JP2003348078A - Location authentication system and method thereof - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To verify when and where who exists even after authentication in the case of the authentication of location information of a portable terminal. <P>SOLUTION: In a location authentication system having the portable terminal, a location information server for acquiring and providing the location information of the portable terminal, a location authentication server for assuring that the location information is not altered and a time authentication server for providing time information, the terminal has a terminal number and a data transmission means for transmitting the terminal number, the location information server has a data transmission means for transmitting the location information, the location authentication server has a data reception means for receiving the terminal number and the location information, a location information propriety verification means for verifying propriety of the location information and a signature generation means for generating an electronic signature for the location information and the time authentication server has a time acquisition means for acquiring time and a time transmission means for transmitting the time. <P>COPYRIGHT: (C)2004,JPO

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a technology for authenticating location information of a portable terminal.

[0002]

2. Description of the Related Art In recent years, mobile phones and PDAs (Persons) have been developed.
2. Description of the Related Art A terminal (hereinafter, referred to as a portable terminal) that is movable and that can perform data communication through a communication network such as the Internet, such as an al digital assistant, is widely used. In these portable terminals, G
PS (Global Positioning Sys)
), a technology capable of acquiring location information, a technique of acquiring location information based on information from a nearest network connection device (access point), and the like are used.

[0003] However, when it is desired to prove who, when, and where using these location information, it is necessary to confirm that the conventional location information does not make any mistake or alteration. Can not.

[0004]

As described above, the validity of conventional location information cannot be proved to a third party. Also, it is only information on the position of the mobile terminal itself, and it is not possible to specify the user. Furthermore, it is not possible to specify when the location information is.

[0005]

SUMMARY OF THE INVENTION The present invention provides a technology which enables authentication of location information of a portable terminal.

[0006] The present invention relates to the position information of a portable terminal,
Provide a technology that can verify who, when, and where they were even after the fact.

The position authentication system of the present invention has a portable terminal, a position information server that acquires and provides position information of the portable terminal, and a position authentication server that guarantees that the position information has not been falsified.

The portable terminal has a terminal number and data transmitting means for transmitting the terminal number, and the position information server has data transmitting means for transmitting position information.
The location authentication server includes a data receiving unit that receives the terminal number and the location information, a location information validity validation unit that validates the location information, and a signature that generates an electronic signature for the location information. Generating means.

[0009] More specifically, the portable terminal includes a terminal number, data transmitting means for transmitting the terminal number, data receiving means for acquiring position information from the position authentication server, and validity of the position information. Position information validity verification means for verifying the position information, position information acquisition means for acquiring the position information by itself,
User information acquisition means for acquiring information of the current mobile terminal user (face photograph, voice, fingerprint, etc.), and signature generation for generating an electronic signature for the position information acquired by itself and the user information Means.

The location information server includes a data transmission unit for transmitting location information, a data reception unit for acquiring a request from the portable terminal, and a location information acquisition unit for acquiring location information of the portable terminal in response to the request. Means.

[0011] The location authentication server, the terminal number,
The location information, the time information, the user information,
Data receiving means for receiving the information, the position information, the time information, and the user information, and validity verifying means for verifying the validity of the user information, the terminal number, the position information, and the time information. And a signature generation unit for generating an electronic signature for the user information, and a user confirmation unit for confirming a current user of the portable terminal.

[0012] The location authentication system of the present invention may further include a time authentication server that provides time information.

The time authentication server has time information obtaining means for obtaining time information, data transmitting means for transmitting the time information, and signature generating means for generating an electronic signature for the time information.

With the above arrangement, according to the present invention, since the position authentication server can generate signature information for the position information, the validity of the position information can be verified even after the fact. .

In the location authentication system of the present invention, the user information acquisition means of the portable terminal acquires the user information of the portable terminal and transmits it to the location information authentication server. For this reason, a third party cannot use a mobile terminal instead to obtain unauthorized location information. In this case, an electronic signature is generated in the mobile terminal for the user information and transmitted to the location authentication server. Therefore, the validity of the user information is guaranteed. For the same purpose, the location authentication server may confirm the current user of the portable terminal by the user confirmation means. If the user information is not required, the user information of the portable terminal may not be required.

Further, the portable terminal transmits a request for acquiring position information to the position information server, and the position information server acquires position information according to the portable terminal number.

The portable terminal may acquire its own position information based on information from a GPS or a radio base station. In this case, an electronic signature is generated in the portable terminal for the position information and transmitted to the position authentication server. Therefore, the validity of the position information is guaranteed.

Further, the time authentication server generates an electronic signature for the acquired time information and transmits it to the location authentication server. The location authentication server verifies the validity of the acquired time information. ing. Therefore, the validity of the time information is guaranteed. The time information may be generated in the location authentication server. When the time information is not required, the time authentication server and the time information may not be provided.

The location authentication server generates an electronic signature for a terminal number, location information, time information, and user information.
An electronic signature may be generated for zero or more combinations with the user information and the position information.

Further, the location authentication server may transmit the generated authentication information (terminal number, location information, time information, user information, signature information) to an entity other than the portable terminal. Further, it may be stored in a database in the authentication server.

[0021]

Embodiments of the present invention will be described below with reference to the drawings. It should be noted that the present invention is not limited by this.

FIG. 1 is a schematic diagram of a location authentication system to which the first embodiment of the present invention is applied. Mobile terminal 10
Are mobile phones and PDAs (Personal Disit)
alAssistant), a mobile terminal number, user information, and the like. The network connection device ₅₀ 1 to 50 _n (hereinafter, simply referred to as a network connecting device 50), the wireless communication with the portable terminal 10, a network such as the Internet (hereinafter, referred to as the Internet) 60 and for connection to the dedicated line 70, etc. Access point.

The location information server 30 is a server that provides location information of the mobile terminal 10 according to a request from the mobile terminal 10 by using a mobile terminal number, information on a network connection device, and the like. The time authentication server 40 is a server that issues the current time in response to a time acquisition request. The location authentication server 20 acquires the terminal number and the user information from the portable terminal 10, the location information from the location information server 30, the time information from the time authentication server 40, and the like. This is a server for generating an electronic signature of the authentication server 20.

The portable terminal 10 and the network connection device 50 are connected by wireless communication. The network connection device 50, the location information server 30, the time authentication server 40, and the location authentication server 20 are connected to each other via the Internet 60 or a dedicated line 70.

Next, the portable terminal 10, the position information server 30, the time authentication server 40, and the position authentication server 20 which constitute the system shown in FIG. 1 will be described. In this embodiment, an existing device having a function as a wireless base station can be used as the network connection device.
Therefore, description of the network connection device 50 is omitted.

First, the portable terminal 10 will be described with reference to FIG. In FIG. 2, a wireless communication unit 101 communicates with a network connection device by wireless communication. The terminal number 110 is a number uniquely assigned to the mobile terminal. The user information acquisition unit 108, for example,
The user's face photo, voice,
Obtain a fingerprint or the like. The signature generation unit 106 uses the secret key 104 to generate an electronic signature for the user information acquired by the user information acquisition unit 108. Data transmission unit 103
Is the terminal number 110 stored in the portable terminal.
And user information and signature information. The data receiving unit 102 receives the location authentication information (terminal number, location information, time information, user information and its signature information) issued from the location authentication server 20. Signature verification unit 107
Verifies the signature of the signature information. In the signature information,
If the public key certificate of the location authentication server is included,
Verification is performed using the public key certificate. If there is a public key certificate 105 set in the mobile terminal in advance, the public key certificate 105 can be used.

FIG. 3 is a schematic diagram of the location information server 30. In FIG. 3, the communication unit 301 is the Internet 6
0 and data communication via the dedicated line 70. The data receiving unit 302 receives request data such as a mobile terminal number and a network connection device number from the mobile terminal 10 and the network connection device 50. Location information acquisition unit 304
Acquires the position information of the portable terminal 10 based on the request data. The data transmission unit 303 transmits the position information.

FIG. 4 is a schematic diagram of the time authentication server 40. In FIG. 4, the communication unit 401 is connected to the Internet 6
Data communication is performed via 0 or the like. Data receiving unit 402
Receives the time information acquisition request. Time information acquisition unit 4
At 07, time information is acquired, and a signature generation unit 406 generates a signature for the time information. The data transmission unit 403
Send time information and signature information. The secret key 404 is a secret key of the time authentication server for performing a signature. The public key certificate 405 is a public key certificate for signature verification, which is paired with the secret key 404.

FIG. 5 is a schematic diagram of the location authentication server 20. In FIG. 5, the communication unit 201 is the Internet 6
Data communication is performed via 0 or the like. Data receiving unit 202
Receives data via the communication unit 201. The position information acquisition unit 210 acquires position information from the portable terminal 10 or the position information server 30. The time information acquisition unit 212 acquires time information from the time authentication server 40. The user information acquisition unit 208 is a portable terminal 1
0 or user information from the location information server 30.

The position information validity verification unit 211 verifies the validity by verifying the electronic signature of the position information acquired by the position information acquisition unit 210. Time information validity verification unit 2
13 verifies the validity by verifying the electronic signature of the time information acquired by the time information acquisition unit 212. The user information validity verification unit 209 is provided for the user information acquisition unit 20.
The validity is verified by verifying the electronic signature of the user information acquired in step 8.

The signature verification unit 207 includes the position information validity verification unit 211, the time information validity verification unit 213,
In the process with the user information validity verification unit 209, the signature is actually verified. If the corresponding public key certificate is included in the information to be verified, verification is performed using the public key certificate. If there is a public key certificate 205 set in the location authentication server in advance, the public key certificate 205
Can also be used.

The signature generation unit 206 generates an electronic signature for the acquired terminal number, position information, time information, and user information. The secret key 204 is a secret key of the location authentication server for performing a signature. Public key certificate 205
Includes a public key certificate for signature verification, which is paired with the secret key 204. The data transmission unit 203 transmits position authentication information including position information, time information, user information, and signature information.

The user confirming unit 214 confirms the current user by, for example, making a call when the user information acquiring unit 208 cannot acquire the user information.

The position information server 30, time authentication server 40, and position authentication server 20
For example, as shown in FIG. 6, a CPU 15, a memory 16, a storage device 14, a reading device 17 for reading data from a storage medium 18, an input device 13 such as a keyboard and a mouse, and an output device such as a monitor 12 and a communication device 11 for communicating via the Internet 60 or the dedicated line 70
And a computer system having a general configuration including an internal communication line (hereinafter, referred to as a bus) 19 such as a bus connecting these devices, or a plurality of computer systems connected to a network. It can be built on a network system.

On such a computer system or network system, the position information server 30
A program for constructing the time authentication server 40 and the location authentication server 20 is stored in the memory 1 from the storage device 14 or from the storage medium 18 via the reading device 17.
6, and may be executed by the CPU. Alternatively, the Internet 6 via the communication device 11
0 or from dedicated line 70 onto memory 16 and
The program may be executed by a CPU.

The above-mentioned portable terminal 10 can also be constructed on a portable computer or portable telephone having the hardware configuration shown in FIG. In this case, a device having a wireless communication function is used as the communication device 11.
In addition, a small storage device such as a ROM or a memory card is used as the storage device.

Next, the operation of the location authentication system will be described.

FIG. 7 is a diagram for explaining the operation procedure of the position authentication system shown in FIG.

The portable terminal 10 acquires a terminal number stored in the portable terminal (S101). Acquires user information for specifying a current user of the portable terminal (S1).
02). For example, a photograph of the user's face, voice, fingerprint, and the like can be obtained via the input device 13 of the mobile terminal 10.

A digital signature is generated for the user information obtained in step S102 (S103).
Requests the location information server 30 to acquire location information via the network connection device 50. At this time, the terminal number S104, the user information S105, and the signature information S10 are sent from the portable terminal 10 to the location information server 30.
6 is transmitted.

The location information server 30 acquires location information based on the received terminal number S104 and information on the network connection device 50 (S107). The location information server 30 acquires the terminal number S104 and the user information S105.
And the signature information S106 and the position information S108 acquired in step S107 are transmitted to the position authentication server.

The location authentication server 20 first verifies the validity of the location information (S109). Here, it is verified whether the information is transmitted from the reliable position information server 30.

The position information server 30 verifies the validity of the user information by verifying the user information S105 and the signature information S106 corresponding to the user information (S110).
The current user of the mobile terminal 10 may be confirmed by a method other than data communication (S111). Time information is requested to the time authentication server 40 (S111).
112) The time authentication server 40 acquires the current time information (S1).
13), an electronic signature is generated for the time information (S1).
14) The time information S115 and the signature information S116 generated in step S114 are transmitted to the requesting location authentication server 20.

The location authentication server 20 sends the time information S115
And the signature information S116 corresponding to the time information is verified to verify the validity of the time information information (S11).
7) The location authentication server 20 determines the terminal number S104, the user information S105, the location information S108, and the time information S115.
(S118) A terminal number S104, user information S105, position information S108, time information S115, and signature information S119 are generated.
Is transmitted to the mobile terminal 10.

The portable terminal verifies whether the signature information S119 is valid (S120).

Next, a second embodiment of the present invention will be described.

FIG. 8 is a schematic diagram of a location authentication system to which the second embodiment of the present invention is applied. Here, components having the same functions as those of the first embodiment shown in FIG. 1 are denoted by the same reference numerals.

The position information server 30 'shown in FIG. 8 is a server such as an artificial satellite or a base station of a portable telephone which constantly transmits radio waves relating to position information. The mobile terminal 10 'is a mobile terminal having a function of receiving a radio wave from the position information server 30' and detecting position information by itself in addition to the functions of the mobile terminal 10 described in the first embodiment. is there. A position authentication server 20, a time authentication server 40,
The network connection device 50 has the same function as the device described in the first embodiment.

In this embodiment, an existing device that constantly transmits radio waves relating to position information, such as an artificial satellite or a base station of a mobile phone, can be used as the position information server 30 '. Therefore, the location information server 30 '
Is omitted.

FIG. 9 is a schematic diagram of a portable terminal 10 'according to the second embodiment. In FIG. 9, the wireless communication unit 10
1 'is a wireless communication for communicating with the network connection device 50 and the position information server 30'. Location information acquisition unit 10
9 acquires position information based on information from the position information server 30 '. In addition, the components denoted by the same reference numerals as those of the mobile terminal 10 in the first embodiment shown in FIG. 2 have the same functions.

FIG. 10 is a diagram for explaining the operation procedure of the location authentication system in the second embodiment shown in FIG.

The portable terminal 10 'acquires a terminal number stored in the portable terminal (S101). Acquires user information for specifying a current user of the portable terminal (S102). It is acquired (S201). Next, step S
102 and the user information acquired in step S201
Generates an electronic signature for the position information acquired in (S)
103 ′) The mobile terminal 10 is connected to the network connection device 50.
Requesting the location authentication server 20 to acquire location information via the. At this time, the terminal number S104 and the user information S1 are sent from the portable terminal 10 to the location authentication server 30.
05, position information S209, signature information S106 ',
Send Subsequent operations of the location authentication server 20 and the time authentication server 40 are the same as those described in the first embodiment.

FIG. 11 shows an example in which the terminal number S104, the position information S105, and the time information S115 transmitted from the position authentication server 20 are displayed. FIG. 12 is an example in which the content of the signature information S119 transmitted from the location authentication server 20 and the result of verifying the signature are displayed.
FIG. 13 is an example in which the content of the user information S105 transmitted from the location authentication server 20 is output. Outputs user's face photo and user's voice.

Although the embodiment of the present invention has been described above, the present invention is not limited to the above embodiment, and various modifications can be made within the scope of the invention.

For example, from the user information acquisition step S102 of the portable terminal 10 to the user information validity verification step S110 of the location authentication server 20, the user information S1
If there is no possibility that the data 05 is falsified, the signature generation step S103 of the mobile terminal 10 and the step S110 of the location authentication server 20 can be omitted.

In the step S109 of verifying the validity of the position information of the position authentication server 20, whether or not the information is transmitted from the reliable position information server 30 is verified. If the location information server 30 has a signature generation unit for
A signature for the location information is generated, and the location authentication server 20
Thus, the validity can be verified by verifying the signature.

After the location information acquisition step S107, the location information server 30 executes a terminal number S104, user information S105, signature information S106, and location information S10.
8 is transmitted directly to the location authentication server 30, but may be transmitted once to the mobile terminal 10 and then transmitted from the mobile terminal 10 to the location authentication server 20.

The location authentication server 20 executes step S1.
In step 10, if the validity of the user information can be sufficiently verified, the user confirmation step S111 may be omitted.

The time information request is sent to the time authentication server 4.
0, but time information may be acquired in the location authentication server. When the time information is not required, the time authentication server and the time information may not be provided.

The location authentication server 20 generates an electronic signature for the terminal number S104, the location information S108 or S209, the time information S115, and the user information S105. An electronic signature for zero or more combinations of the information S115 and the user information S105 and the position information S108 or S209 may be generated.

In the location authentication server 20, after the signature generation step S118, the terminal number S104, the user information S105, the location information S108, and the time information S115
And the signature information S119 are transmitted to the mobile terminal 10, but may be transmitted to an entity other than the mobile terminal 10. Further, it may be stored in a database or the like in the location authentication server.

The signature information S106, S116, S1
16 ', S119, a public key certificate corresponding to the private key used when the signature was generated may be added.

Further, between the portable terminal 10 and the network connection device 50, between the network connection device 50 and the location information server 30, and between the location information server 30 and the location authentication server 20.
, Between the location authentication server 20 and the time authentication server 40,
Between the location authentication server 20 and the mobile terminal 10;
Between the server and the location authentication server, encrypted communication may be performed.

[0064]

According to the present invention, the validity of position information can be proved.

[Brief description of the drawings]

FIG. 1 is a schematic diagram of a location authentication system to which a first embodiment of the present invention has been applied.

FIG. 2 is a schematic diagram of the portable terminal 10 shown in FIG.

FIG. 3 is a schematic diagram of a position information server 30 shown in FIG.

FIG. 4 is a schematic diagram of the time authentication server 40 shown in FIG.

FIG. 5 is a schematic diagram of the position authentication server 20 shown in FIG.

6 is a diagram illustrating an example of a hardware configuration of the position information server 30, the time authentication server 40, and the position authentication server 20 illustrated in FIG.

FIG. 7 is a diagram for explaining an operation procedure of the position authentication system shown in FIG.

FIG. 8 is a schematic diagram of a location authentication system to which a second embodiment of the present invention is applied.

FIG. 9 is a schematic diagram of the portable terminal 10 ′ shown in FIG.

FIG. 10 is a diagram for explaining an operation procedure of the position authentication system shown in FIG.

FIG. 11 shows a terminal number S104, position information S105, and time information S115 transmitted from the position authentication server 20.
It is a figure which shows the example which displayed and.

FIG. 12 is a diagram showing an example in which the content of signature information S119 transmitted from the location authentication server 20 and the result of verifying the signature are displayed.

FIG. 13 is a diagram illustrating an example in which the content of user information S105 transmitted from the location authentication server 20 is output.

[Explanation of symbols]

DESCRIPTION OF SYMBOLS 1 ... User, 10, 10 '... Mobile terminal, 20 ... Location authentication server, 30, 30' ... Location information server, 40
... time authentication server, 50, 50 ₁ to 50 _n ... network connection device, 60 ... Internet, 70 ... dedicated line, 11 ... communication device, 12 ... display device, 13 ... input device, 14 ... storage device, 15 ... CPU, 16 ...
Memory, 17 bus, 101 wireless communication unit, 10
2. Data receiving unit 103: Data transmitting unit 104
... secret key, 105 ... public key certificate, 106 ... signature generation unit, 107 ... signature verification unit, 108 ... user information acquisition unit, 109 ... location information acquisition unit, 110 ... terminal number, 201 ... communication unit, 202 ... Data receiver, 2
03: Data transmission unit, 204: Private key, 205: Public key certificate, 206: Signature generation unit, 207: Signature verification unit, 208: User information acquisition unit, 209: User information validity verification unit, 210 ... Position information acquisition unit, 211
... Position information validity verification section 212 ... Time information acquisition section
213: time information validity verification unit, 214: user confirmation unit, 301: communication unit, 302: data reception unit,
303: data transmission unit, 304: position information acquisition unit,
401 communication unit, 402 data reception unit, 403
Data transmission unit, 404: private key, 405: public key certificate, 406: signature generation unit, 407: time acquisition unit.

   ────────────────────────────────────────────────── ─── Continuation of front page    F term (reference) 5J104 AA09 PA01                 5K067 BB04 BB21 DD13 DD30 EE02                       EE10 FF03 FF05 FF07 HH22                       JJ52 JJ56

Claims (22)

[Claims] 1. A location authentication system comprising: a mobile terminal; a location information server for acquiring and providing location information of the mobile terminal; and a location authentication server for ensuring that the location information is not falsified. , The portable terminal has a terminal number and data transmission means for transmitting the terminal number,
The location information server has data transmission means for transmitting location information, and the location authentication server has a data reception means for receiving the terminal number and the location information, and a validity of the location information. A position authentication system comprising: position information validity verification means for verification; and signature generation means for generating an electronic signature for the position information. 2. A portable terminal, a position information server for acquiring and providing position information of the portable terminal, a position authentication server for ensuring that the position information is not falsified, and a time authentication server for providing time information. Wherein the mobile terminal has a terminal number and data transmission means for transmitting the terminal number, and the position information server comprises: a data transmission means for transmitting position information; With
The location authentication server includes: a data receiving unit that receives the terminal number and the location information; a location information validity validation unit that validates the location information; and a signature that generates an electronic signature for the location information. A location authentication system, comprising: a generation unit; and the time authentication server includes: a time acquisition unit that acquires time information; and a time transmission unit that transmits the time information. 3. The location authentication system according to claim 1, wherein said portable terminal is a data receiving means for acquiring signature information generated by said location authentication server, and a signature verification means for verifying said acquired signature information. Means, and a location authentication system. 4. The position authentication system according to claim 1, wherein said portable terminal has position information acquisition means for acquiring position information. 5. The location authentication system according to claim 1, wherein said portable terminal has user information acquisition means for acquiring user information. system. 6. The location authentication system according to claim 4, wherein said portable terminal has a signature generation means for generating an electronic signature for said location information or said user information. And location authentication system. 7. The location authentication system according to claim 1, wherein said location information server receives data from said portable terminal, and acquires position information of said portable terminal. And a position information acquisition unit that performs the operation. 8. The location authentication system according to claim 1, wherein said location authentication server comprises: a time information acquiring means for acquiring time information; and a time information for verifying validity of said time information. A position authentication system comprising: information validity verification means. 9. The location authentication system according to claim 1, wherein said location authentication server comprises: user information acquisition means for acquiring user information of said portable terminal;
And a user information validity verification means for verifying the validity of the user information. 10. The location authentication system according to claim 1, wherein said location authentication server has user confirmation means for confirming a user of said portable terminal. Location authentication system. 11. The position authentication system according to claim 1, wherein the time authentication server is configured to determine whether or not the time information obtained by the time information obtaining means is correct.
A position authentication system, comprising: signature generation means for generating an electronic signature. 12. A location authentication system having a portable terminal, a location information server for acquiring and providing location information of the portable terminal, and a location authentication server for ensuring that the location information is not falsified. A method of authenticating the location of a mobile terminal, wherein the mobile terminal obtains a terminal number, transmits terminal information, and the location information server transmits location information, Generating a digital signature for the location information by the location authentication server. 13. A portable terminal, a position information server for acquiring and providing position information of the portable terminal, a position authentication server for ensuring that the position information is not falsified, and a time authentication server for providing time information. And a method for authenticating the position of the mobile terminal using a position authentication system having:
Transmitting terminal information, the location information server transmitting location information, the location authentication server generating an electronic signature for the location information, and the time authentication server acquiring time information And a step of transmitting time information. 14. The location authentication method according to claim 12, wherein said portable terminal comprises: a step of acquiring location information and signature information from said location authentication server; and a step of verifying said signature information. A location authentication method comprising: 15. The location authentication method according to claim 12, wherein said portable terminal comprises: a location information acquisition step of acquiring location information; and a location information transmission step of transmitting said location information. , A location authentication method. 16. The location authentication system according to claim 12, wherein said portable terminal is a user information acquiring step of acquiring user information, and a user information transmitting step of transmitting said user information. And a user information transmitting step. 17. The location authentication method according to claim 15, wherein the portable terminal performs an electronic signature on the location information or the user information acquired in the location information acquisition step or the user information acquisition step. Produces
A position authentication method comprising a signature generation step. 18. The location authentication method according to claim 12, wherein said location information server comprises: a data receiving step of receiving data from said portable terminal;
A position information acquiring step of acquiring position information of the portable terminal. 19. The position authentication method according to claim 12, wherein the position authentication server obtains time information, and obtains time information for verifying validity of the time information. A position authentication method comprising: an information validity verification step. 20. The location authentication method according to claim 12, wherein said location authentication server comprises: a user information acquisition step of acquiring user information of said portable terminal; A user information validity verifying step of verifying the validity of the location authentication method. 21. The location authentication method according to claim 12, wherein said location authentication server has a user confirmation step of confirming a user of said portable terminal. Location authentication method. 22. The location authentication method according to claim 12, wherein the time authentication server generates an electronic signature for the time information obtained in the time obtaining step. , A location authentication system.