JP2009169857A - Authentication system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To prevent a third party from illegally acquiring a correct password even when the third party secretly looks at or films a password when the password is input. <P>SOLUTION: A password corresponding to an ID acquired from an operator is read from a password registering part 11. Image information for each digit of the read password and a plurality of other image information are extracted from an image information storing part 12 for each digit. An input screen generating part 13 generates a password input screen including buttons for the extracted image information and at least one dummy screen including buttons for the image information other than the image information for one digit of the password. The password input screen and the dummy screen are displayed on a display input part 2. The operator is prompted to input one button on each of the screens. An authenticating part 4 collates image information input in the password input screen with the correct password to perform authentication. <P>COPYRIGHT: (C)2009,JPO&INPIT

Description

  The present invention relates to an authentication system that performs authentication such as identity verification, and particularly relates to a technique for protecting a password from snooping by a third party.

For example, if you use an automatic transaction device (ATM) operated by a financial institution to perform transactions such as withdrawals, or devices that permit only specific users to use it, register a password such as a personal identification number. When he / she uses the device, he / she is asked to enter the password to authenticate himself / herself.
In such personal authentication, as conventional techniques for preventing unauthorized acquisition of a password by a third party when a password is input, for example, there are authentication systems shown in Patent Document 1 and Permitted Document 2.

In the authentication system of Patent Document 1, a plurality of images including dummy images are randomly arranged on the screen of the display unit when a password is input, and the image selected by the user is converted into a character string, and the user registers in advance. The password is verified with the specified character string.
Further, in the authentication system of Patent Document 2, a keyboard is displayed on the screen of the display unit when a password is input, and the password displayed and collated with the password each time a password is entered are changed so that all characters of the password are displayed. Judgment is made as to whether or not the input has been made correctly.
JP2002-229948 JP-A-2005-107678

However, in the conventional technology described above, it is possible to prevent the password from being guessed from the movement of the arm or the like, but there is a problem that it is difficult to prevent unauthorized acquisition of a password from a sneak shot of the screen due to voyeurism. is there.
An object of the present invention is to solve such a problem.

  Therefore, the authentication system of the present invention stores a display input unit including a display unit and an input unit, a password registration unit that registers a password including a plurality of digits of image information in association with an individual identifier, and image information. An image information storage unit, an input screen generation unit, and an authentication unit that performs password authentication, the input screen generation unit reads from the password registration unit a password corresponding to the identifier obtained from the operator at the time of password input, For each digit of the read password, the image information of that digit and a plurality of other image information are extracted from the image information storage unit, and the extracted image information is converted into a button. A plurality of pieces of image information other than image information are extracted from the image information storage unit, and at least one dummy screen in which the extracted image information is converted into a button is generated. The generated password input screen and the dummy screen are displayed on the display input unit, the input by one button is executed on each screen, and the image information input on the password input screen by the authentication unit is compared with the password. It is characterized by performing authentication.

  In the present invention as described above, image information is used as a password, a dummy screen in which a correct password does not exist is displayed at an arbitrary timing when a password is input, and an arbitrary button is pressed. Even if voyeurism or voyeurism is performed, it is impossible to know the correct password, and it is possible to prevent an unauthorized acquisition of the password by a third party.

  Embodiments of an authentication system according to the present invention will be described below with reference to the drawings.

FIG. 1 is a block diagram showing a first embodiment.
The authentication system of the present embodiment is configured by an input terminal 1 and a center system (higher level device) 10, and the input terminal 1 is connected to the center system 10 via a communication line (not shown).
The input terminal 1 is a device for inputting a password or the like by an operator, and includes a display input unit 2, a display control unit 3 that performs screen display control on the display input unit 2, an authentication unit 4 that performs password authentication, and a center. A communication unit 5 for communicating information with the system 10 is provided.

Here, the display input unit 2 has a display unit such as a liquid crystal display and an input unit using a touch panel arranged on the display unit, and a screen on which a message for inducing an operation is arranged on the display unit and various input keys. And the information defined in the input key can be input by pressing the input key with a finger through the input unit (touching the finger).
The display control unit 3, the authentication unit 4, and the communication unit 5 are realized by a control unit (not shown) that controls the operation of the entire input terminal 1 and software stored in a storage unit such as a ROM.

  On the other hand, the center system 10 is a computer that performs password registration and authentication, and displays it on the password registration unit 11 and the display input unit 2 that register each registrant's own password and the registrant's ID (identifier) in association with each other. An image information storage unit (database) 12 that stores image information for password input, an input screen generation unit 13 that extracts image information from the image information storage unit 12 and generates a password input screen or a dummy screen, and an operator The authentication part 14 which authenticates the password input with the display input part 2 and the communication part 15 which communicates the information with respect to the input terminal 1 are provided.

The image information stored in the image information storage unit 12 includes alphabets, numbers from 0 to 9, arithmetic numbers (circled numbers, numbers with parentheses), kanji, symbols, figures, kana characters (Hiragana and Katakana). Information having a number equal to or greater than the number of password characters of a plurality of types that can be displayed on the screen expressed by UNICODE or JIS code.
Further, the input screen generation unit 13, the authentication unit 14, and the communication unit 15 in the center system 10 are configured by a control unit (not shown) that controls the operation of the entire center system 10 and software stored in a storage unit such as a ROM. Realized.

The operation of the first embodiment having the above-described configuration will be described.
FIG. 2 is a flowchart showing a password registration process procedure using an image.
For example, since a 4-digit password is well known for personal authentication, a case where a 4-digit password is registered will be described here as an example.
The following description will be made according to the steps indicated by S in the figure.

First, when a card reader (not shown) reads the ID from the ID card inserted by the registrant into the input terminal 1 or when the card is not used, the ID is input according to the guidance screen of the display input unit 2 (S1). The ID is transmitted to the center system 10 via the communication unit 5.
In the center system 10, when the ID is received by the communication unit 15, the input screen generation unit 13 arbitrarily extracts a predetermined number (for example, nine) of image information from the image information storage unit 12 and converts the image information into input buttons. (S2), and the communication unit 15 transmits the screen to the input terminal 1.

It should be noted that the input screen is provided with a message for prompting the input of a password and buttons such as “confirm”, “cancel”, and “separate screen”.
In the input terminal 1, when the input screen is received by the communication unit 5, the display control unit 3 displays the input screen on the display input unit 2 (S3), and the registrant selects one of the image information buttons according to the message on the input screen. After the first password is input by pressing the button, the “Confirm” button is pressed to confirm the input (S4).

If the image information button is pressed incorrectly, the registrant presses the “Cancel” button, presses the correct image information button, and then presses the “Confirm” button to confirm the input.
Further, when there is no button for image information to be input on the input screen, when a “different screen” button is pressed, information requesting another input screen is transmitted to the center system 10 via the communication unit 5.

As a result, the input screen generation unit 13 of the center system 10 generates the input screen again, and the communication unit 15 transmits the screen to the input terminal 1 and displays it on the display input unit 2. According to the above, after selecting and pressing one image information button, the first password is input, and then the “confirm” button is pressed to confirm the input.
When the number of input passwords is four, that is, does not reach four digits (S5), information requesting an input screen is transmitted from the input terminal 1 to the center system 10 via the communication unit 5, and the processing from S2 is repeated.

When a four-digit password is input, the password is transmitted from the input terminal 1 to the center system 10 via the communication unit 5 (S6), and the ID of the registrant whose password was sent first by the center system 10 and Correspondingly, it is registered in the password registration unit 11 (S7).
FIG. 3 is a flowchart showing a password authentication processing procedure.
The following description will be made according to the steps indicated by S in the figure.

First, the card reader (not shown) reads the ID from the ID card inserted into the input terminal 1 by the operator (registrant or third person), or the ID is input according to the guidance screen of the operation input unit 2 when the card is not used. Then (S11), the ID is transmitted to the center system 10 via the communication unit 5.
In the center system 10, when an ID is received by the communication unit 15, the input screen generation unit 13 reads a password corresponding to the ID from the password registration unit 11 (S 12), and a control unit (not shown) selects either the password input screen or the dummy screen. Determine what to make.

  When creating a password input screen, the input screen generation unit 13 extracts one image information corresponding to the first digit image of the password and other plural (for example, eight) image information from the image information storage unit 12. A password input screen in which the image information is converted into an input button is generated. However, when creating a dummy screen, the input screen generation unit 13 does not include the image information corresponding to the first digit image of the password. The image information (for example, 9 pieces) is arbitrarily extracted from the image information storage unit 12, and a dummy screen in which the image information is converted into an input button is generated (S13).

It should be noted that buttons such as “confirm” and “cancel” are arranged on both the password input screen and the dummy screen together with a message prompting the input of the password.
The generated password input screen or dummy screen is transmitted to the input terminal 1 through the communication unit 15 together with the password read from the password registration unit 11. In the case of a dummy screen, information to that effect is also added.

In the input terminal 1, when the password input screen or the dummy screen is received by the communication unit 5, the display control unit 3 displays the screen on the display input unit 2 (S 14), and the operator stores the image information according to the message on the input screen. By selecting and pressing one button, the first password is confirmed (S15).
If the image information button is pressed incorrectly, the operator inputs from the beginning after pressing the “Cancel” button.

If the screen displayed on the display input unit 2 is a dummy screen and the operator (registrant) determines that there is no image button corresponding to his / her password on the screen, an arbitrary image information button is displayed. Press to confirm the input.
When the input of the first image information button is confirmed, the authentication unit 4 collates the input password with the first digit password received from the center system 10 if the screen at that time is a password input screen. Whether or not they match is confirmed, but even if they do not match, the password whose input is confirmed is stored.

If the button input character screen is a dummy screen, the authentication unit 4 ignores the input password.
When four passwords, that is, four digits are not reached (S16), information requesting an input screen is transmitted from the input terminal 1 to the center system 10 via the communication unit 5, and the processing from S13 is repeated.

  When the password input screen is displayed four times and a four-digit password is input, the password is transmitted from the input terminal 1 to the center system 10 via the communication unit 5 (S17). When the password is received, the authentication unit 13 compares the password received with the password corresponding to the registrant's ID to authenticate whether or not the operator is the registrant of the password (S18).

FIG. 4 is a diagram showing a screen at the time of password input in the above-described password authentication processing procedure.
For example, when the password of the registrant is “A mountain ★ ⇔”, that is, the first digit of the password is alphabet “A”, the second digit is “kanji”, the third digit is “★”, When the fourth digit is the symbol “⇔”, a password input screen with alphabet buttons including “A” as shown in FIG. As shown in FIG. 4B, a dummy screen with buttons for Kanji characters that do not include “mountain” is displayed on the display input unit 2, and then, as shown in FIG. A password input screen in which buttons with kanji characters including “mountain” are arranged is displayed on the display input unit 2, and then a password with buttons having graphic shapes including “★” as shown in FIG. Is displayed on the display input unit 2 and finally shown in FIG. Sea urchin "⇔" input screen of the password which arranged the button by the symbol, including it is assumed to be displayed on the display input unit 2.

  If the operator is the person who has registered the password, the “A” button is pressed on the password input screen in FIG. 4A, and an arbitrary button such as “Sea” is displayed on the dummy screen in FIG. ”Button, and then the“ mountain ”button on the password input screen of FIG. 4C, and the“ ★ ”button on the password input screen of FIG. Finally, since the “⇔” button is pressed on the password input screen of FIG. 4E, the correct password “A mountain ★ ⇔” is input.

Therefore, when a password is input in such a procedure, even if a third party snooping or voyeurism is performed, the input by pressing any button on the dummy screen in FIG. 4B is a dummy. The third person cannot know this, and even if the registrant himself pretends, the correct password cannot be input.
FIG. 5 is an explanatory diagram showing that a correct password cannot be input. First, as shown in FIG. 5A, a password input screen with alphabetic buttons including “A” is displayed on the display input unit 2. Even if a third party who performed a sneak shot or sneak shot presses the “A” button, a button with Kanji characters including “mountain” and “sea” as shown in FIG. When the password input screen is displayed on the display input unit 2, since the registrant has pressed the “sea” button on the dummy screen in FIG. 4B, the “mountain” button, which is the correct password, is displayed. In spite of this, the third party will press the “sea” button and will not be able to enter the correct password.

The correct password button on the password input screen does not need to be displayed at the same position every time, and the position can be changed each time it is displayed.
For example, the correct password “mountain” button is displayed in the center on the password input screen of FIG. 4C, but in the next display, the “mountain” button is displayed as shown in FIG. It can be displayed by changing the position of the “Sato” button on the right.

In this case, if the position is changed to another button, it may give a strange feeling to a third party. Therefore, it is desirable to change the position of only the correct password button and the button necessary for the replacement of the position.
In the embodiment described above, image information is used as a password, a dummy screen in which a correct password does not exist is displayed at an arbitrary timing when a password is input, and an arbitrary button is pressed. Even if a sneak shot or voyeur is performed, the correct password cannot be obtained, and the third party can prevent unauthorized acquisition of the password.

  Also, do not use passwords entered with the numeric keypad as passwords, and use UNICODE such as alphabets, mathematical numbers, special numbers (numbers with circles, numbers with parentheses), kanji, symbols, figures, kana characters (Hiragana, Katakana), etc. Since image information having a number more than the number of types of password characters that can be displayed on the screen expressed in JIS code is used, the types of passwords can be diversified, and in this respect as well, unauthorized acquisition of passwords can be suppressed. The effect is obtained.

Next, a second embodiment will be described.
The configuration of the second embodiment is the same as that of the first embodiment (FIG. 1), but differs from the first embodiment in that only numbers and alphabets are used as passwords.
In this case, the password registration process and the authentication process are also performed in the same manner as in the first embodiment, that is, the procedure described in the flowcharts of FIGS.

FIG. 6 is a diagram showing a screen at the time of password input in the above-described password authentication processing procedure.
For example, if the password of the registrant is “3K2J”, that is, the first digit of the password is “3”, the second digit is “K”, the third digit is “2”, the fourth digit Is a letter “J”, first, as shown in FIG. 6A, a password input screen including a number including “3” and an alphabet button is displayed on the display input unit 2, As shown in FIG. 6 (b), a dummy screen in which numbers that do not include the alphabet “K” and buttons in alphabets are arranged is displayed on the display input unit 2, and then as shown in FIG. 6 (c). A password input screen is displayed on the display input unit 2 with a number including the alphabet “K” and an alphabet button, and the number including the number “2” is displayed as shown in FIG. Alphabet A password input screen with a button is displayed on the display / input unit 2, and finally a password input screen with a number including the alphabet “J” and an alphabetic button as shown in FIG. It is assumed that it is displayed on the display input unit 2.

  If the operator is the person who has registered the password, the user presses the “3” button on the password input screen in FIG. 6A, and the arbitrary screen such as “Z” on the dummy screen in FIG. ”Button, and then press the“ K ”button on the password input screen of FIG. 6C, and further press the“ 2 ”button on the password input screen of FIG. Finally, since the “J” button is pressed on the password input screen of FIG. 6E, the correct password “3K2J” is input.

Therefore, when a password is input in such a procedure, even if a third party snooping or voyeurism is performed, the input by pressing any button on the dummy screen in FIG. 6B is a dummy. The third person cannot know this, and even if the registrant himself pretends, the correct password cannot be input.
That is, as shown in FIG. 6 (a), a password input screen is first displayed on the display input unit 2 with buttons including numbers and alphabets including “3” and alphabets. Even if the button “3” is pressed, the password input screen in which numbers including “K” and “Z” and alphabet buttons are arranged as shown in FIG. Is displayed on the dummy screen in FIG. 6B, the registrant has pressed the “Z” button, so that the third party is present despite the “K” button being the correct password. Will press the “Z” button and the correct password cannot be entered.

Also in this embodiment, the correct password button on the password input screen does not need to be displayed at the same position every time, and the position can be changed each time it is displayed.
In this case, if the position is changed to another button, it may give a strange feeling to a third party. Therefore, it is desirable to change the position of only the correct password button and the button necessary for the replacement of the position.

In the second embodiment described above, the same effect as that of the first embodiment can be obtained.
The present invention is not limited to the first and second embodiments described above.
For example, in the first and second embodiments described above, description has been made by showing a screen (such as FIG. 4) on which nine (3 × 3) buttons are arranged as an input screen or dummy screen for each digit of a password. However, the present invention is not limited to this, and an input screen or a dummy screen on which 12 (3 × 4), 16 (4 × 4), or more buttons are arranged may be displayed.

  In the first embodiment described above, as password input screens and dummy screens, as shown in FIGS. 4A to 4F, image information such as alphabets, kanji characters, figures, symbols, etc., respectively. In the second embodiment, numbers and alphabets are used, but as shown in FIG. 7, the types of alphabets, kanji, figures, symbols, special numbers, etc. are different. It is good also as a screen which mixed the button by image information.

Further, the image information to be converted to a button may be limited to alphabets, hiragana, and katakana that have a fixed number, so that the capacity of the image information storage unit 12 can be reduced and each digit of the password can be reduced. This makes it easier than generating input screens and dummy screens.
Furthermore, in the above-described embodiment, the input terminal 1 and the center system 10 are used. However, if the input terminal 1 includes the password registration unit 11, the image information storage unit 12, and the input screen generation unit 13, The input terminal 1 can execute a password input screen, a dummy screen, and a password authentication process.

Block diagram showing the first embodiment The flowchart which shows the registration process procedure of the password in 1st Example The flowchart which shows the authentication processing procedure of the password in a 1st Example. The figure which shows the screen at the time of password input in 1st Example Explanatory diagram showing that the correct password cannot be entered The figure which shows the screen at the time of password input in 2nd Example Diagram showing a screen with buttons of different types of image information mixed

Explanation of symbols

DESCRIPTION OF SYMBOLS 1 Input terminal 2 Display input part 3 Display control part 4 Authentication part 10 Center system 11 Password registration part 12 Image information storage part 13 Input screen generation part 14 Authentication part

Claims (5)

Display input unit comprising a display unit and an input unit, a password registration unit for registering a password comprising image information for a plurality of digits in association with an individual identifier, an image information storage unit for storing image information, and an input screen generation And an authentication unit for password authentication,
The input screen generation unit reads a password corresponding to an identifier acquired from an operator at the time of password input from the password registration unit, and for each digit of the read password, a plurality of pieces of image information different from the digit image information A password input screen extracted from the information storage unit and converted into a button, and a plurality of pieces of image information other than the one-digit password image information are extracted from the image information storage unit and extracted. Generate at least one dummy screen with buttons
The generated password input screen and dummy screen are displayed on the display input unit, and the operator performs input by one button on each screen, and the image information input on the password input screen by the authentication unit is used as the password. An authentication system characterized by performing verification by collating. The authentication system according to claim 1,
An authentication system, wherein the dummy screen is displayed at an arbitrary timing.   3. The authentication system according to claim 1, wherein the image information uses at least one of them as a plurality of types of information having a number greater than the number of password characters that can be displayed on a screen expressed by UNICODE or JIS code. An authentication system characterized by: In the authentication system according to any one of claims 1 to 3,
An authentication system characterized in that a password input screen and a dummy screen are displayed by mixing buttons of a plurality of types of image information. In the authentication system according to any one of claims 1 to 4,
An authentication system characterized in that the button corresponding to the password on the password input screen changes its position for each display.

Images