JP6299093B2 - Terminal apparatus, information processing apparatus, input program, and input method - Google Patents

Description

  The present invention relates to a terminal device, an information processing device, an input program, and an input method.

  Conventionally, an authentication method using a password for maintaining security is known. In such an authentication method, in order to improve security, a password combining a plurality of character types such as uppercase letters, lowercase letters, numbers, and symbols may be used.

  In order to perform such password input, a technology that makes it unnecessary to input a password by storing the password in an IC tag possessed by the user, and the portable terminal device reads the password from the IC tag and authenticates the user. It has been known. In addition, for example, a technique is known in which when a password is input, information indicating a character type such as whether the input character is an uppercase letter or a lowercase letter is displayed, thereby preventing an incorrect password from being input.

JP 2007-300587 A JP-A-10-207606

  However, the technology for storing a password in the above-described IC tag and the technology for displaying the type of input character have a problem that the strength of security deteriorates.

  For example, in the technique of storing a password in an IC tag that each person has individually, the password can be acquired from the IC tag, so that the strength of security deteriorates. In addition, for example, in the technology for displaying information indicating the character type of the input character, it is easy to specify the password by peeking at the input key pressed or the character type of the input password when entering the password. .

  An object of this invention is to provide the terminal device, information processing apparatus, input program, and input method which improve the intensity | strength of security.

  In one aspect, the terminal device authenticates the input character string using a code string corresponding to the access destination among a plurality of code strings that convert the input character string into different character strings for authentication. Convert to character string for. Then, the terminal device transmits the converted character string for authentication to the access destination.

  As one aspect, the strength of security can be improved.

FIG. 1 is a schematic diagram illustrating a functional configuration of a terminal device according to the first embodiment. FIG. 2 is a schematic diagram illustrating an example of a terminal device according to the first embodiment. FIG. 3 is a diagram illustrating the functional configuration of the password input program. FIG. 4 is a diagram illustrating an example of information stored in the input mode code table. FIG. 5 is a diagram illustrating an example of a conversion rule. FIG. 6 is a diagram for explaining an example of processing executed at the time of password registration. FIG. 7 is a diagram illustrating an example of processing executed when a password is input. FIG. 8 is a flowchart for explaining the flow of processing executed by the terminal device. FIG. 9 is a first diagram illustrating a variation of processing executed by the terminal device. FIG. 10 is a second diagram illustrating a variation of the process executed by the terminal device. FIG. 11 is a third diagram illustrating a variation of the process executed by the terminal device. FIG. 12 is a schematic diagram illustrating an example of an information processing apparatus according to the second embodiment.

  Exemplary embodiments of a terminal device, an information processing device, an input program, and an input method according to the present application will be described below in detail with reference to the accompanying drawings. The disclosed technology is not limited by the following embodiments. In addition, the embodiments may be combined as appropriate within a consistent range.

  In Example 1 below, an example of a terminal device according to the present application will be described with reference to FIG. FIG. 1 is a schematic diagram illustrating a functional configuration of a terminal device according to the first embodiment. In the example shown in FIG. 1, the terminal device 1 includes a CPU (Central Processing Unit) 2, a radio control unit 3, an antenna 4, an NFC (Near Field Communication) control unit 5, an antenna 6, a display unit 7, a SIM (Subscriber Identity Module). ) It has a control unit 8. The terminal device 1 includes a SIM card 9, an input unit 10, and a storage device 11. The storage device 11 stores a password input program 12. The terminal device 1 communicates with the IC card 13 via short-range wireless.

  The CPU 2 is an arithmetic processing device that executes various arithmetic processes. For example, the CPU 2 executes control software or the like for controlling the terminal device 1 to control the entire terminal device 1. Further, the CPU 2 executes a password input program 12 stored in the storage device 11 to execute a password generation process for receiving authentication of an external site and a password transmission process.

  The radio control unit 3 uses the antenna 4 to control connection with a mobile communication system such as 3G (3rd Generation) or LTE (Long Term Evolution). For example, upon receiving from the CPU 2 data to be transmitted or data including a password for authentication from the CPU 2, the wireless control unit 3 connects to the base station of the mobile communication system via the antenna 4. Then, the radio control unit 3 transmits data to the base station, and transmits data including a password to the information processing apparatus on the network. The antenna 4 is an antenna for performing wireless communication, for example, an antenna for performing wireless communication in accordance with 3G or LTE standards.

  The NFC control unit 5 controls communication using NFC via the antenna 6. For example, the NFC control unit 5 reads and writes data stored in the storage area of the IC chip included in the IC card 13 via the antenna 6. The antenna 6 is an antenna for performing wireless communication according to the NFC standard.

  The display unit 7 is a display device for displaying various operation screens, and is, for example, a liquid crystal panel or an organic EL (Electro Luminescence). Note that the display unit 7 has not only a display function but also a touch panel function, and may have a function as the input unit 10. For example, when the display unit 7 functions as the input unit 10, the CPU 2 displays an input key for inputting characters on the display unit 7. When the user touches the display unit 7, the CPU 2 regards the input key displayed at the touch position as being pressed and accepts the input process.

  The SIM control unit 8 controls the SIM card 9. For example, the SIM control unit 8 reads the unique number stored in the SIM card 9 in response to a request from the CPU 2 and outputs the read unique number to the CPU 2. Thereafter, the CPU 2 connects to the mobile communication system using the read unique number. Further, the SIM control unit 8 executes reading of data stored in the SIM card 9 and writing of data to the SIM card 9 in response to a request from the CPU 2. The SIM card 9 is an exchangeable card having an IC chip for storing a unique number for connecting to a mobile communication system and various data.

  The input unit 10 is a key for performing various inputs to the terminal device 1. For example, the input unit 10 includes a call key, a clear key, a call end key, an uppercase alphabet, a lowercase alphabet, a Japanese hiragana, a katakana, a numeric keypad for inputting numbers from “0” to “9”, and the like. Has an input key.

  Here, an example of the input unit 10 included in the terminal device 1 will be described with reference to FIG. FIG. 2 is a schematic diagram illustrating an example of a terminal device according to the first embodiment. For example, the terminal device 1 has a plurality of input keys to which one or more characters are assigned as shown in FIG. Each input key is assigned one or more types of characters.

  For example, capital letters “A”, “B”, and “C” are assigned to input keys to which the number “2” is assigned. Although not shown in FIG. 2, lowercase letters “a”, “b”, and “c” are assigned to the input keys to which the numeral “2” is assigned. Then, the terminal device 1 sets the number “2”, the uppercase alphabets “A”, “B”, “C”, and the lowercase alphabet “ The input of any of the characters “a”, “b”, and “c” is accepted.

  Although not shown in FIG. 2, Japanese hiragana or katakana may be assigned to each input key. For example, an input key to which the numeral “2” is assigned may be assigned a hiragana character in the “ka” line, which is a Japanese hiragana character, and katakana. Note that various types of characters, numbers, and symbols are assigned to the input keys of the terminal device 1 depending on the region where the terminal device 1 is used. Allotted letters, numbers, symbols, etc. are collectively referred to as characters. In the following description, the type of characters to be input is described as an input mode.

  Here, when inputting a character to the terminal device 1 having an input key to which a plurality of characters are assigned, the user of the terminal device 1 selects the character type and then inputs the character. Press the assigned input key. For example, when the user inputs a lower case alphabet “a”, the input mode is set to a lower case alphabet using a predetermined input key, and the input key assigned the number “2” is set to “1”. ”Times to enter the lowercase alphabet“ a ”. In addition, when the user inputs the uppercase alphabet “B”, the input mode is set to the uppercase alphabet using a predetermined input key, and the input key assigned the number “2” is set to “2”. "" And press to enter the capital letter "B".

  On the other hand, the terminal device 1 accesses a server or an external site connected to the Internet or the like via the mobile communication system, and displays a user ID and password input screen. For example, as shown in FIG. 2B, the terminal device 1 displays a screen having a user ID input unit and a password input unit on the display unit 7, and requests the user to input a password. .

  Here, from the viewpoint of security, the password is preferably a character string that is different for each external site to be authenticated. The password is preferably a complex character string. For example, it is desirable that the password is a character string including a predetermined number of characters or more and including a plurality of character types. However, as described above, when inputting a complicated character string, it may take time or an input error may occur.

  Here, in order to make it easy to input the password, the password is stored in the IC card, and the IC card is analyzed when the password stored in the IC card is used when receiving authentication of the external site. By doing so, the password is leaked. In addition, in order to prevent an error in inputting the password, when the input character type is displayed, the password may be leaked from the pressed input key or the content of the displayed character type. Further, since the user remembers the password to be entered, the password may be leaked from the user.

  On the other hand, if the password character string is shortened to facilitate input, the strength of security deteriorates. Even if the same password is set for each external site to be authenticated, if the password is leaked, login by impersonating all external sites is permitted.

  Therefore, the terminal device 1 executes the following processing. First, when setting a password for an external site, the terminal device 1 requests that an input key to which each character of a character string designated as a password is assigned by the user is pressed once, regardless of the character type. For example, if the character to be input is the uppercase alphabet “B”, the terminal device 1 applies the input key assigned the alphabet “B”, that is, the input key assigned the number “2” “1” times. Ask to press.

  Similarly, when the character to be input is the capital letter “A”, the terminal device 1 assigns the input key assigned the alphabet “A”, that is, the input key assigned the number “2” to “1”. Ask to press once. As a result, the terminal device 1 acquires a character string of one character type, for example, a number.

  Next, the terminal device 1 generates a code string for converting the acquired character string into another character string for each external site. Specifically, the terminal device 1 generates a code string that includes the same number of characters as the number of characters included in the character string to convert the acquired character into another character assigned to the key to which the acquired character is assigned. To do.

  In addition, the terminal device 1 stores information indicating an external site and the generated code string in association with each other. And the terminal device 1 produces | generates the password for authentication which converted each character of the acquired character string using the produced | generated code sequence, and transmits the produced | generated password for authentication to an external site. As a result, the terminal device 1 registers a character string that the user does not know as a password in the external site.

  Further, when receiving authentication of the external site, the terminal device 1 presses the input key to which each character of the character string designated as the password by the user is pressed once each time, as in the case of setting the password. Ask. The terminal device 1 restores the password by converting the input character string using a code string associated with information indicating the external site to be authenticated. Thereafter, the terminal device 1 receives authentication from the external site by transmitting the restored password to the external site.

  In this way, the terminal device 1 converts the character string using a code string that is different for each external site, and transmits the converted character string to the external site as a password. As a result, for example, since the terminal device 1 does not store the password character string, the leakage of the password due to analysis or the like is prevented. In addition, for example, the terminal device 1 registers a character string different from the input character string as a password, so that leakage of a password due to peeping or the like, or leakage of a password from a user is prevented.

  Further, for example, the terminal device 1 transmits a different password for each external site even when the user inputs the same character string. As a result, the terminal device 1 can improve the strength of security. Also, the terminal device 1 realizes input without switching the input character type, for example, even for a complicated password. For this reason, the terminal device 1 can facilitate the input of a password.

  The terminal device 1 executes the above-described processing by the CPU 2 executing the password input program 12 stored in the storage device 11. Hereinafter, the functions exhibited by the CPU 2 by executing the password input program 12 will be described with reference to FIG.

  FIG. 3 is a diagram illustrating the functional configuration of the password input program. FIG. 3 shows the functional configuration of the CPU 2 when the password input program 12 is executed. As illustrated in FIG. 3, the CPU 2 that has executed the password input program 12 includes an input detection unit 20, a restoration determination unit 21, an input character acquisition unit 22, a code generation unit 23, a device access unit 24, and a password generation unit 25. Further, as shown in FIG. 3, the SIM card 9 stores an input mode code table 14.

  First, the input mode code table 14 will be described with reference to FIG. FIG. 4 is a diagram illustrating an example of information stored in the input mode code table. As shown in FIG. 4, each entry of the input mode code table 14 stores screen information, window information, and an input mode code in association with each other. Here, the screen information is an HTML tag or a screen title of the external site where the password is registered.

  Here, the screen information is an HTML tag indicating a URL (Uniform Resource Locator) of an external site and a screen title. The window information is information for identifying a password input window of an external site, and is, for example, a control ID given to the password input window.

  The input mode code is a code string used for character string conversion. The example shown in FIG. 4 will be specifically described. The input mode code is a code string having a plurality of codes that are pairs of Greek letters and numbers. Here, the Greek character of each code is type information indicating the character type after conversion. For example, “α” in each code indicates that the character type after conversion is uppercase alphabet, “β” indicates that the character type after conversion is lowercase alphabet, and “γ” indicates that after conversion. Indicates that the character type is numeric.

  Further, the numeral of each symbol is information indicating which character among the characters assigned to the same input key is to be converted, and specifically, conversion information indicating the number of times of pressing. For example, when the terminal device 1 encodes the character “2” with the code “β2”, the terminal device 1 is a lowercase alphabet among the characters assigned to the input key of the character “2”, and the input key is “2”. It is converted into a character that is input when it is pressed “for example”, for example, “b”.

  In the example shown in FIG. 4, the input mode code table 14 stores screen information “https://www.input1.com/, window 1”, window information “ID1”, and input mode code “β3α2α1β3β5γ1” in association with each other. Is done. The input mode code table 14 stores screen information “https://www.input2.com/, window 2”, window information “ID2”, and input mode code “γ1β3β2α3α2” in association with each other. The input mode code table 14 stores screen information “https://www.input3.com/, window 3”, window information “ID3”, and input mode code “β3α1α3β2β1β3” in association with each other.

  Returning to FIG. 3, the input detection unit 20 detects whether or not to input a password in the password input window. For example, the input detection unit 20 acquires a web page from an arbitrary program or the like executed by the CPU 2, and inputs a password when the acquired web page includes a character string input window for inputting a password. Is determined.

  If the input detection unit 20 determines that the password is to be input, the input detection unit 20 acquires screen information such as the title and URL of the web page including the password input window. Further, the input detection unit 20 acquires window information such as a control ID of the password input window. Then, the input detection unit 20 outputs the acquired screen information and window information to the restoration determination unit 21.

  The restoration determination unit 21 determines whether the input of the password is an input for registering the password or an input for receiving authentication from an external site. For example, when the restoration determination unit 21 receives screen information and window information from the input detection unit 20, whether the received screen information and window information are stored in association with the input mode code table 14 is stored in the device access unit 24. Make an inquiry.

  Then, when receiving a response from the device access unit 24 indicating that the set of the received screen information and window information is stored in association with the input mode code table 14, the restoration determination unit 21 restores the password. The input character acquisition unit 22 is instructed to do this. Here, the restoration of the password is a process of converting the input character string into a registered password. On the other hand, when receiving a response from the device access unit 24 that the combination of the received screen information and window information is not stored in association with the input mode code table 14, the restoration determination unit 21 registers the password. The input character acquisition unit 22 is instructed to do this.

  The input character acquisition unit 22 acquires a character string input by the user. For example, the input character acquisition unit 22 identifies a character string including numbers assigned to the input keys pressed by the user among the input keys of the input unit 10. For example, the input character acquisition unit 22 identifies a numerical sequence such as “385412” as the input character sequence.

  When the input character acquisition unit 22 receives an instruction to register a password from the restoration determination unit 21, the input character acquisition unit 22 performs the following processing. First, the input character acquisition unit 22 notifies the code generation unit 23 of the number of characters in the identified character string. The input character acquisition unit 22 acquires a set of screen information and window information from the restoration determination unit 21, outputs the acquired set of screen information and window information to the device access unit 24, and Instruct to register. Further, the input character acquisition unit 22 outputs the identified character string to the password generation unit 25.

  Then, the input character acquisition unit 22 acquires the converted character string, that is, the encoded sequence from the password generation unit 25. Thereafter, the input character acquisition unit 22 inputs the acquired encoded sequence into the password input window. As a result, the terminal device 1 transmits to the external site as a password for registering the converted encoded sequence.

  When the input character acquisition unit 22 receives an instruction to restore the password from the restoration determination unit 21, the input character acquisition unit 22 performs the following processing. First, the input character acquisition unit 22 acquires a set of screen information and window information from the restoration determination unit 21, outputs the acquired set of screen information and window information to the device access unit 24, and Direct output.

  Further, the input character acquisition unit 22 outputs the identified character string to the password generation unit 25. Then, the input character acquisition unit 22 acquires a password from the password generation unit 25. Thereafter, the input character acquisition unit 22 inputs the acquired password into the password input window. As a result, the terminal device 1 transmits the password to be registered to the external site.

  The code generation unit 23 generates a code string at the time of password registration. Specifically, when the code generation unit 23 acquires the number of characters of the input character string from the input character acquisition unit 22, the code generation unit 23 generates a code string including the same number of codes as the acquired number of characters, that is, an input mode code. Then, the code generation unit 23 outputs the generated code string to the device access unit 24 and the password generation unit 25.

  Here, as a method for generating each code included in the input mode code, the code generation unit 23 randomly generates type information and conversion information included in the code. For example, when the number of characters “6” is received, the code generation unit 23 generates an input mode code “β3α2α1β3β5γ1”. The code generation unit 23 may generate one code each time the input key of the input unit 10 is pressed, and output the generated code to the device access unit 24.

  The device access unit 24 executes access to the input mode code table 14 stored in the SIM card 9. Specifically, when the device access unit 24 receives the screen information and the window information from the restoration determination unit 21, the received screen information and the window information are associated with each other via the SIM control unit 8 in the input mode code table. 14 is determined. Then, the device access unit 24 outputs the determination result to the restoration determination unit 21.

  In addition, when the device access unit 24 receives an instruction to register a code string together with a set of screen information and window information from the input character acquisition unit 22, the device access unit 24 executes the following processing. First, the device access unit 24 receives an input mode code from the code generation unit 23. Then, the device access unit 24 outputs the input mode code received from the code generation unit 23 and the set of the screen information and window information received from the input character acquisition unit 22 in association with each other via the SIM control unit 8. To do. As a result, the SIM control unit 8 stores the input mode code, the screen information, and the window information in association with each other in the input mode code table 14 stored in the SIM card 9.

  The device access unit 24 receives a set of screen information and window information from the input character acquisition unit 22, and executes the following process when receiving an instruction to output a code string. First, the device access unit 24 reads, from the input mode code table 14, the input mode code associated with the received set of screen information and window information via the SIM control unit 8. Then, the device access unit 24 outputs the read input mode code to the password generation unit 25.

  The device access unit 24 may store the input mode code table 14 in the IC card 13 instead of the SIM card 9. For example, the device access unit 24 accesses the IC card 13 via the NFC control unit 5 and stores the input mode code in the IC card 13. The device access unit 24 may access the IC card 13 via the NFC control unit 5 and read the input mode code stored in the IC card 13.

  The password generation unit 25 converts the character string into a password using the input mode code. Specifically, the password generation unit 25 receives a character string from the input character acquisition unit 22. The password generation unit 25 receives the input mode code from the code generation unit 23 or the device access unit 24.

  And the password production | generation part 25 performs the following conversion processes using the received input mode code | symbol. For example, the password generation unit 25 identifies an input key to which the nth character in the character string is assigned. Next, the password generation unit 25 acquires type information and conversion information included in the nth code of the input mode code. Then, the password generation unit 25 is configured to input the character type indicated by the acquired type information, and determines the character input when the identified input key is pressed the number of times indicated by the conversion information as the converted character.

  Also, the password generation unit 25 performs the conversion process described above for all characters included in the character string, and generates an encoded string obtained by converting all the characters included in the character string, that is, a password. Then, the password generation unit 25 outputs the generated encoded sequence to the input character acquisition unit 22.

  The password generation unit 25 acquires, for example, a character string including numbers and generates a password using the acquired character string and the input mode code, but the embodiment is not limited to this. That is, the password generation unit 25 can execute the above-described conversion process even if the nth character included in the character string is a character other than a number. For example, the password generation unit 25 is configured to input the character type indicated by the type information included in the nth code, and converts the input key to which the nth character of the character string is assigned into the nth code. The character input when the number of times indicated by the information is pressed is identified. And the password production | generation part 25 makes the identified character the character after conversion.

  Here, FIG. 5 is a diagram illustrating an example of the conversion rule. FIG. 5 shows a table showing conversion rules when the input mode is uppercase alphabet, that is, the type information is “α”, and when the input mode is lowercase alphabet, ie, the type information is “β”. And a table showing conversion rules in the case of. In addition, each table shown in FIG. 5 shows an example of characters that are input according to the number of times the input key is pressed for each number or symbol assigned to the input key.

  For example, when the character before conversion is “2” and the code is “α3”, the password generation unit 25 executes the following conversion process. First, since the type information is “α”, the password generation unit 25 performs the conversion process according to the table when the input mode is alphabet. Moreover, since the character before conversion is “2” and the conversion information is “3”, the password generation unit 25 has “2” as the input key in the table when the input mode is alphabet, and the conversion information. It is determined that the alphabet “F” having “3” is a character after conversion.

  Note that the blank in each table shown in FIG. 5 indicates that the alphabetical sequence described on the left side of each row is repeatedly stored. For example, when the character before conversion is “2” and the code is “α7”, the password generation unit 25 presses the input key assigned the numerical value “2” “7” times, that is, Convert to uppercase alphabet “D”. Moreover, the password production | generation part 25 outputs the character string after conversion, ie, a password, to the input character acquisition part 22, when converting all the characters using an input mode code | symbol.

  Next, a process in which the terminal device 1 executes password registration and a process in which password restoration is performed will be described using a specific example. First, an example of processing executed at the time of password registration will be described with reference to FIG. FIG. 6 is a diagram for explaining an example of processing executed at the time of password registration. In the example illustrated in FIG. 6, the terminal device 1 performs character string conversion according to the table illustrated in FIG. 5.

  For example, as illustrated in FIG. 6D, the terminal device 1 acquires the input character string “385412”. Then, the terminal device 1 generates an input mode code including the same number of codes as the character string. For example, the terminal device 1 generates an input mode code “β3α2α1β3β5γ1” as shown in FIG. Then, the terminal device 1 converts the character string “385412” with the input mode code “β3α2α1β3β5γ1”.

  Specifically, the terminal device 1 extracts the code “β3” corresponding to the first character “3” from the character string. Here, the code “β3” includes type information “β” indicating that the character type is a lowercase alphabet, and conversion information “3” indicating the number of times the input key is pressed. For this reason, when the input mode is the lowercase alphabet, the terminal device 1 determines the character “f” obtained by pressing the input key assigned the character “3” “3” times as the converted character.

  Subsequently, the terminal device 1 extracts the character “8” included in the character string and the code “α2” corresponding to the character “8”. Here, the code “α2” includes type information “α” indicating that the character type is an uppercase alphabet, and conversion information “2” indicating the number of times the input key is pressed. Therefore, when the input mode is the capital letter alphabet, the terminal device 1 determines the character “U” obtained by pressing the input key assigned the character “8” “2” times as the converted character.

  Also, the terminal device 1 converts other characters included in the character string using the type information and the conversion information included in the corresponding input mode code. For example, when the input mode is an uppercase alphabet, the terminal device 1 determines the character “J” that has been pressed “1” times to the input key assigned the character “5” as the converted character. Further, when the input mode is the lowercase alphabet, the terminal device 1 determines the character “i” obtained by pressing the input key to which the character “4” is assigned “3” times as the converted character.

  Further, when the input mode is the lowercase alphabet, the terminal device 1 determines the character “−” obtained by pressing the input key assigned the character “1” “5” times as the converted character. Further, when the input mode is a number, the terminal device 1 determines the character “2” obtained by pressing the input key assigned the character “2” “1” times as the converted character.

  As a result, the terminal device 1 generates the password “fUJi-2” from the character string “385412” using the input mode code “β3α2α1β3β5γ1”. Then, the terminal device 1 registers the encoded string “fUJi-2” in the external site as an input password, as shown in FIG.

  Further, as shown in FIG. 6G, the terminal device 1 stores the generated input mode code in the SIM card 9 in association with the external site. Note that the terminal device 1 may store the generated mode code in the IC card 13 via NFC, as shown in FIG.

  Next, the flow of processing executed by the terminal device 1 when performing external site authentication will be described with reference to FIG. FIG. 7 is a diagram illustrating an example of processing executed when a password is input. In the example illustrated in FIG. 7, an example of the process of restoring the password input when receiving authentication of the external site that performed the password registration in FIG. 6 is described.

  For example, the terminal device 1 requests the user to input a character string, and acquires the character string “385412” as shown in (I) of FIG. Further, the terminal device 1 acquires the input mode code stored in association with the external site to be authenticated from the SIM card 9 as shown in (J) of FIG. As a result, the terminal device 1 converts the character string “385412” with the input mode code “β3α2α1β3β5γ1” shown in FIG. 7K, and restores the password “fUJi-2”. Then, as illustrated in (L) in FIG. 7, the terminal device 1 can transmit the password “fUJi-2” to the external site and receive authentication from the external site.

  Next, the flow of processing executed by the terminal device 1 will be described with reference to FIG. FIG. 8 is a flowchart for explaining the flow of processing executed by the terminal device. First, the terminal device 1 detects a screen having a password input area (step S101). Then, the terminal device 1 acquires the screen information and window information of the detected screen (step S102). And the terminal device 1 determines whether the input mode code matched with the group of the acquired screen information and window information is registered (step S103).

  Further, when it is determined that the input mode code is registered (Yes at Step S103), the terminal device 1 executes the following restoration process. That is, the terminal device 1 acquires the input character string (step S104), and acquires the stored input mode code (step S105). And the terminal device 1 restore | restores an encoding sequence, ie, a password, from a character sequence and an input mode code | symbol (step S106). After that, the terminal device 1 flows into the password input area on the screen (step S107) and transmits it to the external site, thereby completing the restoration process.

  Further, when it is determined that the input mode code is not registered (No at Step S103), the terminal device 1 executes the following registration process. That is, the terminal device 1 acquires the input character string (step S108) and generates an input mode code (step S109). Then, the terminal device 1 generates a password (step S110), and registers a set of screen information, window information, and input mode code (step S111). Thereafter, the terminal device 1 flows into the password input area on the screen (step S107) and transmits it to the external site, thereby completing the registration process.

[Effect of terminal device 1]
As described above, the terminal device 1 uses the input mode code corresponding to the external site among the plurality of input mode codes for converting the input character string into different character strings for authentication. Convert column to password. Then, the terminal device 1 transmits the converted password to the external site.

  For this reason, since the terminal device 1 performs authentication by converting the input character string into a password corresponding to the external site, it is possible to improve the strength of security. In addition, for example, the terminal device 1 performs authentication with a different password for each external site even if there is only one type of character string to be input, so that the strength of security can be improved.

  Moreover, since the terminal device 1 does not store the password but stores only the input mode code, it is possible to prevent leakage of the password. The registered password is a character string that is different from the character string known to the user, and is a character string that is difficult to estimate from the number of times the input key is pressed during input. For this reason, the terminal device 1 can prevent leakage of a password and improve the strength of security. Further, since the input mode code is stored in the storage unit of the own device, even if another terminal device tries to input the password by the same input key operation, the input mode code is stored in the storage unit of the other terminal device. Since it is not remembered, the password is never restored.

  Further, the terminal device 1 stores the external site where the password is registered and the input mode code in association with each other. And the terminal device 1 converts the input character string into a password using the input mode code | cord | chord matched with the external site which receives authentication, and transmits the converted password to an external site. For this reason, since the terminal device 1 performs authentication with a password using a different coded sequence for each external site, the strength of security can be improved.

  In addition, when registering a password in an external site, the terminal device 1 generates an input mode code corresponding to the external site, and converts the input character string into a password using the generated input mode code. Then, the terminal device 1 transmits the password to the external site to register the password, and stores the input mode code used for the conversion in association with the external site. For this reason, since the terminal device 1 sets a different password for each external site, it is possible to improve the strength of security.

  Moreover, the terminal device 1 has a plurality of input keys to which one or more characters are assigned. In addition, the terminal device 1 generates a password by converting each character in the character string to another character using a code that converts the input character into any character assigned to the input key that has received the input. To do. And the terminal device 1 memorize | stores the input mode code | symbol containing each code | symbol used when producing | generating a password from a character string. For this reason, the terminal device 1 can facilitate the input of a password without deteriorating the strength of security.

  For example, the terminal device 1 instructs the user to press once each input key for inputting a character string assumed as a password, and the character string is a numerical sequence including numbers assigned to the pressed input key. Get as. Then, the terminal device 1 uses, as a password, an encoded sequence obtained by converting each number of character strings using each code of the input mode code. As a result, the terminal device 1 can prevent the deterioration of security while facilitating the input of the password by the user.

  Further, the terminal device 1 uses a code including conversion information indicating which character is converted to a character assigned to an input key for inputting the character, and type information indicating the type of the input character. To generate an input mode code. For this reason, since the terminal device 1 can generate passwords including characters having different character types, it is possible to improve the strength of security.

  Although the embodiments of the present invention have been described so far, the embodiments may be implemented in various different forms other than the embodiments described above. Therefore, another embodiment included in the present invention will be described below as a second embodiment.

(1) Conversion of Character String The terminal device 1 described above uses a number assigned to a pressed input key as an input character. However, the embodiment is not limited to this. For example, the terminal device 1 may generate a character string obtained by performing a predetermined operation on a number assigned to the pressed input key, and register a password obtained by converting the generated character string with an input mode code. .

  Hereinafter, the variation of the process which the terminal device 1 performs is demonstrated using FIG. 9, FIG. FIG. 9 is a first diagram illustrating a variation of processing executed by the terminal device. FIG. 10 is a second diagram illustrating a variation of processing executed by the terminal device. In the following description, an example in which the terminal device 1 acquires the input character string “385412” and generates the input mode code “β3α2α1β3β5γ1” will be described, similarly to the examples described in FIGS.

  For example, as illustrated in (M) in FIG. 9, the terminal device 1 acquires the character string “385412”. In such a case, the terminal device 1 counts the total number of characters in the input character string and adds the counted number to each number in the character string, as indicated by (N) in FIG. And the terminal device 1 makes 1 place of each added numerical value a new character string.

  For example, as shown in FIG. 9 (O), the terminal device 1 newly sets a number sequence “941078” in which the 1's place is added when the number of characters “6” is added to each number of the character sequence “385412”. A character string. Then, as shown in FIG. 9P, the terminal device 1 outputs a character string “yH. # P8” obtained by converting the numerical sequence “941078” with the input mode code “β3α2α1β3β5γ1” as a password.

  In another example, as shown in (Q) of FIG. 10, the terminal device 1 calculates the total value of all the numbers in the input character string, and adds the calculated number to each number in the character string. And the terminal device 1 makes 1 place of each added numerical value a new character string. For example, as illustrated in (R) in FIG. 10, the terminal device 1 newly sets a number sequence “618745” arranged in one's place when the total number “3” is added to each number of the character sequence “385412”. A character string. Then, the terminal device 1 outputs, as a password, a character string “o / Mrh5” obtained by converting the numerical sequence “618745” with the input mode code “β3α2α1β3β5γ1” as shown in FIG.

  In addition, when restoring the password, the terminal device 1 acquires a new character string by executing the same process as when the password is registered, and converts the new character string using the input mode code. By doing so, the registered password can be restored.

  Moreover, the terminal device 1 performs the process which differs for every external site with respect to the input character code | symbol 14 in the input mode code | cord | chord table 14, and registers the information which shows the performed content with the input mode code | symbol. And the terminal device 1 may perform the process according to the registered information with respect to the character string at the time of restoration.

  For example, the terminal device 1 counts the total number of characters in the character string, and stores the information “A” together with the input mode code when the counted number is added to each number in the character string. Also, the terminal device 1 calculates the total value of all the numbers in the input character string, and stores the information “B” together with the input mode code when adding the calculated number to each number in the character string. When the information associated with the external site to be authenticated is “A”, the terminal device 1 adds the total number of characters in the character string to each number in the character string for the input character string. Then, the 1's place of each addition result is set as a new character string. Thereafter, the terminal device 1 converts the new character string with the input mode code and restores the password.

  In addition, the process performed with respect to the character string which the terminal device 1 was input is not restricted to the example mentioned above. For example, the terminal device 1 may add an arbitrary value, may convert an input character string according to a predetermined rule, and may convert the converted character string using an input mode code. In one example, the character string conversion described above is executed by the password generation unit 25.

  As described above, the terminal device 1 identifies a numerical value assigned to the input key used for inputting the character, and generates a character string including a numerical value obtained by performing a predetermined operation on the identified numerical value. And the terminal device 1 performs the production | generation of a password, and a decompression | restoration using the produced | generated character string and input mode code | symbol. As a result, since the terminal device 1 generates the password using the character string when the input key different from the pressed input key is pressed, the security strength can be further improved.

(2) Character Type In the above-described example, the terminal device 1 converts a character string including a number assigned to the pressed input key using an input mode code. However, the embodiment is not limited to this. That is, the terminal device 1 can convert a character string including an arbitrary character type. For example, the terminal device 1 can also convert a character string that includes uppercase letters instead of numbers. That is, the terminal device 1 may identify the input key to which the input character is assigned and convert the character input to another character assigned to the identified input key.

  Moreover, the terminal device 1 does not need to convert the input character into another character assigned to the same input key. For example, the terminal device 1 identifies an input key to which the input character is assigned, identifies an input key different from the identified input key according to a predetermined rule, and converts the input key to a character assigned to the identified button. Processing may be executed.

(3) Input Key The terminal device 1 described above has a physical input key. However, the embodiment is not limited to this. For example, the terminal device 1 has a touch panel such as a smartphone or a tablet terminal, and may acquire a character string via a button displayed on the touch panel.

  For example, FIG. 11 is a third diagram illustrating a variation of processing executed by the terminal device. In the example illustrated in FIG. 11, the terminal device 1 a is a smartphone having a touch panel, and accepts input of a character string via a button displayed on the touch panel. Here, in the character string input method using the touch panel, the character to be input in the moving direction of the finger touching the button is determined separately from the form of changing the character input by the number of times the button on the touch panel is touched. Flick input is known.

  For example, as shown in (T) of FIG. 11, alphabetic capital letters “J”, “K”, and “L” are assigned to buttons surrounded by dotted circles. Here, when the user touches the range indicated by (T) in FIG. 11, the terminal device 1 a causes the capital letters “J”, “K”, “L”, A window in which the numeral “5” is arranged according to the moving direction of the finger is displayed.

  Then, the terminal device 1a assumes that the capital letter “J” is input when the finger touched by the user is released, and the capital letter “K” is input when the touched finger is moved upward. Shall. Further, the terminal device 1a assumes that the capital letter “L” of the alphabet is inputted when the finger touched by the user is moved to the left, and the numeral “5” is inputted when the touched finger is moved down. Shall.

  Even when such flick input is adopted, the terminal device 1a identifies the button to which each character of the input character string is assigned, and each character input to any of the characters assigned to the identified button. Can be converted. In addition, the terminal device 1a can perform character string conversion using, for example, a code including type information indicating a character type and conversion information indicating a finger moving direction.

  Here, as examples of conversion information, “0” indicating a character when the touched finger is released as it is, “1” indicating a character when the finger is moved to the right, and a character when the finger is moved up “2” indicating “” can be considered. As examples of conversion information, “3” indicating a character when the finger is moved to the left and “4” indicating a character when the finger is moved down are conceivable. For example, when the input character is “J” and the code is “α3”, the terminal device 1a specifies the finger after the user touches a button to which “J” is assigned among capital letters. The character “L” input when the character is moved to the left is regarded as the converted character.

  Thus, since the terminal device 1a can convert the input character string regardless of the character string input method, it is possible to improve the strength of security while ensuring easy input of the character string. Can do.

(4) Password Input Program 12 The terminal device 1 may execute the password input program 12 using an arithmetic device such as MPU or FPGA instead of the CPU 2. Further, the password input program 12 does not need to be stored in the storage device 11 and may be executed by the CPU 2 by another method. For example, the password input program 12 is stored in a “portable physical medium” such as an optional external memory or an IC card. Then, the terminal device 1 may acquire and execute each program from a portable physical medium. Further, each program stored in another computer or a server device may be acquired and executed via a public line, the Internet, a LAN, a WAN (Wide Area Network), or the like.

(5) About Embodiment In the example described above, the terminal device 1 converts the character string. However, the embodiment is not limited to this. For example, a system other than the terminal device 1 such as a cloud system may convert the character string.

  Hereinafter, an example of an information processing apparatus that converts character strings in place of the terminal device 1 will be described with reference to FIG. FIG. 13 is a schematic diagram illustrating an example of an information processing apparatus according to the second embodiment. In the example illustrated in FIG. 13, the information processing apparatus 30 is connected to a terminal device 32 and an external server 33 via a network 31. In addition, the information processing apparatus 30 includes a storage unit 34, a reception unit 35, a conversion unit 36, and a transmission unit 37.

  The terminal device 32 is a terminal device that receives authentication from the external server 33 by transmitting a password to the external server 33. Here, the terminal device 32 receives, via the network 31, the character string when the input key to which each character of the password is assigned is pressed once, the screen information and the window information when the character string is input. It transmits to the processing apparatus 30.

  The memory | storage part 34 memorize | stores the some code string which converts the input character string into the character string for authentication which is each different. For example, the storage unit 34 stores the input mode code table 14 as in the SIM card 9 shown in FIG.

  The receiving unit 35 receives a character string, screen information, and window information from the terminal device 32 when the input key to which each character of the password is assigned is pressed once. Then, the reception unit 35 outputs the received character string, screen information, and window information to the conversion unit 36.

  The conversion unit 36 converts the input character string into a password using the information stored in the input mode code table 14 stored in the storage unit 34 and the information received by the reception unit 35. For example, the conversion unit 36 acquires a character string, screen information, and window information from the reception unit 35. In such a case, the conversion unit 36 acquires an input mode code associated with the received screen information and window information from the input mode code table 14. Then, the converting unit 36 converts each character of the character string received from the receiving unit 36 according to the acquired input mode code. Thereafter, the conversion unit 36 outputs the converted character string to the transmission unit 37.

  Further, the transmission unit 37 outputs the character string converted by the conversion unit 36 to the external server 33 that is the access destination of the terminal device 32.

  As a result, the information processing apparatus 30 can improve the strength of security. Note that the information processing apparatus 30 may generate the input mode code by executing the same process as the terminal apparatus 1. For example, the information processing device 30 generates an input mode code when the input mode code associated with the set of the screen information and the window information received from the terminal device 32 is not stored in the input mode code table 14. To do. As a detailed example, the same number of codes as the number of characters included in the character string received from the terminal device 32 are randomly generated, and an input mode code including the generated codes is generated.

  Then, the information processing apparatus 30 stores the generated input mode code, the received screen information, and the window information in the input mode code table 14 in association with each other. The information processing apparatus 30 converts the received character string with the generated input mode code, and outputs the converted character string to the external server 33 as a password for registering the converted character string. By executing such processing, the information processing apparatus 30 registers a character string that is different from the character string known to the user as a password, and thus it is difficult to estimate from the number of times the input key is pressed during input. A valid character string as a password. As a result, the information processing apparatus 30 can enhance security.

  Note that the information processing apparatus 30 does not have to be physically one information processing apparatus. For example, the information processing apparatus 30 may be realized as a cloud system. As a detailed example, the functions exhibited by the storage unit 34, the reception unit 35, the conversion unit 36, and the transmission unit 37 included in the information processing device 30 may be exhibited by different information processing devices.

  The following supplementary notes are further disclosed with respect to the embodiments including the above examples.

(Supplementary Note 1) Among the plurality of code strings that convert the input character string into different character strings for authentication, the input character string is converted into an authentication character string by using a code string corresponding to the access destination. A conversion unit for conversion;
And a transmission unit that transmits the authentication character string converted by the conversion unit to the access destination.

(Supplementary Note 2) A storage unit that stores information indicating the access destination and the code string in association with each other,
The conversion unit converts the input character string into a character string for authentication using a code string stored in the storage unit in association with information indicating an access destination. Terminal equipment.

(Supplementary Note 3) When registering the authentication character string in the access destination, it has a generation unit that generates a code string corresponding to the access destination,
The conversion unit converts the character string input when registering the authentication character string to the access destination using the code string generated by the generation unit into an authentication character string,
The transmission unit transmits the authentication character string converted by the conversion unit to the access destination,
The terminal device according to Supplementary Note 2, wherein the storage unit stores information indicating the access destination and a code string generated by the generation unit in association with each other.

(Supplementary Note 4) One or more characters are assigned, and there are a plurality of input units for receiving input of the assigned characters.
The conversion unit uses the code string including a code for converting the character into any of the characters assigned to the input unit that has received the input of the character, and converts the input character string to an authentication character. The terminal device according to any one of appendices 1 to 3, wherein the terminal device is converted into a column.

(Additional remark 5) The said conversion part is the conversion information which shows to which character it converts into the character allocated to the input part which received the input of the said character, and the classification information which shows the classification of the character after conversion The terminal device according to appendix 4, wherein each character of the input character string is converted using a code including the character string.

(Appendix 6) Different numbers are assigned to the plurality of input units,
The conversion unit identifies a number assigned to the input unit that has received the input of the character sequence, calculates a number sequence obtained by performing a predetermined operation on the number sequence including the identified number, and uses the code sequence The terminal device according to appendix 4 or 5, wherein the calculated number sequence is converted into the authentication character sequence.

(Supplementary Note 7) In an information processing apparatus capable of communicating with an access destination and a terminal device that receives authentication of the access destination,
A receiving unit for receiving a character string input to the terminal device;
The input character string is authenticated using a code string corresponding to an access destination accessed by the terminal device among a plurality of code strings that convert the character string received by the receiving unit into different character strings for authentication. A conversion unit for converting into a character string for
An information processing apparatus comprising: a transmission unit configured to transmit an authentication character string converted by the conversion unit to an access destination accessed by the terminal device.

(Appendix 8) To a terminal device that can communicate with the access destination,
Among the plurality of code strings that convert the input character string into different authentication character strings, the input character string is converted into an authentication character string using a code string corresponding to the access destination,
An input program for executing a process of transmitting the converted character string for authentication to the access destination.

(Supplementary note 9) A code string stored in association with information indicating the access destination is acquired from a storage device that stores information indicating a plurality of access destinations in association with the code string, and the acquired code string The input program according to appendix 8, wherein a process of converting the input character string into an authentication character string is executed using.

(Supplementary Note 10) When registering the authentication character string in the access destination, generate a code string corresponding to the access destination,
The character string input when registering the authentication character string is converted into an authentication character string using the generated code string,
Sending the character string for authentication to the access destination;
The input program according to appendix 9, wherein a process of associating information indicating the access destination with the generated code string is stored in the storage device.

(Supplementary Note 11) Any one of the plurality of input units to which one or more characters are assigned is assigned to the input unit to which the character of the input character sequence is assigned to each character of the input character sequence. Any one of appendices 8 to 10, wherein a process of converting the input character string into a character string for authentication is executed using a code string including a code to be converted into a character of Input program.

(Additional remark 12) Using the code | symbol containing the conversion information which shows which character it converts into the character allocated to the input part which received the input of the said character, and the classification information which shows the classification of the character after conversion The input program according to appendix 11, wherein a process of converting each character of the input character string is executed.

(Supplementary note 13) Among the input units assigned with different numbers, the numbers assigned to the input units that received input of characters included in the character string are identified,
Calculating a number sequence obtained by performing a predetermined operation on the number sequence including the identified number;
13. The input program according to appendix 11 or 12, wherein a process of converting the calculated number sequence into the authentication character sequence is executed using the code sequence.

(Appendix 14) A terminal device capable of communicating with an access destination is
Among the plurality of code strings that convert the input character string into different authentication character strings, the input character string is converted into an authentication character string using a code string corresponding to the access destination,
An input method characterized by executing a process of transmitting the converted character string for authentication to the access destination.

(Supplementary Note 15) A code string stored in association with information indicating the access destination is acquired from a storage device that stores information indicating a plurality of access destinations in association with the code string, and the acquired code string 15. The input method according to appendix 14, wherein the process of converting the input character string into an authentication character string is performed using

(Supplementary Note 16) When registering the authentication character string in the access destination, a code string corresponding to the access destination is generated,
The character string input when registering the authentication character string is converted into an authentication character string using the generated code string,
Sending the character string for authentication to the access destination;
16. The input method according to appendix 15, wherein the information indicating the access destination and the generated code string are stored in the storage device in association with each other.

(Supplementary Note 17) Any one of the plurality of input units to which one or more characters are assigned is assigned to the input unit to which the character of the input character sequence is assigned to each character of the input character sequence. The input method according to any one of appendices 14 to 16, wherein the input character string is converted into an authentication character string using a code string including a code to be converted into a character of .

(Additional remark 18) Using the code | symbol containing the conversion information which shows which character it converts into the character allocated to the input part which received the input of the said character, and the classification information which shows the classification of the character after conversion The input method according to appendix 17, wherein each character of the input character string is converted.

(Supplementary note 19) Among the input units to which different numbers are assigned, the numbers assigned to the input units that have received the input of characters included in the character string are identified,
Calculating a number sequence obtained by performing a predetermined operation on the number sequence including the identified number;
The input method according to appendix 17 or 18, wherein the calculated number sequence is converted into the authentication character sequence using the code sequence.

1 Terminal device 2 CPU
DESCRIPTION OF SYMBOLS 3 Radio control part 4, 6 Antenna 5 NFC control part 7 Display part 8 SIM control part 9 SIM card 10 Input part 11 Storage device 12 Password input program 13 IC card 14 Input mode code table 20 Input detection part 21 Restoration determination part 22 Input Character acquisition unit 23 Code generation unit 24 Device access unit 25 Password generation unit

Claims (9)

For the input character string, a code for individually specifying a conversion method for each character type of each character included in the character string is generated according to the number of characters included in the character string, and according to each generated code , A conversion unit that converts the input character string into a character string for authentication;
A transmission unit that transmits the authentication character string converted by the conversion unit to an access destination;
A terminal device comprising: A storage unit that stores information indicating the access destination and the code in association with each other;
The conversion unit converts the input character string into an authentication character string using the code stored in the storage unit in association with information indicating an access destination. The terminal device described. The converting unit, to register a character string for the authentication to the access destination, generates an the code corresponding to the access destination by using the code raw form has, for the authentication to the access destination The character string input when registering the character string is converted into a character string for authentication,
The transmission unit transmits the authentication character string converted by the conversion unit to the access destination,
The terminal device according to claim 2, wherein the storage unit stores information indicating the access destination and the code generated by the conversion unit in association with each other. One or more characters are assigned, and there are a plurality of input units for receiving input of assigned characters,
The conversion unit uses the code including conversion information for converting the character into any character assigned to the input unit that has received the input of the character, and converts the input character string for authentication. The terminal device according to claim 1, wherein the terminal device is converted into a character string. The converting unit, among the characters assigned to the input unit which accepts input of a character, a conversion information indicating whether to convert any character, the code including the type information indicating the type of the converted character The terminal device according to claim 4, wherein each character of the input character string is converted. Each of the plurality of input units is assigned a different number,
The converting unit is configured to identify the numbers assigned to the input unit which accepts input of a character string, calculates a sequence of performing a predetermined operation with respect to sequences containing numbers that the identified, using said sign- The terminal device according to claim 4, wherein the calculated number sequence is converted into the character string for authentication. In an information processing apparatus capable of communicating with an access destination and a terminal device that receives authentication of the access destination,
A receiving unit for receiving a character string input to the terminal device;
For the character string received by the receiving unit, a code for individually specifying a conversion method of the character type of each character included in the character string is generated according to the number of characters included in the character string, and according to each generated code A conversion unit that converts the input character string into a character string for authentication;
A transmission unit for transmitting the character string for authentication converted by the conversion unit to an access destination accessed by the terminal device;
An information processing apparatus comprising: To a terminal device that can communicate with the access destination,
For the input character string, a code for individually specifying a conversion method for each character type of each character included in the character string is generated according to the number of characters included in the character string, and according to each generated code , Convert the input character string into a character string for authentication,
An input program for executing a process of transmitting the converted character string for authentication to the access destination. A terminal device that can communicate with the access destination
For the input character string, a code for individually specifying a conversion method for each character type of each character included in the character string is generated according to the number of characters included in the character string, and according to each generated code , Convert the input character string into a character string for authentication,
An input method comprising: performing processing for transmitting the converted character string for authentication to the access destination.

Images