JP2003067744A - Device and method for authenticating individual person - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a personal authentication device allowing dictionary registration and dictionary updating without imparting a burden onto an authenticated person, and precluded the authenticated person from feeling complexity for initial introduction. SOLUTION: An authentication data input part 103 acquires a data for a dictionary from an authenticated person 100. A dictionary registration and updating part 104 prepares the dictionary for authentication based on the acquired data for the dictotinary, and stores it in a dictionary storage part 101. Then, a data for an authentication test is acquired from the authenticated person 100 by the authentication data input part 103 to conduct the authentication test. An authentication part 102 conducts the authentication test whether the authenticated person 100 is the person itself or not, using the acquired data for the authentication test and the dictionary stored in the dictionary storage part 101. When the person itself is authenticated correctly by the authentication test, the dictionary registration and updating part 104 prepares a new dictionary again based on the data for the dictionary acquired by the authentication data input part 103 and the data for the authentication test, and stores it in the dictionary storage part 101 as a regular dictionary.

Description

Detailed Description of the Invention

[0001]

The present invention relates to authentication data recorded on a physical medium such as a key, a magnetic card, an IC card, or biometric information such as a fingerprint, retina, iris, palm shape, face image, etc. The present invention relates to a personal authentication device and a personal authentication method for authenticating whether or not a person to be authenticated is a person based on the authentication result and performing entrance control to a building or room where security is important based on the authentication result.

[0002]

2. Description of the Related Art Recently, for example, keys, magnetic cards, ICs.
Based on the authentication data recorded on a physical medium such as a card, or biometric information such as fingerprints, retina, iris, palm shape, and facial image, it is verified whether or not the person to be authenticated is the person, and the authentication result Based on this, a personal authentication device that manages entry into a building or room where security is important has been developed.

Such a personal authentication device usually comprises a dictionary storage means for storing a dictionary for authentication, and the dictionary in this dictionary storage means is used to determine whether the person to be authenticated is the person himself or herself. It is designed to perform authentication.

By the way, the above dictionary is stored in the dictionary storage means (hereinafter, also referred to as registration), but in the initial dictionary registration, in order to obtain a sufficient learning sample for dictionary learning, authentication is performed. The person performs the work of acquiring the dictionary data multiple times.

Further, in updating the dictionary, the administrator or the person to be authenticated explicitly performs the dictionary updating work.

[0006] Further, at every certain time interval, every time the authentication is successful, or when the similarity score falls below a certain threshold value, the authentication data is fetched as learning data and the dictionary is automatically updated. There is.

[0007]

However, in the conventional personal authentication apparatus, it is necessary to perform data registration work a plurality of times in some cases in order to acquire sufficient dictionary data in the initial dictionary registration. However, there is a problem that the person to be authenticated feels complicated to introduce.

Further, there is a problem that an administrator or a person to be authenticated feels complicated because an explicit dictionary updating operation is required for updating the dictionary.

When the dictionary is updated automatically,
The person to be authenticated may have anxiety such as "Is my dictionary updated with the data of someone else who impersonates me before I know it?"

Therefore, the present invention is to provide a personal authentication device and a personal authentication method capable of registering a dictionary and updating a dictionary without burdening the person to be authenticated and not making the person to be authenticated feel complicated at the time of initial introduction. To aim.

Another object of the present invention is to provide a personal authentication device and a personal authentication method that allow the person to be authenticated to use the automatic dictionary updating function with confidence and confidence.

[0012]

A personal authentication apparatus of the present invention is based on dictionary data acquisition means for acquiring dictionary data from a person to be authenticated, and dictionary data acquired by the dictionary data acquisition means. A dictionary creating means for creating a dictionary for authentication, a dictionary storing means for storing the dictionary created by this dictionary creating means, and a dictionary storing means for storing the dictionary and then performing an authentication test as described above. An authentication test data acquisition unit for acquiring authentication test data from the authentication target, and the authentication test data acquired by the authentication test data acquisition unit and the dictionary stored in the dictionary storage unit are used to be authenticated. Authentication test means for performing an authentication test of whether or not the person is the person, and if the person is correctly authenticated by the authentication test means, the authentication is performed by the dictionary data acquisition means. Dictionary recreating means for recreating a new dictionary based on the authenticated dictionary data and the authentication test data acquired by the authentication test data acquisition means, and for storing this in the dictionary storage means as an official dictionary Whether the person to be authenticated is the person himself / herself by using at least one of the authentication data recorded on the physical medium possessed by the person to be authenticated and the biometric information of the person to be authenticated and the dictionary stored in the dictionary storage means. It is provided with an authentication means for authenticating whether or not.

Further, the personal authentication apparatus of the present invention stores the dictionary storage means for storing a dictionary for authentication, the authentication data and the biometric information of the authenticated person recorded on the physical medium possessed by the authenticated person. At least one of them and a dictionary stored in the dictionary storage means is used to authenticate whether the person to be authenticated is the person himself or herself, and the authentication means authenticates that the person to be authenticated is the person himself or herself. At this time, a determination unit that determines whether or not the dictionary stored in the dictionary storage unit should be updated, and if the determination unit determines that the dictionary should be updated, the authentication acquired at the time of the authentication. A dictionary updating means for updating the dictionary stored in the dictionary storing means based on the data, and a dictionary update history storing means for storing the dictionary update history including the dictionary update result when the dictionary is updated by the dictionary updating means. When the authentication means authenticates the person to be authenticated, the authentication result and the dictionary update history at the time of the last dictionary update stored in the dictionary update history storage means are displayed to the person to be authenticated. And display means.

Further, the personal authentication device of the present invention stores the dictionary storage means for storing a dictionary for authentication, the authentication data and the biometric information of the authenticated person recorded on the physical medium possessed by the authenticated person. At least one of them and a dictionary stored in the dictionary storage means is used to authenticate whether the person to be authenticated is the person himself or herself, and the authentication means authenticates that the person to be authenticated is the person himself or herself. At this time, a guide means for inquiring the person to be authenticated whether or not to update the dictionary stored in the dictionary storage means, and whether or not the person to be authenticated updates the dictionary in response to the inquiry by the guide means are selected. Dictionary update selection means and dictionary update means for updating the dictionary stored in the dictionary storage means based on the authentication data acquired at the time of authentication only when the person to be authenticated selects the dictionary update by this dictionary update selection means It is equipped with.

Further, the personal authentication method of the present invention includes a first step of acquiring dictionary data from a person to be authenticated, and a dictionary for authentication is created based on the dictionary data acquired in the first step. Then, the second step of storing the created dictionary in the dictionary storage means, and after the dictionary is stored in the dictionary storage means, the authentication test data is acquired from the person to be authenticated in order to perform the authentication test. A fourth step of performing an authentication test as to whether or not the person to be authenticated is the person using the third step and the authentication test data acquired in the third step and the dictionary stored in the dictionary storage means. If the user is correctly authenticated by the step and the fourth step, the dictionary data acquired by the first step and the authentication test data acquired by the third step. Create a new dictionary again on the basis of the data,
A fifth step of storing this in the dictionary storage means as an official dictionary, at least one of the authentication data and the biometric information of the authenticated person recorded on the physical medium possessed by the authenticated person, and the dictionary. A sixth step of authenticating whether or not the person to be authenticated is the person himself / herself using the dictionary stored in the storage means.

Further, the personal authentication method of the present invention has dictionary storage means for storing a dictionary for authentication, and the authentication data recorded on the physical medium carried by the person to be authenticated and the living body of the person to be authenticated. A first step of authenticating whether or not the person to be authenticated is the person using at least one of the information and the dictionary stored in the dictionary storage means, and the person to be authenticated is the person by the first step. If it is determined that the dictionary stored in the dictionary storage means is updated, a second step of determining whether the dictionary should be updated, and if it is determined that the dictionary should be updated by the second step The third step of updating the dictionary stored in the dictionary storage means based on the authentication data acquired at the time of the authentication, and the third step.
When the dictionary is updated by the step of, the fourth step of storing a dictionary update history including the dictionary update result; and when the person to be authenticated is authenticated by the first step, the authentication result and A fifth step of displaying the dictionary update history at the time of the previous dictionary update stored in the fourth step to the authenticated person.

Further, the personal authentication method of the present invention has dictionary storage means for storing a dictionary for authentication, and the authentication data recorded on the physical medium carried by the person to be authenticated and the living body of the person to be authenticated. A first step of authenticating whether or not the person to be authenticated is the person using at least one of the information and the dictionary stored in the dictionary storage means, and the person to be authenticated is the person by the first step. If it is authenticated, the second step of inquiring the person to be authenticated whether or not to update the dictionary stored in the dictionary storage means, and the person to be authenticated in response to the inquiry in the second step. Only in the third step of selecting whether to update the dictionary and in the dictionary storage means based on the authentication data acquired at the time of the authentication, only when the person to be authenticated selects the dictionary update in the third step. Remembered It has and a fourth step of updating the book.

[0018]

BEST MODE FOR CARRYING OUT THE INVENTION Embodiments of the present invention will be described below with reference to the drawings.

First, the first embodiment will be described.

FIG. 1 schematically shows the structure of a personal identification device according to the first embodiment. This personal authentication device, for example, authenticates whether or not the person to be authenticated 100 is the person himself / herself, and manages entry into a building or room where importance is attached to security based on the authentication result, and stores a dictionary for authentication. Authentication data recorded on a physical medium such as a key possessed by the authenticated person 100, a magnetic card, an IC card, or a fingerprint, a retina, an iris, a palm shape, a face image. An authenticating unit 1 as an authenticating unit that authenticates whether the person to be authenticated 100 is the person himself / herself by using biometric information such as the above and a dictionary stored in the dictionary storage unit 101.
02, an authentication data input unit 103 as a data acquisition means for acquiring authentication data and dictionary data from the authenticated person 100, a dictionary creating means for creating, registering, updating a dictionary, and a dictionary registration as a dictionary updating means. Update unit 10
4. Display unit 105 and display unit 10 as display means for displaying input data, authentication result, etc. to the authenticated person 100.
Check the adequacy of the dictionary data displayed in No. 5 to be authenticated 100
Is selected to decide whether or not to perform dictionary registration, and a dictionary registration selection unit (for example, a ten-key pad or a touch panel) 106 serving as a dictionary registration selection unit, and a room for performing entrance management based on the authentication result of the authentication unit 101. The door control unit 107 controls the opening and closing of the door 108.

The flow of the dictionary registration process will be described below with reference to the flowchart shown in FIG.

First, the authentication data input unit 103 acquires the dictionary data Data-dic from the authenticated person 100 (step S101). This dictionary data Data-dic is, for example, fingerprint data in fingerprint authentication, voiceprint data in voiceprint authentication, signature data in signature authentication, and face image data in face authentication. The acquired data for dictionary Data-dic is displayed on the display unit 1.
It is displayed to the person to be authenticated 100 by 05 (step S102).

Here, especially when the dictionary data Data-dic is a face image, the person to be authenticated 100 displays the appropriateness of the dictionary data (for example, the accuracy of the face cut-out position, It is possible to easily determine the appropriateness of the face, the appropriate expression, the appropriate illumination, etc.

In step S103, the person to be authenticated 10
If it is determined that the dictionary data Data-dic for which 0 is displayed is not appropriate and the dictionary registration selecting unit 106 selects not to register, the process returns to step S101, and the dictionary data Da
Start again from the ta-dic acquisition process.

In step S103, the person to be authenticated 10
When it is determined that the dictionary data Data-dic in which 0 is displayed is appropriate and the dictionary registration selecting unit 106 selects to register, the dictionary registration / updating unit 104 uses the dictionary data Data-dic based on the dictionary data Data-dic. Create the dictionary Dic1 and create this dictionary
Dic1 is stored (registered) in the dictionary storage unit 101 (step S104).

Next, in order to check whether the dictionary Dic1 registered in this way is valid, the subject 100 is asked to perform an authentication test (authentication trial).
That is, first, the authentication data input unit 103 acquires the authentication test data Data-test from the authenticated person 100 (step S105). The acquired authentication test data Data-test is sent to the authentication unit 102, and is collated with the dictionary Dic1 in the dictionary storage unit 101 to perform authentication processing as to whether the person to be authenticated 100 is the principal. (Steps S106 and S107).

If the user is not correctly authenticated in steps S106 and S107, it is assumed that the quality of the dictionary data Data-dic acquired earlier is not sufficient, or the dictionary data acquisition process of step S101 is performed again, or
The authentication test data acquisition process of step S105 is performed again.

If the user is correctly authenticated in steps S106 and S107, it can be understood that the quality of the dictionary data Data-dic and the authentication test data Data-test acquired earlier was sufficient. Again, step S
Similar to 102, the authentication test data Data-test is displayed on the authenticated person 100 by the display unit 105 (step S108).

In step S109, the person to be authenticated 10
When it is determined that the authentication test data Data-test in which 0 is displayed is not appropriate and the dictionary registration selecting unit 106 selects not to re-register, the process returns to step S105 again.
Start over from the process of acquiring authentication test data Data-test.

In step S109, the person to be authenticated 10
When it is determined that the authentication test data Data-test in which 0 is displayed is appropriate and the dictionary registration selection unit 106 selects re-registration, the dictionary registration / update unit 104
A new dictionary Dic2 is created again using the previously acquired dictionary data Data-dic and authentication test data Data-test (step S110), and this is registered in the dictionary storage unit 101 as an official dictionary.

Next, it is determined whether or not a sufficient dictionary has been created (step S111). If a sufficient dictionary has been created, the dictionary registration processing is terminated, and if it is not a sufficient dictionary, step S105 is executed again. Return to the authentication test data
Start over from the acquisition process of Data-test and perform sufficient dictionary learning. Here, whether or not a sufficient dictionary has been created is determined by, for example, whether the amount of data used for dictionary learning exceeds a certain threshold, or whether the score at the authentication test exceeds a certain threshold. do it.

With such a registration process, the person to be authenticated 1
00 feels that the dictionary registration work is performed only in step S101, and the authentication test in step S105 is hardly felt as part of the dictionary registration work. Therefore, by obtaining a part of the data necessary for dictionary learning from the authentication test data Data-test acquired in step S105, the acquisition amount of dictionary data in step S101 can be reduced, and as a result, It is possible to reduce the annoyance of the dictionary registration work felt by the authenticated person 100. Moreover, by adding the authentication test data Data-test to the dictionary learning, it is possible to perform better dictionary learning including many variations.

Next, a second embodiment will be described.

FIG. 3 schematically shows the configuration of the personal identification device according to the second embodiment. The second embodiment is different from the first embodiment described above in that the authenticated person 1
An image input unit 109 as an image input unit that acquires at least a face image of 00 and a dictionary update history storage unit that stores a dictionary update history including the dictionary update result when the dictionary in the dictionary storage unit 101 is updated. Since the authentication history storage unit 110 is added, and the other points are the same as those in the first embodiment, the description of the same portions will be omitted.

The flow of personal authentication and dictionary update processing will be described below with reference to the flowchart shown in FIG.

First, the image input unit 109 acquires a face image of the person to be authenticated 100 at the time of authentication (step S20).
1). On the other hand, the authenticating unit 102 performs a personality verification based on the verification data recorded on the physical medium possessed by the authenticated person 100, such as a conformity check using a normal key and a lock, or an authentication using a magnetic card or an IC card. , Or fingerprint, retina, iris, palm shape, face image, etc. 1
00 based on biometric information (step S
202, S203).

As an authentication method in the authentication unit 102, for example, reference 1 (Ken Sakano, Itsukazu Nakamura. “Present and Future of Authentication Technology”. Information Processing, Vol.41, No7, pp.816-822,
July2000.) Or Document 2 (Alex Pentland Tanze
em Choudhury. “Face Recognition for Smart Environm
ents ".IEEE Computer Magazine, Vol.49, No.2, pp.50-55,
The authentication method described in February 2000.) is applicable.

In steps S202 and S203, if the person to be authenticated 100 is not authenticated as the person himself / herself,
The display unit 105 displays the authentication result to that effect (step S204), and returns to the beginning of the authentication process.

In steps S202 and S203, when the person to be authenticated 100 is authenticated as the person himself / herself, the dictionary registration / update unit 104 determines whether or not the dictionary update processing should be performed (step S205). This dictionary update process may be performed, for example, every certain period of time, every certain number of times, or when the authentication score falls below a certain threshold value.

If it is determined in step S205 that the dictionary should be updated, the dictionary registration / update unit 104
Performs dictionary update processing based on the authentication data acquired in the authentication processing of step S202, and stores a new dictionary in the dictionary storage unit 101 (step S206). Next, the dictionary update history storage unit 110 stores, as a dictionary update history, the face image of the authenticated person 100 acquired by the image input unit 109 when the dictionary is updated and the result of the dictionary update (step). S207).

Next, the display unit 105 displays the authentication result and the dictionary update history at the time of the previous dictionary update stored in the dictionary update history storage unit 110 to the authenticated person (step S208). Next, the door control unit 107 opens the door 108 (step S209), and the process ends.

FIG. 5 shows an example of the authentication result of this time and the previous dictionary update history notified to the person to be authenticated 100 on the display unit 105. As shown in FIG. 5, the current authentication result (including the face image B of the authenticated person 100 input by the image input unit 109) A is displayed, and the previous dictionary update history C is displayed. As the previous dictionary update history, the date and time of dictionary update, the dictionary update location, and the face image of the person to be authenticated at the time of dictionary update may be displayed.

In this way, by storing and displaying the past dictionary update history, if someone impersonates himself (or is erroneously authenticated as himself) and the dictionary is updated in the past, it will be updated. It remains as a history. Then, when the true authenticated person is authenticated, the dictionary update result is displayed as a history. Therefore, the person to be authenticated can discover that the wrong dictionary update has occurred.

On the other hand, if the result of the previous dictionary update is certainly that of the person to be authenticated, "there was no dictionary update by another person from the previous authentication to this authentication".
Since this is guaranteed, there is an advantage that the person to be authenticated can use the authentication system with peace of mind. In particular, by displaying the image information at the time of authentication,
A true authenticated person can easily notice anomalies such as spoofing by others.

Further, when the dictionary is updated, especially when the dictionary is automatically updated, the person to be authenticated is afraid to update the dictionary with the data of another person, and thus the dictionary is not updated with the data of another person. By making it easy for the person to be authenticated to confirm this, the satisfaction and the sense of security of the person to be authenticated are greatly improved. Moreover, since it becomes easy for a third party to update the dictionary, the effect of suppressing such an action is great.

Note that, as shown in FIG. 6, a plurality of previous dictionary update histories C may be displayed. In this case, the number of dictionary update histories to be displayed, history information, and its format can be set by the person to be authenticated, the administrator, or both. In FIG. 6, C1 is dictionary update information, and C2 is a face image at the time of dictionary update.

Further, as shown in FIG. 7, the face images C2 at the time of updating the dictionary may be thinned and displayed side by side, or the images of the person to be authenticated 100 input by a plurality of image input units may be displayed. Good.

In the second embodiment, when the face image authentication technique is used as the authentication unit 102, the overall configuration is as shown in FIG. In this case, since the image input unit 109 also serves as the authentication data input unit 103, it is not always necessary to separately provide an image input unit. Authentication unit 102
Collates the face image input by the image input unit 109 with the dictionary in the dictionary storage unit 101, and
Authenticate whether or not you are the person.

Next, a third embodiment will be described.

FIG. 9 schematically shows the configuration of a personal authentication device according to the third embodiment. The third embodiment is different from the above-described second embodiment in FIG. 8 in that a management authority storage unit 111 is added, and the other points are the same as those in the second embodiment. Only different points will be described below.

The management authority storage unit 111 is, for example, as shown in FIG.
As shown in 0, it holds management information about which authenticated person a certain authenticated person has the management right. For example, suppose that the person to be authenticated with ID information = 3 has the management right to the person to be authenticated with ID information = 6 and 7. And ID
Assuming that the person whose information = 3 has been authenticated, the display unit 1
By referring to the management information of FIG. 10 held in the management authority storage unit 111, 05, as shown in FIG. 11, as the past dictionary update history C, the authenticated person (the person) of ID information = 3 is authenticated. ID information = not only dictionary update history C3
The dictionary update history C4 of the authenticated persons 6 and 7 is also displayed on the display unit 105 at the same time.

When such a personal authentication device is applied to the entrance of a general house, for example, if the parents are set to have the management right to the child, the dictionary update history of the child is updated every time the parents are authenticated. Is displayed, and it becomes possible to constantly and easily confirm whether the dictionary is mistakenly updated with the child's ID information.

When such a personal authentication device is applied to the entrance of a highly confidential room in an office, for example,
If the administrator or boss is set to have the management right to other room occupants, the dictionary update history of other room occupants will be displayed each time the manager is authenticated, and the dictionary information will be erroneously used by those ID information. It will be possible to constantly and easily confirm whether or not it has been updated.

Next, a fourth embodiment will be described.

FIG. 12 schematically shows the structure of a personal authentication device according to the fourth embodiment. The fourth embodiment is different from the second embodiment of FIG. 8 described above in that the personal authentication information recording medium (for example, a portable information recording medium) 112 possessed by the person to be authenticated 100 is past (previously). ), A medium recording unit 113 for recording the dictionary update history and the like, and a medium reading unit 114 for reading the authentication data and the dictionary update history from the personal authentication information recording medium 112 are added, and the dictionary update history storage unit 110 is added to the dictionary. Update history processing unit 1
15 is different and the other points are the same as those in the second embodiment, so only the different points will be described below.

The person to be authenticated 100 possesses a personal authentication information recording medium 112 such as an ID card composed of a magnetic card or an IC card on which a face image or the like is recorded as authentication data for authentication. Shall be presented and certified. Then, in the present embodiment, the past dictionary update history is recorded in the personal authentication information recording medium 112 at the time of authentication.

The medium reading unit 114 reads the authentication data and the past authentication history from the personal authentication information recording medium 112 presented by the person to be authenticated 100 and sends it to the dictionary update history processing unit 115. The medium recording unit 113 records the current dictionary update result (including the face image of the person to be authenticated 100) sent from the dictionary update history processing unit 115 on the personal authentication information recording medium 112 as a dictionary update history.

The flow of personal authentication and dictionary update processing will be described below with reference to the flowchart shown in FIG.
Note that the processing is basically the same as that in FIG.

First, the face image of the person to be authenticated 100 at the time of authentication is acquired by the image input unit 109 (step S40).
1). In parallel with this, the person-to-be-authenticated 100 presents his or her personal authentication information recording medium 112 to be authenticated.

That is, the person-to-be-authenticated 100 inserts the personal authentication information recording medium 112 into the medium reading unit 114, so that the medium reading unit 114 reads the face image as the authentication data from the personal authentication information recording medium 112. , To the dictionary update history processing unit 115 (step S402). The dictionary update history processing unit 115 uses the personal authentication information recording medium 112.
The face image read from is sent to the authentication unit 102. Authentication unit 10
2 checks whether or not the person to be authenticated 100 is the original person by checking whether or not the face image read from the personal authentication information recording medium 112 matches the dictionary (face image) in the dictionary storage unit 101. Is authenticated, and the authentication result is sent to the dictionary update history processing unit 115 (steps S403 and S404).

In this case, the authentication unit 102 may perform the personal authentication based on only the authentication data of the personal authentication information recording medium 112, or based on other biometric information such as the fingerprint of the person to be authenticated 100. Other authentication technologies may be used together.

In steps S403 and S404, if the person to be authenticated 100 is not authenticated as the person himself / herself,
The display unit 105 displays the authentication result to that effect (step S405), and returns to the beginning of the authentication process.

In steps S403 and S404, when the person to be authenticated 100 is authenticated as the person himself / herself, the dictionary registration / updating unit 104 determines whether or not the dictionary updating process should be performed (step S406). When it is determined in this determination that the dictionary should be updated, the dictionary registration / updating unit 104 performs the dictionary updating process based on the authentication data acquired in step S402, and stores the new dictionary in the dictionary storage unit 101. Yes (step S407).

Next, the dictionary update history processing section 115 receives the image input section 10 when the dictionary is updated in step S407.
9, the face image of the authenticated person 100, and
The result of the dictionary update is recorded in the personal authentication information recording medium 112 via the medium recording unit 113 as a dictionary update history (step S408).

Next, the medium reading unit 114 reads the previous dictionary update history from the personal authentication information recording medium 112 set at this time, and sends it to the dictionary update history processing unit 115. The dictionary update history processing unit 115 displays the authentication result of the authentication unit 102 (the authentication result of this time) and the previous dictionary update history read from the personal authentication information recording medium 112 on the display unit 10.
5 is displayed to the authenticated person 100 (step S
409). Next, the door control unit 107 opens the door 108 (step S410), and the process ends.

In this way, the personal authentication information recording medium 1
By recording the dictionary update history in 12, there is an advantage that it is not necessary to hold the dictionary update history on the personal authentication device side and share the dictionary update history with a plurality of personal authentication devices.

For example, as shown in FIG. 14, consider a case where a plurality of personal authentication devices are used for personal authentication. When the personal authentication information recording medium 112 is not used, FIG.
As shown in (a), history information sharing means 4 is required to share the dictionary update history information in the dictionary update history storage unit 3 between a plurality of personal authentication devices 1 and 2, and a wired or wireless network is available. Etc. need to be built.

On the other hand, as in the fourth embodiment,
When using the personal authentication information recording medium 112,
As shown in FIG. 14B, a plurality of personal authentication devices 5, 6
The history information sharing means 4 for sharing the dictionary update history information between them becomes unnecessary, and the system can be constructed at low cost.

Next, a fifth embodiment will be described.

FIG. 15 schematically shows the structure of a personal authentication device according to the fifth embodiment. The fifth embodiment is different from the above-described second embodiment in FIG. 3 in that a dictionary update selection unit 116 as a dictionary update selection unit is added, and other aspects are the second embodiment. Since it is the same as, the description of the similar parts will be omitted.

The flow of personal authentication and dictionary update processing will be described below with reference to the flowchart shown in FIG.

First, the image input unit 109 acquires the face image of the person to be authenticated 100 at the time of authentication (step S50).
1). On the other hand, the authentication unit 102, for example,
Personal authentication is performed based on the face image of 0 (step S50).
2, S503). In this personal authentication, the person to be authenticated 10
If 0 is not authenticated as the person himself / herself, the display unit 10
The result of authentication is displayed by step 5 (step S50).
4) Return to the beginning of the authentication process.

In steps S502 and S503, when the person to be authenticated 100 is authenticated as the person himself / herself, the door control unit 107 opens the door 108 (step S50).
5). At this time, the person to be authenticated 1 is asked whether to update the dictionary.
The display unit 105 guides and displays a dictionary update selection screen as shown in FIG. 17 so that 00 can be selected (step S506).

Based on this guidance, the person to be authenticated 100 makes a selection using the dictionary update selection unit (for example, an interface such as a touch panel, a numeric keypad, or a voice) 116 (step S507). With this selection, the subject 1
00 selects “update”, and the authenticated person 100 who has been authenticated as the true person selects it (step S
In step 508), the dictionary registration / updating unit 104 updates the dictionary (step S509). If "not update" is selected, the dictionary is not updated. Also, step S5
In 07, even if the authenticated person 100 makes no selection, the dictionary is not updated.

Even if the dictionary update selection screen of FIG. 17 is displayed every time the authentication is successful, the authenticated person 100 does not necessarily have to make the selection, and therefore the authenticated person 100 does not feel complicated. I'm sorry.

Here, in step S508, it is confirmed whether or not the person who has selected "update" is a truly authenticated person. This is a "update" by a third party after the authenticated person leaves without making a choice.
It prevents you from choosing. Specifically, for example, after successful authentication, the time until “Update” is selected is less than or equal to a certain threshold value, or a face area is detected from the input image (face detection processing is performed by face matching). It may be the same as that used in the process), or it may be confirmed whether the face area is continuously detected correctly (whether or not it has left) until "Update" is selected.

If it is not desirable that the state in which the dictionary is not updated continues, even if the person to be authenticated 100 does not select "Update" in step S507, the dictionary is updated every certain period or some time. The dictionary may be updated every fixed number of times of use.

When the person to be authenticated 100 is not authenticated as the person due to a change in the biometric information or the like, the person is authenticated by another means such as a password (personal identification number or ID number). There is an authentication method to perform. Therefore, if the personal authentication is performed by such another means, or if the personal authentication is performed by another means a certain number of times or more, it is determined that the biometric information of the authenticated person 100 has changed. You may update the dictionary.

As a sixth embodiment, an example of the flow of dictionary update processing at the time of password authentication will be described below with reference to the flowchart shown in FIG.

First, the image input unit 109 acquires a face image of the authenticated person 100 at the time of authentication (step S51).
1). On the other hand, the authentication unit 102, for example,
Personal authentication is performed based on the face image of 0 (step S51).
2, S513). In this personal authentication, the person to be authenticated 10
If 0 is authenticated as the person himself / herself, the door control unit 107 opens the door 108 (step S514), and the display unit 1
The authentication result is displayed by 05 (step S515), and the process returns to the beginning of the authentication process.

In steps S512 and S513, if the person to be authenticated 100 is not authenticated as the person himself / herself,
The authentication data input unit 103 acquires the password of the person to be authenticated 100 (step S516), and performs personal authentication with this password (step S517). In this password authentication, when the authenticated person 100 is not authenticated as the person himself / herself, the authentication result indicating that is displayed on the display unit 105 (step S515), and the process returns to the beginning of the authentication process.

In step S517, the person to be authenticated 10
When 0 is authenticated as the person, it is checked how many times personal authentication by the password has been performed since the last dictionary update (step S518). If the result of this check is that the number of times personal authentication by the password is not greater than or equal to the preset threshold value, the door control unit 1
The door 108 is opened by 07 (step S514), and the authentication result is displayed by the display unit 105 (step S51).
5) Return to the beginning of the authentication process.

As a result of the check in step S518, if the number of times of personal authentication by the password is equal to or larger than a predetermined threshold value set in advance, the biometric information (face image in this example) of the authenticated person 100 is changed. When it is determined that it has occurred, the dictionary registration / updating unit 104 performs dictionary updating processing (step S519). Next, the door control unit 107 opens the door 108 (step S514), and the display unit 10
5, the authentication result is displayed (step S515), and the process returns to the beginning of the authentication process.

As described above, according to the above-described embodiment, after the initial dictionary registration, an authentication test is performed to confirm whether the authentication can be correctly performed, and the data acquired at that time is used as the dictionary learning data. By using as, the data acquisition work for obtaining the learning sample can be reduced, and the authenticated person does not feel that the authentication test is a dictionary registration operation, so that the authenticated person does not feel the complexity of the initial introduction. .

Further, when the person to be authenticated is authenticated as the person himself / herself, the dictionary update history when the dictionary is updated last time by the person to be authenticated is displayed simultaneously with the authentication result.
If someone other than yourself mistakenly updates the dictionary and updates it, it will always be displayed as the information when the dictionary was updated last time. Can be checked and discovered. In particular, it is effective to be able to confirm with the face image, which allows the person to be authenticated to use the automatic dictionary updating function with confidence and confidence.

Further, the dictionary update history at the time of the last dictionary update,
By recording on a personal authentication information recording medium such as an IC card instead of on the personal authentication device side, for example, when authenticating with another personal authentication device, it is not necessary to retrieve the dictionary update history via the network. As a result, if another person uses his or her personal authentication information recording medium to update the dictionary without knowing it, it will be saved in the personal authentication information recording medium, so the dictionary will be updated with the data of another person. Easy to understand.

Further, when the person to be authenticated is authenticated as the person himself / herself, it is possible to select whether to update the dictionary with the data. If the dictionary update is not selected, the dictionary is not updated, so it is not necessary to select it if it is troublesome.

[0088]

As described above in detail, according to the present invention, it is possible to perform dictionary registration and dictionary update without burdening the person to be authenticated,
It is possible to provide a personal authentication device and a personal authentication method that do not make the person to be authenticated feel complicated during the initial introduction.

Also, according to the present invention, it is possible to provide a personal authentication device and a personal authentication method that allow the person to be authenticated to use the automatic dictionary updating function with confidence and confidence.

[Brief description of drawings]

FIG. 1 is a block diagram schematically showing a configuration of a personal authentication device according to a first embodiment of the present invention.

FIG. 2 is a flowchart illustrating a flow of dictionary registration processing of the personal authentication device according to the first embodiment.

FIG. 3 is a block diagram schematically showing the configuration of a personal authentication device according to a second embodiment of the present invention.

FIG. 4 is a flowchart illustrating the flow of personal authentication and dictionary update processing of the personal authentication device according to the second embodiment.

FIG. 5 is a diagram showing a display example of an authentication result and a dictionary update history according to the second embodiment.

FIG. 6 is a diagram showing another display example of an authentication result and a dictionary update history according to the second embodiment.

FIG. 7 is a diagram showing still another display example of the authentication result and the dictionary update history according to the second embodiment.

FIG. 8 is a block diagram schematically showing the configuration of a personal authentication device when a face image authentication technique is used as an authentication unit in the second embodiment.

FIG. 9 is a block diagram schematically showing a configuration of a personal authentication device according to a third embodiment of the present invention.

FIG. 10 is a diagram showing an example of management authority information used in the third embodiment.

FIG. 11 is a diagram showing a display example of an authentication result and a dictionary update history according to the third embodiment.

FIG. 12 is a block diagram schematically showing the configuration of a personal authentication device according to a fourth embodiment of the present invention.

FIG. 13 is a flowchart illustrating the flow of personal authentication and dictionary update processing of the personal authentication device according to the fourth embodiment.

FIG. 14 is a diagram for explaining the effect of using a personal authentication information recording medium in the fourth embodiment.

FIG. 15 is a block diagram schematically showing the configuration of a personal authentication device according to a fifth embodiment of the present invention.

FIG. 16 is a flowchart illustrating the flow of personal authentication and dictionary update processing of the personal authentication device according to the fifth embodiment.

FIG. 17 is a diagram showing a display example of a dictionary update selection screen in the fifth embodiment.

FIG. 18 is a flowchart illustrating an example of the flow of a dictionary update process at the time of password authentication in the personal authentication device according to the sixth embodiment.

[Explanation of symbols]

100 ... Person to be authenticated, 101 ... Dictionary storage unit (dictionary storage unit), 102 ... Authentication unit (authentication unit), 103 ... Authentication data input unit (data acquisition unit), 104 ... Dictionary registration / update unit (dictionary creation unit, Dictionary updating means), 105 ... display unit (displaying unit), 106 ... dictionary registration selecting unit (dictionary registration selecting unit), 107 ... door control unit, 108 ... door, 109 ...
Image input unit (image input unit), 110 ... Dictionary update history storage unit (dictionary update history storage unit), 111 ... Management authority storage unit, 112 ... Personal authentication information recording medium (portable information recording medium), 113 ... Medium recording Section, 114 ... Medium reading section, 11
5 ... Dictionary update history processing unit, 116 ... Dictionary update selection unit (dictionary update selection means).

─────────────────────────────────────────────────── ─── Continuation of front page (51) Int.Cl. ⁷ Identification code FI theme code (reference) G06K 19/10 G07C 9/00 Z // G07C 9/00 G06K 19/00 SF term (reference) 2C005 HA03 HB07 JA01 JB02 JB06 LB32 MA04 MB07 SA02 SA12 SA15 3E038 AA01 AA11 BA20 BB01 BB05 CA01 CA04 CC01 CC02 DA01 DB01 EA02 EA03 EA04 FA02 FA03 FA10 GA01 JA01 JA03 JB10 5B035 BC00 BC01 5B058 KA11 BA15 CA01 CA15 YA15 CA025

Claims (15)

[Claims] 1. A dictionary data acquisition means for acquiring dictionary data from a person to be authenticated, and a dictionary creation means for creating an authentication dictionary based on the dictionary data acquired by the dictionary data acquisition means, Dictionary storing means for storing the dictionary created by the dictionary creating means, and authentication for obtaining authentication test data from the person to be authenticated in order to perform an authentication test after the dictionary is stored in the dictionary storing means Using the test data acquisition means, the authentication test data acquired by the authentication test data acquisition means, and the dictionary stored in the dictionary storage means, an authentication test is performed to determine whether the person to be authenticated is the person himself or herself. Authentication test means, and if the authentication test means correctly authenticates the person himself, the dictionary data acquired by the dictionary data acquisition means and the authentication test A dictionary recreating means for recreating a new dictionary based on the authentication test data acquired by the data acquiring means, and storing the dictionary as the official dictionary in the dictionary storage means, and a physical medium possessed by the person to be authenticated. Authentication means for authenticating whether or not the person to be authenticated is the person using at least one of the authentication data and the biometric information of the person to be authenticated and the dictionary stored in the dictionary storage means. A personal authentication device characterized by being provided. 2. When the authentication test means does not correctly authenticate the person, the processing after the dictionary data acquisition means or the processing after the authentication test data acquisition means is performed again. The personal authentication device according to item 1. 3. The display means for displaying the dictionary data acquired by the dictionary data acquisition means to the authenticated person, and the authenticated person judges the appropriateness of the dictionary data displayed by the display means. And further comprising dictionary registration selecting means for selecting whether or not to perform dictionary registration, and when the dictionary registration selecting means selects the dictionary registration, the dictionary creating means creates a dictionary. The personal authentication device according to claim 1. 4. A dictionary storage unit storing a dictionary for authentication, at least one of authentication data and biometric information of the authenticated person recorded on a physical medium possessed by the authenticated person, and the dictionary. Authentication means for authenticating whether or not the person to be authenticated is the person using the dictionary stored in the storage means, and stored in the dictionary storage means when the person to be authenticated is authenticated by the authentication means. Determining means for determining whether or not to update the dictionary, and when the determining means determines that the dictionary should be updated, the dictionary storage means stores the dictionary based on the authentication data acquired at the time of the authentication. Dictionary updating means for updating the stored dictionary, dictionary updating history storing means for storing a dictionary updating history including the dictionary updating result when the dictionary is updated by the dictionary updating means, and the authenticating means for recognizing When the person is authenticated as the person himself / herself, a display means for displaying the authentication result and the dictionary update history at the time of the last dictionary update stored in the dictionary update history storage means to the authenticated person is provided. An individual authentication device characterized by the above. 5. When the dictionary is updated by the dictionary updating unit, the dictionary updating unit further comprises an image input unit that acquires at least a face image of the person to be authenticated, and the dictionary updating acquired by the image input unit as the dictionary update history. The personal authentication device according to claim 4, wherein the personal authentication device includes a face image of the person to be authenticated when performing the above step. 6. The dictionary update history includes a face image of a person to be authenticated when the dictionary was updated last time, a date and time of dictionary update, a place of dictionary update, and the like. Personal authentication device. 7. The display means, when the authentication means authenticates the person to be authenticated, is the authentication result including the face image of the person to be authenticated, which is acquired by the image input means at that time. And displaying a dictionary update history stored in the dictionary update history storage means to the authenticated person, including a face image of the authenticated person who belongs to a preset group at the time of the previous dictionary update. Claim 5
The personal authentication device described. 8. The personal authentication device according to claim 4, wherein a portable information recording medium is used as the dictionary update history storage means. 9. A dictionary storage unit storing a dictionary for authentication, at least one of authentication data and biometric information of the authenticated person recorded on a physical medium possessed by the authenticated person, and the dictionary. Authentication means for authenticating whether or not the person to be authenticated is the person using the dictionary stored in the storage means, and stored in the dictionary storage means when the person to be authenticated is authenticated by the authentication means. Guide means for inquiring the authenticated person whether or not to update the created dictionary, dictionary update selection means for selecting whether or not the authenticated person updates the dictionary in response to the inquiry by this guide means, and this dictionary Dictionary update means for updating the dictionary stored in the dictionary storage means based on the authentication data acquired at the time of authentication only when the person to be authenticated selects the dictionary update by the update selection means. When That the personal authentication device. 10. A confirmation means for confirming whether or not the person to be authenticated selects the dictionary to be updated by the dictionary update selection means, and whether or not the selection is made by the person to be authenticated who has been authenticated as the person by the authentication means. The dictionary updating means updates the dictionary only when it is confirmed by the confirming means that a person to be authenticated who has been authenticated by the authenticating means performs the dictionary update. 9. The personal authentication device described in 9. 11. A dictionary storage means for storing a dictionary for authentication, at least one of authentication data and biometric information of the authenticated person recorded on a physical medium possessed by the authenticated person, and the dictionary. First authentication means for authenticating whether or not the person to be authenticated is the person using the dictionary stored in the storage means, and the case where the person to be authenticated is not authenticated as the person to be authenticated by the first authentication means , A second authenticating means for authenticating whether or not the person to be authenticated by the password is authenticated, and the number of times of authentication is preset when the person to be authenticated is authenticated by the second authenticating means. Determining means for determining whether or not a predetermined value has been reached, and when the determining means determines that the number of times of authentication has reached a predetermined value, the determination means stores the dictionary storage means based on the authentication data acquired during the authentication. Updated dictionary Personal authentication apparatus characterized by comprising a dictionary updating unit, and for. 12. A first step of acquiring dictionary data from a person to be authenticated, a dictionary for authentication is created based on the dictionary data acquired in this first step, and the created dictionary is used as a dictionary. A second step of storing in the storage means; a third step of obtaining authentication test data from the person to be authenticated in order to perform an authentication test after the dictionary is stored in the dictionary storage means; A fourth step of performing an authentication test as to whether or not the person to be authenticated is the person using the authentication test data acquired in step 3 and the dictionary stored in the dictionary storage means, and the fourth step. If the user is correctly authenticated by, the new dictionary is re-created based on the dictionary data acquired in the first step and the authentication test data acquired in the third step. A fifth step of creating and storing this as an official dictionary in the dictionary storage means, and at least one of authentication data and biometric information of the authenticated person recorded in a physical medium possessed by the authenticated person. And a sixth step of authenticating whether or not the person to be authenticated is the person himself / herself by using the dictionary stored in the dictionary storage means. 13. A dictionary storage unit storing a dictionary for authentication, and at least one of authentication data and biometric information of the authenticated person recorded in a physical medium possessed by the authenticated person. A first step of authenticating whether or not the person to be authenticated is the person using the dictionary stored in the dictionary storage means, and when the person to be authenticated is authenticated to be the person by the first step, A second step of determining whether the dictionary stored in the dictionary storage means should be updated, and if it is determined that the dictionary should be updated by the second step, the dictionary is acquired at the time of the authentication. A third step of updating the dictionary stored in the dictionary storage means based on the authentication data, and a fourth step of storing a dictionary update history including the dictionary update result when the dictionary is updated by the third step. Step When the person to be authenticated is authenticated as the person in question in the first step, the authentication result and the dictionary update history at the time of the last dictionary update stored in the fourth step are given to the person to be authenticated. A personal authentication method comprising: a fifth step of displaying. 14. A dictionary storage means for storing a dictionary for authentication, and at least one of authentication data and biometric information of the authenticated person recorded in a physical medium possessed by the authenticated person. A first step of authenticating whether or not the person to be authenticated is the person using the dictionary stored in the dictionary storage means, and when the person to be authenticated is authenticated to be the person by the first step, The second step of inquiring the authenticated person whether or not to update the dictionary stored in the dictionary storage means, and whether or not the authenticated person updates the dictionary in response to the inquiry in the second step. The third step of selecting and the dictionary stored in the dictionary storage means is updated based on the authentication data acquired at the time of the authentication only when the person to be authenticated selects the dictionary update in the third step. Step 4 Personal authentication method characterized by comprising the, the. 15. A dictionary storage unit that stores a dictionary for authentication, and at least one of authentication data and biometric information of the authenticated person recorded in a physical medium possessed by the authenticated person. A first step of authenticating whether or not the person to be authenticated is the person using the dictionary stored in the dictionary storage means, and a case where the person to be authenticated is not authenticated to be the person by the first step , A second step of authenticating whether or not the person to be authenticated by the password is an authentic person, and when the person to be authenticated is authenticated by the second step, the number of times of authentication is preset A third step of determining whether or not the value has been reached, and when it is determined in the third step that the number of times of authentication has reached a predetermined value, the dictionary storage means is based on the authentication data acquired at the time of the authentication. In Fourth to update the dictionary
And a personal authentication method comprising: