WO2022244704A1 - 屋内位置認証方法、屋内位置認証システム、及び屋内位置認証装置 - Google Patents
屋内位置認証方法、屋内位置認証システム、及び屋内位置認証装置 Download PDFInfo
- Publication number
- WO2022244704A1 WO2022244704A1 PCT/JP2022/020286 JP2022020286W WO2022244704A1 WO 2022244704 A1 WO2022244704 A1 WO 2022244704A1 JP 2022020286 W JP2022020286 W JP 2022020286W WO 2022244704 A1 WO2022244704 A1 WO 2022244704A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- information
- wireless
- indoor location
- authentication
- location authentication
- Prior art date
Links
- 238000000034 method Methods 0.000 title claims description 35
- 238000012545 processing Methods 0.000 claims description 28
- 230000008569 process Effects 0.000 claims description 22
- 230000033001 locomotion Effects 0.000 claims description 6
- 238000004891 communication Methods 0.000 description 18
- 230000005540 biological transmission Effects 0.000 description 6
- 238000012790 confirmation Methods 0.000 description 5
- 230000008859 change Effects 0.000 description 4
- 238000006243 chemical reaction Methods 0.000 description 3
- 238000010586 diagram Methods 0.000 description 3
- 238000009434 installation Methods 0.000 description 3
- 238000005516 engineering process Methods 0.000 description 2
- 230000006870 function Effects 0.000 description 2
- 238000013459 approach Methods 0.000 description 1
- 210000001072 colon Anatomy 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000004044 response Effects 0.000 description 1
- 230000002123 temporal effect Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/44—Program or device authentication
-
- G—PHYSICS
- G01—MEASURING; TESTING
- G01S—RADIO DIRECTION-FINDING; RADIO NAVIGATION; DETERMINING DISTANCE OR VELOCITY BY USE OF RADIO WAVES; LOCATING OR PRESENCE-DETECTING BY USE OF THE REFLECTION OR RERADIATION OF RADIO WAVES; ANALOGOUS ARRANGEMENTS USING OTHER WAVES
- G01S5/00—Position-fixing by co-ordinating two or more direction or position line determinations; Position-fixing by co-ordinating two or more distance determinations
- G01S5/02—Position-fixing by co-ordinating two or more direction or position line determinations; Position-fixing by co-ordinating two or more distance determinations using radio waves
- G01S5/14—Determining absolute distances from a plurality of spaced points of known location
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/60—Context-dependent security
- H04W12/63—Location-dependent; Proximity-dependent
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/02—Services making use of location information
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/02—Services making use of location information
- H04W4/021—Services related to particular areas, e.g. point of interest [POI] services, venue services or geofences
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/30—Services specially adapted for particular environments, situations or purposes
- H04W4/33—Services specially adapted for particular environments, situations or purposes for indoor environments, e.g. buildings
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W64/00—Locating users or terminals or network equipment for network management purposes, e.g. mobility management
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2111—Location-sensitive, e.g. geographical location, GPS
Definitions
- the present invention relates to an indoor location authentication method, an indoor location authentication system, and an indoor location authentication device for authenticating indoor locations.
- Patent Document 1 discloses a technique for authenticating a position using a digital signature in the positioning technique using the Global Navigation Satellite System (GNSS).
- GNSS Global Navigation Satellite System
- Patent document 2 discloses a system for tracking the position of an individual such as a child.
- transmitters and receivers for transmitting and receiving signals dedicated to this system are installed in various places for position tracking. required and high deployment costs.
- the conventional technology described above cannot perform location authentication indoors.
- One aspect of the present invention for solving the problems of the conventional example is an indoor location authentication method, which includes a plurality of wireless devices placed indoors, which transmit wireless signals for acquiring location information.
- the authenticated wireless device which is the source of the wireless signal on which the location information was acquired, is sent from the terminal device that authenticates the wireless device and acquires the location information based on the wireless signal received from the authenticated wireless device.
- information on the number of wireless devices, and based on the acquired information on the number of wireless devices, the position information acquired by the terminal device is authenticated.
- an indoor location authentication system can be configured using devices capable of wireless communication such as an existing wireless LAN system indoors, and indoor location authentication can be performed at a relatively low deployment cost. .
- FIG. 1 is a block diagram showing a configuration example of an indoor location authentication system according to an embodiment of the present invention
- FIG. FIG. 4 is an explanatory diagram showing an example of contents of a database used by the indoor location authentication device according to the embodiment of the present invention
- It is a flowchart figure showing the operation example of the indoor location authentication apparatus which concerns on embodiment of this invention.
- FIG. 4 is a flow chart showing an operation example of a wireless transmitter/receiver that communicates with the indoor location authentication device according to the embodiment of the present invention
- It is a block diagram showing another configuration example of the indoor location authentication system according to the embodiment of the present invention.
- an indoor location authentication system 1 can communicate with at least one wireless transmitter/receiver 100 via a network or the like. and a user device 300 possessed by a user whose location is to be authenticated. Also, the at least one wireless transmitter/receiver 100 is placed indoors such as in a station, a facility such as a department store, or the like.
- the wireless transmitter/receiver 100 includes a control unit 101, a storage unit 102, an interface unit 103, a management unit 104, and a wireless transmitter/receiver unit 105.
- the control unit 101 is a program control device such as a CPU, and operates according to programs stored in the storage unit 102 .
- the control unit 101 of the wireless transmitter/receiver 100 executes device authentication processing and location authentication processing.
- control unit 101 performs device authentication processing according to instructions input from the indoor location authentication device 200 .
- this control section 101 controls establishment and disconnection of a communication path with a user device 300 in a communicable area of the wireless transmission/reception section 105, which will be described later, according to instructions input from the indoor location authentication device 200.
- FIG. Detailed operations of these control units 101 will be described later.
- the storage unit 102 holds programs executed by the control unit 101 .
- This program may be provided by being stored in a computer-readable and non-temporary recording medium, and may be copied and stored in this storage unit 102 .
- the storage unit 102 also holds various parameters required for processing by the control unit 101, and also operates as a work memory for the control unit 101.
- the storage unit 102 stores a device name (DeviceName), a device identifier (ID), identification information unique to a predetermined indoor area (area identification information: Area), an RSSI value, other predetermined flag information, Maintain separate databases that associate data with each other.
- the RSSI value here represents the strength of a signal received from another device by the wireless transceiver 100 holding this individual database, and is a device identifier that identifies the other device that has sent the signal. recorded in association with
- the interface unit 103 is an interface that accepts information input from the user, and includes, for example, a biometric authentication device such as a fingerprint authentication device, a touch sensor, a display, and the like.
- a biometric authentication device such as a fingerprint authentication device, a touch sensor, a display, and the like.
- the management unit 104 manages radio signals transmitted and received by the radio transmission/reception unit 105 according to instructions input from the control unit 101 .
- the wireless transmission/reception unit 105 transmits and receives any wireless signal among GNSS signals, wireless LAN signals, Bluetooth (registered trademark) signals, mobile phone communication network signals (3G, 4G, 5G, etc.).
- the indoor location authentication device 200 is a computer-controlled device that transmits and receives various information to and from the wireless transceiver 100 via a network. means. In one example of the present embodiment, this indoor location authentication device 200 executes device authentication processing and location authentication processing through the operation of the one or more processors included in location authentication device 200 .
- this wireless transceiver 100 can be a wireless LAN access point, mobile phone communication base station, or various IoT devices placed indoors.
- the indoor location authentication device 200 controls a plurality of wireless transceivers 100 placed indoors. This indoor location authentication device 200 communicates with the target wireless transceiver 100, authenticates its location, and controls the communication.
- the indoor location authentication device 200 includes a control unit 201, a storage unit 202, and a communication unit 203, as illustrated in FIG.
- the control unit 201 is a program control device such as a CPU, and operates according to programs stored in the storage unit 202 .
- This control unit 201 corresponds to one or more processors of the present invention.
- Control unit 201 of the present embodiment executes device authentication processing and location authentication processing. These operations of the control unit 201 will be described later in detail.
- the storage unit 202 holds programs executed by the control unit 201 .
- This program may be provided by being stored in a computer-readable and non-temporary recording medium, and may be copied and stored in the storage section 202 .
- the storage unit 202 stores information identifying the wireless transceiver 100 with which the indoor location authentication device 200 communicates. network address, etc.), identification information (area identification information) specific to the indoor area where the wireless transceiver 100 is located, and the wireless transceiver 100 in an authenticated state. It holds a device database that holds whether or not there is (whether or not it is a “master”) in association with each other. In addition, in this database, various data (Data) and information for specifying the installation position in the area (information for specifying the store where it is installed) are stored for the wireless transmitter/receiver 100 whose installation position is fixed. etc.) may be further associated.
- Data data
- information for specifying the installation position in the area information for specifying the store where it is installed
- the communication unit 203 is a network interface or the like, and transmits and receives information to and from each wireless transmitter/receiver 100 according to instructions input from the control unit 201 .
- the user device 300 is a mobile phone terminal or the like, and can be carried and moved by the user.
- n or more wireless transceivers 100 placed indoors in a facility or the like depend on whether or not they can communicate with each other. authenticate legitimacy; For example, when three wireless transceivers 100 can communicate with each other, these wireless transceivers 100 authenticate that they are located in the same room.
- control units 101 and 201 of wireless transmitter/receiver 100 and indoor location authentication device 200 repeatedly execute the following device authentication processing at predetermined timings.
- control unit 201 of indoor location authentication device 200 resets counter i to “0” (S10), as illustrated in FIG. While sequentially selecting each of the machines 100, the following process is repeated.
- the control unit 201 resets the counter N to "0".
- the control unit 201 transmits information identifying the selected wireless transceiver 100 (hereinafter referred to as a wireless transceiver of interest) and various information associated with this information, including area identification information, to the wireless transceiver of interest. Send out.
- the various information including the area identification information may include flag information such as whether or not it is "master”.
- the control unit 201 causes the wireless transceiver 100 of interest to broadcast the information (broadcast instruction: S11). This broadcasting is performed in a different manner depending on whether the wireless signal of the wireless transmitter/receiver 105 of the wireless transmitter/receiver 100 is a wireless LAN access point, a mobile phone communication base station, or the like.
- control unit 201 may temporarily set the flag information stored in the device database corresponding to the wireless transceiver of interest to "off" (information indicating "not the master").
- the control unit 201 accepts the received information from the wireless transmitter/receiver 100 other than the wireless transmitter/receiver of interest that has received the information broadcast by the wireless transmitter/receiver of interest (S12).
- the radio transceivers 100 other than the radio transceiver of interest that have received the information broadcast by the radio transceiver of interest receive RSSI information representing the strength of the received signal from the radio transceiver of interest along with the received information. is transmitted to the indoor location authentication device 200 .
- the control unit 201 selects the information associated with the information identifying the wireless transceiver of interest among the information stored in the device database.
- the device database is updated by rewriting the flag information to "on" (information representing "master") and incrementing the counter i by "1" (S16).
- the control unit 201 checks whether the value of the counter i is equal to or greater than a predetermined threshold value P as the number of wireless transceivers to be authenticated (S17).
- This threshold P is hereinafter referred to as a device authentication threshold.
- the device authentication threshold value P is set to an integer of 3 or more, for example. If the value of the counter i is greater than or equal to the device authentication threshold value P in step S17, the control unit 201 terminates the process.
- step S17 when the value of the counter i is less than the device authentication threshold value, the control unit 201 selects the next wireless transmitter/receiver 100 as the target wireless transmitter/receiver, and returns to step S11 to continue processing.
- step S15 when the counter N is less than the predetermined integer threshold value n, the control unit 201 returns to step S12 and waits for reception of information from yet another wireless transmitter/receiver 100.
- step S12 exceeds a predetermined time, or in step S13, the control unit 201 controls the area identification information included in each of the information sent in step S11 and the information received in step S12. do not match, the repetition of steps S12 to S14 is terminated, the next wireless transmitter/receiver 100 is selected as the wireless transmitter/receiver of interest, and the process returns to step S11 to continue the process.
- control unit 201 ends the processing.
- indoor location authentication device 200 controls wireless transceivers 100 in a plurality of areas identified by area identification information different from each other, indoor location authentication device 200 performs wireless transmission/reception in each area. The above processing is executed for the machine 100 .
- the control unit 101 of the wireless transmitter/receiver 100 operating together with the indoor location authentication device 200 determines that the number of received area identification information broadcasted by a plurality of other wireless transmitter/receivers 100 and received by itself is The most common area identification information is selected, and the selected area identification information is stored in the storage unit 102 as the area identification information of the area in which the self is located. 4, when the control unit 101 receives area identification information and the like from the indoor location authentication device 200 (S21), it stores the area identification information included in the received information and the area identification information in its own storage unit 102. It compares with the provided area identification information (S22). If they do not match, the indoor location authentication device 200 suspends the following processing because there is a possibility that the wireless transmitter/receiver 100 has been illegally moved.
- step S21 if the area identification information included in the received information matches the area identification information stored in its own storage unit 102 in step S22, the information received in step S21 is transmitted wirelessly to the surrounding area. (S23).
- control unit 101 of the wireless transmitter/receiver 100 receives information broadcast by another wireless transmitter/receiver 100, the control unit 101 receives the information and the information of the strength of the wireless signal when the information is received. is sent to indoor location authentication device 200 .
- the indoor location authentication device 200 finds at least P (P is an integer equal to or greater than 3) units in each area among the wireless transceivers 100 in the pre-registered area, and authenticates them. Record as wireless transceiver 100 (master transceiver).
- the wireless transmitter/receiver 100 that has become the master transmitter/receiver may not always function as the master transmitter/receiver permanently. For example, if the wireless transmitter/receiver 100 is installed in a store, the power of the wireless transmitter/receiver 100 may be turned off when the store is closed.
- the device authentication processing of the wireless transceiver 100 is repeatedly performed at predetermined timings (for example, every 10 minutes), so that the master transceiver 100 can be used as much as possible. This ensures and improves the availability of the system of the present invention.
- wireless transceivers 100a, 100b, 100c, and 100d For example, in an area where four wireless transceivers 100a, 100b, 100c, and 100d are located, three wireless transceivers 100a, 100b, and 100c are recorded as master transceivers.
- the wireless transmitter/receiver 100a becomes unable to communicate for some reason, at the timing of the next device authentication process, in response to the broadcast instruction sent by the indoor location authentication device 200 (step S11 in FIG. 3), although the radio transceiver 100a does not respond, the other radio transceivers 100b, 100c, and 100d respond to this instruction and sequentially broadcast information including area identification information identifying the area in which these radio transceivers 100 are located. do.
- the indoor location authentication device 200 refers to the information received by the wireless transmitter/receivers 100c and 100d, and confirms that the information matches the information broadcast by the wireless transmitter/receiver 100b. , by two or more other (other than radio transceiver 100b) radio transceivers 100c, 100d, record radio transceiver 100b as an authenticated master transceiver.
- wireless transmitter/receiver 100c information broadcast by the wireless transmitter/receiver 100c is received by the wireless transmitter/receivers 100b and 100d
- information broadcast by the wireless transmitter/receiver 100d is received by the wireless transmitter/receivers 100b and 100c.
- 200 will record the three radio transceivers 100a, 100b, 100c as master transceivers.
- the indoor location authentication device 200 thereby maintains availability of location authentication processing (described below) in the area where the wireless transceivers 100a, 100b, 100c, and 100d are located.
- the user device 300 accumulates and holds the received information. Specifically, the user device 300 is a smart phone or the like, receives a broadcast signal, demodulates the received signal, and retrieves the broadcast information. Then, the user device 300 accumulates and records the extracted information (received information) using the information identifying the wireless transceiver 100 as a key. Also, at this time, the user device 300 associates the information identifying the wireless transceiver 100 that is the source of the broadcasted information with the signal reception strength (RSSI value) of the broadcast signal received from the wireless transceiver 100. may be recorded together.
- RSSI value signal reception strength
- the user device 300 presumes that the area identification information included in the last received information is information identifying the area where the user device 300 is currently located (location area information), and the area identification information that matches the location area information. Information associated with information that includes information and identifies different wireless transceivers 100 is retrieved from the recorded information.
- the user device 300 refers to flag information indicating whether or not it is a “master” included in the read information, and is associated with information identifying different wireless transceivers 100, and the flag information is the master.
- the number N of pieces of information (referred to as certification information) that are in a state indicating that the
- the user device 300 transmits at least part of the certification information (for example, a set of information identifying the N wireless transceivers 100, or the N wireless Information for identifying the transceiver 100 and a set of RSSI values recorded in association with each are recorded.
- This record serves as information indicating that the user device 300 was located in the area indicated by the location area information.
- the user device 300 determines that it is located in the area identified by the area identification information included in the certification information (acquires location information).
- the user device 300 uses the information recorded here (information identifying the N wireless transceivers 100 and a set of RSSI values recorded in association with each of them) together with information identifying the user device 300 at an indoor location. It may be sent to an external server such as the authentication device 200 and recorded. The external server receiving this information adds at least part of the certification information (for example, information identifying N wireless transceivers 100) to information identifying the user device 300 (for example, the phone number of the user device 300). ) are associated and recorded.
- the certification information for example, information identifying N wireless transceivers 100
- information identifying the user device 300 for example, the phone number of the user device 300.
- the indoor location authentication device 200 when the user device 300 transmits to the indoor location authentication device 200 a set of information identifying N wireless transceivers 100 and RSSI values recorded in association with each, the indoor location authentication device 200 performs the following: may operate as
- the indoor location authentication device 200 of this example holds information on the installation location within the area of each wireless transceiver 100 in the device database. Based on the information received from the user device 300, the indoor location authentication apparatus 200 determines how far the user device 300, which is the transmission source of the information, is from each wireless transceiver 100 identified by the information included in the information. It is also possible to estimate the position of the user device 300 within the area by estimating whether it exists at a distance from the corresponding RSSI value.
- indoor location authentication device 200 uses a pseudo-random pseudo-random May contain value information.
- This pseudo-random value may be determined by some random number, or may be time information encrypted with a predetermined secret key (time information measured by indoor location authentication device 200), or the like.
- the wireless transceiver 100 broadcasts the pseudo-random value together with the area identification information and flag information such as whether or not it is "master".
- the indoor location authentication device 200 stores and records this pseudo-random value in association with the information identifying the radio transceiver 100 that instructed the broadcast.
- the user device 300 or the like also receives this pseudo-random value broadcast by the wireless transceiver 100, and includes the pseudo-random value included in the certification information in the information to be recorded.
- the indoor location authentication device 200 checks whether or not the recorded information matches the pseudo-random value issued at the corresponding time. By checking, the reliability of the recorded information can be improved.
- the indoor location authentication system 1 basically has the above configuration and operates as follows.
- a plurality of wireless transceivers 100 capable of wirelessly transmitting and receiving information within the area are arranged in an indoor area targeted for location authentication. It is also assumed that this wireless transmitter/receiver 100 is communicably connected to the indoor location authentication device 200 .
- the indoor location authentication device 200 for the wireless transmitter/receiver 100 corresponding to each area, information for identifying the wireless transmitter/receiver 100 and area identification information specific to the area in which the wireless transmitter/receiver 100 is arranged are stored in advance. , and flag information indicating whether or not the radio transceiver 100 is in an authenticated state (whether or not it is “master”).
- the indoor location authentication device 200 repeatedly executes the device authentication process related to the wireless transmitter/receiver 100 at predetermined timings.
- the following processing is repeatedly performed while sequentially selecting each of the wireless transceivers 100 specified by the information stored in the database for each area.
- the indoor location authentication device 200 regards the selected wireless transceiver 100 as a wireless transceiver of interest, information identifying this wireless transceiver of interest, area identification information associated with this information, and whether or not it is "master”. and other flag information are sent to the wireless transceiver of interest as a broadcast instruction. At this time, the indoor location authentication device 200 turns off (“non-master”) the flag information related to the wireless transceiver 100 in the database.
- the wireless transceiver of interest Upon receiving a broadcast instruction from the indoor location authentication device 200, the wireless transceiver of interest compares the area identification information included in the instruction with the area identification information stored in its own storage unit 102. Then, when these match, the attention wireless transceiver follows the instruction and broadcasts the received information identifying the attention wireless transceiver, the area identification information, and the flag information such as whether it is "master" or not. sent by
- the broadcasting method differs depending on the communication method of the radio transceiver 100, but any device having a reception capability corresponding to the communication method can receive the broadcast without limiting the destination. Any method, if any, may be used.
- Another wireless transmitter/receiver 100 (referred to as a receiving device for the sake of convenience) arranged in the same area as the target wireless transmitter/receiver is arranged in the same area as the target wireless transmitter/receiver is arranged.
- the received information and information on the strength of the wireless signal when the information is received are sent to the indoor location authentication device 200, which is predetermined.
- the radio transceivers 100 arranged in each area are registered as masters and authenticated when mutual communication is possible with a predetermined number or more of other radio transceivers 100. becomes.
- the indoor location authentication device 200 periodically repeats the above process so that the number of master wireless transceivers 100 does not fall below a predetermined number (for example, three) for each area. .
- the wireless transmitter/receiver 100 broadcasts area identification information according to an instruction from the indoor location authentication device 200 in the process of device authentication processing, etc. It receives information such as flag information such as whether it is "master" or not.
- the user device 300 stores the received information by accumulating and storing information identifying the wireless transceiver 100 as a key.
- user device 300 presumes that the area identification information included in the last received information is information (location area information) that identifies the area in which the user device 300 is currently located, and the area that matches the location area information.
- Information that includes identification information and is associated with information that identifies different wireless transceivers 100 is read out of the stored information.
- the user device 300 refers to flag information indicating whether or not the user device 300 is “master”, which is included in the read information, is associated with information identifying different wireless transceivers 100, and the flag information indicates whether the flag information is the master.
- Count the number N of pieces of certification information that are in a state indicating that there is something.
- this threshold is set to 3 or more; in the description here, it is set to "3"
- the information broadcast by radio transceiver 100 is repeatedly executed from the receiving process.
- the user device 300 records at least part of the certification information (for example, a set of information identifying the N wireless transceivers 100). This record can be used at a later date, for example, as information indicating that the user device 300 was located in the area indicated by the location area information.
- the certification information for example, a set of information identifying the N wireless transceivers 100. This record can be used at a later date, for example, as information indicating that the user device 300 was located in the area indicated by the location area information.
- a location authentication system can be configured by using an existing indoor system such as a wireless LAN system and updating the software of the access point. It becomes possible to authenticate the indoor position of a device or the like.
- the indoor location authentication system 1 of the present embodiment can also be used to authenticate the location of a proximity communication type card, as illustrated in FIG.
- the NFC card reader device 400 that reads information from the NFC card C is placed in an area where communication with the wireless transmitter/receiver 100 is possible. It is assumed that each NFC card reader device 400 is set with a unique reader identifier in advance.
- This NFC card reader device 400 may be, for example, an automatic ticket gate installed at a train station.
- the indoor location authentication device 200 stores a reader identifier and an NFC card identified by the reader identifier for this NFC card reader device 400, in addition to the device database holding information related to the wireless transceiver 100.
- a reader database in which area identification information of the area in which the reader device 400 is installed is recorded in association with each other, and a card database for recording information identifying the location area for each NFC card are held.
- the NFC card reader device 400 acquires the area identification information of the area where the NFC card reader device 400 is located by the same process as the position authentication process of the user device 300 already described.
- the NFC card reader device 400 sends the reader identifier for identifying itself and the acquired area identification information to the indoor location authentication device 200 to record them in association with the reader database.
- the NFC card reader device 400 when the NFC card reader device 400 reads out the identification information (card identification information) of the NFC card C that has come into contact with it, the NFC card reader device 400 transmits the reader identifier that identifies the NFC card reader device 400 itself and the read card identification information to the indoor location. It is sent to authentication device 200 .
- indoor location authentication device 200 When indoor location authentication device 200 receives from NFC card reader device 400 a reader identifier for identifying NFC card reader device 400 itself and the card identification information read by NFC card reader device 400, indoor location authentication device 200 refers to the reader database. , the area identification information associated with the NFC card reader device 400 is obtained.
- the indoor location authentication device 200 adds the acquired area identification information to the card identification information and a flag indicating that the location in the area identified by this area identification information has not been authenticated (off). flag) information and stored in the card database.
- the indoor location authentication device 200 obtains from the device database information identifying the wireless transceiver 100 associated with the acquired area identification information, and the flag information is "on" (in an authenticated state). a) retrieve information that identifies the wireless transceiver 100; The indoor location authentication device 200 checks whether or not the number of pieces of information identifying the wireless transceiver 100 found by the search is equal to or greater than a predetermined threshold value (for example, "3"). Here, if the number of pieces of information identifying the wireless transceiver 100 found by the search is a predetermined threshold value, the indoor location authentication device 200 uses the NFC card reader device previously recorded in the card database. Among the information related to the card identification information received from 400, the flag information indicating whether or not it has been authenticated is changed to ON (state indicating that it has been authenticated) and overwritten.
- a predetermined threshold value for example, "3"
- information on the location area of the NFC card C held over the NFC card reader device 400 is set as the area identification information where the NFC card reader device 400 is located (authenticated). Furthermore, at the time the NFC card C is held over, the wireless communication device which is the master for authenticating the location area of the NFC card reader device 400 in the area identified by the area identification information (the location is authenticated). On the condition that the number of transceivers 100 is, for example, 3 or more, the area where the NFC card reader 400 is located is authenticated, and the NFC card C read by the NFC card reader 400 is transferred to the NFC card reader 400. is authenticated to be located in the area where is located.
- the NFC card reader device 400 is assumed to be an automatic ticket gate device, but the NFC card reader device 400 may be, for example, a vending machine instead of an automatic ticket gate device.
- the indoor location authentication device 200 may hold update (commit) history of various databases such as the device database, the reader database, the card database, and the like. This history may be used for estimating the route of movement of the user device 300 and the like, and for billing processing based on the route of movement.
- the indoor location authentication system 1 provided with the indoor location authentication device 200 according to this example can be used, for example, as a ticket gate system for railways and the like.
- a database location information conversion database
- a database is prepared in advance for associating the area identification information used in this embodiment with the information representing the location of the station ticket gate used in the ticket examination system. .
- the location information conversion database is Area identification information: Information for identifying ticket gates, etc. 800: JR East_Tohoku Shinkansen_Tokyo Station ticket gates 801: JR East_Tohoku Shinkansen_Tokyo Station Shinkansen platform 802: JR East_Tohoku Shinkansen_Omiya Station ticket gates... and so on.
- the database contains information about the device.
- each item of device identification information, area identification information, authentication, . . . is separated by a colon. Also, the first row represents the item name.
- the indoor location authentication device 200 As a record of confirmation of the update of the database, Device Identity: Area Identity: Authentication: ... 300:800: ON... Stores a record of
- This record shows that the user device 300 has been authenticated to be located in the area with the area identifier "800" where the three authenticated (master) wireless transceivers 100 are located. .
- the database records Device Identity: Area Identity: Authentication: ... ... 100c: 800: ON:... 300:801:On:... 101a: 801: ON:... ... and so on.
- the update confirmation record related to the user device 300 is Device Identity: Area Identity: Authentication: ... 300:800: ON... 300:801:On... change like this.
- the indoor location authentication device 200 updates the database.
- the record is Device Identity: Area Identity: Authentication: ... ... 100x:806:On:... 300:806:On:... ... and so on.
- the update confirmation record related to the user device 300 is Device Identity: Area Identity: Authentication: ... 300:800: ON... 300:801:On... 300:806:On... change like this.
- the database is updated by the indoor location authentication device 200, ... 100y: 805: ON:... 300:805:On:... ...
- the update confirmation record related to the user device 300 is Device Identity: Area Identity: Authentication: ... 300:800: ON... 300:801:On... 300:806:On... 300:805:On... change like this.
- the user can make a bid from the Shinkansen ticket gate at Tokyo Station, board the train, and proceed to the ticket gate at Sendai Station. Since it is authenticated that the bid has been issued, it is possible for a railway company or the like to use it for billing or other processing.
- fares can be calculated and billed without using a system equipped with an automatic door opening device or an NFC card reader as a ticket gate. Since it becomes clear that this system is used, it is also possible to give the user an incentive such as a fare discount only when the system of the present embodiment is used.
- the user device 300 can also use a conventional mobile terminal such as a general smart phone. That is, in order to use the indoor location authentication system of this embodiment, user device 300 only needs to have some kind of wireless communication function, and no other infrastructure is required.
- the threshold for the number of wireless transceivers 100 located in an area identified by the same area identifier and capable of communicating with each other for location authentication is Although it has been described as not depending on the communication method, the present embodiment is not limited to this.
- the wireless transceiver 100 is a mobile phone communication base station, it is assumed that unauthorized movement is difficult. A value smaller than a certain device may be used.
- 1 indoor location authentication system 100 wireless transceiver, 101 control unit, 102 storage unit, 103 interface unit, 104 management unit, 105 wireless transmission/reception unit, 200 indoor location authentication device, 201 control unit, 202 storage unit, 203 communication unit, 300 user device, 400 NFC card reader device.
Abstract
Description
次に、無線送受信機100の制御部101及び屋内位置認証装置200の制御部201による機器認証処理について説明する。本実施の形態の一例では、施設等の屋内に配置された無線送受信機100は、そのn台以上(nは2以上の整数)が、相互に通信が可能であるか否かによってその位置の正当性を認証する。例えば3台の無線送受信機100が相互に通信可能であるときに、これらの無線送受信機100は同じ屋内に配置されていると認証する。
マスター送受信機となった無線送受信機100が、永続的にマスター送受信機として機能できるとは限らない。例えば無線送受信機100が店舗に備えられている場合、当該店舗が閉店したときに無線送受信機100の電源が落とされてしまう場合もあり得る。
次に、ユーザが所持するユーザデバイス300の位置認証処理について説明する。本実施の形態では、ユーザデバイス300は、位置認証処理用のアプリケーションプログラムを実行し、無線送受信機100が機器認証処理などの過程で、屋内位置認証装置200からの指示によりブロードキャストする、エリア識別情報と、「マスターである」か否かなどのフラグ情報などの情報を受信する。
さらに本実施の形態の一例では、屋内位置認証装置200は、無線送受信機100に対してのブロードキャストの指示に、無線送受信機100を識別する情報等とともにブロードキャストするべき情報として、疑似的にランダムな値の情報を含めてもよい。この疑似的にランダムな値は、何らかの乱数により決定したものであってもよいし、予め定められた秘密鍵により暗号化された時刻情報(屋内位置認証装置200が計時する時刻情報)等であってもよい。
本実施の形態の一例に係る屋内位置認証システム1は、基本的に以上の構成を備えており、次のように動作する。
本実施の形態によると、無線LANシステムなど、屋内に既存のシステムを利用して、そのアクセスポイントのソフトウエアを更新することで位置認証のシステムを構成でき、比較的低い配備コストで、ユーザのデバイス等の屋内での位置を認証することが可能となる。
また、本実施の形態の屋内位置認証システム1は、図5に例示するように、近接通信型のカードの位置を認証する場合にも利用できる。
また本実施の形態の屋内位置認証システム1では、屋内位置認証装置200は、機器データベースやリーダデータベース、カードデータベース等、種々のデータベースの更新(コミット)の履歴を保持してもよい。そして、この履歴は、ユーザデバイス300等の移動経路の推定処理、さらには当該移動経路に基づく課金処理に供されてもよい。
エリア識別情報:改札などを特定する情報
800:JR東_東北新幹線_東京駅改札
801:JR東_東北新幹線_東京駅新幹線ホーム
802:JR東_東北新幹線_大宮駅改札
…
といったように設定される。
デバイスの識別情報:エリア識別情報:認証:…
100a:800:オン:…
100b:800:オン:…
100c:800:オン:…
300:800:オン:…
101a:801:オン:…
…
というように記録されている状態となる。ここでは表記上の都合により、デバイスの識別情報,エリア識別情報,認証,…の各項目をコロンで区切って表す。また最初の行は、項目名を表すものとした。
デバイスの識別情報:エリア識別情報:認証:…
300:800:オン…
という記録を格納する。
デバイスの識別情報:エリア識別情報:認証:…
…
100c:800:オン:…
300:801:オン:…
101a:801:オン:…
…
といったように更新して確定される。このとき、ユーザデバイス300に係る更新確定の記録は、
デバイスの識別情報:エリア識別情報:認証:…
300:800:オン…
300:801:オン…
といったように変化する。
デバイスの識別情報:エリア識別情報:認証:…
…
100x:806:オン:…
300:806:オン:…
…
といったように更新して確定される。このとき、ユーザデバイス300に係る更新確定の記録は、
デバイスの識別情報:エリア識別情報:認証:…
300:800:オン…
300:801:オン…
300:806:オン…
といったように変化する。
…
100y:805:オン:…
300:805:オン:…
…
となり、ユーザデバイス300に係る更新確定の記録は、
デバイスの識別情報:エリア識別情報:認証:…
300:800:オン…
300:801:オン…
300:806:オン…
300:805:オン…
といったように変化する。
なお、ここまでの説明では、位置を認証するための、同じエリア識別子で識別されるエリアに所在し、相互に通信可能な無線送受信機100の数に関するしきい値は、無線送受信機100の無線通信の方式によらないものとして説明していたが、本実施の形態はこれに限られない。
Claims (6)
- 屋内に配置される複数の無線機器であって、位置情報演算用の無線信号を送出する複数の無線機器、を認証し、
当該認証した無線機器から受信した無線信号に基づき、位置情報を取得する端末装置から、当該位置情報の取得の基礎となった無線信号の送信元である前記認証された無線機器の数の情報を取得し、
当該取得した無線機器の数の情報に基づいて、前記端末装置が取得した位置情報を認証する屋内位置認証方法。 - 屋内に配置される複数の無線機器と、
屋内に位置し、前記無線機器が送出する無線信号を受信する端末装置と、
前記無線機器及び端末装置に通信可能に接続される屋内位置認証装置と、を含む屋内位置認証システムであって、
前記無線機器は、位置情報取得用の無線信号を送出し、
前記端末装置は、前記無線機器から受信した無線信号に基づき、位置情報を取得して、当該位置情報の取得の基礎となった無線信号の送信元である無線機器の少なくとも一部を特定する情報を出力し、
前記屋内位置認証装置は、少なくとも1つのプロセッサを有し、当該1以上のプロセッサが、
前記無線機器を認証する第1認証処理と、
前記端末装置から、当該端末装置における位置情報の取得の基礎となった無線信号の送信元である無線機器のうち、前記認証された無線機器の数の情報を取得する取得処理と、
前記取得した無線機器の数の情報に基づいて、前記端末装置が取得した位置情報を認証する第2認証処理と
を実行する屋内位置認証システム。 - 請求項2に記載の屋内位置認証システムであって、
前記屋内位置認証装置の1以上のプロセッサは、前記第2認証処理において、前記端末装置が取得した位置情報を認証する屋内位置認証システム。 - 請求項2または3に記載の屋内位置認証システムであって、
前記無線機器は、配された位置において、屋外から位置情報の取得の基礎となる無線信号を受信可能なときには、当該無線信号を受信し、
当該受信した無線信号に基づいて、送出する無線信号を生成する屋内位置認証システム。 - 屋内に配置される複数の無線機器と通信可能に接続された屋内位置認証装置であって、少なくとも1つのプロセッサを有し、この1以上のプロセッサが、
位置情報取得用の無線信号を送出する前記複数の無線機器を認証する機器認証処理と、
前記認証した無線機器から受信した無線信号に基づき、位置情報を取得する端末装置から、当該位置情報の取得の基礎となった無線信号の送信元である前記認証された無線機器の数の情報を取得する処理と、
前記取得した無線機器の数の情報に基づいて、前記端末装置が取得した位置情報を認証する位置認証処理と、
を実行する屋内位置認証装置。 - 請求項5に記載の屋内位置認証装置であって、
この屋内位置認証装置は、
前記認証した、端末装置が取得した位置情報を記録するとともに、当該記録した位置情報の履歴を保持しており、
当該保持している履歴が、前記端末装置の移動経路の推定処理、または当該移動経路に基づく課金処理に供される屋内位置認証装置。
Priority Applications (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020237039895A KR20240008864A (ko) | 2021-05-20 | 2022-05-13 | 옥내 위치 인증 방법, 옥내 위치 인증 시스템, 및 옥내 위치 인증 장치 |
CN202280036278.7A CN117356115A (zh) | 2021-05-20 | 2022-05-13 | 室内位置认证方法、室内位置认证系统及室内位置认证装置 |
EP22804616.5A EP4344319A1 (en) | 2021-05-20 | 2022-05-13 | Indoor position authentication method, indoor position authentication system, and indoor position authentication device |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2021-085681 | 2021-05-20 | ||
JP2021085681A JP7331039B2 (ja) | 2021-05-20 | 2021-05-20 | 屋内位置認証方法、屋内位置認証システム、及び屋内位置認証装置 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2022244704A1 true WO2022244704A1 (ja) | 2022-11-24 |
Family
ID=84140478
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/JP2022/020286 WO2022244704A1 (ja) | 2021-05-20 | 2022-05-13 | 屋内位置認証方法、屋内位置認証システム、及び屋内位置認証装置 |
Country Status (5)
Country | Link |
---|---|
EP (1) | EP4344319A1 (ja) |
JP (1) | JP7331039B2 (ja) |
KR (1) | KR20240008864A (ja) |
CN (1) | CN117356115A (ja) |
WO (1) | WO2022244704A1 (ja) |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2009096184A1 (ja) * | 2008-01-29 | 2009-08-06 | Softbank Mobile Corp. | 通信システム |
JP2013207720A (ja) * | 2012-03-29 | 2013-10-07 | Shimizu Corp | 位置認証システム及び方法 |
JP6373905B2 (ja) | 2016-07-21 | 2018-08-15 | 加藤電機株式会社 | 個体の位置追跡システム |
JP6425722B2 (ja) | 2013-07-09 | 2018-11-21 | ザ ヨーロピアン ユニオン、リプレゼンテッド バイ ザ ヨーロピアン コミッションThe European Union,represented by the European Commission | デジタル署名される衛星無線航法信号 |
WO2020137971A1 (ja) * | 2018-12-25 | 2020-07-02 | イネーブラー株式会社 | 位置情報提供システムおよび位置情報提供方法 |
Family Cites Families (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JPS6373905U (ja) | 1986-10-30 | 1988-05-17 | ||
JPS6425722U (ja) | 1987-08-07 | 1989-02-13 | ||
JP6183132B2 (ja) | 2013-10-11 | 2017-08-23 | 富士通株式会社 | 認証サーバ、認証プログラム、及び認証方法 |
JP6631941B2 (ja) | 2016-03-11 | 2020-01-15 | 富士ゼロックス株式会社 | 制御装置、位置確認システム及びプログラム |
JP6747751B1 (ja) | 2019-05-29 | 2020-08-26 | 三菱電機株式会社 | 車両用認証装置および車両用認証システム、並びに車両用認証方法 |
-
2021
- 2021-05-20 JP JP2021085681A patent/JP7331039B2/ja active Active
-
2022
- 2022-05-13 EP EP22804616.5A patent/EP4344319A1/en active Pending
- 2022-05-13 KR KR1020237039895A patent/KR20240008864A/ko unknown
- 2022-05-13 CN CN202280036278.7A patent/CN117356115A/zh active Pending
- 2022-05-13 WO PCT/JP2022/020286 patent/WO2022244704A1/ja active Application Filing
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2009096184A1 (ja) * | 2008-01-29 | 2009-08-06 | Softbank Mobile Corp. | 通信システム |
JP2013207720A (ja) * | 2012-03-29 | 2013-10-07 | Shimizu Corp | 位置認証システム及び方法 |
JP6425722B2 (ja) | 2013-07-09 | 2018-11-21 | ザ ヨーロピアン ユニオン、リプレゼンテッド バイ ザ ヨーロピアン コミッションThe European Union,represented by the European Commission | デジタル署名される衛星無線航法信号 |
JP6373905B2 (ja) | 2016-07-21 | 2018-08-15 | 加藤電機株式会社 | 個体の位置追跡システム |
WO2020137971A1 (ja) * | 2018-12-25 | 2020-07-02 | イネーブラー株式会社 | 位置情報提供システムおよび位置情報提供方法 |
Also Published As
Publication number | Publication date |
---|---|
JP2022178708A (ja) | 2022-12-02 |
JP7331039B2 (ja) | 2023-08-22 |
CN117356115A (zh) | 2024-01-05 |
KR20240008864A (ko) | 2024-01-19 |
EP4344319A1 (en) | 2024-03-27 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11622017B2 (en) | Location based task execution for enhanced data access | |
US10008057B2 (en) | Short-range device communications for secured resource access | |
US7693527B2 (en) | Restricted frequency band remote device communication authorization by geographic location | |
US10636231B2 (en) | Systems and methods for short-range communication between devices | |
EP2506606A1 (en) | Terminal apparatus and communication method, information processing apparatus and method, non-transitory storing medium storing program, and information processing system | |
US20040038665A1 (en) | Mobile telephone, and advertisement distributing method and distributing system for its use | |
CN102598719A (zh) | 在软件定义无线电中的位置集成 | |
US20060153189A1 (en) | Ad hoc communication system, mobile terminal, center, ad hoc communication method and ad hoc communication program | |
CN108027432A (zh) | 基于移动装置特权的测距及/或定位服务 | |
CN101395640A (zh) | 用于区域敏感游戏使能的启用地理限制区域的设备和网络 | |
WO2020120672A1 (en) | Communication network node, methods, and a mobile terminal | |
JPWO2014097968A1 (ja) | 位置情報サービスシステム、電子タグを用いた位置情報サービス方法、携帯情報端末、および端末プログラム | |
US11755016B2 (en) | Methods and apparatus for radio station monitoring using unmanned aerial vehicles | |
WO2022244704A1 (ja) | 屋内位置認証方法、屋内位置認証システム、及び屋内位置認証装置 | |
JP6496863B1 (ja) | サーバ及び受付用画面の表示方法 | |
CN103369537B (zh) | 用于利用空白区的方法、设备和系统 | |
JPWO2019229941A1 (ja) | 通信制御装置及び端末装置 | |
US20060284764A1 (en) | System and method for determining a velocity and a direction of travel of a vehicle on a roadway | |
KR20070004308A (ko) | 이동 통신 단말기의 위치에 기반한 상품 정보 제공 서비스방법 | |
JP7010572B2 (ja) | センサネットワークシステムおよびセンサ情報送受信機 | |
US20090300186A1 (en) | Method and system for establishing a communication between an object, a user device and a service device | |
US20100178951A1 (en) | Apparatus and mobile terminal | |
KR102341756B1 (ko) | 반려동물 돌봄 센터용 개별공간 nfc 도어 제어 방법 | |
JP4222134B2 (ja) | 移動体通信端末装置、地域情報配信システム、制御方法、地域情報配信方法及びプログラム | |
KR101596262B1 (ko) | 소정의 단말과 인터랙션하는 브로드캐스팅 단말 및 이를 사용하여 서비스를 제공하는 방법 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 22804616 Country of ref document: EP Kind code of ref document: A1 |
|
ENP | Entry into the national phase |
Ref document number: 20237039895 Country of ref document: KR Kind code of ref document: A |
|
WWE | Wipo information: entry into national phase |
Ref document number: 18562634 Country of ref document: US |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2022278818 Country of ref document: AU Ref document number: AU2022278818 Country of ref document: AU |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2022804616 Country of ref document: EP |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
ENP | Entry into the national phase |
Ref document number: 2022278818 Country of ref document: AU Date of ref document: 20220513 Kind code of ref document: A |
|
ENP | Entry into the national phase |
Ref document number: 2022804616 Country of ref document: EP Effective date: 20231220 |