JP5645723B2 - Authentication server, authentication system, and server authentication method - Google Patents

Description

  The present invention relates to an authentication server, an authentication system, and a server authentication method.

  In ATMs (Automated Teller Machines) such as banks, in order to prevent others from seeing what number buttons were pressed over the shoulders of partitions, multiple types of numbers were changed on the display screen. By providing a pattern in advance, a technique is generally used to make it difficult to recognize a password (password) itself even if another person steals the button that has been pressed (for example, patent documents). 1). FIGS. 6A to 6D are views showing a plurality of display patterns in which the display positions of the numbers 1 to 9 adopted by conventional ATM or the like are changed.

  In addition, as with SecureMatrix (registered trademark), in order to prevent leakage due to eavesdropping on the communication path, the number display position is used as secret information instead of the number button display information itself. One-time passwords have been used that leave information random and send display information corresponding to the location. FIG. 7 is a diagram showing an image of a SecureMatrix (registered trademark) password. In this case, an image pattern of a password “V” is registered in advance, and the input password (password) is a different one-time password each time.

JP 2004-288153 A

  However, in the conventional method of providing a plurality of patterns that merely change the display position of the numbers as described in Patent Document 1, a password (password) is wiretapped by another person once on the communication path. If it is memorized, there is no way to do it anymore, and unless measures such as changing the personal identification number (password) are taken promptly, there is a risk that it will cause significant economic damage.

  On the other hand, in the technique of sending display information corresponding to the position, such as SecureMatrix (registered trademark) described above, if a keyboard in a so-called physical meaning is used, a password (password) should be given to another person. Even if it is stolen and stored, the password (password) is a so-called one-time password, so there is no possibility that the same password (password) will be used again, so there is no risk of damage. This is the same even when the one-time password is eavesdropped on the communication path between the client (keyboard) and the server.

  However, for intuitive operability that contributes to improved convenience, the client's keyboard is integrated with display and input, and when using a keyboard that relies on the key top display for key input, or recently a smartphone In the case of a so-called software keyboard used in a computer, etc., the position information itself on which the numbers on the display panel are displayed is not seen by the other person over the shoulder of the partition. As a result of memorizing which button was pressed, the image pattern in FIG. 7 (information indicating that the password (password) is a number that traces "V-shaped") is stolen. As a result, there is still a problem of being in an unprotected state.

  Further, in an authentication system (including an encryption system in a broad sense) composed of a server and a client terminal, key information (for example, a common key for performing encrypted communication) for authentication is generally used. Is often stored on the client terminal side, the physical security on the client terminal side is not perfect, and if the client terminal is lost or the client terminal is stolen, the relevant key information (confidential information) Has been disclosed and may be misused.

  Therefore, the present invention has been made in view of the above-described conventional problems. Even when a so-called software keyboard or a keyboard in which display and input are integrated is used, the input of a personal identification number (password) is performed over the shoulder of the partition. Intuitive operability and high security are compatible in both cases where it is memorized by another person and which button is pressed and when the password (password) is wiretapped on the communication path. It is an object to provide an authentication server, an authentication system, and an authentication method for the server.

  In order to solve the above-mentioned problem, the authentication server according to the present invention described in claim 1 includes a display keyboard generation unit that randomly generates a display keyboard to be displayed on the client, and each key of the display keyboard. Transmission matrix generation means for generating a transmission matrix that is an associated matrix, transmission means for transmitting the display keyboard and transmission matrix to the client, each key of the display keyboard, and the transmission One-time password candidate generation means for generating a plurality of one-time password candidates that may be taken in combination with a trust matrix, and a password input by pressing each key of the display keyboard in the client , The matrix for transmission Receiving means for receiving from the client as a one-time password converted you are, characterized in that it comprises a one-time password to the received, and comparing and collating means for comparing compares the plurality of one-time password candidates, the.

  In order to solve the above problem, an authentication system according to the present invention described in claim 3 is an authentication system including an authentication server and a client, and the authentication server randomly displays a display keyboard displayed on the client. A display keyboard generating means for generating; a transmission matrix generating means for generating a transmission matrix which is a matrix associated with each key of the display keyboard; and the display keyboard and the transmission matrix. Transmitting means for transmitting to a client; one-time password candidate generating means for generating a plurality of one-time password candidates that can be taken by a combination of each key of the display keyboard and the transmission matrix; The display keyboard on the client Receiving means for receiving from the client a password input by pressing each key of the password as a one-time password converted using the transmission matrix, the received one-time password, and the plurality of Comparison verification means for comparing and verifying one-time password candidates, wherein the client receives the display keyboard and transmission matrix from the authentication server, a display means for displaying the display keyboard, Input means for inputting the password by pressing each key of the display keyboard, conversion means for converting the password into the one-time password using the transmission matrix, and the one-time password Transmitting means for transmitting to the authentication server; Characterized in that it contains.

  Furthermore, in order to solve the said subject, the authentication method of the server in this invention of Claim 4 produces | generates the keyboard for display displayed on a client at random, respectively with respect to each key of the said keyboard for display A step of generating a transmission matrix that is an associated matrix; a step of transmitting the display keyboard and transmission matrix to the client; and a combination of each key of the display keyboard and the transmission matrix Generating a plurality of one-time password candidates that can be taken by the client, and converting the password input by pressing each key of the display keyboard in the client using the transmission matrix. The client as a one-time password Comprising: receiving a one-time password to the received, characterized in that it comprises a the steps of comparing and collating a plurality of one-time password candidates.

  According to the present invention, it is possible to obtain an authentication server, an authentication system, and a server authentication method that have low risk on the client side and that achieve both improvement in operability and safety.

It is a block diagram which shows the structure of the authentication server in embodiment of this invention. It is a block diagram which shows the structure of the client in embodiment of this invention. It is a flowchart explaining operation | movement of the authentication system in embodiment of this invention. It is a figure explaining operation | movement of the client of the authentication system in Embodiment 1 of this invention. It is a figure explaining operation | movement of the client of the authentication system in Embodiment 2 of this invention. It is a figure which shows the some pattern which changed the display position of the number employ | adopted by the conventional ATM. It is a figure which shows the image of the password of SecureMatrix (trademark).

  Next, embodiments for carrying out the present invention will be described in detail with reference to the drawings. In addition, in each figure, the same code | symbol is attached | subjected to the part which is the same or it corresponds, The duplication description is simplified thru | or abbreviate | omitted suitably.

  FIG. 1 is a block diagram showing a configuration of an authentication server in the embodiment of the present invention. In FIG. 1, the authentication server 1 is randomly generated by a display keyboard generation unit 11 that randomly generates a display keyboard, a transmission matrix generation unit 12 that generates a transmission matrix, and a display keyboard generation unit 11. The transmission unit 14 that transmits the transmission matrix generated by the display keyboard and transmission matrix generation unit 12 to the client, and the one-time password that generates a plurality of one-time password candidates that may be a one-time password Candidate generator 13, receiver 15 that receives the one-time password transmitted from the client, one-time password received by receiver 15, and a plurality of one-time passwords generated by one-time password candidate generator 13 Possible A comparison unit 16 for comparing and collating the one-time password with gender, consists, controller (not shown) totally controlling these portions are provided.

  The display keyboard, the transmission matrix, and a plurality of one-time passwords that can be one-time passwords are related to the essential parts of the present invention, and will be described in detail later.

  Next, the client will be described. FIG. 2 is a block diagram showing the configuration of the client in the embodiment of the present invention. In FIG. 2, the client 2 receives a display keyboard and a transmission matrix from the authentication server 1, a display keyboard display unit 22 that displays the received display keyboard, and a display keyboard display unit 22. Each of the numbers on the display keyboard displayed on the screen is selected and pressed, and the password input unit 21 for inputting the password and the password input using the display keyboard are stored in the authentication server 1 using the transmission matrix. The one-time password conversion unit 24 that converts the one-time password into a single one-time password among a plurality of one-time passwords that can be a one-time password, and the one-time password converted by the one-time password conversion unit 24 And a transmission unit 26 that transmits to the authentication server 1. Controller is provided (not shown) controlling the entire Luo units. In the one-time password conversion unit 24 and the transmission unit 26, the security level against eavesdropping is further improved by performing irreversible conversion using a hash function. In this case, the one-time password candidate generated by the one-time password candidate generation unit 13 is also verified by the comparison / collation unit 16 after conversion using the same hash function.

  The client 2 may be any type of terminal that can access the authentication server 1, such as a mobile phone terminal, a mobile communication terminal such as a smartphone, a PDA (Personal Digital Assistant) terminal, or a portable personal computer. May be. In addition, as described above, the present invention is particularly effective when a so-called software keyboard or a keyboard in which display and input are integrated is used. It is intended to achieve both intuitive operation and high security in the case where it is memorized whether or not the password has been pressed and in all cases where the password (password) is wiretapped on the communication path. Therefore, the display keyboard displayed on the client terminal is assumed to be a so-called software keyboard, and when the user selects and presses each number of the display keyboard displayed on the display keyboard display unit 22, Touch each numeric icon displayed on the keyboard display 22 with the mouse, cursor, or finger. It is assumed that.

  Next, the overall operation of the authentication system composed of the authentication server 1 and the client 2 will be described. FIG. 3 is a flowchart for explaining the operation of the authentication system in the embodiment of the present invention.

  First, the authentication server 1 randomly generates a display keyboard. (Step (hereinafter referred to as “S”) 110). Next, a transmission matrix that is paired with the randomly generated display keyboard is generated (S120). Here, a display keyboard and a transmission matrix paired therewith will be described with reference to FIG. FIG. 4 is a diagram for explaining the operation of the client of the authentication system according to the first embodiment of the present invention.

  In FIG. 4, (a) is a display keyboard, and (b) is a transmission matrix. Both are composed of a 4 × 4 matrix, the (left), (middle), and (right) display keyboards and the (left), (middle), and (right) transmission matrices described in the lower row thereof. And is paired with. The display keyboard of (a) has numbers 1 to 9 arranged irregularly, and the transmission matrix of (b) has numbers 1 to 4 arranged irregularly. Details of the display keyboard (a) and the transmission matrix (b) will be described later.

  Returning to FIG. 3, the display keyboard and the transmission matrix generated in S110 and S120 are transmitted to the client 2 using the transmission unit 14 (FIG. 1) of the authentication server 1 (S140). The display keyboard and the transmission matrix are received using the reception unit 25 (FIG. 2) of the client 2 (S250), and only the display keyboard is displayed on the display keyboard display unit (display) 22 (S220). .

  Each numerical icon of the display keyboard displayed on the display keyboard display unit (display) is selected and input as a password (password) by being touched by the user with a mouse, a cursor, or a finger. Then, the input password (password) is converted into a one-time password by the one-time password conversion unit 24 by using the previously received transmission matrix (S230), and the authentication server 1 is used by using the transmission unit 26. (S260). In S230, the converted one-time password may be converted by a MAC (Message Authentication Code) function such as MD5 (Message Digest 5) or SHA-1 (Secure Hash Algorithm 1).

  In the authentication server 1, the one-time password transmitted from the client 2 is received by the receiving unit 14 (S150), and a plurality of candidates that can be one-time passwords generated by the one-time password candidate generating unit 13 in advance are received this time. Comparison with the one-time password is performed (S160), and it is determined whether or not the one-time password transmitted from the client 2 is correct.

  The series of operations shown in FIG. 3 is performed by a CPU (Central Processing Unit) provided in a control unit of the authentication server 1 and the client 2 (not shown), a ROM (Read Only Memory), a RAM (Random Access Memory) not shown. ) And the like, by executing a program stored in the storage unit.

  Next, how the password (password) entered in the client 1 is converted into a one-time password will be specifically described with reference to FIG. In FIG. 4, (a) three display patterns of (left), (middle), and (right) are shown as display keyboards. In this way, the pattern of the display keyboard changes randomly as used in conventional ATM or the like. For example, in (left) and (middle), (a) the display keyboard is the same, but (b) the transmission matrix is different. Further, (a) the display keyboard is different between (left) and (right), but (b) the transmission matrix is the same.

  In order to provide redundancy for each of the display keyboard and the transmission matrix, here, a character code from 1 to 9 is associated with a 4 × 4 display keyboard, and a character code from 1 to 9 is assigned from 1 to 1. 4 transmission codes are associated with each other. Since the display keyboard has redundancy, in (middle), for example, when inputting “1”, any one of two locations may be selected, and the corresponding transmission code is also “ Two possibilities of “1” or “2” appear.

  Now, description will be made assuming that the password (password) is “1, 5, 6, 7”, for example. “1” has two places on the display keyboard (left) and (middle), and (right) has one place. The user selects and presses any “1”. Then, the transmission code on the transmission matrix at the location corresponding to the pressed key is transmitted. Both (left) are “1”, (middle) is “1” or “2”, and (right) is “1”.

  Similarly, there are two “5” s in all of (left), (middle), and (right). The user selects and presses any “5”. Then, the transmission code on the transmission matrix at the location corresponding to the pressed key is transmitted. (Left) is “2” or “4”, (Middle) is “1” or “2”, and (Right) is “1”.

  Next, “6” is also in two places in all of (left), (middle) and (right). The user selects and presses any “6”. Then, the transmission code on the transmission matrix at the location corresponding to the pressed key is transmitted. (Left) is “3” or “4”, (Middle) is “3” or “4”, and (Right) is “2” or “4”.

  Finally, “7” is also present in two places in all of (left), (middle), and (right). The user selects and presses any “7”. Then, the transmission code on the transmission matrix at the location corresponding to the pressed key is transmitted. (Left) is “1” or “4”, (Middle) is “3” or “4”, and (Right) is “3”.

  From the above, one-time password candidates that may be converted from the password (password) “1, 5, 6, 7” are (1, 2 or 4, 3 or 4, 1 or "4", (medium) is "1 or 2, 1 or 2, 3 or 4, 3 or 4", (right) is "1, 1, 2, or 4, 3", all one time The password candidates are prepared in advance by the one-time password candidate generation unit 13 in the authentication server 1. Therefore, whether or not the password (password) is correct by comparing and collating the converted one-time password transmitted from the client 2 with a plurality of one-time password candidates generated in advance in the authentication server 1. Is judged.

  In this way, since the arrangement of the numbers on the display keyboard changes every time, it is possible to sniff which button is pressed over the shoulder, and even if the key position is recognized, it is not possible to determine the password (password) It is not possible. In addition, because conversion is applied with a different transmission matrix each time and there is redundancy, even if the transmission code is wiretapped on the communication path, it is assumed that the authentication password (password) is the source Is difficult and functions as a one-time password.

  Next, Embodiment 2 of the present invention will be described in detail with reference to the drawings. FIG. 5 is a diagram for explaining the operation of the client of the authentication system according to the second embodiment of the present invention. The second embodiment is different from the first embodiment in that when the user of the client 2 inputs a password (password), the surface of the adjacent display keyboard is touched by touching each predetermined numeric key with a finger. This is the operation of tracing (stroke) the area.

  Now, description will be made assuming that the password (password) is, for example, “1, 5 right, 6 lower, 7”. “5 right” indicates an operation of pressing the display keyboard at the position “5” and releasing it at the key position in the area on the right side. For example, in FIG. 5 (left), there are a pattern in which “5” is pressed and released at the position “6”, and a pattern in which “5” is pressed and released at the area outside the display keyboard. There are two types. That is, it is handled as a key input of either two numeric keys “5, 6” or a numeric key input of only “5”. When this is converted by the transmission matrix, it is determined whether two transmission codes “2, 3” are transmitted or only a transmission code “4” is transmitted.

  In FIG. 5, in order to make it easy to understand the relationship between the numbers on the display keyboard and the transmission codes converted by the transmission matrix, (left) one-time password candidates are, for example, “2-3” and the like. Although shown, the transmission codes that are actually transmitted are "2" and "3", and "2" and "3" are entered as continuous strokes on the display keyboard. Whether it is or not is unknown. In addition, when it is difficult to move to an adjacent area (stroke operation) while pressing a number on the display keyboard, an operation of pressing “6” continuously after pressing “5” may be used. .

  According to the second embodiment, by performing a tracing (stroke) operation, for example, even if “1, 2-3, 3-3, 1” in the one-time password candidate (left) is wiretapped, The correspondence between the number “3” that appears in the third, fourth, and fifth consecutively is the number corresponding to the password (password) that has been converted is unknown. Even if a force attack (brute force attack) can be performed, the number of cases where the brute force must be increased can be increased, and security can be improved.

  As described above, according to the second embodiment, the tracing (stroke) operation is added to further increase the difficulty of seeing over the shoulder and the security strength as a one-time password. That is, by making the length of the converted one-time password variable, it becomes more difficult to associate it with a password (password).

  In FIGS. 4 and 5, one 4 × 4 keypad is used in order to obtain a display screen similar to that of ATM or the like, but the number of keys is set to 4 as in SecureMatrix (registered trademark) described above. If the configuration is such that there are three x4 keypads, the security strength can be further increased. In this case, for example, password rules such as “1” for the left keypad, “5 right” for the middle keypad, “6 down”, “7” for the right keypad should be determined in advance. By increasing the amount of information in the password itself, it is possible to efficiently increase the security strength.

  As described above, according to the present invention, the display keyboard is changed every time, the password is not dependent on the position as in SecureMatrix (registered trademark), but the password depends on the display characters, and the transmission matrix is changed. Used to send different information every time by sending characters on the matrix instead of display characters, and by making the keyboard and matrix redundant to establish as a one-time password, Even in the case of using a so-called software keyboard, if a password entry operation is stolen by another person and the keystroke position is memorized, and the password (password) is wiretapped on the communication system, the client In all cases where physical theft is assumed, improved operability and high safety Authentication server to achieve both securing sex is the authentication system, and can be obtained authentication method server.

  The present invention has been described above by the preferred embodiments of the present invention. While the invention has been described with reference to specific embodiments thereof, various modifications and changes can be made to these embodiments without departing from the broader spirit and scope of the invention as defined in the claims. is there.

DESCRIPTION OF SYMBOLS 1 Authentication server 11 Display keyboard production | generation part 12 Transmission matrix production | generation part 13 One time password candidate production | generation part 14, 26 Transmission part 15, 25 Reception part 16 Comparison collation part 2 Client 21 Password input part 22 Display keyboard display part 23 Transmission Trust Matrix 24 One Time Password Conversion Department

Claims (4)

Display keyboard generation means for randomly generating a display keyboard to be displayed on the client;
Transmission matrix generating means for generating a transmission matrix which is a matrix associated with each key of the display keyboard;
Transmitting means for transmitting the display keyboard and transmission matrix to the client;
One-time password candidate generating means for generating a plurality of one-time password candidates that can be taken by a combination of each key of the display keyboard and the transmission matrix;
Receiving means for receiving, from the client, a password input by pressing each key of the display keyboard in the client as a one-time password converted using the transmission matrix;
A comparison collation means for comparing and collating the received one-time password with the plurality of one-time password candidates;
An authentication server comprising:   The password is input by tracing a surface of the display keyboard toward an area adjacent to the pressed key after a predetermined key of the display keyboard is pressed. The authentication server according to claim 1. An authentication system comprising an authentication server and a client,
The authentication server is
Display keyboard generation means for randomly generating a display keyboard to be displayed on the client;
Transmission matrix generating means for generating a transmission matrix which is a matrix associated with each key of the display keyboard;
Transmitting means for transmitting the display keyboard and transmission matrix to the client;
One-time password candidate generating means for generating a plurality of one-time password candidates that can be taken by a combination of each key of the display keyboard and the transmission matrix;
Receiving means for receiving, from the client, a password input by pressing each key of the display keyboard in the client as a one-time password converted using the transmission matrix;
A comparison collation means for comparing and collating the received one-time password with the plurality of one-time password candidates;
Including
The client
Receiving means for receiving the display keyboard and transmission matrix from the authentication server;
Display means for displaying the display keyboard;
An input means for inputting the password by pressing each key of the display keyboard;
Conversion means for converting the password into the one-time password using the transmission matrix;
Transmitting means for transmitting the one-time password to the authentication server;
An authentication system comprising: Randomly generating a display keyboard to be displayed on the client;
Generating a transmission matrix that is a matrix associated with each key of the display keyboard;
Transmitting the display keyboard and transmission matrix to the client;
Generating a plurality of one-time password candidates that may be taken by a combination of each key of the display keyboard and the transmission matrix;
Receiving a password input by pressing each key of the display keyboard in the client from the client as a one-time password converted using the transmission matrix;
Comparing the received one-time password with the plurality of one-time password candidates;
A server authentication method comprising:

Images