JP2009151699A - Remote code reader system, host computer, and authentication method - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a remote code reader system capable of eliminating use of an illegal copy of a code to the utmost. <P>SOLUTION: A center server 1 has a code reader database 9 with a barcode 7 correlated to a serial number of a barcode reader 3, and compares a registered serial number with a received serial number, when the serial number is registered relating to the received barcode 7. The barcode 7 is regarded as original one, when both are consistent, and service is provided by a content server C-m. The barcode 7 is regarded as copied one transmitted from a person other than an initial purchase user, when both are inconsistent, and the service provided by the content server C-m is rejected irrespective of the barcode 7. <P>COPYRIGHT: (C)2009,JPO&INPIT

Description

  The present invention relates to a remote code reader system that collects and processes codes (for example, bar codes) sent from a local code reader and related technology.

  Patent Document 1 discloses a remote code reader system by the present applicant. This system can be applied to an online game using a barcode, for example.

International Publication No. WO / 2007/77776 Pamphlet

  However, since barcodes can be duplicated, unauthorized duplications are circulated and become a factor that hinders business.

  Accordingly, an object of the present invention is to provide a remote code reader system and related technology capable of eliminating the use of unauthorized duplication of codes as much as possible.

  According to a first aspect of the present invention, a remote code reader system is connected to a corresponding communication terminal that can be connected to a network, and a plurality of local code readers that read codes and the plurality of local code readers send out the codes. A host computer that receives the plurality of codes, wherein each of the local code readers has sending means for sending the read codes to the host computer via the network and the corresponding communication terminal. The host computer includes a database in which identification information on the local code reader side and the code are associated with each other, receiving means for receiving the code and identification information on the local code reader side from the communication terminal, Access the database and receive the code A collation means for collating whether or not the identification information is registered and registered, and if the result of the collation by the collation means is not registered, the received identification information is associated with the received code and registered in the database A registration unit that compares the identification information registered in association with the received code and the received identification information when registered as a result of the verification by the verification unit; As a result of collation by the collating means, when the identification information is not registered in association with the received code, or as a result of comparison by the comparing means, the registered identification information and the received identification information, Are matched, the processing means that executes processing according to the received code and the result of comparison by the comparison means are registered Comprising a separate information, and the identification information received, but the case of disagreement, regardless of the code received, and removing means for performing a first predetermined process, the.

  According to this configuration, if the database has a database in which the code is associated with the identification information on the local code reader side, and the identification information is not registered in association with the received code, the code is transmitted from the user who first purchased the code. In addition, the received identification information is registered in association with the code, and a service (processing according to the code) by the system is provided. When the identification information is registered in association with the received code, the registered identification information is compared with the received identification information. If they match, the code is regarded as original and the service (processing according to the code) is provided by this system. On the other hand, if they do not match, it is transmitted from a person other than the user who purchased first, and the code is regarded as a duplicate, and the first predetermined process is executed regardless of the code. The first predetermined process is a process of rejecting a service (a process corresponding to a code) by the system, such as a reply of an error message or a reply of a well-known portal site URL. Therefore, the use of unauthorized duplication of the original code can be eliminated as much as possible.

  In this remote code reader system, the identification information on the local code reader side is identification information of the local code reader, and the sending means transmits the identification information via the network and the corresponding communication terminal. To the host computer.

  In this remote code reader system, the sending means sends the code, the identification information, the address information of the host computer, and a command for causing the communication terminal to transmit the code and the identification information to the host computer, Output to the communication terminal.

  According to this configuration, the terminal transmits the identification information of the local code reader necessary for authentication (code) to the host computer in response to the command, so that the original software is not installed on the terminal. The use of unauthorized duplication of code can be eliminated as much as possible. In addition, the code can be transmitted without installing dedicated software on the terminal.

  In the remote code reader system, the identification information received by the receiving means may be included in cookie information.

  According to this configuration, by using an existing widely used cookie for authentication (code), it is possible to eliminate as much as possible the unauthorized use of the original code without installing dedicated software on the terminal. .

  In the remote code reader system, the registration unit includes the identification information in the information received from the communication terminal when the identification information is not registered in association with the received code as a result of the verification by the verification unit. If it is not included, identification information on the local code reader side is generated, and the received identification code is registered in association with the received code. In order to cause the communication terminal to transmit the identification information, the communication terminal may further include a transmission unit that transmits the identification information generated by the registration unit to the communication terminal.

  According to this configuration, when the identification information is not associated with the received code and registered, and the identification information is not included in the received information, the new user uses the local code reader for the first time, Since the code was transmitted for the first time, it was assumed that the code was original and the service (processing according to the code) by this system could be provided.

  In this remote code reader system, the transmission means includes the identification information in cookie information and transmits the cookie information to the communication terminal.

  According to this configuration, it is possible to eliminate the use of unauthorized duplication of the original code as much as possible without installing dedicated software on the terminal by using existing and widely used cookies.

  In the remote code reader system, when the identification information is registered in association with the received code as a result of verification by the verification unit, the exclusion unit includes the identification information in the information received from the communication terminal. If not included, the second predetermined process can be executed regardless of the received code.

  According to this configuration, when the identification information is registered in association with the received code, if the identification information is not included in the received information, a new user other than the user of the original code can It is assumed that the code reader has been used for the first time and a code that duplicated the original has been transmitted, and the second predetermined process is executed. The second predetermined process is a process of rejecting a service (a process corresponding to the code) by the system, such as a reply of an error message or a reply of a well-known portal site URL. Therefore, the use of unauthorized duplication of the original code can be eliminated as much as possible.

  In the remote code reader system, the identification information on the local code reader side includes at least one of identification information of the local code reader, identification information of the communication terminal, and user identification information.

  Here, the identification information on the local code reader side may be stored in the local code reader, may be stored in the communication terminal, or the user selects the communication terminal. It may be input via a host computer or may be generated by a host computer.

  In the remote code reader system, the sending means outputs the code, address information of the host computer, and a command for causing the communication terminal to transmit the code to the host computer.

  According to this configuration, since the terminal transmits the code to the host computer in response to the command, the code can be transmitted without installing dedicated software on the terminal.

  In the remote code reader system, the code is a one-dimensional code, a two-dimensional code, and / or a code stored in an IC tag. For example, the one-dimensional code is a one-dimensional barcode, the two-dimensional code is a QR code, and the IC tag is an RFID tag.

  According to the second aspect of the present invention, the authentication method is configured such that each of the authentication methods is connected to a corresponding communication terminal that can be connected to a network, and a plurality of local code readers that read codes are passed through the network and the corresponding communication terminal. An authentication method executed by a host computer connected to the communication terminal, the step of receiving the code from the communication terminal, the step of receiving identification information on the local code reader side from the communication terminal, and the local code reader Accessing the database that associates the identification information on the other side with the code, and collating whether or not the identification information is registered in association with the received code, and if the result of the collation is not registered , Registering the received identification information in association with the received code in the database. If the identification information registered in association with the received code is compared with the received identification information, and if the registration result is the result of the verification, the received identification information is compared with the received identification information. When the identification information is not registered in association with a code, the step of executing processing according to the received code matches the identification information registered as a result of comparison with the received identification information If the identification information registered as a result of comparison with the step of executing the process according to the received code does not match the received identification information, regardless of the received code, Performing a first predetermined process.

  According to this configuration, the same effects as those of the remote code reader system according to the first aspect can be obtained.

  In the authentication method, if the identification information is not registered in association with the received code as a result of the collation, and the information received from the communication terminal does not include the identification information, the local code reader A step of generating identification information on the communication side, and a step of transmitting the generated identification information to the communication terminal in order to cause the communication terminal to transmit the identification information at the next access. In the step of performing, the generated identification information is associated with the received code and registered.

  According to this configuration, when the identification information is not associated with the received code and registered, and the identification information is not included in the received information, the new user uses the local code reader for the first time, Since the code was transmitted for the first time, it was assumed that the code was original and the service (processing according to the code) by this system could be provided.

  In the authentication method, when the identification information is registered in association with the received code as a result of the verification by the verification unit, the information received from the communication terminal does not include the identification information. The method further includes executing a second predetermined process regardless of the received code.

  According to this configuration, when the identification information is registered in association with the received code, if the identification information is not included in the received information, a new user other than the user of the original code can It is assumed that the code reader has been used for the first time and a code that duplicated the original has been transmitted, and the second predetermined process is executed. The second predetermined process is a process of rejecting a service (a process corresponding to the code) by the system, such as a reply of an error message or a reply of a well-known portal site URL. Therefore, the use of unauthorized duplication of the original code can be eliminated as much as possible.

  In the authentication method, the identification information on the local code reader side includes at least one of identification information of the local code reader, identification information of the communication terminal, and user identification information.

  Here, the identification information on the local code reader side may be stored in the local code reader, may be stored in the communication terminal, or the user selects the communication terminal. It may be input via a host computer or may be generated by a host computer.

  According to a third aspect of the present invention, the host computer is a host computer of the remote code reader system according to the first aspect.

  According to a fourth aspect of the present invention, the authentication program is a program that causes a computer to execute the authentication method according to the second aspect.

  According to a fifth aspect of the present invention, a recording medium is a recording medium that records a program that causes a computer to execute the authentication method according to the second aspect.

  Examples of the recording medium include a flexible disk, a hard disk, a magnetic tape, a magneto-optical disk, a CD (including a CD-ROM and a Video-CD), a DVD (including a DVD-Video, a DVD-ROM, and a DVD-RAM), a ROM. Cartridges, RAM memory cartridges with battery backup, flash memory cartridges, non-volatile RAM cartridges and the like.

  Hereinafter, embodiments of the present invention will be described with reference to the drawings. In the drawings, the same or corresponding parts are denoted by the same reference numerals, and the description thereof is incorporated.

  FIG. 1 is a diagram showing an overall configuration of a remote barcode reader system according to an embodiment of the present invention. In FIG. 1, the protocol (http: //) is omitted. Referring to FIG. 1, center server 1, content servers C-0 to CM (M is an integer) (only content server C-0 is shown) and communication terminal 5 are connected to a network 13 (for example, the Internet). The Here, the content servers C-0 to CM may be collectively referred to as a content server Cm.

  In step S200, the local barcode reader 3 (which may be simply referred to as the barcode reader 3) scans and decodes the barcode 7 in response to the user's operation, and displays the barcode information. get. In step S <b> 202, the barcode reader 3 transmits the command, the URL (Uniform Resource Locator) of the center server 1, the serial number assigned to itself (for example, 1547121), and barcode information to the terminal 5. .

  In step S204, the terminal 5 starts the browser in response to the command given by the barcode reader 3, accesses the center server 1 based on the URL given by the barcode reader 3, and receives the barcode information. The serial number is transmitted to the center server 1.

  The center server 1 has a code database 9 that associates barcode information with a serial number. In step S206, the center server 1 searches the code database 9 for the received barcode information.

  The center server 1 registers a serial number associated with the retrieved barcode information and if the serial number matches the received serial number, or associates the serial number with the retrieved barcode information. If it is not registered, the barcode 7 is regarded as original, and the process proceeds to the next step S208 in order to provide the service by this system.

  On the other hand, if the serial number is associated with the searched barcode information and registered, and the serial number does not match the received serial number, the center server 1 regards the barcode 7 as an original copy, An error message is returned to the terminal 5 in order to reject the service provided by this system.

  The center server 1 has a URL database 11 that associates serial numbers with URLs (www.yyy0.or.jp to www.yyyM.or.jp) of the content servers C-0 to CM. In step S208, the center server 1 searches the URL database 11 for a URL (for example, www.yyy0.or.jp) to which the serial number (for example, 1547121) transmitted by the terminal 5 is assigned. In step S <b> 210, the center server 1 transmits the searched URL to the terminal 5 together with the barcode information received from the terminal 5.

  Then, in step S212, the terminal 5 accesses the content server Cm (for example, the content server C-0) based on the received URL (for example, www.yyy0.or.jp), and the center server 1 The barcode information received from is transmitted to the content server C-m. In step S214, the content server C-m executes processing according to the received barcode information, and transmits the content according to the barcode information to the terminal 5. Then, the terminal 5 displays the received content on a monitor (not shown).

  FIG. 2A is an external perspective view showing an example of the barcode reader 3 of FIG. FIG. 2B is a diagram showing an electrical configuration of the barcode reader 3 in FIG. FIG. 2C is a conceptual diagram of programs and data stored in the ROM 40 built in the MCU 23 of FIG. Referring to FIG. 2A, the barcode reader 3 is a pen type USB barcode reader. Referring to FIG. 2B, the barcode reader 3 includes a scanner 25, an MCU 23, and a USB connector 21. The scanner 25 optically reads the barcode 7 and converts the bar and space into an electrical signal (scanning). An electrical signal corresponding to the barcode 7 from the scanner 25 is given to the MCU 23, and the MCU 23 decodes this electrical signal to obtain barcode information. In addition, the USB connector 21 of the barcode reader 3 and the USB port 27 of the terminal 5 are connected, and the MCU 23 and the terminal 5 can perform bidirectional communication.

  Referring to FIG. 2C, the MCU 23 of the barcode reader 3 has a ROM (Read Only Memory) 40 built therein. The ROM 40 includes a program area 42 and a data area 44. In the program area 42, a program executed by the MCU 23 is stored. In the data area 44, a command 46 to the terminal 5, a URL 48 of the center server 1, and a serial number 49 assigned to the barcode reader 3 are stored in the form of keyboard data.

  Here, actually, the serial number 49 is added to the URL 48 of the center server 1, and these are stored in the form of keyboard data. For example, if the URL 48 is “http://www.ssd.co.jp” and the serial number 49 is “4011”, the URL 48 is stored as “http://www.ssd.co.jp/?sn=4011”. The

  The command 46 is a command for instructing the terminal 5 to start a browser and access the center server 1 indicated by the URL 48. For example, when the OS (Operating System) is Windows (registered trademark), the command 46 is keyboard data corresponding to a GUI (Graphical User Interface) key + R key in Windows 98 or later. With this command 46, a browser (Internet Explorer) is started in Windows. That is, this command 46 is prepared in advance in Windows as an OS. Note that the Windows GUI key is commonly called the Windows key. Since the command 46 for the OS having a large share such as Windows is stored in the barcode reader 3 and outputted, most of the terminals 5 can be connected to the terminal 5 simply by connecting the barcode reader 3 to the terminal 5. Available for. Therefore, the barcode reader 3 does not need to store a plurality of commands in advance, recognize the OS for each terminal 5, and select and use a command corresponding to the OS.

  The serial number 49 is a unique number assigned to identify the barcode reader 3 and can also be called identification information.

  FIG. 3A is a diagram showing an electrical configuration of the center server 1 of FIG. Referring to FIG. 3A, the center server 1 includes a CPU (Central Processing Unit) 50, a RAM (Random Access Memory) 52, a ROM 54, a HDD (Hard Disk Drive) 56, an input / output interface (input / output I / F). ) 66, output unit 58, input unit 60, communication unit 62, drive 64, and bus 68.

  A RAM 52, ROM 54, HDD 56, and input / output I / F 66 are connected to the CPU 50 via a bus 68. The input / output I / F 66 includes an output unit 58 such as an LCD display, an input unit 60 such as a mouse and a keyboard, a communication unit 62 such as a LAN card that manages connection to the network 13, and a removable device such as a CD-ROM or DVD-ROM. A drive 64 for the recording medium 65 is connected to each other.

  Note that the hardware configurations of the terminal 5 and the content server C-m are the same as the hardware configuration of the center server 1, and a description thereof will be omitted.

  FIG. 3B is a conceptual diagram showing the configuration of the storage area 71 of the center server 1. As shown in FIG. 3B, the HDD 56 of the center server 1 and the storage area 71 of the ROM 54 include a program storage unit 70, a code database 9, and a URL database 11. The code database 9 is a database in which the barcode 7 and the serial number of the barcode reader 3 are associated with each other. The URL database 11 is a database in which the serial number of the barcode reader 3 is associated with the URLs (www.yyy0.or.jp to www.yyyM.or.jp) of the content servers C-0 to CM.

  The communication control unit 72 of the program storage unit 70 manages communication with a computer connected to the network 13 via the communication unit 62. The collation unit 73 accesses the code database 9 and collates whether or not a serial number is associated with the received barcode 7 and registered. If the serial number is not registered as a result of collation by the collation unit 73, the registration unit 74 registers the received serial number in the code database 9 in association with the received barcode 7.

  When the serial number is registered as a result of the verification by the verification unit 73, the comparison unit 75 compares the serial number registered in association with the received barcode 7 with the received serial number. If the serial number is not associated with the received barcode 7 as a result of the collation by the collation unit 73, or the serial number registered as a result of the comparison by the comparison unit 75, the URL search unit 77 receives If the serial number matches the serial number of the barcode reader 3 received from the terminal 5, the URL database 11 is searched using the serial number of the barcode reader 3 received as an index, the URL assigned to the serial number is searched, and the URL and barcode are It transmits to the terminal 5 via the communication control unit 72.

  If the registered serial number and the received serial number do not match as a result of the comparison by the comparing unit 75, the excluding unit 76 rejects the service by this system regardless of the received barcode 7, An error message is returned to the terminal 5 via the communication control unit 72.

  Each of these functional units is a computer software program installed in the ROM 54 and / or the HDD 56 or a subroutine in one program. These programs are stored in the removable recording medium 65 and are then installed in the center server 1.

  FIG. 4 is a flowchart showing a flow of processing performed by the MCU 23 of FIG. Referring to FIG. 4, in step S1, MCU 23 of barcode reader 3 reads barcode 7 in response to a user operation. In step S3, the MCU 23 decodes the barcode and obtains barcode information based on a known barcode decoding method. In step S5, the MCU 23 converts the barcode information (for example, “4560256580016”), which is the decoding result, into keyboard data and stores it in a RAM (not shown).

  In step S <b> 7, the MCU 23 acquires the URL (for example, “http://www.ssd.co.jp”) and the serial number (for example, “15555”) of the center server 1 as keyboard data from the ROM 40. In step S9, the MCU 23 adds barcode information and a serial number as keyboard data to the end of the acquired URL, and adds a new URL (for example, “http://www.ssd.co.jp/”). ? Bc = 4560256580016 & sn = 15555 ") and stored in a RAM (not shown).

  In step S11, the MCU 23 acquires a command in the form of keyboard data from the ROM 40 and stores it in a RAM (not shown). In step S13, the MCU 23 transmits the keyboard data (command, URL, serial number, and barcode information) in steps S5 to S11 to the terminal 5 and ends the process.

  FIG. 5 is a diagram illustrating an example of a communication procedure among the barcode reader 3, the terminal 5, the center server 1, and the content server Cm of FIG. With reference to FIG. 5, in step S <b> 21, the barcode reader 3 transmits the keyboard data (command, URL, serial number, and barcode information) generated by the processing of FIG. 4 to the terminal 5.

  In step S31, the terminal 5 receives the keyboard data (command, URL and serial number) transmitted by the barcode reader 3 in step S21. In step S33, the terminal 5 starts a browser in response to the command given from the barcode reader 3, and accesses the center server 1 based on the URL received from the barcode reader 3 in step S35. . At this time, the URL to which the serial number and the barcode information are added is transmitted to the center server 1.

  Then, the center server 1 receives the URL to which the serial number and barcode information are added. Then, the center server 1 executes the authentication process of the barcode 7 based on the serial number and the barcode information. When the center server 1 authenticates that the barcode 7 is original, the center server 1 receives it in step S63. The URL database 11 is searched using the serial number as an index, and the URL assigned to the serial number is acquired. In step S65, the center server 1 adds barcode information to the searched URL. In step S67, the center server 1 transmits a URL to which the barcode information is added to the terminal 5, and instructs access to the URL.

  In step S37, the terminal 5 accesses the content server C-m indicated by the received URL, and transmits the URL to which the barcode information is added. Then, in step S51, the content server C-m executes processing corresponding to the received barcode information, and transmits content corresponding to the barcode information to the terminal 5. In step S39, the terminal 5 displays the content on the monitor.

  In step S41, the terminal 5 performs processing and communication with the content server C-m according to the input from the user. Similarly, in step S <b> 53, the content server C-m performs processing and communication with the terminal 5 in response to access from the terminal 5.

  A supplementary explanation of step S35 will be given. More specifically, in step S35, the terminal 5 accesses a DNS (Domain Name System) server, acquires an IP address corresponding to the domain name, and adds a serial number and barcode information along with the IP address. Is sent to the network 13, the center server 1 is accessed, and the serial number and barcode information are transmitted to the center server 1. However, since these processes are performed by a well-known protocol, detailed description thereof is omitted. This also applies to step S37.

  FIG. 6 is a flowchart showing an example of the flow of authentication processing in step S61 of FIG. Referring to FIG. 6, in step S <b> 81, center server 1 searches received barcode information from code database 9. In step S83, the center server 1 determines whether or not a serial number is registered in association with the searched barcode information. If not registered, the center server 1 proceeds to step S85. If registered, the center server 1 proceeds to step S87. move on.

  In step S85, the center server 1 registers the serial number received in association with the received barcode information in the code database 9, and returns. In other words, when the received barcode is not registered in association with the serial number (“NO” in step S83), the barcode is transmitted from the user who originally purchased it and is regarded as the original, and is associated with the barcode. Then, the received serial number is registered in the code database 9, and the process proceeds to step S63 in order to provide the service by this system.

  On the other hand, in step S87, the center server 1 compares the serial number registered in the code database 9 in association with the barcode and the received serial number. In step S89, if the two match, the center server 1 regards the barcode as original, and proceeds to step S63 to provide the service provided by the present system. However, if the two do not match, the center server 1 regards that the barcode is transmitted from a person other than the user who purchased first, and that the barcode has been duplicated, and proceeds to step S91, regardless of the barcode. Is transmitted to the terminal 5. Therefore, it is possible to eliminate as much as possible the use of unauthorized duplication of the original barcode.

  (Modification)

  FIG. 7 is a diagram illustrating an example of a communication procedure among the barcode reader 3, the terminal 5, the center server 1, and the content server Cm of FIG. 1 in the modified example. With reference to FIG. 7, in step S <b> 101, the barcode reader 3 transmits the keyboard data (command, URL, serial number, and barcode information) generated by the processing of FIG. 4 to the terminal 5.

  In step S111, the terminal 5 receives the keyboard data (command, URL, and serial number) transmitted by the barcode reader 3 in step S101. In step S113, the terminal 5 starts the browser in response to the command given from the barcode reader 3. In step S115, the terminal 5 determines whether or not the cookie information given from the center server 1 is stored. If the cookie information is stored, the terminal 5 proceeds to step S117. If not stored, the terminal 5 proceeds to step S117. The process proceeds to S119.

  In step S117, the terminal 5 accesses the center server 1 based on the URL received from the barcode reader 3. At this time, the URL and cookie information to which the serial number and barcode information are added are transmitted to the center server 1. On the other hand, in step S 119, the terminal 5 accesses the center server 1 based on the URL received from the barcode reader 3. At this time, the URL to which the serial number and barcode information are added is transmitted to the center server 1.

  The center server 1 receives the URL and cookie information added with the serial number and barcode information transmitted in step S117, or the center server 1 adds the serial number and barcode information transmitted in step S119. The received URL is received.

  In step S141, the center server 1 executes an authentication process for the barcode 7 based on the barcode information and the cookie information. When the center server 1 authenticates that the barcode 7 is original, the center server 1 in step S143. 1 searches the URL database 11 using the received serial number as an index, and acquires the URL assigned to the serial number. In step S145, the center server 1 adds barcode information to the searched URL. In step S147, the center server 1 transmits the URL and the cookie information to which the barcode information is added to the terminal 5, and instructs access to the URL.

  In step S121, the terminal 5 stores the received cookie information. In step S123, the terminal 5 accesses the content server C-m indicated by the received URL, and transmits the URL to which the barcode information is added. Then, in step S161, the content server C-m executes processing according to the received barcode information, and transmits content corresponding to the barcode information to the terminal 5. In step S125, the terminal 5 displays the content on the monitor.

  In step S127, the terminal 5 performs processing and communication with the content server C-m according to the input from the user. Similarly, in step S163, the content server C-m performs processing and communication with the terminal 5 in response to access from the terminal 5.

  In steps S117 and S123, a well-known protocol is used as in step S35 of FIG. 5 described above, and thus detailed description thereof is omitted.

  Here, before the detailed description of step S141, the code database used in the modification will be described. This code database is a database in which barcode information is associated with identification information (ID) of the terminal 5. As will be described later, the identification information of the terminal 5 is generated by the center server 1.

  FIG. 8 is a flowchart showing an example of the flow of authentication processing in step S141 of FIG. Referring to FIG. 8, in step S161, center server 1 retrieves the received barcode information from the code database. In step S163, the center server 1 determines whether or not the identification information of the terminal 5 is registered in association with the searched barcode information. If not registered, the process proceeds to step S165. The process proceeds to step S173.

  In step S165, the center server 1 determines whether or not the received information includes cookie information. If included, the terminal 5 has been accessed in the past, and identification information is given (step S165). S167) Proceed to step S169. If it is not included, the terminal 5 accesses for the first time and no identification information is given, so the process proceeds to step S167. In step S167, the center server 1 generates identification information of the terminal 5. That is, when the identification information of the terminal 5 is not registered in association with the received barcode (“NO” in step S163), if the received information does not include cookie information, the new user can use the barcode. Since the reader 3 is used for the first time and a new bar code is transmitted for the first time, it is assumed that the code is original, and new identification information is issued to provide a service (processing according to the code) by the system. It was decided.

  After determining “YES” in step S165 or after step S167, in step S169, the center server 1 registers the identification information of the terminal 5 in the code database in association with the received barcode information. In step S171, the center server 1 generates cookie information including the identification information of the terminal 5, and returns.

  That is, when the identification information of the terminal 5 is not registered in association with the received barcode (“NO” in step S163), the barcode is transmitted from the first purchase user and is regarded as the original, and the barcode In association with the code, the identification information of the terminal 5 is registered in the code database, and the process proceeds to step S143 in order to provide the service by this system.

  On the other hand, in step S173, the center server 1 determines whether or not cookie information is included in the received information. If it is included, the terminal 5 has accessed in the past and the process proceeds to step S175. If not, since the terminal 5 has accessed for the first time, the process proceeds to step S179. In step S179, the center server 1 transmits an error message to the terminal 5 regardless of the barcode. That is, when the received barcode is associated with the identification information of the terminal 5 ("YES" in step S163), if the received information does not include cookie information, the user of the original barcode It is assumed that a new user other than the user uses the new barcode reader 3 for the first time and transmits a barcode copied from the original, and rejects the service (processing according to the barcode) by the system.

  After determining “YES” in step S173, in step S175, the center server 1 identifies the terminal 5 identification information registered in the code database in association with the barcode and the terminal 5 identification included in the received cookie information. Compare information. In step S177, if the two match, the center server 1 regards the barcode as original, and proceeds to step S171 to provide the service provided by the system. However, if the two do not match, the center server 1 regards that the barcode is transmitted from a person other than the user who originally purchased it, and proceeds to step S179, regardless of the barcode. Is transmitted to the terminal 5. Therefore, it is possible to eliminate as much as possible the use of unauthorized duplication of the original barcode.

  As described above, in the present embodiment and its modifications, a code database in which a barcode is associated with identification information on the barcode reader 3 side (the serial number of the barcode reader 3 and the identification information of the terminal 5). If the identification information is not registered in association with the received barcode, the identification information received from the user who first purchased the barcode is considered to be original and associated with the barcode. As well as providing services (processing according to barcodes) by this system. When the identification information is registered in association with the received barcode, the registered identification information is compared with the received identification information. If they match, the barcode is regarded as original, and the service (processing according to the code) is provided by this system. On the other hand, if the two do not match, it is considered that the barcode was transmitted from a person other than the user who originally purchased it, and the barcode is copied, and the service by this system regardless of the barcode (processing according to the barcode) Reject. Therefore, it is possible to eliminate as much as possible the use of unauthorized duplication of the original barcode.

  In the present embodiment, the terminal 5 transmits a serial number necessary for authentication (step S61) to the center server 1 in response to the command from the barcode reader 3, and therefore, the dedicated software for the terminal 5 The use of unauthorized copies of the original barcode can be eliminated as much as possible without installation.

  In the modified example, by using an existing widely spread cookie for authentication (step S141), it is possible to eliminate as much as possible the unauthorized use of an original barcode without installing dedicated software on the terminal 5. .

  Furthermore, in the present embodiment and its modifications, the terminal 5 transmits a barcode to the center server 1 in response to a command from the barcode reader 3, so that no dedicated software is installed on the terminal 5. , Barcode transmission becomes possible.

  The present invention is not limited to the above-described embodiment, and can be implemented in various modes without departing from the gist thereof. For example, the following modifications are possible.

  (1) In the modification, the identification information of the terminal 5 of the barcode reader 3 is generated as the identification information on the barcode reader 3 side necessary for barcode authentication (step S167 in FIG. 8). However, the identification information on the barcode reader 3 side is not limited to the identification information on the terminal 5 because the hardware, software and / or user on the barcode reader 3 side can be identified. Information, user identification information, or the like, or a combination of all or a part thereof may be used.

  (2) In the above, in the barcode authentication process, the serial number of the barcode reader 3 given in advance or the identification information of the terminal 5 given by the center server 1 is used. However, in the barcode authentication process, the identification information given to the center server 1 by the user via the terminal 5 can be used.

  For example, a bar code for displaying a login screen to the center server 1 on the terminal 5 is prepared. When the user scans this barcode with the barcode reader 3, the center server 1 transmits a login screen to the terminal. The user inputs user identification information (ID) and / or password (hereinafter referred to as “user authentication information”) from the login screen using an input interface such as a keyboard of the terminal 5. Then, the center server 1 stores the input user authentication information. In this case, the barcode and user authentication information are registered in the code database in association with each other. Further, in the above modification, it is convenient for the user if user authentication information is included in the cookie instead of the identification information of the terminal 5 included in the cookie information.

  The flow of authentication processing based on user authentication information will be described with reference to FIG. In step S81, the center server 1 searches the received barcode information from the code database. In step S83, the center server 1 determines whether or not user authentication information is registered in association with the searched barcode information. If not registered, the center server 1 proceeds to step S85, and if registered, step S87. Proceed to

  In step S85, the center server 1 registers the user authentication information related to the current login in the code database in association with the received barcode information, and returns. That is, when the user authentication information is not registered in association with the received barcode (“NO” in step S83), the barcode is transmitted from the user who first purchased it and is regarded as the original, and the barcode is In association with this, the user authentication information related to the current login is registered in the code database, and the process proceeds to step S63 in order to provide the service by this system.

  On the other hand, in step S87, the center server 1 compares the user authentication information registered in the code database 9 in association with the barcode and the user authentication information related to the current login. In step S89, if the two match, the center server 1 regards the barcode as original, and proceeds to step S63 to provide the service provided by the present system. However, if the two do not match, the center server 1 regards that the barcode is transmitted from a person other than the user who purchased first, and that the barcode has been duplicated, and proceeds to step S91, regardless of the barcode. Is transmitted to the terminal 5. Therefore, it is possible to eliminate as much as possible the use of unauthorized duplication of the original barcode.

  (3) In the above, it is preferable that the barcode to be distributed is unique. In this case, bar code depletion can be prevented by limiting the bar code usage period.

  (4) In the above configuration, it is not necessary to install in the terminal 5 dedicated software that causes the browser of the terminal 5 to transmit a serial number or barcode to the center server 1 by causing the barcode reader 3 to output a command. It was adopted. However, such dedicated software may be installed in the terminal 5 without adopting a configuration in which the barcode reader 3 outputs a command. In this case, it is preferable that the software is activated in response to the input of the serial number or barcode from the barcode reader 3 and automatically transmits the serial number or barcode. Alternatively, the barcode reader 3 may output a command for such dedicated software, and the software may transmit a serial number or barcode to the center server 1 in response to the command.

  Further, in the above, a configuration is adopted in which it is unnecessary to input the URL of the center server 1 to the terminal 5 by causing the barcode reader 3 to output the URL of the center server 1. However, without adopting a configuration in which the barcode reader 3 outputs the URL, the URL of the center server 1 is input by the user, or the above software is provided with the URL and held in the terminal 5. May be. Further, identification information used in the authentication process of the center server 1 can be transmitted to dedicated software installed in the terminal 5.

  (5) In the above description, a bar code is used as information to be transmitted to the center server 1, but the present invention is not limited to this. For example, an electronic tag (IC tag) such as an RFID (Radio Frequency Identification System) tag can be used. In this case, however, the information stored in the electronic tag is read by an electronic tag reader (IC tag reader) instead of the barcode reader 3. It is preferable to cause the electronic tag reader (IC tag reader) to issue the same command as the barcode reader 3 and output the URL of the center server 1. In the above description, a one-dimensional bar code, which is a one-dimensional code, is used. However, a two-dimensional bar code, a QR code, or the like, which is a two-dimensional code, can also be used.

  (6) The center server 1 and the content server C-m can be grasped as a single computer that provides services, and can be collectively referred to as a host computer. The host computer can be physically configured by one computer, or can be configured by distributing processing to a plurality of computers. Of course, the installation locations of each computer in the case of distributed processing may be in the same country, or may be distributed and installed in a plurality of countries.

  (7) In the above description, the center server 1 transmits the barcode information indirectly to the content server C-m via the terminal 5. However, the center server 1 can also transmit the barcode information directly to the content server C-m without going through the terminal 5.

  (8) The barcode reader 3 is exemplified as a pen type, but the shape of the barcode reader and the barcode reading method are not limited to those described above.

  (9) In the above description, when the barcode is determined to be duplicated, an error message is returned to the terminal 5 (steps S91 and S179). However, in this case, a site that is not related to the service provided by the present system, such as a well-known portal site URL, can also be transmitted.

  (10) In this specification, means does not necessarily mean physical means, but includes cases where the functions of each means are realized by software. Furthermore, the function of one means may be realized by two or more physical means, or the functions of two or more means may be realized by one physical means. This also applies to servers and computers.

1 is a diagram showing an overall configuration of a remote barcode reader system according to an embodiment of the present invention. (A) It is an external appearance perspective view which shows an example of the barcode reader 3 of FIG. (B) It is a figure which shows the electric constitution of the barcode reader 3 of Fig.2 (a). (C) It is a conceptual diagram of the program and data stored in ROM40 built in MCU23 of FIG.2 (b). (A) It is a figure which shows the electrical constitution of the center server 1 of FIG. (B) It is a conceptual diagram which shows the structure of the storage area 71 of the center server 1 of FIG. It is a flowchart which shows the flow of the process which MCU23 of FIG.2 (b) performs. It is a figure which shows an example of the communication procedure between the barcode reader 3, the terminal 5, the center server 1, and the content server Cm of FIG. It is a flowchart which shows an example of the flow of the authentication process of step S61 of FIG. It is a figure which shows an example of the communication procedure between the barcode reader of FIG. 1, the terminal 5, the center server 1, and the content server Cm in a modification. It is a flowchart which shows an example of the flow of the authentication process of step S141 of FIG.

Explanation of symbols

DESCRIPTION OF SYMBOLS 1 ... Center server, 3 ... Bar code reader, 5 ... Terminal, 7 ... Bar code, 9 ... Code database, 11 ... URL database, 13 ... Network, C-0-CM (Cm) ... Content server.

Claims (16)

A plurality of local code readers each of which is connected to a corresponding communication terminal connectable to a network and reads a code;
A host computer that receives the plurality of codes sent by the plurality of local code readers,
Each of the local code readers includes sending means for sending the read code to the host computer via the network and the corresponding communication terminal,
The host computer
A database associating identification information on the local code reader side with the code;
Receiving means for receiving identification information on the side of the code and the local code reader from the communication terminal;
Collating means for accessing the database and collating whether or not the identification information is registered in association with the received code;
As a result of collation by the collation means, if not registered, a registration means that associates the received identification information with the received code and registers it in the database;
As a result of the collation by the collation means, if registered, the comparison information for comparing the identification information registered in association with the received code and the received identification information;
As a result of collation by the collating means, when the identification information is not registered in association with the received code, or as a result of comparison by the comparing means, the registered identification information and the received identification information , The processing means for executing processing according to the received code,
An exclusion means for executing a first predetermined process irrespective of the received code if the registered identification information and the received identification information do not match as a result of comparison by the comparison means; Remote code reader system.   The identification information on the local code reader side is the identification information of the local code reader, and the sending means sends the identification information to the host computer via the network and the corresponding communication terminal. The remote code reader system according to claim 1.   The sending means outputs the code, the identification information, the address information of the host computer, and a command for causing the communication terminal to transmit the code and the identification information to the host computer. Item 3. The remote code reader system according to Item 2.   The remote code reader system according to claim 1, wherein the identification information received by the receiving unit is included in cookie information. If the identification information is not included in the information received from the communication terminal when the identification information is not registered in association with the received code as a result of the collation by the collation means, Generating identification information on the local code reader side, registering the generated identification information in association with the received code;
The host computer
5. The remote code reader according to claim 1, further comprising a transmission unit configured to transmit the identification information generated by the registration unit to the communication terminal in order to cause the communication terminal to transmit the identification information at the next access. system.   The remote code reader system according to claim 5, wherein the transmission unit includes the identification information in cookie information and transmits the cookie information to the communication terminal.   In the case where the identification information is registered in association with the received code as a result of the collation by the collation means, and the exclusion means does not include the identification information in the information received from the communication terminal, The remote code reader system according to claim 1, wherein the second predetermined process is executed regardless of the received code.   The identification information on the local code reader side includes at least one of identification information of the local code reader, identification information of the communication terminal, and identification information of a user. The remote code reader system described.   The sending means outputs the code, address information of the host computer, and a command for causing the communication terminal to send the code to the host computer, to the communication terminal. 7. The remote code reader system according to 7 or 8.   The remote code reader system according to claim 1, wherein the code is a one-dimensional code, a two-dimensional code, and / or a code stored in an IC tag.   The remote code reader system according to claim 10, wherein the one-dimensional code is a one-dimensional barcode, the two-dimensional code is a QR code, and the IC tag is an RFID tag.   The host computer according to any one of claims 1 to 11. An authentication method executed by a host computer, each connected to a corresponding communication terminal connectable to a network, and connected to a plurality of local code readers for reading codes via the network and the corresponding communication terminal ,
Receiving the code from the communication terminal;
Receiving identification information on the local code reader side from the communication terminal;
Accessing a database that associates the identification information on the local code reader side with the code, and checking whether the identification information is registered in association with the received code;
As a result of collation, if not registered, the step of registering the received identification information in association with the received code and registering in the database;
If registered as a result of the collation, comparing the identification information registered in association with the received code and the received identification information;
As a result of collation, when the identification information is not registered in association with the received code, executing a process according to the received code;
As a result of the comparison, when the registered identification information and the received identification information match, executing a process according to the received code;
And a step of executing a first predetermined process regardless of the received code when the registered identification information and the received identification information do not match as a result of comparison. If the identification information is not registered in association with the received code as a result of the collation, if the identification information is not included in the information received from the communication terminal, the identification information on the local code reader side A step of generating
A step of transmitting the generated identification information to the communication terminal in order to cause the communication terminal to transmit the identification information at the next access,
The authentication method according to claim 13, wherein in the step of registering, the generated identification information is registered in association with the received code.   As a result of collation by the collating means, when the identification information is registered in association with the received code, if the identification information is not included in the information received from the communication terminal, the received code is The authentication method according to claim 13 or 14, further comprising a step of executing the second predetermined process regardless.   The identification information on the local code reader side includes at least one of identification information of the local code reader, identification information of the communication terminal, and identification information of a user. Authentication method.

Images