JPH07103727B2 - Gate management method - Google Patents

Description

Description: TECHNICAL FIELD The present invention relates to a gate management method for managing a gate for entering and leaving a room by using a portable electronic device called a so-called IC card.

[Technical Background of the Invention and Problems Thereof] Recently, as a memory card for storing data, an IC having a nonvolatile data memory and a control element such as a CPU
An IC card with a built-in (integrated circuit) chip has been developed and put into practical use. This kind of IC card is a card reader
It is characterized by selectively receiving data from the data memory or writing data to the data memory by receiving a plurality of types of instructions from the writer.

A gate management system has been proposed as one of the application fields of such IC cards. That is, a personal identification number stored in advance in the IC card as personal identification information,
It is said that the pass through of the gate is permitted by checking the personal identification number input to the card processing device installed at the gate. As a result, the person who can pass through the gate is limited to those who have the IC card in which the above-mentioned personal identification number is stored.

However, with this method, there is a risk that the IC card will be used illegally and pass through the gate. For example, if a person who is not the original IC card holder picks up the IC card and knows the PIN of the IC card holder, he or she will pass through all the gates where the IC card holder can pass.

[Object of the Invention] The present invention has been made in view of the above circumstances, and an object of the present invention is to reliably perform gate management by using relatively simple personal identification information such as a personal identification number. It is to provide a gate management method capable of preventing an unauthorized person from passing through the gate.

[Summary of the Invention] In order to achieve the above object, the present invention manages an entrance / exit gate using at least two different portable electronic devices each storing identification information for personal authentication. The identification information for personal authentication is collated by each of the two portable electronic devices, and the entry / exit is determined based on the combination of the collation results of both.

[Embodiment of the Invention] An embodiment of the present invention will be described below with reference to the drawings.

FIG. 1 shows a configuration example of a gate management device using an IC card to which the gate management method according to the present invention is applied. That is, this device enables the IC card 1A or 1B to be connected to the gate control device 3 via the card reader / writer 2, and the gate control device 3 includes a gate switch 4, a keyboard 5, a CRT display device 6 and a floppy disk. It is configured by connecting a disk device 7.

The IC cards 1A and 1B are held by the user and, for example, refer to a personal identification number known only to the user when passing through a gate or store necessary data. The functional blocks are shown in FIG. As shown in the figure, it is composed of a read / write section 11, a section that executes basic functions such as a password setting / password collating section 12, and a supervisor 13 that manages these basic functions. The read / write unit 11 is a card reader
This is a function of reading data from or writing data to the writer 2. The password setting / password collating unit 12 has a function of storing and reading out the password set by the user, verifying the password after setting the password, and permitting subsequent processing. The supervisor 13 decodes the function code input from the card reader / writer 2 or the function code added with data,
This is a function for selecting and executing a necessary function from the basic functions.

In order to exert these various functions, the IC cards 1A and 1B are, for example, as shown in FIG.
4, non-volatile data memory 15 that can erase the stored contents,
It is composed of a program memory 16 and a contact portion 17 for making electrical contact with the card reader / writer 2, and a portion within these broken lines (control element 14,
The data memory 15 and the program memory 16) are integrated into an IC chip. The program memory 16 is composed of a mask ROM, and stores a control program of the control element 14 having a subroutine for realizing each of the basic functions described above. The data memory 15 is used for storing various data, for example, EE
It consists of PROM. The data memory 15 is divided into a plurality of areas as shown in FIGS. 4 (a) and 4 (b). The area 21 stores the personal identification number of the IC card owner, and the personal identification number of the IC card owned by another person. Area 22, which stores
It is composed of an area 23 for storing arbitrary data.
4 (a) shows the data memory 15 of the IC card 1A,
FIG. 4 (b) shows the data memory 15 of the IC card 1B.

The card reader / writer 2 exchanges function codes and data between the IC card 1A (1B) and the gate control device 3, and based on a macro command from the gate control device 3, the card reader / writer 2 ) To 1 command 1 response operation. This card reader / writer 2
Specifically, as shown in FIG. 5, a transport mechanism 31 for transporting the IC card 1A (1B) inserted in a card insertion slot (not shown) to a predetermined position, the IC card 1A set at a predetermined position The contact portion 32 electrically contacting the contact portion 17 of (1B), the control circuit 33 including a CPU that controls the entire control, and the transfer of function codes and data between the control circuit 33 and the gate control device 3. An input / output interface circuit 34 for performing the operation, a data memory 35 for storing data, and the like.

As shown in FIG. 1, the gate control device 3 is composed of a control circuit 8 including a CPU and a memory 9, and the control circuit 8 responds to a user's request input via the keyboard 5 to perform a memory 9 operation. Alternatively, the necessary data processing program stored in the floppy disk device 7 is read and the selection and combination of the function codes to be given to the IC card 1A (1B) are determined. The user receives a message from the gate control device 3 via the CRT display device 6. The control circuit 8 also instructs the gate switch 4 to open and close.

Next, the operation in such a configuration will be described. The gate controller 3 operates according to the flowchart shown in FIG. That is, in the steady state, it is in a state of waiting for command data from the user. When the command data is input by the user, the gate control device 3 analyzes the command data and determines the required function selection and sequence. When the sequence is determined, the gate control device 3 outputs necessary command data (function code) to the card reader / writer 2. Then, the gate control device 3 is in a waiting state until it receives response data indicating the end of processing in response to the above command from the card reader / writer 2. When you receive the response data,
The gate control device 3 judges whether or not it is the final response, and if it is not the final response, sends the command data to the card reader / writer 2 again according to the sequence, and if it is the final response, the user Return to the command data waiting state from.

The card reader / writer 2 operates according to the flowchart shown in FIG. That is, in the steady state, it is in a state of waiting for command data from the gate control device 3. When command data is input from the gate control device 3,
Whether or not the IC card 1A (1B) is being executed is determined. If the IC card 1A (1B) is being executed, response data indicating a multiple command data error is output to the gate control device 3, and the gate control device 3 again outputs the response data. Return to the instruction data wait state. IC card 1A (1
When B) is not being executed, the instruction data is output to the IC card 1A (1B) and the IC card 1A (1B) waits for the response data. If there is response data from the IC card 1A (1B), if the command is a macro command, the IC card 1A will be restarted.
The command data is output to (1B), otherwise the response data is output to the gate control device 3, and the process returns to the command data waiting state from the gate control device 3.

The command data output from the card reader / writer 2 to the IC card 1A (1B) has a format as shown in FIG. 8, for example, and has only the function code as shown in FIG. There is a form in which data is added to the function code as shown in FIG.

The IC card 1A (1B) operates according to the flowchart shown in FIG. That is, in the steady state, it is in a state of waiting for command data from the card reader / writer 2. When command data is input from the card reader / writer 2, the basic function is executed according to the command data,
The response data is output to the card reader / writer 2 to return to the state of waiting for the instruction data from the card reader / writer 2. In this case, the function code included in the input instruction data is added to the response data, Take protective measures in case the sequence with the reader / writer 2 is disturbed.

Next, regarding a specific operation example of the entire gate management device,
It will be described with reference to the drawings. It is assumed that the gate control device 3 has already decided the sequence for the gate management device. The information stored in the data memory 15 of the IC cards 1A and 1B is as shown in FIG. Further, the user A is the holder of the IC card 1A, and the user B is the IC card 1B.
It is assumed that the owner of the.

User A first inserts his / her IC card 1A into the card reader / writer 2. Card reader / writer 2 is IC card 1A
Is output to the gate control device 3. Based on this, the gate control device 3 prompts the user A to input the personal identification number. User A has a personal identification number (X)
If you enter, the gate control device 3 will use this secret code (X).
At the same time, a password verification command is output to the card reader / writer 2. The card reader / writer 2 outputs the personal identification number (X) and the personal identification collation command to the IC card 1A. IC card 1A
Executes the password setting / password collating function to compare and collate the personal identification number and the personal identification number (X) input to the cardholder stored in the data memory 15. If the verification result is affirmative, the IC card 1A outputs the response data to the card reader / writer 2. When the card reader / writer 2 receives the response data, it temporarily holds the input personal identification number (X) in the data memory 35, and at the same time, the gate controller 3
The response data that the collation result is positive is output to. Based on this, the gate control device 3 outputs an IC card ejection command to the card reader / writer 2. Upon receiving the IC card eject command, the card reader / writer 2 will receive the IC card.
When 1A is discharged, and this is confirmed, the response data of discharge completion is output to the gate control device 3. Based on this, the gate control device 3 newly outputs an IC card insertion preparation command to the card reader / writer 2.

Here, when the user B inserts his / her IC card 1B, the card reader / writer 2 outputs to the gate control device 3 a signal notifying that the IC card 1B has been inserted. Based on this, the gate control device 3 inputs the personal identification number by the user B.
Prompt to. When the user B inputs the personal identification number (Y), the gate control device 3 outputs the personal identification number (Y) and a personal identification collation command to the card reader / writer 2. However, the password collation command in this case is given by a macro command. Now,
The card reader / writer 2 outputs the personal identification number (Y) and the personal identification collation command to the IC card 1B. The IC card 1B executes a personal identification setting / personal identification collation function, and compares and collates the personal identification number of the card owner stored in the data memory 15 with the personal identification number (Y) input. If the verification result is affirmative, the IC card 1B outputs the response data to the card reader / writer 2. When the card reader / writer 2 receives this response data, it again outputs the personal identification number (X) temporarily stored in the data memory 35 and the personal identification collation command to the IC card 1B. Similarly, the IC card 1B executes the password setting / password collating function to compare and collate the password number of another IC card stored in the data memory 15 with the inputted password number (X). If the verification result is affirmative, the IC card 1B outputs the response data to the card reader / writer 2. Upon receiving the response data, the card reader / writer 2 temporarily holds the input personal identification number (Y) in the data memory 35 and outputs response data to the gate controller 3 indicating that the collation result is affirmative. The gate control device 3 is
Based on this, the IC card ejection command is output to the card reader / writer 2. Upon receipt of the IC card ejection command, the card reader / writer 2 ejects the IC card 1B, and upon confirmation of this, outputs ejection completion response data to the gate controller 3. Based on this, the gate control device 3 newly outputs an IC card insertion preparation command to the card reader / writer 2.

Here, when the user A inserts the IC card 1A again, the card reader / writer 2 outputs to the gate control device 3 a signal notifying that the IC card 1A has been inserted. Based on this, the gate control device 3 outputs a personal identification verification command to the card reader / writer 2. However, the personal identification verification command in this case is given by a macro command, and the personal identification number is not added. Now, the card reader / writer 2 outputs the personal identification number (X) and the personal identification collation command, which are temporarily stored in the data memory 35, to the IC card 1A. The IC card 1A executes a personal identification setting / personal identification collation function, and compares and collates the personal identification number of the card holder stored in the data memory 15 with the personal identification number (X) input. If the verification result is affirmative, the IC card 1A outputs the response data to the card reader / writer 2. When the card reader / writer 2 receives this response data, it again outputs the secret code number (Y) of another IC card temporarily stored in the data memory 35 and the secret code collating command to the IC card 1A. Similarly, the IC card 1A executes the password setting / password collating function, and compares and collates the password number of another IC card stored in the data memory 15 with the inputted password number (Y). If the verification result is affirmative, the IC card 1A outputs the response data to the card reader / writer 2. When the card reader / writer 2 receives this response data, it erases all the personal identification numbers temporarily stored in the data memory 35, and outputs to the gate control device 3 response data that the verification result is affirmative. The gate control device 3 is
Based on this, the IC card ejection command is output to the card reader / writer 2. Upon receipt of the IC card ejection command, the card reader / writer 2 ejects the IC card 1A, and when confirming this, outputs the ejection completion response data to the gate controller 3. The gate control device 3 is based on this, the gate switch 4
Send a signal to open the gate to. Then, it is confirmed that the gate is closed, and this sequence ends.

In this way, when passing through the gate, only one user cannot pass through, and all the personnel that compose it are able to pass through by collating the personal identification number based on the combination of users registered in advance. , The gate management can be surely performed by using the relatively simple identification information such as the personal identification number, and the gate opening / closing condition becomes solid under the entry management that attaches particular importance to security. In addition, since the user's personal identification number that becomes a pair when passing through the gate is stored in the data memory built in the IC card, and the identification number is collated inside the IC card, the gate control device combines the pair. Do not recognize. Therefore, the dependency of the function on the gate control device and the card reader / writer is reduced.

In the above embodiment, an example has been described in which two IC cards are sequentially received and collation is performed, but two IC cards may be simultaneously received and collation is performed. Also,
I explained the example using two IC cards,
It can also be applied when using two or more (for example, three or four) IC cards.

Further, in the above-described embodiment, the case where the data memory is the EEPROM has been described, but the present invention is not limited to this, and the same can be applied to the case where the data memory is, for example, an EPROM or RAM.

Further, in the above-mentioned embodiment, the IC card is illustrated as the portable electronic device, but the present invention is not limited to the card-shaped one, and may be a block-shaped or pencil-shaped one, for example. Further, the hardware configuration of the portable electronic device can be variously modified without departing from the spirit of the invention.

[Effects of the Invention] As described in detail above, according to the present invention, it is possible to reliably perform gate management by using relatively simple personal identification information such as a personal identification number, and prevent unauthorized persons from passing through the gate. It is possible to provide a gate management method capable of performing the above.

[Brief description of drawings]

FIG. 1 is a diagram for explaining one embodiment of the present invention. FIG. 1 is a block diagram showing a configuration of an entire gate management device using an IC card, and FIG. 2 is a diagram showing functional blocks of the IC card.
FIG. 3 is a block diagram showing the configuration of an IC chip incorporated in the IC card, FIG. 4 is a diagram showing the configuration of a data memory incorporated in the IC card, and FIG. 5 is a block diagram showing the configuration of a card reader / writer, FIG. 6 is a flow chart for explaining the operation of the gate control device, FIG. 7 is a flow chart for explaining the operation of the card reader / writer, FIG. 8 is a view showing a format example of command data, and FIG. 9 is an operation of the IC card. FIG. 10 is a flow chart for explaining the above, and FIG. 10 is a view for explaining a concrete operation example of the entire gate management device. 1 ... IC card (portable electronic device), 2 ... Card reader / writer, 3 ... Gate control device, 4 ... Gate switch, 5 ... Keyboard, 14 ... Control element (CPU), 15
…… Data memory (EEPROM), 16 …… Program memory, 17 …… Contact section.

Claims (1)

[Claims] 1. Input means for inputting identification information, and receiving and discharging of a portable electronic device, and transmitting the identification information input by the input means to the portable electronic device,
And a reader / writer that causes the portable electronic device to collate the identification information for personal authentication stored in the memory of the portable electronic device with the identification information input by the input means.
In a gate management method for managing a gate that restricts entry and exit of a user based on a collation result in a portable electronic device, a first portable device is provided for the first portable electronic device accepted by the reader / writer. The identification information input by the owner of the electronic device is input by the input means, and the identification information for personal authentication stored in the memory of the first portable electronic device is collated with the identification information input by the owner. Further, the identification information input by the input means by the owner of the first portable electronic device is held, and if the result of the collation in the first portable electronic device is the same, the reader is Ejecting the first portable electronic device from the writer, and ejecting the first portable electronic device to the second portable electronic device received by the reader / writer. The identification information input by the input means by the owner of the second portable electronic device is input to the personal identification identification information stored in the memory of the second portable electronic device and the owner. The second portable electronic device is collated, and if the result of the collation in the second portable electronic device is a match, the second portable electronic device is ejected from the reader / writer, and the second portable electronic device is For the first portable electronic device received again by the reader / writer after being discharged,
The owner of the first portable electronic device inputs the identification information input and held by the input means,
The identification information for personal authentication stored in the memory of the portable electronic device is compared, the identification information for personal authentication in the first portable electronic device matches, and the second portable electronic device Matching of the identification information for personal authentication in the device matches,
The gate management method, wherein the gate is controlled so as to permit the user to enter and exit only when the re-matching of the personal authentication identification information in the first portable electronic device is in agreement.