と、を備える
入場制御システム。 - 前記登録手段は、前記施設の管理人が管理する管理人端末において前記ユーザから取得された前記第2生体情報を用いる
請求項7に記載の入場制御システム。 - コンピュータが、
複数の施錠システムのそれぞれにおいて入場が制限された複数の領域を備える施設に入場しようとする所定のユーザから、第1生体情報を取得して第1生体認証を制御し、
前記第1生体認証に成功した場合、前記ユーザの属性情報を取得し、
前記ユーザの属性が、前記施設の所定領域への入場を前記施設の利用者から予め許可された正規ユーザである場合、前記ユーザから取得された第2生体情報を前記利用者と対応付けて記憶装置に登録し、
前記ユーザが、予め入場が許可された前記所定領域へ入場する際に、前記ユーザから前記第2生体情報を含む生体情報を取得し、当該取得された生体情報を用いた第2生体認証を制御し、
前記第2生体認証に成功した場合、前記所定領域の入口に設置された前記施錠システムに対して解錠を指示する
入場制御方法。 - 複数の施錠システムのそれぞれにおいて入場が制限された複数の領域を備える施設に入場しようとする所定のユーザから、第1生体情報を取得して第1生体認証を制御する第1生体認証制御処理と、
前記第1生体認証に成功した場合、前記ユーザの属性情報を取得する属性情報取得処理と、
前記ユーザの属性が、前記施設の所定領域への入場を前記施設の利用者から予め許可された正規ユーザである場合、前記ユーザから取得された第2生体情報を前記利用者と対応付けて記憶装置に登録する登録処理と、
前記ユーザが、予め入場が許可された前記所定領域へ入場する際に、前記ユーザから前記第2生体情報を含む生体情報を取得し、当該取得された生体情報を用いた第2生体認証を制御する第2生体認証制御処理と、
前記第2生体認証に成功した場合、前記所定領域の入口に設置された前記施錠システムに対して解錠を指示する解錠制御処理と、を
コンピュータに実行させる入場制御プログラムが格納された非一時的なコンピュータ可読媒体。
Priority Applications (4)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
EP21930163.7A EP4307259A4 (en) | 2021-03-11 | 2021-03-11 | ACCESS CONTROL DEVICE, ACCESS CONTROL SYSTEM, ACCESS CONTROL METHOD AND NON-TRANSITIOUS COMPUTER-READABLE MEDIUM |
JP2023505007A JPWO2022190310A5 (ja) | 2021-03-11 | 入場制御装置、入場制御システム、入場制御方法、及び入場制御プログラム | |
PCT/JP2021/009744 WO2022190310A1 (ja) | 2021-03-11 | 2021-03-11 | 入場制御装置、入場制御システム、入場制御方法、及び非一時的なコンピュータ可読媒体 |
US18/280,607 US20240153326A1 (en) | 2021-03-11 | 2021-03-11 | Entry control device, entry control system, entry control method, and non-transitory computer-readable medium |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
PCT/JP2021/009744 WO2022190310A1 (ja) | 2021-03-11 | 2021-03-11 | 入場制御装置、入場制御システム、入場制御方法、及び非一時的なコンピュータ可読媒体 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2022190310A1 true WO2022190310A1 (ja) | 2022-09-15 |
Family
ID=83226507
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/JP2021/009744 WO2022190310A1 (ja) | 2021-03-11 | 2021-03-11 | 入場制御装置、入場制御システム、入場制御方法、及び非一時的なコンピュータ可読媒体 |
Country Status (3)
Country | Link |
---|---|
US (1) | US20240153326A1 (ja) |
EP (1) | EP4307259A4 (ja) |
WO (1) | WO2022190310A1 (ja) |
Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2006134081A (ja) * | 2004-11-05 | 2006-05-25 | Toshiba Corp | 入場管理システム、入場制御端末、及び入場管理方法 |
JP2009265769A (ja) * | 2008-04-22 | 2009-11-12 | Toshiba Corp | 生体認証装置および通行制御システム |
JP2010092122A (ja) | 2008-10-03 | 2010-04-22 | Fujitsu Ltd | 認証システム、生体認証装置、及び生体認証方法 |
JP2012073963A (ja) | 2010-09-29 | 2012-04-12 | Toshiba Corp | 電子入力システム、および電子入力方法 |
JP2018151838A (ja) * | 2017-03-13 | 2018-09-27 | 株式会社A−スタイル | 入場管理システム |
JP2020038545A (ja) * | 2018-09-05 | 2020-03-12 | パナソニックIpマネジメント株式会社 | 顔認証ゲートおよび顔認証システム |
Family Cites Families (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
TWI282941B (en) * | 2001-03-15 | 2007-06-21 | Toshiba Corp | Entrance management apparatus and entrance management method by using face features identification |
FR3006790B1 (fr) * | 2013-06-10 | 2019-08-30 | Morpho | Procede d'identification biometrique |
JP6607266B2 (ja) * | 2018-01-12 | 2019-11-20 | 日本電気株式会社 | 顔認証装置 |
-
2021
- 2021-03-11 WO PCT/JP2021/009744 patent/WO2022190310A1/ja active Application Filing
- 2021-03-11 US US18/280,607 patent/US20240153326A1/en active Pending
- 2021-03-11 EP EP21930163.7A patent/EP4307259A4/en active Pending
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2006134081A (ja) * | 2004-11-05 | 2006-05-25 | Toshiba Corp | 入場管理システム、入場制御端末、及び入場管理方法 |
JP2009265769A (ja) * | 2008-04-22 | 2009-11-12 | Toshiba Corp | 生体認証装置および通行制御システム |
JP2010092122A (ja) | 2008-10-03 | 2010-04-22 | Fujitsu Ltd | 認証システム、生体認証装置、及び生体認証方法 |
JP2012073963A (ja) | 2010-09-29 | 2012-04-12 | Toshiba Corp | 電子入力システム、および電子入力方法 |
JP2018151838A (ja) * | 2017-03-13 | 2018-09-27 | 株式会社A−スタイル | 入場管理システム |
JP2020038545A (ja) * | 2018-09-05 | 2020-03-12 | パナソニックIpマネジメント株式会社 | 顔認証ゲートおよび顔認証システム |
Non-Patent Citations (1)
Title |
---|
See also references of EP4307259A4 |
Also Published As
Publication number | Publication date |
---|---|
US20240153326A1 (en) | 2024-05-09 |
JPWO2022190310A1 (ja) | 2022-09-15 |
EP4307259A1 (en) | 2024-01-17 |
EP4307259A4 (en) | 2024-04-17 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
JP6887028B2 (ja) | ドアアクセス制御方法、ドアアクセス制御装置、システム及び記憶媒体 | |
EP3704642B1 (en) | Methods and system for controlling access to enterprise resources based on tracking | |
JP5164448B2 (ja) | 正当性認証システム及び正当性認証方法 | |
JP6081859B2 (ja) | 入退域管理システム及び入退域管理方法 | |
US11496471B2 (en) | Mobile enrollment using a known biometric | |
JP2008140024A (ja) | 入場管理システムおよび入場管理方法 | |
JP2009110068A (ja) | 入場管理システム | |
JP2023101766A (ja) | 施設管理システム、施設管理方法、及びコンピュータプログラム | |
JP2024056872A (ja) | 滞在管理装置、滞在管理方法、及びプログラム | |
JP2000126160A (ja) | セキュリティシステム | |
WO2022190310A1 (ja) | 入場制御装置、入場制御システム、入場制御方法、及び非一時的なコンピュータ可読媒体 | |
KR20090041619A (ko) | 출입 통제 시스템 | |
JP2004265158A (ja) | セキュリティ管理システム並びにセキュリティ管理方法 | |
JP6312557B2 (ja) | セキュリティ管理システム | |
JP2022135182A (ja) | 来訪者管理システム及び来訪者管理方法 | |
JP4134798B2 (ja) | 無線通信システムおよびプログラム | |
JP2005232754A (ja) | セキュリティ管理システム | |
JP2020088462A (ja) | 入室管理システム | |
JP7268801B2 (ja) | 入場制御装置、入場制御システム、入場制御方法及び入場制御プログラム | |
JP7240360B2 (ja) | 情報処理システム、情報処理方法及び来訪者管理サーバ | |
US20230316840A1 (en) | History management apparatus, history management system, history management method, and non-transitory computer-readable medium | |
JP7296607B2 (ja) | 顔認証機および顔認証方法 | |
CN117975615A (zh) | 基于本地识别的远程门锁权限管理方法及装置 | |
JP2024058267A (ja) | 入場管理装置 | |
JP2022064230A (ja) | 画像認証システム、画像認証方法及びプログラム |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 21930163 Country of ref document: EP Kind code of ref document: A1 |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2023505007 Country of ref document: JP |
|
WWE | Wipo information: entry into national phase |
Ref document number: 18280607 Country of ref document: US |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2021930163 Country of ref document: EP |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
ENP | Entry into the national phase |
Ref document number: 2021930163 Country of ref document: EP Effective date: 20231011 |