WO2023085416A1 - Electronic ticket system, entry authentication device, and program - Google Patents

Electronic ticket system, entry authentication device, and program Download PDF

Info

Publication number
WO2023085416A1
WO2023085416A1 PCT/JP2022/042171 JP2022042171W WO2023085416A1 WO 2023085416 A1 WO2023085416 A1 WO 2023085416A1 JP 2022042171 W JP2022042171 W JP 2022042171W WO 2023085416 A1 WO2023085416 A1 WO 2023085416A1
Authority
WO
WIPO (PCT)
Prior art keywords
authentication
electronic ticket
dimensional code
code
information processing
Prior art date
Application number
PCT/JP2022/042171
Other languages
French (fr)
Japanese (ja)
Inventor
政伸 遠藤
茂弘 西
Original Assignee
株式会社ボードウォーク
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 株式会社ボードウォーク filed Critical 株式会社ボードウォーク
Priority to JP2022573439A priority Critical patent/JP7429364B2/en
Publication of WO2023085416A1 publication Critical patent/WO2023085416A1/en
Priority to JP2023218135A priority patent/JP2024024676A/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/36User authentication by graphic or iconic representation
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q50/00Information and communication technology [ICT] specially adapted for implementation of business processes of specific business sectors, e.g. utilities or tourism
    • G06Q50/10Services
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07BTICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
    • G07B11/00Apparatus for validating or cancelling issued tickets
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials

Definitions

  • Embodiments of the present invention relate to electronic ticket systems, admission authentication devices, and programs that authenticate admission to performances such as plays and music, and events such as expositions and competitions (hereinafter collectively referred to as performances).
  • Electronic tickets are information purchased on the Internet and presented on a portable information processing terminal such as a smartphone for admission. Since electronic tickets are relatively easy to duplicate, it is important to effectively prevent counterfeiting and unauthorized resale. Further, it is desired that entrance authentication can be performed even when a communication failure such as an Internet line occurs, or even when the Internet line or the like is not maintained.
  • the purpose is to provide an electronic ticket system, admission authentication device, and program that can effectively prevent forgery and illegal resale of electronic tickets.
  • the electronic ticket system consists of a portable information processing terminal, an electronic ticket sales management device, and an admission authentication device having a two-dimensional code reader connected via an Internet line.
  • the electronic ticket sales management device means for issuing a membership number to the user of the portable information processing terminal; means for executing the electronic ticket sales process upon receipt of an electronic ticket sales request for a performance from the portable information processing terminal; means for transmitting performance information and a performance number to the portable information processing terminal; and means for transmitting the member number and the performance number to the admission authentication device.
  • the portable information processing terminal means for generating a secret value (1) from the membership number received from the electronic ticket sales management device, the latest access date when the electronic ticket sales management device was accessed, and a predetermined salt value; means for hashing the secret value (1); means for generating an authentication code (1) comprising said hashed secret value (1); means for hashing the authentication code (1); means for creating a two-dimensional code from the hashed authentication code (1), the membership number, and the two-dimensional code generation date and time; and means for displaying the two-dimensional code.
  • the entrance authentication device means for generating a secret value (2) from the membership number received from the electronic ticket sales management device, the system date with the date of the performance as an initial value, and the predetermined salt value; means for hashing the secret value (2); means for generating an authorization code (2) comprising said hashed secret value (2); means for hashing the authentication code (2); means for comparing the authentication code (1) in the two-dimensional code read by the two-dimensional code reader against the hashed authentication code (2); means for determining whether the two-dimensional code generation date and time in the two-dimensional code read by the two-dimensional code reader is within the valid time; means for judging whether or not authentication is possible based on the result of matching the authentication code (2) with the authentication code (1) and the determination result regarding the two-dimensional code generation date and time; and means for displaying the determination result of whether or not the authentication is possible on the two-dimensional code reader.
  • FIG. 1 is a configuration diagram of an electronic ticket system according to this embodiment.
  • FIG. 2 is a data flow chart showing procedures for member registration processing, ticket purchase processing, and pre-authentication processing in this embodiment.
  • FIG. 3 is a data flow chart showing the procedure of authentication processing in this embodiment.
  • FIG. 4 is a data flow chart showing the procedure of authentication processing following FIG.
  • FIG. 5 is a diagram showing an outline of the signal processing process in the portable information processing device 7.
  • FIG. 6 is a diagram showing an outline of the signal processing process in the entrance authentication device 3.
  • FIG. 7 is a diagram showing an example of an electronic ticket displayed on the portable information processing device 7 for admission authentication.
  • the electronic ticket system has an electronic ticket sales management device 1 as a server device.
  • the electronic ticket sales management apparatus 1 has, as main functions, a function of registering and managing users as electronic ticket members, and a function of providing performance information and executing electronic ticket sales and settlement processing.
  • the electronic ticket sales management device 1 includes a portable information processing terminal 7 represented by a smart phone owned by a user as an electronic ticket member via a public telecommunications network (Internet line) 9,
  • An entrance authentication device 3 that executes entrance authentication processing is connected.
  • the entrance authentication device 3 is installed at the entrance of the performance hall, and has a QR code reader 5 for reading typically a QR code (registered trademark) as a two-dimensional code.
  • the electronic ticket sales management device 1, the portable information processing terminal 7, and the admission authentication device 3 are each connected to a processor via a data/control bus, a storage unit such as a RAM, a ROM, an HDD or an SSD, and a touch panel. , an input device such as a keyboard and a mouse, a display such as an LCD (Liquid Crystal Display), and a communication module are connected.
  • the processor is composed of a CPU (Central Processing Unit) and a GPU (Graphics Processing Unit), and executes a program loaded from the storage unit to the RAM to perform processing described later.
  • the electronic ticket sales management device 1 receives a member registration request from the portable information processing terminal 7 together with member information including name, address, telephone number, and facial photograph data. A membership number is issued with this reception as a trigger, and the membership information is stored in association with the membership number. Specifically, a transmission request for an installation file of an application dedicated to the electronic ticket service is transmitted from the portable information processing terminal 7 to the electronic ticket sales management device 1 . The installation file of the application received from the electronic ticket sales management apparatus 1 is developed in the portable information processing terminal 7, and the application is installed (step S01).
  • step S02 When the application is initially started, input of member information is requested.
  • member information in addition to name, address, telephone number, etc., face photograph data of the member himself/herself is input (step S02).
  • the member information is transmitted together with the member registration request from the portable information processing terminal 7 to the electronic ticket sales management device 1 .
  • the electronic ticket sales management device 1 In the electronic ticket sales management device 1, a membership number is issued, and membership information is stored in association with the membership number (registration) (step S03).
  • the member number is notified to the portable information processing terminal 7 together with the member registration completion.
  • the member information is stored in the storage unit of the portable information processing terminal 7 by the application in association with the member number.
  • the reception of the electronic ticket sales request from the portable information processing terminal 7 triggers the execution of electronic ticket sales processing.
  • the electronic ticket service is logged in with the member number and password from the portable information processing terminal 7, and the electronic ticket purchase request for the desired performance is sent from the portable information processing terminal 7 to the electronic ticket sales management device 1 as payment information.
  • the electronic ticket sales management device 1 executes payment processing according to the payment information. After the payment is completed, the electronic ticket sales management device 1 notifies the portable information processing terminal 7 of the completion of purchase and payment.
  • the salt value, performance information such as the performance location and performance date and time, and the performance number are transmitted from the electronic ticket sales management device 1 to the portable information processing terminal 7 .
  • the salt value, performance information, and performance number are stored in the storage unit of the portable information processing terminal 7 (S05).
  • a salt value is a random character string added to a character string input to a predetermined hash function when hashing a character string.
  • the salt value for example, a fixed value unique to the electronic ticket service is applied. However, the salt value may be changed periodically, or may be a variable value issued each time an electronic ticket is purchased.
  • the salt value is transmitted from the electronic ticket sales management device 1 to the portable information processing terminal 7 only for the first time.
  • a salt value is stored in the entrance authentication device 3 in advance.
  • the member number and the performance number are transmitted from the electronic ticket sales management device 1 to the admission authentication device 3.
  • the performance number is associated with the member number and stored in the storage unit of the admission authentication device 3 (S06).
  • the system date is valid after the day before the allowable number of days N from the performance date. Even if there is a communication failure on the day of the event due to some reason, such as an internet line, or even if the venue is not equipped with an internet line, etc., if it is within the allowable number of days N, the admission authentication process will be performed. It can run smoothly.
  • an application for electronic ticket members is activated (S08), and the electronic ticket sales management device 1 is accessed (S09).
  • the system date (1) when the electronic ticket sales management device 1 was accessed, the membership number, and the salt value are arranged in a character string in a predetermined order.
  • a secret value (1) is generated (S10).
  • System date (1) is updated to the latest access date when the electronic ticket sales management device 1 is repeatedly accessed from the portable information processing terminal 7 .
  • the secret value (1) is hashed using a predetermined hash function (S11).
  • the hashed secret value (1) is stored in the storage unit of the portable information processing terminal 7 (S12).
  • an application dedicated to the electronic ticket service is activated in accordance with the user's operation on the portable information processing terminal 7 .
  • the application refers to the performance information, recognizes that it is the day of the performance, and executes processing for receiving admission authentication.
  • a member number and a hashed secret value (1) are read from the storage unit.
  • the member number, the hashed secret value (1), and the current system date and time (called QR code generation date and time) specified by the system clock of the portable information processing terminal 7 are arranged in a character string in a predetermined order. be.
  • An authentication code (1) is thereby generated (S13).
  • the authentication code (1) is hashed (S14).
  • the hashed authentication code (1), member number, QR code generation date and time, and performance number are arranged in a character string in a predetermined order and flattened.
  • a QR code (character string) is thereby generated (S15).
  • the character string is encrypted (S16).
  • a QR code is created from the encrypted character string (S17).
  • the QR code 11 indicates the member's face photo, the performance information, the performance number, and the elapse of, for example, 60 seconds, which is shorter than the valid time of the QR code. It is displayed on the display of the portable information processing terminal 7 together with the progress meter 13 (S18).
  • the validity period of the QR code 11 is typically set to 120 seconds, but it can be changed under the control of the electronic ticket sales management device 1.
  • the progress meter 13 has, for example, an annular shape, and one round is associated with 60 seconds, and the filling range expands as time elapses.
  • 60 seconds in this case which is shorter than the effective time of the QR code 11, has passed (S19)
  • the process returns to step S13, and the authentication code (1) is regenerated with the update of the QR code generation date and time, and step S14.
  • - QR code 11 is recreated through S17.
  • the entrance authentication device 3 rejects the authentication. As a result, forgery and illegal resale of electronic tickets can be prevented. Furthermore, even if the electronic ticket is valid, the entrance attendant visually confirms the visitor's face and the facial photograph displayed on the portable information processing terminal 7 to determine whether the purchaser of the electronic ticket is indeed the person himself/herself. can be confirmed, it is possible to effectively prevent illegal resale of electronic tickets that accompanies lending of the portable information processing terminal 7 or the like.
  • the QR code 11 By setting the update time (60 seconds) of the QR code 11 and the elapsed time (60 seconds) indicated by the progress meter 13 to be shorter than the valid time (120 seconds) of the QR code 11 in the authentication process, the QR code 11
  • the time difference from when the QR code 11 is displayed on the portable information processing terminal 7 to when the QR code 11 is read by the QR code reader 5 fluctuates according to the progress of the entrance line, etc., and this fluctuation causes authentication to fail. It is possible to realize smooth authentication processing by reducing refusal situations, and to mentally deter resale by making the user think that it is actually difficult to resell and receive authentication within 60 seconds. can be effective.
  • the QR code 11 displayed on the portable information processing terminal 7 is read by the QR code reader 5 (S20), decoded into a character string (S21), the membership number, the date and time of QR code generation, The performance number is developed into a hashed authentication code (1) (S22).
  • the member number read from the QR code 11, the salt value stored in association with the member number in step S07, the current system date specified by the system clock of the entrance authentication device 3 ( 2) (corresponding to admission date) are arranged in a predetermined order, and a secret value (2) is generated (S23).
  • the secret value (2) is hashed with the same hash function as in step S11 (S24).
  • the hashed secret value (2), the member number read from the QR code 11, and the QR code generation date and time read from the QR code 11 are arranged in a predetermined order, and the authentication code (2) is generated ( S25).
  • the authentication code (2) is hashed with the same hash function as in step S14 (S26).
  • the “hashed authentication code (1)" read from the QR code 11, that is, received from the portable information processing terminal 7, is checked against the hashed authentication code (2). Also, the QR code generation date and time read from the QR code 11, that is, received from the portable information processing terminal 7, is compared with the current date and time, and it is determined whether or not the QR code generation date and time are within the valid period. Further, the member number read from the QR code 11 is received in advance from the electronic ticket sales management device 1, and in step S07 it is determined whether or not the performance number stored in association with the member number matches. be done.
  • the process returns to step S23, and the system date (2) is One day from the initial value (entry date), the hashed authentication code (2) is regenerated through steps S24 to S26.
  • the hashed authentication code (1) read from the QR code 11 is rematched against the regenerated hashed authentication code (2).
  • the processing of steps S23 to S27 is repeated with the allowable number of times N as the upper limit, and whether the hashed authentication code (1) read from the QR code 11 matches the hashed authentication code (2)? The final decision is whether or not. This process confirms the validity of the electronic ticket.
  • step S36 the system date and time (1) (QR code generation date and time) in the character string indicated by the QR code 11 and the current system date and time (2) specified by the system clock of the entrance authentication device 3 are is within a predetermined effective time. Through this processing, the validity of the electronic ticket can be confirmed.
  • the verification result of the hashed authentication code (1) read from the QR code 11 against the hashed authentication code (2), the determination result of whether the QR code generation date and time is within the valid period, and the QR code 11 Authentication is determined based on the determination result of whether or not the member number read from the member number matches the performance number stored in association with the member number in step S07.
  • the "hashed authentication code (1)" received from the portable information processing terminal 7 via the QR code 11 is the same as the "hashed authentication code (2)" generated by the entrance authentication device 3. Is the QR code generation date and time within the validity period, and the membership number received from the portable information processing terminal 7 via the QR code 11 matches the performance number received in advance from the electronic ticket sales management device 1? Authentication is determined at this time. When at least one of the collation result and the two determination results is negative, it is determined that the authentication is not possible.
  • the authentication determination result is recorded in the storage unit of the admission authentication device 3 (S28) and transmitted to the electronic ticket sales management device 1 (S29).
  • the result of the authentication judgment is sent to the QR code reader 5 and displayed (S30).
  • the entrance attendant confirms the result of the authentication decision, and also compares the photograph of the face displayed on the portable information processing terminal 7 with the face of the visitor who presented the portable information processing terminal 7 to confirm that the visitor is valid for the electronic ticket. It is confirmed whether or not the purchaser is the same person (S31).
  • the admission staff permits the visitor to enter the performance only when the result of the authentication determination is affirmative and the purchaser is determined to be a legitimate purchaser from the face photograph. If at least one of the result of the authentication decision and the confirmation of whether or not the purchaser is a valid purchaser based on the facial photograph is negative, the admission staff refuses the visitor's admission to the performance.
  • the admission staff operates the input device of the admission authentication device 3 according to the result of admission or admission refusal (S32), and stores it in the storage unit (S33).
  • the secret values (1) and (2) and the authentication codes (1) and (2) are hashed in two stages and compared, so that forgery of electronic tickets can be effectively prevented.
  • the valid time is set in the QR code displayed on the portable information processing terminal 7 and used for authentication, the screen as an electronic ticket shown in FIGS. It is possible to effectively prevent illegal reselling such as reselling to third parties.
  • the secret value (1) is generated in advance in the portable information processing terminal 7, hashed and stored in the storage unit, even if there is a communication failure such as an Internet line at the time of entrance authentication, the Internet Even if the venue is not equipped with a line or the like, the admission authentication process can be smoothly executed within the allowable number of days N.
  • SYMBOLS 1 Electronic ticket sales management apparatus, 3... Entrance authentication apparatus, 5... QR code reader, 7... Portable information processing terminal.

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Accounting & Taxation (AREA)
  • Strategic Management (AREA)
  • Tourism & Hospitality (AREA)
  • General Business, Economics & Management (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Finance (AREA)
  • Health & Medical Sciences (AREA)
  • Economics (AREA)
  • General Health & Medical Sciences (AREA)
  • Human Resources & Organizations (AREA)
  • Marketing (AREA)
  • Primary Health Care (AREA)
  • Devices For Checking Fares Or Tickets At Control Points (AREA)

Abstract

This electronic ticket system comprises a portable information processing terminal 7, an electronic ticket sale management device 1, and an entry authentication device 3. In each of the portable information processing terminal 7 and the entry authentication device 3, secret values (1), (2) are hashed, and furthermore, authentication codes (1), (2) that include the hashed secret values (1), (2) are hashed. The hashed authentication codes (1), (2) are verified against each other. Falsification of electronic tickets can be effectively prevented by applying the hashing process in two stages.

Description

電子チケットシステム、入場認証装置及びプログラムElectronic ticket system, admission authentication device and program
 本発明の実施形態は、演劇や音楽等の公演、及び博覧会や競技会等のイベント(以下、公演と総称する)への入場を認証する電子チケットシステム、入場認証装置及びプログラムに関する。 Embodiments of the present invention relate to electronic ticket systems, admission authentication devices, and programs that authenticate admission to performances such as plays and music, and events such as expositions and competitions (hereinafter collectively referred to as performances).
 近年、公演のチケットの電子化が進んでいる。電子チケットとは、インターネット上で購入し、入場のためにスマートホン等の携帯型情報処理端末で提示する情報をいう。電子チケットは複製が比較的容易であることから、偽造及び不正転売を効果的に防止することが重要である。またインターネット回線等の通信障害が起こっても、さらにはインターネット回線等が整備されていない状況であっても入場認証可能であることが望まれている。 In recent years, the digitization of tickets for performances has progressed. Electronic tickets are information purchased on the Internet and presented on a portable information processing terminal such as a smartphone for admission. Since electronic tickets are relatively easy to duplicate, it is important to effectively prevent counterfeiting and unauthorized resale. Further, it is desired that entrance authentication can be performed even when a communication failure such as an Internet line occurs, or even when the Internet line or the like is not maintained.
 目的は、電子チケットの偽造及び不正転売を効果的に防止することができる電子チケットシステム、入場認証装置及びプログラムを提供することにある。 The purpose is to provide an electronic ticket system, admission authentication device, and program that can effectively prevent forgery and illegal resale of electronic tickets.
 本実施形態に係る電子チケットシステムは、携帯型情報処理端末と、電子チケット販売管理装置と、二次元コードリーダを有する入場認証装置とがインターネット回線を介して接続されてなる。 The electronic ticket system according to this embodiment consists of a portable information processing terminal, an electronic ticket sales management device, and an admission authentication device having a two-dimensional code reader connected via an Internet line.
 電子チケット販売管理装置は、
  前記携帯型情報処理端末のユーザに対して会員番号を発行する手段と、
  前記携帯型情報処理端末からの公演に関する電子チケットの販売要求の受信を契機として前記電子チケットの販売処理を実行する手段と、
  前記携帯型情報処理端末に公演情報、公演番号を送信する手段と、
  前記入場認証装置に前記会員番号、前記公演番号を送信する手段とを有する。 The electronic ticket sales management device
means for issuing a membership number to the user of the portable information processing terminal;
means for executing the electronic ticket sales process upon receipt of an electronic ticket sales request for a performance from the portable information processing terminal;
means for transmitting performance information and a performance number to the portable information processing terminal;
and means for transmitting the member number and the performance number to the admission authentication device.
 携帯型情報処理端末は、
  前記電子チケット販売管理装置から受信した会員番号と、前記電子チケット販売管理装置にアクセスした最新のアクセス日と、所定のソルト値とから、シークレット値(1)を生成する手段と、
  前記シークレット値(1)をハッシュ化する手段と、
  前記ハッシュ化されたシークレット値(1)を含む認証コード(1)を生成する手段と、
  前記認証コード(1)をハッシュ化する手段と、
  前記ハッシュ化された認証コード(1)と前記会員番号と二次元コード生成日時とから二次元コードを作成する手段と、
  前記二次元コードを表示する手段とを有する。 The portable information processing terminal
means for generating a secret value (1) from the membership number received from the electronic ticket sales management device, the latest access date when the electronic ticket sales management device was accessed, and a predetermined salt value;
means for hashing the secret value (1);
means for generating an authentication code (1) comprising said hashed secret value (1);
means for hashing the authentication code (1);
means for creating a two-dimensional code from the hashed authentication code (1), the membership number, and the two-dimensional code generation date and time;
and means for displaying the two-dimensional code.
 入場認証装置は、
  前記電子チケット販売管理装置から受信した会員番号と、前記公演の公演日を初期値とするシステム日と、前記所定のソルト値とから、シークレット値(2)を生成する手段と、
  前記シークレット値(2)をハッシュ化する手段と、
  前記ハッシュ化されたシークレット値(2)を含む認証コード(2)を生成する手段と、
  前記認証コード(2)をハッシュ化する手段と、
  前記ハッシュ化された認証コード(2)に対して、前記二次元コードリーダにより読み取った前記二次元コード内の前記認証コード(1)を照合する手段と、
  前記二次元コードリーダにより読み取った前記二次元コード内の前記二次元コード生成日時が、有効時間内であるか否か判定する手段と、
  前記認証コード(2)の前記認証コード(1)に対する照合結果と、前記二次元コード生成日時に関する判定結果とに基づいて、認証可否を判断する手段と、
  前記認証可否の判断結果を前記二次元コードリーダに表示させる手段とを有する。 The entrance authentication device
means for generating a secret value (2) from the membership number received from the electronic ticket sales management device, the system date with the date of the performance as an initial value, and the predetermined salt value;
means for hashing the secret value (2);
means for generating an authorization code (2) comprising said hashed secret value (2);
means for hashing the authentication code (2);
means for comparing the authentication code (1) in the two-dimensional code read by the two-dimensional code reader against the hashed authentication code (2);
means for determining whether the two-dimensional code generation date and time in the two-dimensional code read by the two-dimensional code reader is within the valid time;
means for judging whether or not authentication is possible based on the result of matching the authentication code (2) with the authentication code (1) and the determination result regarding the two-dimensional code generation date and time;
and means for displaying the determination result of whether or not the authentication is possible on the two-dimensional code reader.
図1は、本実施形態に係る電子チケットシステムの構成図である。FIG. 1 is a configuration diagram of an electronic ticket system according to this embodiment. 図2は、本実施形態における会員登録処理、チケット購入処理、認証事前処理の手順を示すデータフローチャートである。FIG. 2 is a data flow chart showing procedures for member registration processing, ticket purchase processing, and pre-authentication processing in this embodiment. 図3は、本実施形態における認証処理の手順を示すデータフローチャートである。FIG. 3 is a data flow chart showing the procedure of authentication processing in this embodiment. 図4は、図3に続く認証処理の手順を示すデータフローチャートである。FIG. 4 is a data flow chart showing the procedure of authentication processing following FIG. 図5は、携帯型情報処理装置7における信号処理過程概略を示す図である。FIG. 5 is a diagram showing an outline of the signal processing process in the portable information processing device 7. As shown in FIG. 図6は、入場認証装置3における信号処理過程概略を示す図である。FIG. 6 is a diagram showing an outline of the signal processing process in the entrance authentication device 3. As shown in FIG. 図7は、入場認証のために携帯型情報処理装置7に表示される電子チケットの一例を示す図である。FIG. 7 is a diagram showing an example of an electronic ticket displayed on the portable information processing device 7 for admission authentication.
 以下、図面を参照して本発明の実施形態について説明する。 
 図1に示すように本実施形態に係る電子チケットシステムは、サーバ装置としての電子チケット販売管理装置1を有する。電子チケット販売管理装置1は、ユーザを電子チケット会員として登録管理する機能と、公演情報の提供及び電子チケットの販売決済処理を実行する機能とを主たる機能として備えている。電子チケット販売管理装置1には、公衆電気通信回線網(インターネット回線)9を介して、電子チケット会員としてのユーザが所有するスマートホンに代表される携帯型情報処理端末7、公演の入場者に対する入場認証処理を実行する入場認証装置3が接続される。入場認証装置3は、公演会場の入場口に設置され、二次元コードとして典型的にはQRコード(登録商標)を読み取るためのQRコードリーダ5を有する。 Embodiments of the present invention will be described below with reference to the drawings.
As shown in FIG. 1, the electronic ticket system according to this embodiment has an electronic ticket sales management device 1 as a server device. The electronic ticket sales management apparatus 1 has, as main functions, a function of registering and managing users as electronic ticket members, and a function of providing performance information and executing electronic ticket sales and settlement processing. The electronic ticket sales management device 1 includes a portable information processing terminal 7 represented by a smart phone owned by a user as an electronic ticket member via a public telecommunications network (Internet line) 9, An entrance authentication device 3 that executes entrance authentication processing is connected. The entrance authentication device 3 is installed at the entrance of the performance hall, and has a QR code reader 5 for reading typically a QR code (registered trademark) as a two-dimensional code.
 図示しないが、電子チケット販売管理装置1、携帯型情報処理端末7、入場認証装置3それぞれは、プロセッサに対してデータ/制御バスを介して、RAM、ROM、HDDやSSD等の記憶部、タッチパネル、キーボード、マウス等の入力デバイス、LCD(Liquid Crystal Display)等のディスプレイ、通信モジュールが接続されてなる。プロセッサは、CPU(Central Processing Unit)及びGPU(Graphics Processing Unit)により構成され、記憶部からRAMにロードされたプログラムを実行して、後述する処理を実行する。 Although not shown, the electronic ticket sales management device 1, the portable information processing terminal 7, and the admission authentication device 3 are each connected to a processor via a data/control bus, a storage unit such as a RAM, a ROM, an HDD or an SSD, and a touch panel. , an input device such as a keyboard and a mouse, a display such as an LCD (Liquid Crystal Display), and a communication module are connected. The processor is composed of a CPU (Central Processing Unit) and a GPU (Graphics Processing Unit), and executes a program loaded from the storage unit to the RAM to perform processing described later.
 次に図2、図3、図4を参照して、電子チケットサービスの会員登録、電子チケット購入処理、入場認証処理について説明する。 Next, with reference to FIGS. 2, 3, and 4, the electronic ticket service member registration, electronic ticket purchase processing, and admission authentication processing will be described.
 (会員登録処理)
 電子チケット販売管理装置1から任意の公演の電子チケットを購入するためには電子チケット販売管理装置1が提供する電子チケットサービスに会員登録する必要がある。会員登録は、電子チケット販売管理装置1は携帯型情報処理端末7から、氏名、住所、電話番号及び顔写真のデータを含む会員情報とともに会員登録要求を受信する。この受信を契機として会員番号が発行され、会員番号を関連付けて会員情報が記憶される。具体的には携帯型情報処理端末7から電子チケット販売管理装置1に、当該電子チケットサービス専用のアプリケーションのインストールファイルの送信要求が送信される。携帯型情報処理端末7において電子チケット販売管理装置1から受信したアプリケーションのインストールファイルが展開され、アプリケーションがインストールされる(工程S01)。アプリケーションの初期起動に伴って、会員情報の入力が要求される。会員情報として氏名、住所、電話番号等の他に、会員本人の顔写真データが入力される(工程S02)。携帯型情報処理端末7から電子チケット販売管理装置1に会員登録要求と共に会員情報が送信される。電子チケット販売管理装置1では、会員番号が発行され、当該会員番号に関連付けられて会員情報が記憶される(登録)(工程S03)。携帯型情報処理端末7には会員登録完了と共に会員番号が通知される。アプリケーションにより携帯型情報処理端末7の記憶部に会員情報が会員番号を関連付けられて記憶される。 (Member registration process)
In order to purchase an electronic ticket for an arbitrary performance from the electronic ticket sales management device 1, it is necessary to register as a member of the electronic ticket service provided by the electronic ticket sales management device 1. FIG. For member registration, the electronic ticket sales management device 1 receives a member registration request from the portable information processing terminal 7 together with member information including name, address, telephone number, and facial photograph data. A membership number is issued with this reception as a trigger, and the membership information is stored in association with the membership number. Specifically, a transmission request for an installation file of an application dedicated to the electronic ticket service is transmitted from the portable information processing terminal 7 to the electronic ticket sales management device 1 . The installation file of the application received from the electronic ticket sales management apparatus 1 is developed in the portable information processing terminal 7, and the application is installed (step S01). When the application is initially started, input of member information is requested. As member information, in addition to name, address, telephone number, etc., face photograph data of the member himself/herself is input (step S02). The member information is transmitted together with the member registration request from the portable information processing terminal 7 to the electronic ticket sales management device 1 . In the electronic ticket sales management device 1, a membership number is issued, and membership information is stored in association with the membership number (registration) (step S03). The member number is notified to the portable information processing terminal 7 together with the member registration completion. The member information is stored in the storage unit of the portable information processing terminal 7 by the application in association with the member number.
 (電子チケット販売処理)
 電子チケット販売管理装置1において、携帯型情報処理端末7からの電子チケットの販売要求の受信を契機として、電子チケットの販売処理が実行される。具体的には携帯型情報処理端末7からの会員番号及びパスワードにより当該電子チケットサービスにログインされ、携帯型情報処理端末7から電子チケット販売管理装置1に所望の公演に関する電子チケット購入要求が決済情報と共に送信される(S04)。電子チケット販売管理装置1では決済情報に従って決済処理を実行する。決済完了後、電子チケット販売管理装置1から携帯型情報処理端末7に購入及び決済の完了が通知される。 (Electronic ticket sales processing)
In the electronic ticket sales management apparatus 1, the reception of the electronic ticket sales request from the portable information processing terminal 7 triggers the execution of electronic ticket sales processing. Specifically, the electronic ticket service is logged in with the member number and password from the portable information processing terminal 7, and the electronic ticket purchase request for the desired performance is sent from the portable information processing terminal 7 to the electronic ticket sales management device 1 as payment information. (S04). The electronic ticket sales management device 1 executes payment processing according to the payment information. After the payment is completed, the electronic ticket sales management device 1 notifies the portable information processing terminal 7 of the completion of purchase and payment.
 ソルト値と、公演場所や公演日時等の公演情報と、公演番号とは、電子チケット販売管理装置1から携帯型情報処理端末7に送信される。ソルト値、公演情報、公演番号は携帯型情報処理端末7の記憶部に記憶される(S05)。なお、ソルト値とは、文字列をハッシュ化する際に、所定のハッシュ関数に入力される文字列に加えられるランダムな文字列である。ここでは、ソルト値は、例えば当該電子チケットサービスに固有の固定値が適用される。しかし、ソルト値は定期的に変更されてもよいし、電子チケット購入の都度発行される変動値であってもよい。ソルト値は初回のみ電子チケット販売管理装置1から携帯型情報処理端末7に送信される。入場認証装置3にはソルト値は予め保持されている。 The salt value, performance information such as the performance location and performance date and time, and the performance number are transmitted from the electronic ticket sales management device 1 to the portable information processing terminal 7 . The salt value, performance information, and performance number are stored in the storage unit of the portable information processing terminal 7 (S05). A salt value is a random character string added to a character string input to a predetermined hash function when hashing a character string. Here, for the salt value, for example, a fixed value unique to the electronic ticket service is applied. However, the salt value may be changed periodically, or may be a variable value issued each time an electronic ticket is purchased. The salt value is transmitted from the electronic ticket sales management device 1 to the portable information processing terminal 7 only for the first time. A salt value is stored in the entrance authentication device 3 in advance.
 また、会員番号と公演番号とは、電子チケット販売管理装置1から入場認証装置3に送信される。公演番号は会員番号に関連付けられて、入場認証装置3の記憶部に記憶される(S06)。 Also, the member number and the performance number are transmitted from the electronic ticket sales management device 1 to the admission authentication device 3. The performance number is associated with the member number and stored in the storage unit of the admission authentication device 3 (S06).
 (認証事前処理)
 公演当日より、入場認証装置3に予め設定されている許容日数であるN日前から認証事前処理が可能となる。ここで許容日数Nに関して簡単に説明する。公演日当日における入場認証処理として、入場認証装置3で生成される認証コード(2)に対して、携帯型情報処理端末7で生成される認証コード(1)が照合される。照合結果が不一致のとき、システム日が一日遡及されて認証コード(2)が再生成され、再生成された認証コード(2)に対して認証コード(1)が再照合される。システム日は携帯型情報処理端末7から入場認証装置3への最新のアクセス日であり、認証に際してはシステム日は公演日から許容日数Nより前の日以後のものが有効とされるので、入場当日に何らかの原因でインインターネット回線等の通信障害が起こっていたとしても、さらにはインターネット回線等が整備されていない会場であったとしても、許容日数Nの範囲内であれば、入場認証処理を円滑に実行することができる。 (Authentication pre-processing)
From the day of the performance, pre-authentication processing becomes possible from N days before, which is the allowable number of days preset in the admission authentication device 3 . Here, the allowable number of days N will be briefly described. As the admission authentication process on the day of the performance, the authentication code (1) generated by the portable information processing terminal 7 is collated against the authentication code (2) generated by the admission authentication device 3 . When the collation result is a mismatch, the system date is retroactively set by one day, the authentication code (2) is regenerated, and the regenerated authentication code (2) is collated again with the authentication code (1). The system date is the most recent access date from the portable information processing terminal 7 to the entrance authentication device 3. In the authentication, the system date is valid after the day before the allowable number of days N from the performance date. Even if there is a communication failure on the day of the event due to some reason, such as an internet line, or even if the venue is not equipped with an internet line, etc., if it is within the allowable number of days N, the admission authentication process will be performed. It can run smoothly.
 携帯型情報処理端末7において、電子チケット会員用のアプリケーションが起動され(S08)、電子チケット販売管理装置1にアクセスされる(S09)。図5に示すように、電子チケット販売管理装置1において、電子チケット販売管理装置1にアクセスしたシステム日(1)と、会員番号と、ソルト値とが所定の順番で文字列に配列されて、シークレット値(1)が生成される(S10)。システム日(1)は、携帯型情報処理端末7から電子チケット販売管理装置1に繰り返しアクセスした場合、最新のアクセス日に更新される。 In the portable information processing terminal 7, an application for electronic ticket members is activated (S08), and the electronic ticket sales management device 1 is accessed (S09). As shown in FIG. 5, in the electronic ticket sales management device 1, the system date (1) when the electronic ticket sales management device 1 was accessed, the membership number, and the salt value are arranged in a character string in a predetermined order. A secret value (1) is generated (S10). System date (1) is updated to the latest access date when the electronic ticket sales management device 1 is repeatedly accessed from the portable information processing terminal 7 .
 シークレット値(1)は、所定のハッシュ関数によりハッシュ化される(S11)。ハッシュ化されたシークレット値(1)は、携帯型情報処理端末7の記憶部に記憶される(S12)。 The secret value (1) is hashed using a predetermined hash function (S11). The hashed secret value (1) is stored in the storage unit of the portable information processing terminal 7 (S12).
 (入場認証処理)
 公演日当日であって、公演会場への入場直前に、携帯型情報処理端末7に対するユーザ操作に伴って、当該電子チケットサービス専用のアプリケーションが起動される。アプリケーションは、公演情報を参照して公演当日であることを認識し、入場認証を受ける処理を実行する。記憶部から会員番号及びハッシュ化されたシークレット値(1)が読み出される。会員番号と、ハッシュ化されたシークレット値(1)と、携帯型情報処理端末7のシステムクロックで特定される現在のシステム日時(QRコード生成日時という)とが所定の順番で文字列に配列される。それにより認証コード(1)が生成される(S13)。認証コード(1)は、ハッシュ化される(S14)。 (Entrance authentication processing)
On the day of the performance, just before entering the performance hall, an application dedicated to the electronic ticket service is activated in accordance with the user's operation on the portable information processing terminal 7 . The application refers to the performance information, recognizes that it is the day of the performance, and executes processing for receiving admission authentication. A member number and a hashed secret value (1) are read from the storage unit. The member number, the hashed secret value (1), and the current system date and time (called QR code generation date and time) specified by the system clock of the portable information processing terminal 7 are arranged in a character string in a predetermined order. be. An authentication code (1) is thereby generated (S13). The authentication code (1) is hashed (S14).
 ハッシュ化された認証コード(1)と、会員番号と、QRコード生成日時と、公演番号とが所定の順番で文字列に配列され、平分化される。それによりQRコード(文字列)が生成される(S15)。文字列は暗号化される(S16)。暗号化された文字列からQRコードが作成される(S17)。 The hashed authentication code (1), member number, QR code generation date and time, and performance number are arranged in a character string in a predetermined order and flattened. A QR code (character string) is thereby generated (S15). The character string is encrypted (S16). A QR code is created from the encrypted character string (S17).
 図7(a)、図7(b)に示すように、QRコード11は、会員の顔写真と、公演情報と、公演番号と、QRコードの有効時間よりも短い例えば60秒の経過を示すプログレスメータ13とともに携帯型情報処理端末7のディスプレイに表示される(S18)。 As shown in FIGS. 7(a) and 7(b), the QR code 11 indicates the member's face photo, the performance information, the performance number, and the elapse of, for example, 60 seconds, which is shorter than the valid time of the QR code. It is displayed on the display of the portable information processing terminal 7 together with the progress meter 13 (S18).
 QRコード11の有効時間として典型的には120秒に設定されるが、電子チケット販売管理装置1からの制御に従って変更可能である。プログレスメータ13は例えば円環形状をなし、1周が60秒に対応付けられ、時間経過と共に塗りつぶし範囲が拡大していく。QRコード11の有効時間より短い、ここでは60秒が経過したとき(S19)、工程S13にリターンして、QRコード生成日時の更新を伴って、認証コード(1)が再生成され、工程S14―S17を経て、QRコード11が再作成される。 The validity period of the QR code 11 is typically set to 120 seconds, but it can be changed under the control of the electronic ticket sales management device 1. The progress meter 13 has, for example, an annular shape, and one round is associated with 60 seconds, and the filling range expands as time elapses. When 60 seconds in this case, which is shorter than the effective time of the QR code 11, has passed (S19), the process returns to step S13, and the authentication code (1) is regenerated with the update of the QR code generation date and time, and step S14. - QR code 11 is recreated through S17.
 QRコード11が有効時間外であるとき、入場認証装置3により認証拒否される。それにより電子チケットの偽造及び不正転売を防止することができる。さらに、電子チケットが正当であったとしても、入場係員が入場者の顔と携帯型情報処理端末7に表示された顔写真とを視認して確かに電子チケットの購入者本人であるか否かを確認することができるので、携帯型情報処理端末7の貸渡し等を伴った電子チケットの不正転売等を有効に防止することができる。  When the QR code 11 is out of the valid period, the entrance authentication device 3 rejects the authentication. As a result, forgery and illegal resale of electronic tickets can be prevented. Furthermore, even if the electronic ticket is valid, the entrance attendant visually confirms the visitor's face and the facial photograph displayed on the portable information processing terminal 7 to determine whether the purchaser of the electronic ticket is indeed the person himself/herself. can be confirmed, it is possible to effectively prevent illegal resale of electronic tickets that accompanies lending of the portable information processing terminal 7 or the like.
 またQRコード11の更新時間(60秒)及びプログレスメータ13で表す経過時間(60秒)を、認証処理におけるQRコード11の有効時間(120秒)よりも短く設定することにより、QRコード11が携帯型情報処理端末7に表示された時点から、QRコードリーダ5によりQRコード11が読み取られるまでの時間差は、入場列の進み具合等に応じて変動するが、この変動に起因して認証が拒否されてしまう事態を減らして、平滑な認証処理を実現することができ、さらに60秒以内に転売及び認証を受けることが現実的に困難であると思わせて、転売を心理的に抑止させる効果を発揮させることができる。 By setting the update time (60 seconds) of the QR code 11 and the elapsed time (60 seconds) indicated by the progress meter 13 to be shorter than the valid time (120 seconds) of the QR code 11 in the authentication process, the QR code 11 The time difference from when the QR code 11 is displayed on the portable information processing terminal 7 to when the QR code 11 is read by the QR code reader 5 fluctuates according to the progress of the entrance line, etc., and this fluctuation causes authentication to fail. It is possible to realize smooth authentication processing by reducing refusal situations, and to mentally deter resale by making the user think that it is actually difficult to resell and receive authentication within 60 seconds. can be effective.
 次に入場認証装置3において、携帯型情報処理端末7に表示されたQRコード11はQRコードリーダ5により読み取られ(S20)、文字列に復号され(S21)、会員番号、QRコード生成日時、公演番号、ハッシュ化された認証コード(1)に展開される(S22)。 Next, in the entrance authentication device 3, the QR code 11 displayed on the portable information processing terminal 7 is read by the QR code reader 5 (S20), decoded into a character string (S21), the membership number, the date and time of QR code generation, The performance number is developed into a hashed authentication code (1) (S22).
 図6に示すように、QRコード11から読み取られた会員番号、工程S07において当該会員番号に関連付けられて記憶されているソルト値、入場認証装置3のシステムクロックで特定される現在のシステム日(2)(入場日に相当)とが、所定の順番に配列され、シークレット値(2)が生成される(S23)。シークレット値(2)は、工程S11と同じハッシュ関数によりハッシュ化される(S24)。 As shown in FIG. 6, the member number read from the QR code 11, the salt value stored in association with the member number in step S07, the current system date specified by the system clock of the entrance authentication device 3 ( 2) (corresponding to admission date) are arranged in a predetermined order, and a secret value (2) is generated (S23). The secret value (2) is hashed with the same hash function as in step S11 (S24).
 ハッシュ化されたシークレット値(2)、QRコード11から読み取られた会員番号、QRコード11から読み取られたQRコード生成日時とが所定の順番に配列され、認証コード(2)が生成される(S25)。認証コード(2)は、工程S14と同じハッシュ関数によりハッシュ化される(S26)。 The hashed secret value (2), the member number read from the QR code 11, and the QR code generation date and time read from the QR code 11 are arranged in a predetermined order, and the authentication code (2) is generated ( S25). The authentication code (2) is hashed with the same hash function as in step S14 (S26).
 当該ハッシュ化された認証コード(2)に対して、QRコード11から読み取られた、つまり携帯型情報処理端末7から受け取った「ハッシュ化された認証コード(1)」が照合される。また、QRコード11から読み取られた、つまり携帯型情報処理端末7から受け取ったQRコード生成日時が現在日時と比較され、QRコード生成日時が有効時間内か否か判定される。さらに、QRコード11から読み取られた会員番号に対して、事前に電子チケット販売管理装置1から受け取り、工程S07において当該会員番号に関連付けられて記憶されている公演番号が一致しているか否か判定される。 The "hashed authentication code (1)" read from the QR code 11, that is, received from the portable information processing terminal 7, is checked against the hashed authentication code (2). Also, the QR code generation date and time read from the QR code 11, that is, received from the portable information processing terminal 7, is compared with the current date and time, and it is determined whether or not the QR code generation date and time are within the valid period. Further, the member number read from the QR code 11 is received in advance from the electronic ticket sales management device 1, and in step S07 it is determined whether or not the performance number stored in association with the member number matches. be done.
 ここで、ハッシュ化された認証コード(2)に対して、QRコード11から読み取られたハッシュ化された認証コード(1)が不一致であるとき、工程S23にリターンし、システム日(2)が初期値(入場日当日)から一日遡及され、工程S24乃至S26により、ハッシュ化された認証コード(2)が再生成される。再生成されたハッシュ化された認証コード(2)に対して、QRコード11から読み取られたハッシュ化された認証コード(1)が再照合される。工程S23-S27の処理は、許容回数Nを上限として繰り返され、ハッシュ化された認証コード(2)に対してQRコード11から読み取られたハッシュ化された認証コード(1)が一致しているか否かが最終的に判定される。この処理により電子チケットの正当性が確認される。 Here, when the hashed authentication code (1) read from the QR code 11 does not match the hashed authentication code (2), the process returns to step S23, and the system date (2) is One day from the initial value (entry date), the hashed authentication code (2) is regenerated through steps S24 to S26. The hashed authentication code (1) read from the QR code 11 is rematched against the regenerated hashed authentication code (2). The processing of steps S23 to S27 is repeated with the allowable number of times N as the upper limit, and whether the hashed authentication code (1) read from the QR code 11 matches the hashed authentication code (2)? The final decision is whether or not. This process confirms the validity of the electronic ticket.
 また、工程S36においては、QRコード11で示された文字列内のシステム日時(1)(QRコード生成日時)と、入場認証装置3のシステムクロックで特定される現在のシステム日時(2)との時間差が所定の有効時間以内であるか否かが判断される。この処理により電子チケットの正当性が確認され得る。 In step S36, the system date and time (1) (QR code generation date and time) in the character string indicated by the QR code 11 and the current system date and time (2) specified by the system clock of the entrance authentication device 3 are is within a predetermined effective time. Through this processing, the validity of the electronic ticket can be confirmed.
 ハッシュ化された認証コード(2)に対するQRコード11から読み取られたハッシュ化された認証コード(1)の照合結果と、QRコード生成日時が有効時間内か否かの判定結果と、QRコード11から読み取られた会員番号が工程S07において当該会員番号に関連付けられて記憶されている公演番号が一致しているか否かの判定結果とに基づいて、認証の可否が判断される。 The verification result of the hashed authentication code (1) read from the QR code 11 against the hashed authentication code (2), the determination result of whether the QR code generation date and time is within the valid period, and the QR code 11 Authentication is determined based on the determination result of whether or not the member number read from the member number matches the performance number stored in association with the member number in step S07.
 入場認証装置3で生成された「ハッシュ化された認証コード(2)」に対してQRコード11を介して携帯型情報処理端末7から受け取った「ハッシュ化された認証コード(1)」が一致し、QRコード生成日時が有効時間内であり、且つQRコード11を介して携帯型情報処理端末7から受け取った会員番号が事前に電子チケット販売管理装置1から受け取った公演番号に一致しているかとき、認証可が判断される。照合結果と2つの判定結果との少ないとも一つが否定的であるとき、認証不可が判断される。 The "hashed authentication code (1)" received from the portable information processing terminal 7 via the QR code 11 is the same as the "hashed authentication code (2)" generated by the entrance authentication device 3. Is the QR code generation date and time within the validity period, and the membership number received from the portable information processing terminal 7 via the QR code 11 matches the performance number received in advance from the electronic ticket sales management device 1? Authentication is determined at this time. When at least one of the collation result and the two determination results is negative, it is determined that the authentication is not possible.
 認証判断結果は、入場認証装置3の記憶部に記録され(S28)、また電子チケット販売管理装置1に送信される(S29)。 The authentication determination result is recorded in the storage unit of the admission authentication device 3 (S28) and transmitted to the electronic ticket sales management device 1 (S29).
 認証判断結果はQRコードリーダ5に送信され、表示される(S30)。入場係員は認証判断結果を確認すると共に、携帯型情報処理端末7に表示された顔写真と、携帯型情報処理端末7を提示した入場者の顔とを見比べて、入場者が電子チケットの正当な購入者と同一人物か否かを確認する(S31)。入場係員は、認証判断結果が肯定的であり、且つ顔写真から正当な購入者であると判断した場合に初めて入場者の公演への入場を許可する。入場係員は認証判断結果と、顔写真による正当な購入者であるか否かの確認との少なくとも一方が否定的である場合には、入場者の公演への入場を拒否する。入場係員は入場許可又は入場拒否の結果に従って入場認証装置3の入力デバイスを操作して(S32)、記憶部に記憶させる(S33)。 The result of the authentication judgment is sent to the QR code reader 5 and displayed (S30). The entrance attendant confirms the result of the authentication decision, and also compares the photograph of the face displayed on the portable information processing terminal 7 with the face of the visitor who presented the portable information processing terminal 7 to confirm that the visitor is valid for the electronic ticket. It is confirmed whether or not the purchaser is the same person (S31). The admission staff permits the visitor to enter the performance only when the result of the authentication determination is affirmative and the purchaser is determined to be a legitimate purchaser from the face photograph. If at least one of the result of the authentication decision and the confirmation of whether or not the purchaser is a valid purchaser based on the facial photograph is negative, the admission staff refuses the visitor's admission to the performance. The admission staff operates the input device of the admission authentication device 3 according to the result of admission or admission refusal (S32), and stores it in the storage unit (S33).
 このようにシークレット値(1)、(2)と認証コード(1)、(2)との2段階でハッシュ化し、それらを照合するので、電子チケットの偽造を効果的に防止することができる。 In this way, the secret values (1) and (2) and the authentication codes (1) and (2) are hashed in two stages and compared, so that forgery of electronic tickets can be effectively prevented.
 また携帯型情報処理端末7に表示するQRコードに有効時間を設定し、認証に活用するので、図7(a)、図7(b)に示す電子チケットとしての画面を不正コピーして他者に転売するような不正転売を効果的に防止することができる。 Also, since the valid time is set in the QR code displayed on the portable information processing terminal 7 and used for authentication, the screen as an electronic ticket shown in FIGS. It is possible to effectively prevent illegal reselling such as reselling to third parties.
 そして携帯型情報処理端末7に表示された顔写真と入場者の顔とを照らし合わせて、入場者が電子チケットの正当な購入者と同一人物か否かを確認することができるので、電子チケットの不正転売をさらに効果的に防止することができるとともに、不正転売を事前に抑止することができる。 By comparing the facial photograph displayed on the portable information processing terminal 7 with the face of the visitor, it is possible to confirm whether or not the visitor is the same person as the legitimate purchaser of the electronic ticket. illegal resale can be prevented more effectively, and illegal resale can be deterred in advance.
 さらに、携帯型情報処理端末7において事前に、シークレット値(1)を生成し、ハッシュ化して記憶部に記憶させるので、入場認証時にインターネット回線等の通信障害が起こっていたとしても、さらにはインターネット回線等が整備されていない会場であったとしても、許容日数Nの範囲内であれば、入場認証処理を円滑に実行することができる。 Furthermore, since the secret value (1) is generated in advance in the portable information processing terminal 7, hashed and stored in the storage unit, even if there is a communication failure such as an Internet line at the time of entrance authentication, the Internet Even if the venue is not equipped with a line or the like, the admission authentication process can be smoothly executed within the allowable number of days N.
 本発明のいくつかの実施形態を説明したが、これらの実施形態は、例として提示したものであり、発明の範囲を限定することは意図していない。これら実施形態は、その他の様々な形態で実施されることが可能であり、発明の要旨を逸脱しない範囲で、種々の省略、置き換え、変更を行うことができる。これら実施形態やその変形は、発明の範囲や要旨に含まれると同様に、特許請求の範囲に記載された発明とその均等の範囲に含まれるものである。 Although several embodiments of the invention have been described, these embodiments are presented as examples and are not intended to limit the scope of the invention. These embodiments can be implemented in various other forms, and various omissions, replacements, and modifications can be made without departing from the scope of the invention. These embodiments and their modifications are included in the scope and spirit of the invention, as well as the scope of the invention described in the claims and equivalents thereof.
 
 1…電子チケット販売管理装置、3…入場認証装置、5…QRコードリーダ、7…携帯型情報処理端末。
DESCRIPTION OF SYMBOLS 1... Electronic ticket sales management apparatus, 3... Entrance authentication apparatus, 5... QR code reader, 7... Portable information processing terminal.

Claims (9)

  1.  携帯型情報処理端末と、電子チケット販売管理装置と、二次元コードリーダを有する入場認証装置とがインターネット回線を介して接続されてなる電子チケットシステムにおいて、
     前記電子チケット販売管理装置は、
      前記携帯型情報処理端末のユーザに対して会員番号を発行する手段と、
      前記携帯型情報処理端末からの公演に関する電子チケットの販売要求の受信を契機として前記電子チケットの販売処理を実行する手段と、
      前記携帯型情報処理端末に公演情報、公演番号を送信する手段と、
      前記入場認証装置に前記会員番号、前記公演番号を送信する手段とを有し、
     前記携帯型情報処理端末は、
      前記電子チケット販売管理装置から受信した会員番号と、前記電子チケット販売管理装置にアクセスした最新のアクセス日と、所定のソルト値とから、シークレット値(1)を生成する手段と、
      前記シークレット値(1)をハッシュ化する手段と、
      前記ハッシュ化されたシークレット値(1)を含む認証コード(1)を生成する手段と、
      前記認証コード(1)をハッシュ化する手段と、
      前記ハッシュ化された認証コード(1)と前記会員番号と二次元コード生成日時とから二次元コードを作成する手段と、
      前記二次元コードを表示する手段とを有し、
     前記入場認証装置は、
      前記電子チケット販売管理装置から受信した会員番号と、前記公演の公演日を初期値とするシステム日と、前記ソルト値とから、シークレット値(2)を生成する手段と、
      前記シークレット値(2)をハッシュ化する手段と、
      前記ハッシュ化されたシークレット値(2)を含む認証コード(2)を生成する手段と、
      前記認証コード(2)をハッシュ化する手段と、
      前記ハッシュ化された認証コード(2)に対して、前記二次元コードリーダにより読み取った前記二次元コード内の前記認証コード(1)を照合する手段と、
      前記二次元コードリーダにより読み取った前記二次元コード内の前記二次元コード生成日時が、有効時間内であるか否か判定する手段と、
      前記認証コード(2)に対する前記認証コード(1)の照合結果と、前記二次元コード生成日時に関する判定結果とに基づいて、認証可否を判断する手段と、
      前記認証可否の判断結果を前記二次元コードリーダに表示させる手段とを有する、電子チケットシステム。     In an electronic ticket system in which a portable information processing terminal, an electronic ticket sales management device, and an admission authentication device having a two-dimensional code reader are connected via an Internet line,
    The electronic ticket sales management device
    means for issuing a membership number to the user of the portable information processing terminal;
    means for executing the electronic ticket sales process upon receipt of an electronic ticket sales request for a performance from the portable information processing terminal;
    means for transmitting performance information and a performance number to the portable information processing terminal;
    means for transmitting the membership number and the performance number to the admission authentication device;
    The portable information processing terminal is
    means for generating a secret value (1) from the membership number received from the electronic ticket sales management device, the latest access date when the electronic ticket sales management device was accessed, and a predetermined salt value;
    means for hashing the secret value (1);
    means for generating an authentication code (1) comprising said hashed secret value (1);
    means for hashing the authentication code (1);
    means for creating a two-dimensional code from the hashed authentication code (1), the membership number, and the two-dimensional code generation date and time;
    and means for displaying the two-dimensional code,
    The admission authentication device
    means for generating a secret value (2) from the member number received from the electronic ticket sales management device, the system date with the performance date of the performance as an initial value, and the salt value;
    means for hashing the secret value (2);
    means for generating an authorization code (2) comprising said hashed secret value (2);
    means for hashing the authentication code (2);
    means for comparing the authentication code (1) in the two-dimensional code read by the two-dimensional code reader against the hashed authentication code (2);
    means for determining whether the two-dimensional code generation date and time in the two-dimensional code read by the two-dimensional code reader is within the valid time;
    means for judging whether or not authentication is possible based on a comparison result of the authentication code (1) against the authentication code (2) and a determination result regarding the two-dimensional code generation date and time;
    an electronic ticket system having means for displaying the determination result of the authorization on the two-dimensional code reader.
  2.  前記携帯型情報処理端末において、前記二次元コードとともに、前記二次元コードの有効時間より短い時間の経過を示すプログレスメータが表示される、請求項1記載の電子チケットシステム。 The electronic ticket system according to claim 1, wherein the portable information processing terminal displays, together with the two-dimensional code, a progress meter indicating the passage of time shorter than the validity period of the two-dimensional code.
  3.  前記携帯型情報処理端末において、前記二次元コードとともに、前記ユーザの顔写真が表示される、請求項1記載の電子チケットシステム。 The electronic ticket system according to claim 1, wherein the portable information processing terminal displays a photo of the user's face together with the two-dimensional code.
  4.  前記入場認証装置は、前記二次元コードリーダにより読み取った前記二次元コード内の前記公演番号が、前記電子チケット販売管理装置から受信した前記公演番号に一致するか否か判定する手段をさらに有し、
     前記認証コード(2)に対する前記認証コード(1)の照合結果と、前記二次元コード生成日時に関する判定結果とに加えて、前記公演番号に関する判定結果に基づいて、認証可否が判断される、請求項1記載の電子チケットシステム。     The admission authentication device further has means for determining whether or not the performance number in the two-dimensional code read by the two-dimensional code reader matches the performance number received from the electronic ticket sales management device. ,
    In addition to the verification result of the authentication code (1) against the authentication code (2) and the determination result of the two-dimensional code generation date and time, the determination result of the performance number is used to determine whether or not the authentication is possible. Item 1. The electronic ticket system according to item 1.
  5.  前記入場認証装置において、前記システム日が一日遡及されてシークレット値(2)が再生成され、前記再生成されたシークレット値(2)から前記認証コード(2)が再生成され、前記再生成された認証コード(2)に対して前記認証コード(1)が再照合される、請求項1記載の電子チケットシステム。 In the admission authentication device, the system date is retroactively set by one day, the secret value (2) is regenerated, the authentication code (2) is regenerated from the regenerated secret value (2), and the regeneration is performed. Electronic ticket system according to claim 1, wherein said authentication code (1) is rechecked against the generated authentication code (2).
  6.  前記入場認証装置において、前記システム日は所定の許容日数を限界として繰り返し遡及される、請求項5記載の電子チケットシステム。 The electronic ticket system according to claim 5, wherein in the admission authentication device, the system date is repeatedly retroactive within a predetermined allowable number of days.
  7.  携帯型情報処理端末と電子チケット販売管理装置とに対してインターネット回線を介して接続される、二次元コードリーダを有する入場認証装置において、
     前記電子チケット販売管理装置から受信した会員番号と、公演の公演日と、所定のソルト値とから、シークレット値(2)を生成する手段と、
     前記シークレット値(2)をハッシュ化する手段と、
     前記ハッシュ化されたシークレット値(2)を含む認証コード(2)を生成する手段と、
      前記認証コード(2)をハッシュ化する手段と、
      前記ハッシュ化された認証コード(2)に対して、前記携帯型情報処理端末に表示され、前記二次元コードリーダにより読み取った二次元コード内の認証コード(1)を照合する手段と、
     前記二次元コードリーダにより読み取った前記二次元コード内の二次元コード生成日時が、有効時間内であるか否か判定する手段と、
     前記認証コード(2)の前記認証コード(1)に対する照合結果と、前記二次元コード生成日時に関する判定結果とに基づいて、認証可否を判断する手段と、
     前記認証可否の判断結果を前記二次元コードリーダに表示させる手段とを有する、
    ことを特徴とする入場認証装置。     In an admission authentication device having a two-dimensional code reader, which is connected via an Internet line to a portable information processing terminal and an electronic ticket sales management device,
    means for generating a secret value (2) from the member number received from the electronic ticket sales management device, the date of the performance, and a predetermined salt value;
    means for hashing the secret value (2);
    means for generating an authorization code (2) comprising said hashed secret value (2);
    means for hashing the authentication code (2);
    means for comparing the hashed authentication code (2) with the authentication code (1) in the two-dimensional code displayed on the portable information processing terminal and read by the two-dimensional code reader;
    means for determining whether or not the two-dimensional code generation date and time in the two-dimensional code read by the two-dimensional code reader is within the validity period;
    means for judging whether or not authentication is possible based on the result of matching the authentication code (2) with the authentication code (1) and the determination result regarding the two-dimensional code generation date and time;
    and means for displaying the result of determination of whether or not the authentication is possible on the two-dimensional code reader,
    An entrance authentication device characterized by:
  8.  電子チケット販売管理装置にインターネット回線を介して接続される携帯型情報処理端末を、
     前記電子チケット販売管理装置から受信した会員番号と、前記電子チケット販売管理装置にアクセスした最新のアクセス日と、所定のソルト値とから、シークレット値(1)を生成する手段と、
     前記シークレット値(1)をハッシュ化する手段と、
     前記ハッシュ化されたシークレット値(1)を含む認証コード(1)を生成する手段と、
     前記認証コード(1)をハッシュ化する手段と、
     前記ハッシュ化された認証コード(1)と前記会員番号と二次元コード生成日時とから二次元コードを作成する手段として機能させるためのプログラム。     A portable information processing terminal connected to an electronic ticket sales management device via an Internet line,
    means for generating a secret value (1) from the membership number received from the electronic ticket sales management device, the latest access date when the electronic ticket sales management device was accessed, and a predetermined salt value;
    means for hashing the secret value (1);
    means for generating an authentication code (1) comprising said hashed secret value (1);
    means for hashing the authentication code (1);
    A program for functioning as means for creating a two-dimensional code from the hashed authentication code (1), the member number, and the two-dimensional code generation date and time.
  9.  携帯型情報処理端末を、前記二次元コードを、前記二次元コードの有効時間よりも短い時間の経過を示すプログレスメータとともに表示する手段としてさらに機能させるための請求項8記載のプログラム。 The program according to claim 8, for causing the portable information processing terminal to further function as means for displaying the two-dimensional code together with a progress meter indicating the passage of time shorter than the valid time of the two-dimensional code.
PCT/JP2022/042171 2021-11-15 2022-11-14 Electronic ticket system, entry authentication device, and program WO2023085416A1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
JP2022573439A JP7429364B2 (en) 2021-11-15 2022-11-14 electronic ticket system
JP2023218135A JP2024024676A (en) 2021-11-15 2023-12-25 electronic ticket system

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2021185524 2021-11-15
JP2021-185524 2021-11-15

Publications (1)

Publication Number Publication Date
WO2023085416A1 true WO2023085416A1 (en) 2023-05-19

Family

ID=86335908

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2022/042171 WO2023085416A1 (en) 2021-11-15 2022-11-14 Electronic ticket system, entry authentication device, and program

Country Status (2)

Country Link
JP (2) JP7429364B2 (en)
WO (1) WO2023085416A1 (en)

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2005182295A (en) * 2003-12-17 2005-07-07 Sony Corp Information processor and method, information processing system, recording medium and program
JP2014508989A (en) * 2011-01-14 2014-04-10 フラッシュ・シーツ・エルエルシー Bar code identification method and system for mobile application

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2005182295A (en) * 2003-12-17 2005-07-07 Sony Corp Information processor and method, information processing system, recording medium and program
JP2014508989A (en) * 2011-01-14 2014-04-10 フラッシュ・シーツ・エルエルシー Bar code identification method and system for mobile application

Also Published As

Publication number Publication date
JPWO2023085416A1 (en) 2023-05-19
JP2024024676A (en) 2024-02-22
JP7429364B2 (en) 2024-02-08

Similar Documents

Publication Publication Date Title
US11818253B2 (en) Trustworthy data exchange using distributed databases
US20210026979A1 (en) Digital Identification Enrollment
JP6494004B1 (en) Personal information management system, service providing system, method and program
US8095519B2 (en) Multifactor authentication with changing unique values
US7876201B2 (en) Vehicle authorization method and system
KR101202295B1 (en) Method of paying with unique key value and apparatus thereof
JP2004295197A (en) Electronic ticket vending system and method
JP2010287250A (en) Authentication system for cashless payment
US20210234705A1 (en) Improved system and method for internet access age-verification
JP2019219782A (en) Service providing system and service providing method
JP7115369B2 (en) Entrance/exit management system, traffic management system, entrance/exit management method, and entrance/exit management program
JP6792762B2 (en) Terminal device, same person discrimination system and method
KR20160116971A (en) System and method for providing mobile payment service supporting convinient complex payment of user
WO2023085416A1 (en) Electronic ticket system, entry authentication device, and program
KR20070029537A (en) Authentication system and method using individual unique code linked with wireless terminal
KR100753898B1 (en) System and method for login using an one time use password, smartcard having an one time use password process
US11296893B2 (en) Method and system for identity verification
KR20240099483A (en) electronic ticket system
CN112507370A (en) Electronic license verification method based on block chain network
JP2015038691A (en) Transfer processing system and method by action pattern authentication
US20220321347A1 (en) System, method and apparatus for transaction access and security
JP2003006546A (en) Information providing method and system utilizing mondex card
JP2003162602A (en) Operation system, method and server for electronic ticket and electronic ticket program

Legal Events

Date Code Title Description
WWE Wipo information: entry into national phase

Ref document number: 2022573439

Country of ref document: JP

121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 22892914

Country of ref document: EP

Kind code of ref document: A1

WWE Wipo information: entry into national phase

Ref document number: 2401003167

Country of ref document: TH