JP2798159B2 - Owner confirmation method - Google Patents

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION The present invention relates to two types of cards, usable and unusable. When the card is usable, it requests the target apparatus to perform the processing requested by the owner of the card. The present invention also relates to an owner confirmation method for confirming the owner of a card in a system in which the state of the card becomes unusable upon completion of the processing.

[0002]

2. Description of the Related Art As a conventional method of personal identification in the field of information communication services, a password when accessing a center from a computer terminal and a personal identification number when using a cash card are typical. . However, with the progress of personalization of computer use, there have been problems in personal memory ability, complexity in multiple use, possibility of password guess by others, and the like. Cards represented by an IC card are considered to be indispensable as components essential to the personal identification technology for solving the above-mentioned problems. Here, examples of the cards include a magnetic type card currently used, such as a cash card, a credit card, and a prepaid card, and an IC card incorporating an LSI capable of adding an intelligent function for suppressing data input / output. Can be. Since the amount of data of the authenticator that can be embedded in the IC card is enormous compared to the limited personal memory information, it can be confirmed with high accuracy according to the RSA method, FS method, etc., which are the results of recent encryption and authentication research. It has become possible to identify cards and the like with respect to a partner (target device). In this connection, for example, the description in “Encryption and Information Security”, edited by Tsujii and Kasahara (issued by Shokodo, 1990) can be referred to.

[0003]

However, even if the function of confirming cards is developed, it is not certain unless only the true owner of the cards can use the cards. As shown in FIG. 8 and FIG. 9, the conventional means for confirming the owners of cards and the like are as follows: memory information (password, etc.), owner (credit card, license, etc.), and physical characteristics (fingerprint, handwriting, etc.). They are classified, and in this, stored information and possessions are heavily used. Although research on pattern recognition for physical features such as fingerprints is active, there are many problems to be solved at present in terms of operability, cost, and reliability. Of the above means,
The personal property method is a realistic solution, but at present there is no effective means to identify the owner of the card. Cards can also be used to verify ownership, but this only complicates the story and is not a fundamental solution. The present invention has been made in view of the above circumstances, and an object of the present invention is to solve the above-described problems in the conventional technology, to achieve a portability comparable to physical characteristics, which cannot be realized only by cards, and a human. It is an object of the present invention to provide an owner confirmation method which can use a storage means having more certainty than the above storage.

[0004]

SUMMARY OF THE INVENTION The object of the present invention is to provide two kinds of statuses of cards such as usable and unusable, and when the card is usable, the owner of the card requests the target apparatus. In a system in which the processing is requested and the status of the cards is unusable at the same time as the completion of the process, in order to switch the status of the cards from unusable to usable, the card is carried by the owner of the card. This is achieved by an owner confirmation method characterized in that the owner of the cards is confirmed by the output information.

[0005]

In the owner confirmation method according to the present invention, in addition to conventionally used personal identification cards, means for assuring that the user of the cards is a legitimate user is provided. Since the system is introduced and the owner confirmation is performed in parallel, it is possible to perform a highly secure owner confirmation without increasing the burden on the user.

[0006]

Embodiments of the present invention will be described below in detail with reference to the drawings. In the embodiment described below, as described above, as a storage means having portability comparable to physical characteristics and reliability more than human memory, identifiers are attached to accessories such as watches, tie pins, rings or brooches. Here is an example of making a portable object by embedding it so that it can be mutually confirmed with the corresponding cards. Here, the identifier is digital information, and a digital communication path is used for data transmission and reception between cards and portable objects. FIG. 1 is a diagram showing a basic configuration of an owner confirmation method according to the present invention. When mutual confirmation is made with a confirmation partner (target device) by cards owned by an individual, the card corresponds to the cards. This shows a situation in which the owner of a card or the like is confirmed by information output from a portable object as owner confirmation means for storing personal identification information (identifier). FIG. 2 is a diagram showing another example of the configuration of the owner confirmation method according to the present invention, wherein a plurality of portable objects are used as owner confirmation means for storing personal identification information (identifiers) corresponding to cards. An example is shown in which specific combinations and orders of these plurality of portable objects are associated with cards and the like. In this case, the card cannot be used unless the procedure is performed according to a specific combination of a plurality of portable objects.

FIGS. 3A and 3B (together, these are simply referred to as “FIG. 3”) are block diagrams showing a specific configuration of an owner confirmation system according to an embodiment of the present invention. In the figure, 1 is a portable object, 2 is cards, and 3 is an information processing device. In the owner confirmation system according to the present embodiment, an individual having a legitimate use right
Is used, the card 2 is used to confirm that the card 2 is a valid owner by using the portable object 1. The above-mentioned portable object 1 includes a management unit 100, an ownership guarantee information storage unit 101, an ownership guarantee processing unit 102, a communication processing unit 1
03, and cards 2
00, ownership judgment information storage unit 201, ownership judgment processing unit 20
2, the communication processing unit 203, the device usage right information setting unit 205, the personal identification information storage unit 206, and the personal identification correspondence processing unit 207, the information processing device 3 includes the management unit 300, the personal determination information storage unit 30
1, a personal identification processing unit 302, a communication processing unit 303, and a personal access right information setting unit 305. In addition, as the portable object 1 here, for example, a clock, a tie pin,
By applying jewelry such as a ring and the like, information which will be described later is stored in these jewelry. The cards 2 include an IC card. The connection between the portable object 1 and the cards 2 may be performed by any of electrical, optical or electromagnetic methods. The user who confirms the owner of the cards 2 first,
The portable object 1 and the cards 2 are connected, and each processing unit is activated. Management unit 100, 200 for each of portable object 1 and card 2
Communicates information registered in each of the ownership guarantee information storage unit 101 and the ownership determination information storage unit 201 via the communication processing units 103 and 203, and
02, cause the ownership judgment processing unit 202 to execute the process, and, based on the result of the ownership judgment processing, set the usage right to the device usage right information setting unit.
Set to 205. By setting the use right in the device use right information setting unit 205 in this manner, the card 2
Has been verified.

FIG. 4 shows a case where the identifier stored in the ownership guarantee information storage unit 101 of the portable object 1 matches the identifier stored in the ownership determination information storage unit 201 of the cards 2. An example of information communication when the above-mentioned device use permission / rejection information (Y / N) is set in the device use right information setting unit 205 is shown. In this case, the processing in the ownership guarantee processing unit 102 for the portable object 1 described above is unnecessary, and the ownership guarantee information storage unit for the portable object 1 is stored in the ownership judgment processing unit 202 for the cards 2.
From 101, the communication processing unit 103, the communication processing unit 2 of the card 2, etc.
The identifier received via the “03” and the identifier stored in the ownership determination information storage unit 201 of the card 2 are collated and determined, and the use permission / denial information of the card 2 is determined based on whether they match. (Y / N) is set in the device usage right information setting unit 205. Here, when the use of the cards 2 is permitted, the cards 2 are activated, and mutual confirmation is performed with a check partner (target device). On the other hand, if the use of the cards 2 is not permitted, the cards 2 become inactive, and the function of checking the partner (target device) for checking the cards does not work any more. FIG. 5 shows the ownership guarantee information storage unit 1 for the portable object 1 described above.
01, the information based on the contents of the status register stored up to that point, the identifier stored in the ownership determination information storage unit 201 of the card 2 and the status register stored up to now. An example of information communication in the case where the above-mentioned device use permission / denial information (Y / N) is set in the device use right information setting unit 205 when the information based on the contents match is shown. In this case, the ownership guarantee processing unit 102 of the portable object 1 performs random number generation processing based on the identifier and the contents of the status register stored up to that point, and the ownership determination processing unit 202 of the card 2 also Similarly to the above, random number generation processing is performed based on the above-described identifier and the contents of the status register stored up to that point, and from the ownership guarantee information storage unit 101 of the portable object 1, the communication processing unit 103 and the communication of the cards 2 Confirmation information (random number) received via processing unit 203
And information generated by the ownership determination processing unit 202 of the card 2
(Random number) is checked and matched.
The use permission / rejection information (Y / N) of the cards 2 is set in the device use right information setting unit 205. The following operation is the same as the example shown in FIG. In this embodiment, since the identifier itself is not output from the portable object 1, there is no fear that the identifier leaks to the outside.

FIG. 6 shows an identifier (encryption key information K1) stored in the ownership guarantee information storage unit 101 of the portable object 1 described above.
When the identifier (encryption key information K2) stored in the ownership determination information storage unit 201 of the card 2 matches, the device use right information setting unit 205 sends the device use permission / denial information (Y /
An example of information communication when N) is set is shown. In this case, first, the random number generated by the random number generation function of the ownership determination processing unit 202 of the cards 2 is transmitted to the portable object 1 via the communication processing unit 203. The ownership guarantee processing unit 102 of the portable object 1 converts the random number received via the communication processing unit 103
It generates information (confirmation information) encrypted by using the encryption key information K1 stored in the ownership guarantee information storage unit 101, and transmits it to the cards 2 via the communication processing unit 103. The ownership determination processing unit 202 of the cards 2 obtains the information received via the communication processing unit 203 and the above-described random number by encrypting the information with the encryption key information K2 stored in its own ownership determination information storage unit 201. Collated information. At this time, it is determined whether or not the above-mentioned encryption key information K1 and K2 match, based on whether or not they match, and the device use right information setting unit 205 sets the device use permission / denial information (Y / N). Set. The following operation is the same as in the example shown in FIGS. Also in this embodiment, since the identifier itself is not output from the portable object 1, there is no fear that the identifier leaks to the outside. FIG.
The information communication in the case of setting the device use permission / rejection information (Y / N) in the device use right information setting unit 205 when bidirectional data transmission can be applied to the case where the processing amount of the portable object is relatively large. Is shown. The basis is that a zero (zero) knowledge proof, in which identification information logically does not leak from confirmation information transmitted data, is used. In this case, first, the ownership determination processing unit 202 of the card 2 performs an inspection process based on the ID information and the public information transmitted from the portable object 1, and further, the ownership guarantee processing unit of the portable object 1
Proof processing using the identifier stored in 102 is performed, and data is transmitted and received between the portable object 1 and the cards 2 to constitute the above-mentioned zero knowledge proof. Based on this result,
Device usage permission / rejection information in the device usage right information setting unit 205
(Y / N) is set. The following operation is the same as the example shown in FIGS. In this embodiment, since the identifier itself is not output from the portable object 1,
There is no worry that this will leak out.

By the processing shown in FIGS. 4 to 7, the fact that the card 2 is used by a valid owner is determined by the device use permission / denial information (Y / If confirmed by N), the personal identification processing is automatically performed between the cards 2 and the information processing device 3 in the following procedure. That is, first, the cards 2 and the information processing device 3 are connected, and each processing unit is activated. Each of the management units 200 and 300 of the cards 2 and the information processing device 3 includes a communication processing unit 20.
8 and 303 are started, and the information registered in the personal identification information storage unit 206 and the personal judgment information storage unit 301 are exchanged with each other.
The personal identification processing unit 207 and the personal identification processing unit 302 execute the processing, and the personal identification processing result is set in the personal access right information setting unit 305. The personal identification process at the time of accessing the information processing device 3 is completed by the above-described series of procedures. According to the above embodiments, the following effects can be obtained. (1) Confirmation can be performed with unambiguous digital information, confirmation can be performed instantaneously without manual operation, and the hardware scale is small. (2) According to the method according to the embodiment shown in FIGS. 4 to 7, the identifier stored in the portable object does not leak to the outside, and the security is high. (3) The idea of owner confirmation via a portable object can be used with the same feeling as a seal stamp, and is more easily accepted by people than physical features such as fingerprints and facial shapes. (4) The portable object can have various forms depending on the shape of the accessory, and has a wide range of applications. It should be noted that each of the above-described embodiments is merely an example of the present invention, and it is needless to say that the present invention should not be limited to these. For example,
The portable object 1 is not limited to the above-described accessories such as a watch, a tie pin, and a ring, and other application forms can be used. The same applies to cards 2. Also, the connection between the portable object 1 and the cards 2 may be made by a method other than the electrical, optical or electromagnetic method.

[0011]

As described in detail above, according to the present invention, a portable device comparable to a physical feature which cannot be realized only by cards and a storage means having reliability more than human memory are used. This has a remarkable effect that an owner confirmation method that can perform the method can be realized. It should be noted that the portable object as the storage means used in the owner confirmation method according to the present invention has the advantages that it is difficult to copy and that loss is easily noticed.

[0012]

[Brief description of the drawings]

FIG. 1 is a diagram showing a basic configuration of an owner confirmation method according to the present invention.

FIG. 2 is a diagram showing another configuration example of the owner confirmation method according to the present invention.

FIG. 3A is a part of a block diagram illustrating a configuration of an owner confirmation system according to an embodiment;

FIG. 3B is another part of the block diagram showing the configuration of the owner confirmation system of the embodiment.

FIG. 4 is a diagram illustrating an example of processing based on information stored in the portable object 1 and the cards 2 in the owner confirmation system of the embodiment.

FIG. 5 is a diagram showing another example of the process based on the stored information of the portable object 1 and the cards 2 in the owner confirmation system of the embodiment.

FIG. 6 is a diagram illustrating another example of the process based on the storage information of the portable object 1 and the cards 2 in the owner confirmation system of the embodiment.

FIG. 7 is a diagram showing another example of the process based on the stored information of the portable object 1 and the cards 2 in the owner confirmation system of the embodiment.

FIG. 8 is a diagram showing a conventional owner confirmation means and its principle.

FIG. 9 is a diagram illustrating the operation of a conventional owner confirmation unit.

[Explanation of symbols]

1: portable item, 2: cards, 3: information processing device, 100, 2
00, 300: management unit, 101: ownership guarantee information storage unit, 102:
Ownership guarantee processing unit, 103, 203, 208, 303: communication processing unit,
201: Ownership determination information storage unit, 202: Ownership determination processing unit
205: apparatus use right information setting unit, 206: personal identification information storage unit, 207: personal identification correspondence processing unit, 301: personal determination information storage unit, 302: personal identification processing unit, 303: communication processing unit, 305: personal access Right information setting section.

──────────────────────────────────────────────────続 き Continued on the front page (58) Fields investigated (Int. Cl. ⁶ , DB name) G06K 17/00 G06F 19/00-19/07 G06F 17/60 G07F 7/12

Claims (5)

(57) [Claims] Claims: 1. There are two types of statuses of a card, usable and unusable. If the card is usable, the card device requests the target device to perform a process requested by the card owner. In a system in which the status of the cards is unusable, in order to switch the status of the cards from unusable to available, information on the possession of the cards is obtained by information output from a portable object of the owner of the cards. Owner confirmation method characterized by performing a person confirmation. 2. The method according to claim 1, wherein the correspondence between the information output from the card belonging to the owner of the card and the information possessed by the card is checked. 3. The method according to claim 2, wherein a plurality of items carried by the owner of the cards are used. 4. The method according to claim 2, wherein the information output from the card belonging to the owner of the cards and the information possessed by the cards are updated each time the correspondence is checked. 5. A check of correspondence between information output from a card carried by the owner of the card and information possessed by the card is performed by zero-knowledge certification based on inspection processing using public information. 3. The owner confirmation method according to claim 2, wherein