JPH02213972A - Illegal use preventing method for computer - Google Patents

Abstract

PURPOSE:To assure propriety for identification and confirmation of a user by comparing two types of identification numbers for key input contents of the user and the memory contents of an ID card with each corresponding record stored in a user file of a center computer. CONSTITUTION:When a user puts an ID card 10 into a terminal equipment 11, a center computer 51 reads an identification number 1 stored in the magnetic stripes of the card 10 via the equipment 11 and with the function of a check module 21 for the number 1. The number 1 is compared with another identification number 1 stored in the corresponding record of a user file 41. When the coincidence is obtained between both numbers 1, the equipment 11 is urged to input an identification number 2 with the function of a check module 31 for the number 2. Then the user inputs the number 2 via the equipment 11, and the module 31 compares the number 2 with another identification number 2 stored in the corresponding record of the file 41. When the coincidence is obtained between both numbers 2, the identification and confirmation are through with the user. Thus the propriety is assured for identification and confirmation of a user.

Description

[Detailed Description of the Invention] [Industrial Application Field] The present invention provides a computer access control method,
In particular, the present invention relates to a method for preventing unauthorized use of a computer by identifying and confirming a user to prevent a third party from improperly accessing and changing or destroying data belonging to another person.

[Conventional technology]

Conventional methods for preventing unauthorized use of computers include inserting an ID card with a magnetic stripe into a terminal device and keying in the user ID, PIN number, etc., and the information is transmitted to the central computer. The computer compares the contents transmitted from the terminal device with the contents of the corresponding record stored in the user file, and if they match, the user is identified and confirmed and the computer operates normally. In the system, in order to determine whether or not the ID card inserted by the user is the same as the ID card information stored in the user file of the center computer, the PIN numbers are compared;
In addition, the same number was kept in the magnetic stripe of the IC card and in the file of the center computer, and the contents of the magnetic stripe were copied by comparing the numbers and rewriting both numbers if they matched. Methods have been devised to prevent the use of counterfeit ID cards.

[Problem to be solved by the invention]

Conventional methods for preventing unauthorized use of computers are configured as described above, so if an ID card is copied or forged, the information on the magnetic stripe will be lost before it is used by an authorized user. If the content has been read, it is impossible to identify whether the user is truly the correct user or not, and unauthorized access to third parties and the accompanying alteration or destruction of other people's data are possible. As a result, it was not possible to obtain a method for safely preventing unauthorized use of computers.

The present invention has been made in view of these points, and its purpose is to provide a method for preventing unauthorized use of a computer that can guarantee the validity of user identification and confirmation.

[Means to solve the problem]

The method for preventing unauthorized use of a computer according to the present invention is such that when the computer is operated, the first password written on the magnetic stripe attached to the ID card is transferred to the first password stored in the corresponding user file lζ of the center computer. and means to compare the second PIN number keyed in by the user with the second PIN number stored in the corresponding user file of the center computer, The computer is made to operate normally only when the comparison results of the numbers match.

[Effect]

The computer unauthorized use prevention method according to the present invention is based on I
There are two types: the memory contents on the D card and the user's key input contents.
The user is identified and confirmed by comparing the type of PIN number with each corresponding record stored in the user file on the center computer.

〔Example〕

Hereinafter, one embodiment of the present invention will be described with reference to the drawings.

FIG. 1 is a block diagram showing an embodiment of the computer unauthorized use prevention method according to the present invention, and FIG. 2 is a flowchart showing the process of user identification and confirmation in the structure of FIG. 1.

In FIG. 1, 1o is an ID card that stores the PIN number 1, 11 is a terminal device for inputting the PIN code @2 and displaying a message to the user, 21 is a check module for the PIN number l, and 31 is the PIN code. A check module numbered 2, 41 a user file for storing PIN number 1 and PIN number 2, and 51 a center computer.

When the user starts up the computer, the user must use the ID card 1.
0 into the terminal device 11 and prepares to transmit the information to the center computer 51. The center computer 51 reads the PIN number 1 stored in the magnetic stripe attached to the ID card 10 via the terminal device 11 through the action of the PIN 1 check module 21, and reads the PIN number 1 stored in the magnetic stripe affixed to the ID card 10 via the terminal device 11, and reads the PIN number 1 stored in the user file 41. The password is compared with the password 1 stored in the record, and if they match, the password 1 check module prompts the terminal device 11 to input the password 2.

The user enters the PIN 2 via the terminal device 11, and the PIN 2 check module stores it in the user file 4.
The password number 1 is compared with the password 2 stored in the corresponding record above, and if they match, the identification and confirmation of the user is completed.

FIG. 2 is a flowchart showing the process of user identification and confirmation in the configuration of FIG. 1.

In FIG. 2, step 1 transfers control to step 2 when the ID card is inserted.

In step 2, the PIN number 1 stored on the magnetic stripe affixed to the ID card is referenced to be compared with the PIN number 1@1 stored in the corresponding record of the user file, and in step 3, the comparison is made. If the results match, control moves to step 4. If the comparison results do not match in step 3, an error message is displayed in step 7, and the process returns to step 1. In step 4, the user key-inputs the password number 2, and control is then transferred to step 5.

In step 5, the user enters the PIN 2 and the PIN 2 stored in the corresponding record in the user file.
is referred to for comparison, and control is transferred to step 6. If the comparison results match in step 6, it is assumed that the user has been identified and confirmed. If the comparison results do not match in step 6, an error message is displayed in step 7, and the process returns to step 1.

〔Effect of the invention〕

As described above, according to the present invention, the I
means for comparing the first PIN number written on the magnetic stripe affixed to the D card with the first PIN number stored in the corresponding user file of the center computer; has a means for comparing the PIN number with a second PIN number stored in the corresponding user file of the central computer, and operates the computer normally only when the results of the comparison of the two types of PIN numbers match. Therefore, it is possible to obtain a method for preventing unauthorized use of a computer that can guarantee the validity of user identification and confirmation. In addition, even if an ID card is copied or forged and the recorded contents of the magnetic stripe section are read, a third party other than the authorized user may gain unauthorized access and change the other person's data. A method for preventing unauthorized use of a computer that is safe and does not allow destruction can be obtained.

[Brief explanation of the drawing]

FIG. 1 is a block diagram showing an embodiment of the computer unauthorized use prevention method according to the present invention, and FIG. 2 is a flowchart showing the process of user identification and confirmation in the structure of FIG. 1. 10... ID card, 11... terminal device, 21...
・Password l check module, 31...Password 2
Check module, 41...User file, 51
...Indicates the center computer.

Claims (1)

[Claims] A means for comparing a first PIN number written on a magnetic stripe affixed to an ID card during computer operation with a first PIN number stored in the corresponding user file of the central computer; means for comparing the second PIN number with a second PIN number stored in the corresponding user file of the central computer, and only when the results of the comparison of the two types of PIN numbers match, the computer is activated. A method for preventing unauthorized use of a computer, characterized by allowing the computer to operate normally.