WO2025120738A1 - Authentication device - Google Patents

Abstract

A terminal 1 (authentication device) comprises: an eye detection unit 11 that detects an eye E1 of a user; an eye gaze detection unit 12 that detects an eye gaze E of the user on the basis of the detection result of the eye detection unit 11; a state detection unit 13 that detects a state of the eye E1 of the user on the basis of the detection result of the eye detection unit 11; a display unit 14 that displays an authentication pattern M including a mark M1 for guiding the eye gaze E for authentication; and an authentication unit 15 that performs authentication on the basis of the state of the eye E1 at a time when the mark M1 is ahead in the direction of the eye gaze E. Thus, the safety of authentication can be improved.

Description

Authentication Device

This disclosure relates to an authentication device.

The information processing device described in Patent Document 1 is known as a technology for authenticating users. This device acquires the user's electrooculography, and unlocks the information processing device if it is determined that the acquired electrooculography satisfies a predetermined condition. This device identifies the numbers that the user is looking at on the passcode entry screen based on a change in gaze direction caused by the detected electrooculography. If the sequence of numbers that the user is looking at matches a preset authentication passcode, this device unlocks the device.

JP 2015-203957 A

The device described in Patent Document 1 unlocks the device based on the sequence of numbers that the user sees on the passcode input screen. However, if a preset authentication passcode becomes known to someone other than the user, authentication may be performed by someone other than the user. Therefore, there is a demand to improve the security of authentication.

In order to solve the above problems, the present disclosure aims to provide an authentication device that can improve the security of authentication.

The information processing device according to the present disclosure includes an eye detection unit that detects the user's eyes, a gaze detection unit that detects the user's gaze based on the detection result of the eye detection unit, a state detection unit that detects the state of the user's eyes based on the detection result of the eye detection unit, a display unit that displays an authentication pattern including a mark for guiding the gaze for authentication, and an authentication unit that performs authentication based on the state of the eyes when the mark is in the line of sight.

This disclosure makes it possible to improve the security of authentication.

FIG. 1 is a diagram for explaining a problem to be solved by the present disclosure. 1A is a diagram showing an example of an input pattern and an authentication pattern, and FIG. 1B is a diagram showing another example of an input pattern and an authentication pattern. FIG. 2 is a block diagram illustrating a terminal according to an embodiment. 10 is a flowchart illustrating an operation of a terminal according to an embodiment. 5 is a flowchart showing a process for setting authentication information shown in FIG. 4; 5 is a flowchart showing a process for performing authentication shown in FIG. 4; FIG. 2 is a diagram illustrating a hardware configuration of a terminal according to an embodiment.

The embodiments of the present disclosure will be described with reference to the attached drawings. Where possible, identical parts will be designated by the same reference numerals, and duplicate explanations will be omitted.

FIG. 1 is a diagram for explaining the problem with terminal 1 (authentication device) according to this embodiment. In this embodiment, terminal 1 is a mobile terminal such as a smartphone or a tablet terminal. A mobile terminal is a terminal that can be carried by a user. Terminal 1 may also be a non-portable terminal such as a desktop computer, for example.

Terminal 1 performs authentication. "Performing authentication" means determining whether or not the user operating terminal 1 is a pre-set user (hereinafter, may be referred to as "authenticated user"). If it is determined that the user operating terminal 1 is an authenticated user, terminal 1 unlocks its own terminal 1. If it is determined that the user operating terminal 1 is not an authenticated user, terminal 1 does not unlock its own terminal 1.

The terminal 1 is equipped with a display unit 14 (described below) that displays an authentication pattern M. The display unit 14 displays a preset authentication pattern M. In this embodiment, the display unit 14 displays the authentication pattern M on the display of the terminal 1. The authentication pattern M is an image for authenticating the terminal 1. The authentication pattern M includes a mark M1 for guiding the user's line of sight for authenticating the terminal 1. In this embodiment, the mark M1 is a single dot. The type of mark M1 can be changed as appropriate.

In this embodiment, the authentication pattern M includes multiple marks M1. In the authentication pattern M, three marks M1 are arranged in three rows, each with three marks M1 per column. That is, the authentication pattern M includes nine marks M1. The positions of the marks M1 are, for example, set in advance. The contents of the authentication pattern M can be changed as appropriate.

An authentication pattern for performing authentication is preset in the terminal 1. In this embodiment, the authentication pattern is the order of marks M1 that are moved ahead of the user's gaze E. The authentication pattern is set, for example, by the user. The number of marks M1 that are moved ahead of the gaze E in the authentication pattern (hereinafter sometimes referred to as the "prescribed number") is set in advance. "Gaze" refers to the direction in which the user is looking. "Ahead of the gaze" refers to the position in the authentication pattern M where the user is looking.

When a user authenticates the terminal 1, the user moves his/her gaze E, for example, in accordance with a preset authentication pattern. In other words, the user moves the gaze E in accordance with the order of the marks M1 that move the gaze E, which are preset.

For example, the user positions the gaze E on one mark M1 and gazes at that one mark M1, and then moves the gaze E away from that one mark M1. The user moves the gaze E away from the one mark M1 and moves the gaze E towards another mark M1, and then positions the gaze E on that other mark M1 and gazes at that other mark M1. The user repeats these actions to authenticate the terminal 1.

The terminal 1 detects the user's eye E1. The eye E1 includes the user's eyeball and the area surrounding the eyeball. For example, the eye E1 includes the user's eyelid. The terminal 1 detects the user's gaze E based on the detection result of the eye E1. The terminal 1 acquires the order of marks M1 to which the user moves the gaze E (hereinafter, sometimes referred to as "input pattern") based on the detected gaze E. The terminal 1 determines whether or not the acquired input pattern matches a preset authentication pattern. In other words, the terminal 1 determines whether or not the order of marks M1 to which the user moves the gaze E matches the preset order of marks M1 to which the gaze E moves.

FIG. 2(a) is a diagram showing an example of an input pattern P1 and an authentication pattern P2. FIG. 2(b) is a diagram showing another example of an input pattern P1 and an authentication pattern P2. In FIGS. 2(a) and 2(b), the input pattern P1 is indicated by a solid arrow, and the authentication pattern P2 is indicated by a dashed arrow.

FIG. 2(a) shows an example in which input pattern P1 does not match authentication pattern P2. If the user operating terminal 1 is not an authenticated user, it is highly likely that input pattern P1 input by the user operating terminal 1 does not match authentication pattern P2. If it is determined that input pattern P1 does not match authentication pattern P2, terminal 1 determines that the user operating terminal 1 is not an authenticated user. In this case, terminal 1 does not unlock terminal 1.

FIG. 2(b) shows an example in which input pattern P1 matches authentication pattern P2. If the user operating terminal 1 is an authenticated user, the user operating terminal 1 can input input pattern P1 that is the same as authentication pattern P2. If it is determined that input pattern P1 matches authentication pattern P2, terminal 1 determines that the user operating terminal 1 is an authenticated user. In this case, terminal 1 unlocks terminal 1.

As described above, when authentication is performed by determining whether the input pattern P1 matches the authentication pattern P2, there is room for improvement in the security of the authentication. For example, if the preset authentication pattern P2 becomes known to someone other than the authenticated user, the terminal 1 may be unlocked by someone other than the authenticated user. To solve the above problem, the terminal 1 performs authentication based on the state of the eye E1 when the user is looking at the authentication pattern M. As a result, even if the authentication pattern P2 becomes known to someone other than the authenticated user, it is possible to prevent authentication of the terminal 1 by someone other than the authenticated user based on the state of the eye E1. The configuration and operation of the terminal 1 are described in detail below.

FIG. 3 is a block diagram showing a terminal 1 according to an embodiment. The terminal 1 includes an eye detection unit 11, a gaze detection unit 12, a state detection unit 13, a display unit 14, and an authentication unit 15.

The eye detection unit 11 detects the user's eye E1. The eye detection unit 11 detects the user's eye E1, for example, via a camera mounted on the terminal 1. The eye detection unit 11 acquires an image via the camera, for example. The eye detection unit 11 may detect the eye E1, for example, by analyzing the acquired image using AI. The eye detection unit 11 may detect the user's eye E1 using known means.

The gaze detection unit 12 detects the user's gaze E based on the detection result of the eye detection unit 11. The gaze detection unit 12, for example, acquires the position of the pupil of eye E1 from eye E1 detected by the eye detection unit 11. The gaze detection unit 12 may detect the direction in which the pupil is pointing based on the acquired position of the pupil of eye E1. The gaze detection unit 12 may detect the direction in which the detected pupil is pointing as the gaze E. The gaze detection unit 12 may detect the user's gaze E using known means.

The state detection unit 13 detects the state of the user's eye E1 based on the detection result of the eye detection unit 11. The state of eye E1 is a characteristic of eye E1 that is unique to each person. The "unique characteristic" mentioned here does not necessarily mean a characteristic that strictly differs from person to person, but also includes a characteristic that a certain number of people have in the same way. The state detection unit 13 detects at least one of blinking and characteristics related to eye E1 as the state of eye E1. In this embodiment, both blinking and characteristics related to eye E1 are detected as the state of eye E1.

The state detection unit 13 detects the position of the eyelid from the eye E1 detected by the eye detection unit 11. The state detection unit 13 determines whether the detected eyelid position has moved a predetermined distance or more. If it is determined that the eyelid position has moved a predetermined distance or more, the state detection unit 13 determines that the user has blinked, and detects the user's blink. The state detection unit 13 may detect the user's blink using known means.

The features related to eye E1 refer to, for example, the features of eye E1 itself. The state detection unit 13 detects at least one of the state of wrinkles around the eyes, the focal depth of eye E1, and the number of eyeballs as the features related to eye E1. In this embodiment, the state detection unit 13 detects all of the state of wrinkles around the eyes, the focal depth of eye E1, and the number of eyeballs.

The state detection unit 13 detects the position of the eyeball from the eye E1 detected by the eye detection unit 11. The eyeball referred to here refers to a real eyeball and does not include, for example, a prosthetic eye. The state detection unit 13 detects, for example, an area within a specified distance from the detected eyeball position as the eye. The state detection unit 13 detects, for example, the length, position, and thickness of wrinkles formed around the detected eye as the state of wrinkles around the eyes. The state detection unit 13 may detect the state of wrinkles around the eyes using known means.

The state detection unit 13 detects the focal depth of the eye E1 from the eye E1 detected by the eye detection unit 11. Specifically, the state detection unit 13 first acquires, for example, the distance from the terminal 1 to the user's eye E1. The state detection unit 13 may analyze, for example, an image acquired via a camera mounted on the terminal 1, and acquire the distance from the analyzed image to the eye E1 contained in the image. The state detection unit 13 then detects the focal depth of the eye E1 based on the acquired distance. The state detection unit 13 may detect the focal depth of the eye E1 using known means.

Some users may focus their eye E1 by squinting their eye E1. The state detection unit 13 may detect the focal depth of the eye E1 based on the size of the eye E1. The size of the eye E1 is, for example, the distance from the user's upper eyelid to the lower eyelid. The state detection unit 13 may obtain the size of the eye E1 based on, for example, the obtained distance from the terminal 1 to the eye E1 and an image obtained via a camera mounted on the terminal 1.

The state detection unit 13 detects the number of eyeballs from the eye E1 detected by the eye detection unit 11. For example, if the user has one eye E1 and a prosthetic eye, the state detection unit 13 detects the number of eyeballs as one.

The authentication unit 15 performs authentication based on the state of the eye E1 detected by the state detection unit 13 when the mark M1 is in front of the gaze E detected by the gaze detection unit 12. Below, the processing of the authentication unit 15 when the mark M1 is in front of the gaze E will be explained.

The authentication unit 15 acquires at least one of the number of blinks and the timing of the blinks based on the blinks detected by the state detection unit 13. In this embodiment, the authentication unit 15 acquires both the number of blinks and the timing of the blinks based on the blinks detected by the state detection unit 13.

The authentication unit 15 detects a gaze timing, which is the timing when the gaze E is ahead of the mark M1, based on the gaze E detected by the gaze detection unit 12. The authentication unit 15 detects a non-gaze timing, which is the timing when the gaze E moves away from the mark M1, based on the gaze E detected by the gaze detection unit 12. The authentication unit 15 acquires a first number, which is the number of times the user blinks between the detected gaze timing and the non-gaze timing, as the number of blinks.

The authentication unit 15 acquires a first blink time, which is the time from the gaze timing to the timing when the user blinks, between the detected gaze timing and non-gazing timing, based on the blinks detected by the state detection unit 13. The timing when the user blinks means, for example, the timing when the user closes their eyelids after opening them. If the user blinks multiple times between the gaze timing and non-gazing timing, the authentication unit 15 acquires the first blink time for each of the multiple blinks. The authentication unit 15 acquires the acquired first blink time as the blink timing.

The frequency and timing of blinking can reflect, for example, a person's constitution and habits. Therefore, the number of blinks and the timing of blinking can be said to be characteristics of the eye E1 that are unique to each person.

In this embodiment, the authentication unit 15 performs authentication based on the state of the eye E1 when the gaze E moves from one mark M1 to another mark M1. Below, the processing of the authentication unit 15 when the gaze E moves from one mark M1 to another mark M1 will be explained.

The authentication unit 15 acquires, as the number of blinks, a second number of times that the user blinks between the detected timing of not gazing at one mark M1 and the timing of gazing at the other mark M1. The authentication unit 15 acquires, as the blink timing, a second blink time that is the time from the detected timing of not gazing at one mark M1 to the timing at which the user blinks between the detected timing of not gazing at one mark M1 and the timing of gazing at the other mark M1. If the user blinks multiple times between the detected timing of not gazing at one mark M1 and the timing of gazing at the other mark M1, the authentication unit 15 acquires a second blink time for each of the multiple blinks. The authentication unit 15 acquires the acquired second blink time as the blink timing.

Next, the operation of the terminal 1 will be described. FIG. 4 is a flowchart showing the operation of the terminal 1 according to one embodiment. First, the terminal 1 sets authentication information (step S1). The authentication information is information used to authenticate the terminal 1 in step S5, which will be described later. For example, when the terminal 1 functions as an authentication device for the first time, the terminal 1 executes step S1. After the terminal 1 executes step S1, the next time the terminal 1 functions as an authentication device, the terminal 1 may omit executing step S1.

In step S1, the terminal 1 executes the process shown in FIG. 5. FIG. 5 is a flowchart showing the process of setting the authentication information shown in FIG. 4. First, the display unit 14 displays the authentication pattern M (step S11). The authentication pattern M is, for example, set in advance. In step S11, the display unit 14 displays the authentication pattern M on, for example, the display of the terminal 1.

Next, the eye detection unit 11 detects the user's eye E1 (step S12). In step S12, the eye detection unit 11 detects the user's eye E1, for example, via a camera mounted on the terminal 1.

Then, the gaze detection unit 12 detects the user's gaze E based on the detection result in step S12 (step S13). In step S13, the gaze detection unit 12 detects, for example, the position of the pupil of eye E1 based on the eye E1 detected in step S12. Then, the gaze detection unit 12 detects the direction in which the pupil is pointing based on the detected pupil position. The gaze detection unit 12 then detects the direction in which the detected pupil is pointing as the user's gaze E.

Then, the authentication unit 15 judges whether or not there is a mark M1 at the end of the line of sight E detected in step S13 (step S14). Specifically, the authentication unit 15 first acquires, for example, the distance from the terminal 1 to the user's eye E1. The authentication unit 15 may analyze an image acquired, for example, via a camera mounted on the terminal 1, and acquire the distance from the analyzed image to the eye E1 included in the image. The authentication unit 15 may acquire the distance from the terminal 1 to the user's eye E1 using a known means. Next, the authentication unit 15 calculates the position of the end of the line of sight E based on the acquired distance and the line of sight E detected in step S13. Thereafter, the terminal 1 judges whether or not the calculated position of the end of the line of sight E is a predetermined distance or more away from the position of the mark M1 set in advance. If it is determined that the position of the end of the line of sight E is not a predetermined distance or more away from the position of the mark M1, the authentication unit 15 judges that the mark M1 is at the end of the line of sight E (step S14: YES). If it is determined that the position at the end of the line of sight E is a predetermined distance or more away from the position of the mark M1, the authentication unit 15 determines that the mark M1 is not at the end of the line of sight E (step S14: NO).

If it is determined that mark M1 is in the line of sight E (step S14: YES), terminal 1 executes step S15. If it is determined that mark M1 is not in the line of sight E (step S14: NO), terminal 1 executes step S14 again. Terminal 1 repeatedly executes step S14 for a predetermined time until it is determined that mark M1 is in the line of sight E. Authentication unit 15 detects the timing at which it is determined in step S14 that mark M1 is in the line of sight E as the gaze timing.

In step S15, the state detection unit 13 detects the state of the eye E1 when the mark M1 is in the line of sight E. In this embodiment, in step S15, the state detection unit 13 detects blinking and features related to the eye E1 as the state of the eye E1. The state detection unit 13 detects the state of wrinkles around the eyes, the focal depth of the eye E1, and the number of eyeballs as the features related to the eye E1.

In step S15, the authentication unit 15 detects a non-gazing timing in step S16 described later, and then acquires the number of blinks and the timing of the blinks based on the detected blinks. More specifically, first, the authentication unit 15 acquires a first number of times, which is the number of times the user blinked between the gazing timing detected in step S14 or step S18 (described later) and the non-gazing timing detected in step S16. Before executing step S18, the authentication unit 15 acquires the first number of times between the gazing timing detected in step S14 and the non-gazing timing detected in step S16. After executing step S18 once, the authentication unit 15 acquires the first number of times between the gazing timing detected in step S18 and the non-gazing timing detected in step S16. The authentication unit 15 acquires the acquired first number of times as the number of blinks.

In step S15, the authentication unit 15 acquires the first blink time between the gaze timing detected in step S14 or step S18 and the non-gazing timing detected in step S16. Before executing step S18, the authentication unit 15 acquires the first blink time between the gaze timing detected in step S14 and the non-gazing timing detected in step S16. After executing step S18 once, the authentication unit 15 acquires the first blink time between the gaze timing detected in step S18 and the non-gazing timing detected in step S16. The authentication unit 15 acquires the acquired first blink time as the blink timing.

Then, the authentication unit 15 judges whether the point of the gaze E detected in step S13 has moved away from the mark M1 (step S16). In step S16, the authentication unit 15 calculates the position of the gaze E by executing the same process as in step S14. The authentication unit 15 then judges whether the calculated position of the gaze E is a predetermined distance or more away from the preset position of the mark M1. If it is judged that the position of the gaze E is not a predetermined distance or more away from the position of the mark M1, the authentication unit 15 judges that the gaze E has not moved away from the mark M1 (step S16: NO). If it is judged that the position of the gaze E is a predetermined distance or more away from the position of the mark M1, the authentication unit 15 judges that the gaze E has moved away from the mark M1 (step S16: YES).

If it is determined that the gaze E has not left the mark M1 (step S16: NO), the terminal 1 executes step S15 again. The terminal 1 repeatedly executes steps S15 and S16 for a predetermined time until it is determined that the gaze E has left the mark M1. If it is determined that the gaze E has left the mark M1 (step S16: YES), the terminal 1 executes step S17. The authentication unit 15 detects the timing at which it is determined in step S16 that the gaze E has left the mark M1 as a non-gaze timing.

When it is determined in step S16 that the gaze E has left the mark M1, it is considered that the user is moving the gaze E from one mark M1 to another mark M1. For example, the user gazes at one mark M1 and then selects another mark M1 to which the gaze E will move. The user moves the gaze E to the other mark M1 that he or she has selected.

In step S17, the state detection unit 13 detects the state of the eye E1 when the gaze E moves from one mark M1 to another mark M1. In this embodiment, in step S17, the state detection unit 13 executes a process similar to that of step S15 to detect blinking and characteristics related to the eye E1 as the state of the eye E1.

In step S17, the authentication unit 15 detects the gaze timing in step S18 described below, and then acquires the number of blinks and the blink timing based on the detected blinks. More specifically, the authentication unit 15 first acquires a second number, which is the number of times the user blinked between the non-gaze timing detected in step S16 and the gaze timing detected in step S18. The authentication unit 15 acquires the acquired second number as the number of blinks.

In step S17, the authentication unit 15 acquires a second blinking time between the non-gazing timing detected in step S16 and the gazing timing detected in step S18. The authentication unit 15 acquires the acquired second blinking time as the blinking timing.

Then, the authentication unit 15 determines whether or not the mark M1 is located at the end of the line of sight E detected in step S13 (step S18). In step S18, the authentication unit 15 executes the same process as in step S14 to determine whether or not the mark M1 is located at the end of the line of sight E.

If it is determined that there is no mark M1 in the line of sight E (step S18: NO), the terminal 1 executes step S17 again. The terminal 1 repeatedly executes steps S17 and S18 for a predetermined time until it is determined that there is mark M1 in the line of sight E. If it is determined that there is mark M1 in the line of sight E (step S18: YES), the terminal 1 executes step S19. The authentication unit 15 detects the timing at which it is determined in step S18 that there is mark M1 in the line of sight E as the gaze timing.

In step S19, the terminal 1 determines whether or not the termination condition is satisfied. In this embodiment, the termination condition is that the number of times gaze timing is detected in steps S14 and S18 reaches the above-mentioned preset number. The termination condition is, for example, set in advance. The content of the termination condition can be changed as appropriate. If it is determined that the termination condition is not satisfied (step S19: NO), the terminal 1 executes step S15 again. If it is determined that the termination condition is satisfied (step S19: YES), the terminal 1 executes step S20.

In step S20, the terminal 1 stores the authentication information. In step S20, the terminal 1 stores the authentication pattern P2 (see FIG. 2) as the authentication information. The terminal 1 acquires the order of the marks M1 that were determined to be in the line of sight E in steps S14 and S18. The terminal 1 stores the acquired order of the marks M1 as the authentication pattern P2.

In step S20, the terminal 1 stores the first authentication information as authentication information. The first authentication information indicates the characteristics of the eye E1 when the mark M1 is at the end of the line of sight E. The terminal 1 acquires the characteristics of the eye E1 detected in step S15 for each mark M1 at which the user's line of sight E is located. The terminal 1 then stores the acquired characteristics of the eye E1 as the first authentication information.

In step S20, the terminal 1 stores the second authentication information as authentication information. The second authentication information indicates the number of blinks and the timing of the blinks when the mark M1 is in the line of sight E. The terminal 1 stores the number of blinks and the timing of the blinks acquired in step S15 as the second authentication information.

In step S20, the terminal 1 stores the third authentication information as authentication information. The third authentication information indicates the characteristics of the eye E1 when the gaze E moves from one mark M1 to another mark M1. The terminal 1 stores the characteristics of the eye E1 detected in step S17 as the third authentication information.

In step S20, the terminal 1 stores the fourth authentication information as authentication information. The fourth authentication information indicates the number of blinks and the timing of the blinks when the gaze E moves from one mark M1 to another mark M1. The terminal 1 stores the number of blinks and the timing of the blinks acquired in step S17 as the fourth authentication information. After the above processing, the terminal 1 ends step S1.

When terminal 1 performs authentication, terminal 1 executes steps S2 to S7. In step S2, display unit 14 displays authentication pattern M. Display unit 14 displays authentication pattern M by executing the same process as step S11.

Then, the eye detection unit 11 detects the user's eye E1 (step S3). In step S3, the eye detection unit 11 detects the user's eye E1 by executing a process similar to that in step S12. Next, the gaze detection unit 12 detects the user's gaze E based on the detection result in step S3 (step S4). In step S4, the gaze detection unit 12 detects the user's gaze E by executing a process similar to that in step S13.

Then, the terminal 1 performs authentication (step S5). In step S5, the terminal 1 executes the process shown in FIG. 6. FIG. 6 is a flowchart showing the process of performing the authentication shown in FIG. 4.

First, the authentication unit 15 determines whether or not the first mark M1 is located at the end of the line of sight E detected in step S4 (step S51). The first mark M1 is the mark M1 that is determined to be located at the end of the line of sight E in step S14, among the multiple marks M1 included in the authentication pattern P2 set in step S1. In step S51, the authentication unit 15 determines whether or not the first mark M1 is located at the end of the line of sight E by executing a process similar to that in step S14.

If it is determined that the first mark M1 is in the line of sight E (step S51: YES), the terminal 1 executes step S52. If it is determined that the first mark M1 is not in the line of sight E (step S51: NO), the terminal 1 executes step S51 again. The terminal 1 repeatedly executes step S51 for a predetermined time until it is determined that the first mark M1 is in the line of sight E. The authentication unit 15 detects the timing at which it is determined in step S51 that the first mark M1 is in the line of sight E as the gaze timing.

In step S52, the state detection unit 13 detects the state of the eye E1 when the mark M1 is in front of the line of sight E. The state detection unit 13 detects the state of the mark M1 when the mark M1 is in front of the line of sight E by executing a process similar to that of step S15.

In step S52, the authentication unit 15 detects a non-gazing timing in step S53 described later, and then acquires the number of blinks and the timing of the blinks based on the detected blinks. More specifically, the authentication unit 15 first acquires a first number of times between the gaze timing detected in step S51 or step S55 (described later) and the non-gazing timing detected in step S53. Before executing step S55, the authentication unit 15 acquires the first number of times between the gaze timing detected in step S51 and the non-gazing timing detected in step S53. After executing step S55 once, the authentication unit 15 acquires the first number of times between the gaze timing detected in step S55 and the non-gazing timing detected in step S53. The authentication unit 15 acquires the acquired first number of times as the number of blinks.

In step S52, the authentication unit 15 acquires the first blink time between the gaze timing detected in step S51 or step S55 and the non-gazing timing detected in step S53. Before executing step S55, the authentication unit 15 acquires the first blink time between the gaze timing detected in step S51 and the non-gazing timing detected in step S53. After executing step S55 once, the authentication unit 15 acquires the first blink time between the gaze timing detected in step S55 and the non-gazing timing detected in step S53. The authentication unit 15 acquires the acquired first blink time as the blink timing.

Then, the authentication unit 15 determines whether the gaze E detected in step S4 has moved away from the mark M1 (step S53). In step S53, the authentication unit 15 executes a process similar to that of step S16 to determine whether the gaze E has moved away from the mark M1.

If it is determined that the gaze E has not left the mark M1 (step S53: NO), the terminal 1 executes step S52 again. The terminal 1 repeatedly executes steps S52 and S53 for a predetermined time until it is determined that the gaze E has left the mark M1. If it is determined that the gaze E has left the mark M1 (step S53: YES), the terminal 1 executes step S54. The authentication unit 15 detects the timing at which it is determined in step S53 that the gaze E has left the mark M1 as a non-gaze timing.

When it is determined in step S53 that the gaze E has left mark M1, it is considered that the user is moving the gaze E from one mark M1 to another mark M1. If the user operating terminal 1 is an authenticated user, the authenticated user moves the gaze E from one mark M1 to another mark M1 in accordance with the authentication pattern P2 set in step S1.

In step S54, the state detection unit 13 detects the state of the eye E1 when the gaze E moves from one mark M1 to another mark M1. In step S54, the state detection unit 13 detects the state of the eye E1 when the gaze E moves from one mark M1 to another mark M1 by executing a process similar to that of step S17.

In step S54, the authentication unit 15 detects the gaze timing in step S55 described below, and then acquires the number of blinks and the blink timing based on the detected blinks. More specifically, the authentication unit 15 first acquires a second number, which is the number of times the user blinked between the non-gaze timing detected in step S53 and the gaze timing detected in step S55. The authentication unit 15 acquires the acquired second number as the number of blinks.

In step S54, the authentication unit 15 acquires a second blinking time between the non-gazing timing detected in step S53 and the gazing timing detected in step S55. The authentication unit 15 acquires the acquired second blinking time as the blinking timing.

Then, the authentication unit 15 determines whether or not the mark M1 is located at the end of the line of sight E detected in step S4 (step S55). In step S55, the authentication unit 15 executes a process similar to that of step S18 to determine whether or not the mark M1 is located at the end of the line of sight E.

If it is determined that there is no mark M1 in the line of sight E (step S55: NO), the terminal 1 executes step S54 again. The terminal 1 repeatedly executes steps S54 and S55 for a predetermined time until it is determined that there is mark M1 in the line of sight E. If it is determined that there is mark M1 in the line of sight E (step S55: YES), the terminal 1 executes step S56. The authentication unit 15 detects the timing at which it is determined in step S55 that there is mark M1 in the line of sight E as the gaze timing.

In step S56, the terminal 1 determines whether or not the termination condition is satisfied. In this embodiment, the termination condition is that the number of times that gaze timing is detected in steps S51 and S55 reaches the above-mentioned preset number. The termination condition is, for example, set in advance. The content of the termination condition can be changed as appropriate. If it is determined that the termination condition is not satisfied (step S56: NO), the terminal 1 executes step S52 again. If it is determined that the termination condition is satisfied (step S56: YES), the terminal 1 acquires the order of the marks M1 that are determined to be in the line of sight E in steps S51 and S55. The terminal 1 acquires the acquired order of the marks M1 as the input pattern P1. Then, the terminal 1 executes step S57.

In step S57, the authentication unit 15 determines whether the user operating the terminal 1 is an authenticated user. In this embodiment, the authentication unit 15 determines whether each of the first condition, second condition, third condition, fourth condition, and fifth condition described below is satisfied. If it is determined that all of the first condition to fifth condition are satisfied, the authentication unit 15 determines that the user operating the terminal 1 is an authenticated user. In other cases, the authentication unit 15 determines that the user operating the terminal 1 is not an authenticated user.

The first condition is a condition related to the input pattern P1 input by the user. The authentication unit 15 determines whether the input pattern P1 acquired in step S56 matches the authentication pattern P2 set in step S1. More specifically, the authentication unit 15 determines whether the order of the marks M1 determined to be in the line of sight E in steps S51 and S55 matches the order of the marks M1 indicated by the authentication pattern P2 stored in step S20. If it is determined that the input pattern P1 and the authentication pattern P2 match, the authentication unit 15 determines that the first condition is met. If it is determined that the input pattern P1 and the authentication pattern P2 do not match, the authentication unit 15 determines that the first condition is not met.

The second condition is a condition related to the features of the eye E1 when the mark M1 is in the line of sight E. The authentication unit 15 calculates the match rate between the features of the eye E1 detected in step S52 and the features of the eye E1 indicated by the first authentication information stored in step S20. The authentication unit 15 calculates, for example, the average of the match rates of the wrinkle state around the eyes, the match rate of the focal depth of the eye E1, and the match rate of the number of eyeballs, which are described below, as the match rate of the features of the eye E1.

The authentication unit 15 calculates the rate of agreement between the state of wrinkles around the eyes detected in step S52 and the state of wrinkles around the eyes indicated by the first authentication information. The authentication unit 15 calculates the rate of agreement between the length, position, and thickness of the wrinkles detected in step S52 and the length, position, and thickness of the wrinkles indicated by the first authentication information. The authentication unit 15 may calculate the rate of agreement between the state of wrinkles around the eyes using known means.

The authentication unit 15 calculates the matching rate between the focal depth of the eye E1 detected in step S52 and the focal depth of the eye E1 indicated by the first authentication information. For example, the authentication unit 15 may calculate the above matching rate as a normalized value obtained by multiplying the inverse of the difference between the focal depth of the eye E1 detected in step S52 and the focal depth of the eye E1 indicated by the first authentication information by a predetermined value.

The authentication unit 15 calculates the matching rate between the number of eyeballs detected in step S52 and the number of eyeballs indicated by the first authentication information. For example, if the number of eyeballs detected in step S52 matches the number of eyeballs indicated by the first authentication information, the authentication unit 15 may calculate the above matching rate as a predetermined first value (100% as an example). For example, if the number of eyeballs detected in step S52 does not match the number of eyeballs indicated by the first authentication information, the authentication unit 15 may calculate the above matching rate as a predetermined second value smaller than the first value (0% as an example).

The authentication unit 15 determines whether the calculated matching rate of the features related to the eye E1 is equal to or greater than a predetermined value. If it is determined that the matching rate of the features related to the eye E1 is equal to or greater than the predetermined value, the authentication unit 15 determines that the second condition is satisfied. If it is determined that the matching rate of the features related to the eye E1 is less than the predetermined value, the authentication unit 15 determines that the second condition is not satisfied.

The third condition is a condition related to the number of blinks and the timing of blinks when the mark M1 is ahead of the line of sight E. The authentication unit 15 calculates the match rate between the number of blinks acquired in step S52 and the number of blinks indicated by the second authentication information stored in step S20. For example, the authentication unit 15 calculates the match rate of the number of blinks by normalizing the reciprocal of the difference between the first number acquired in step S52 and the first number indicated by the second authentication information by multiplying it by a predetermined value.

The authentication unit 15 calculates the coincidence rate between the blink timing acquired in step S52 and the blink timing indicated by the second authentication information stored in step S20. For example, the authentication unit 15 calculates the coincidence rate of the blink timing by multiplying the inverse of the difference between the first blink time acquired in step S52 and the first blink time indicated by the second authentication information by a predetermined value and normalizing the result.

The authentication unit 15 calculates the average value of the calculated match rate of the number of blinks and the calculated match rate of the blink timing. The authentication unit 15 determines whether the calculated average value is equal to or greater than a predetermined value. If it is determined that the average value is equal to or greater than the predetermined value, the authentication unit 15 determines that the third condition is satisfied. If it is determined that the average value is less than the predetermined value, the authentication unit 15 determines that the third condition is not satisfied.

The fourth condition is a condition related to the features of the eye E1 when the gaze E moves from one mark M1 to another mark M1. The authentication unit 15 calculates the match rate between the features of the eye E1 detected in step S54 and the features of the eye E1 indicated by the third authentication information stored in step S20. The method by which the authentication unit 15 calculates the match rate is the same as the method used to determine whether the second condition is satisfied.

The authentication unit 15 determines whether the calculated matching rate is equal to or greater than a predetermined value. If it is determined that the matching rate is equal to or greater than the predetermined value, the authentication unit 15 determines that the fourth condition is met. If it is determined that the matching rate is less than the predetermined value, the authentication unit 15 determines that the fourth condition is not met.

The fifth condition is a condition related to the number of blinks and the timing of the blinks when the gaze E moves from one mark M1 to another mark M1. The authentication unit 15 calculates the match rate between the number of blinks acquired in step S54 and the number of blinks indicated by the fourth authentication information stored in step S20. For example, the authentication unit 15 calculates the match rate of the number of blinks by normalizing the reciprocal of the difference between the second number acquired in step S54 and the second number indicated by the fourth authentication information by multiplying it by a predetermined value.

The authentication unit 15 calculates the coincidence rate between the blink timing acquired in step S54 and the blink timing indicated by the fourth authentication information stored in step S20. For example, the authentication unit 15 calculates the coincidence rate of the blink timing by multiplying the inverse of the difference between the second blink time acquired in step S54 and the second blink time indicated by the fourth authentication information by a predetermined value and normalizing the result.

The authentication unit 15 calculates the average value of the calculated match rate of the number of blinks and the match rate of the blink timing. The authentication unit 15 determines whether the calculated average value is equal to or greater than a predetermined value. If it is determined that the average value is equal to or greater than the predetermined value, the authentication unit 15 determines that the fifth condition is satisfied. If it is determined that the average value is less than the predetermined value, the authentication unit 15 determines that the fifth condition is not satisfied.

The above describes examples of the contents of the first to fifth conditions, but the contents of the first to fifth conditions can be changed as appropriate. In addition, the criteria for determining that the user operating the terminal 1 is an authenticated user can also be changed as appropriate. For example, if it is determined that at least one of the first condition, the second condition, the third condition, the fourth condition, and the fifth condition is satisfied, the authentication unit 15 may determine that the user operating the terminal 1 is an authenticated user.

If it is determined that the user operating terminal 1 is an authenticated user (step S57: YES), the authentication unit 15 unlocks terminal 1 (step S58). If it is determined that the user operating terminal 1 is not an authenticated user (step S57: NO), the authentication unit 15 does not unlock terminal 1 (step S59). In step S59, the display unit 14 may display a message to retry authentication. After the above processing, the terminal 1 ends step S5.

Then, the terminal 1 judges whether or not the terminal 1 has been unlocked (step S6). When it is judged that the terminal 1 has been unlocked by executing step S58 (step S6: YES), the terminal 1 executes step S7. When it is judged that the terminal 1 has not been unlocked by executing step S59 (step S6: NO), the terminal 1 ends the series of operations. In step S7, the terminal 1 performs learning. In step S7, the terminal 1 updates the criteria for judging whether or not the user operating the terminal 1 is an authenticated user, for example.

In step S7, terminal 1 replaces the state of wrinkles around the eyes indicated by the first authentication information with the state of wrinkles around the eyes detected in step S52 and stores it. In step S7, terminal 1 calculates the average value of the focal depth of eye E1 indicated by the first authentication information and the focal depth of eye E1 detected in step S52. Next, terminal 1 replaces the focal depth of eye E1 indicated by the first authentication information with the calculated average value and stores it. In step S7, terminal 1 replaces the number of eyeballs indicated by the first authentication information with the number of eyeballs detected in step S52 and stores it.

In step S7, terminal 1 calculates the average value of the number of blinks indicated by the second authentication information and the number of blinks acquired in step S52. Terminal 1 replaces the number of blinks indicated by the second authentication information with the calculated average value of the number of blinks and stores it. In step S7, terminal 1 calculates the average value of the blink timing indicated by the second authentication information and the blink timing acquired in step S52. Terminal 1 replaces the blink timing indicated by the second authentication information with the calculated average value of the blink timing and stores it.

In step S7, terminal 1 replaces the state of wrinkles around the eyes indicated by the third authentication information with the state of wrinkles around the eyes detected in step S54 and stores it. In step S7, terminal 1 calculates the average value of the focal depth of eye E1 indicated by the third authentication information and the focal depth of eye E1 detected in step S54. Next, terminal 1 replaces the focal depth of eye E1 indicated by the third authentication information with the calculated average value and stores it. In step S7, terminal 1 replaces the number of eyeballs indicated by the third authentication information with the number of eyeballs detected in step S54 and stores it.

In step S7, terminal 1 calculates the average value of the number of blinks indicated by the fourth authentication information and the number of blinks acquired in step S54. Terminal 1 replaces the number of blinks indicated by the fourth authentication information with the calculated average value of the number of blinks and stores it. In step S7, terminal 1 calculates the average value of the blink timing indicated by the fourth authentication information and the blink timing acquired in step S54. Terminal 1 replaces the blink timing indicated by the fourth authentication information with the calculated average value of the blink timing and stores it.

The condition of the user's eye E1 may change due to, for example, aging of the user. When it is determined that the terminal 1 has been unlocked, the terminal 1 updates the criteria for determining whether the user operating the terminal 1 is an authenticated user. Since the authentication criteria are changed according to the condition of the eye E1 of the authenticated user who unlocked the terminal 1, the accuracy of the authentication can be maintained even if the condition of the user's eye E1 changes as authentication is repeated.

Next, the effects of the terminal 1 will be described. The terminal 1 includes an eye detection unit 11 that detects the user's eye E1, a gaze detection unit 12 that detects the user's gaze E based on the detection result of the eye detection unit 11, a state detection unit 13 that detects the state of the user's eye E1 based on the detection result of the eye detection unit 11, a display unit 14 that displays an authentication pattern M including a mark M1 for guiding the gaze E for authentication, and an authentication unit 15 that performs authentication based on the state of the eye E1 when the mark M1 is at the end of the gaze E.

In this terminal 1, for example, authentication is performed based on the state of the eye E1 when the user is looking at the mark M1. The state of the eye E1 is a characteristic of the eye E1 that is unique to each person. Therefore, even if the pre-set authentication pattern P2 is known to someone other than the authenticated user, it is possible to prevent authentication of the terminal 1 by anyone other than the authenticated user based on the state of the eye E1. As a result, the security of authentication can be improved.

The authentication pattern M may include multiple marks M1, and the authentication unit 15 may perform authentication based on the state of the eye E1 when the gaze E moves from one mark M1 to another mark M1. In this case, for example, authentication is performed based on the state of the eye E1 when the user removes the gaze E from the mark M1 and moves the gaze E toward the other mark M1. Since authentication is performed taking into account not only the state of the eye E1 when the user is looking at the mark M1, but also the state of the eye E1 when the user is moving the gaze E, the accuracy of authentication can be improved. Therefore, the security of authentication can be further improved.

The state detection unit 13 may detect blinking as the state of the eye E1. For example, the frequency of blinking and the timing of blinking may reflect a person's constitution and habits. Since blinking can be detected as the state of the eye E1 and authentication can be performed based on the detected blinking, the accuracy of authentication can be further improved. Therefore, the safety of authentication can be further improved.

The authentication unit 15 may obtain at least one of the number of blinks and the timing of blinks based on the detected blinks, and perform authentication based on at least one of the obtained number of blinks and the timing of blinks. The number of blinks and the timing of blinks may reflect a person's constitution and habits. Since authentication can be performed based on at least one of the number of blinks and the timing of blinks, the accuracy of authentication can be further improved. Therefore, the safety of authentication can be further improved.

The state detection unit 13 may detect characteristics related to the eye E1 as the state of the eye E1. In this case, authentication can be performed based on the characteristics related to the eye E1, which are the characteristics of the eye E1 itself, thereby further improving the security of the authentication.

The state detection unit 13 may detect at least one of the state of wrinkles around the eyes, the focal depth of the eye E1, and the number of eyeballs as features related to the eye E1. The state of wrinkles around the eyes, the focal depth of the eye E1, and the number of eyeballs are each unique features for each person. Therefore, authentication can be performed based on these features, which further improves the security of the authentication.

The authentication unit 15 may perform authentication based on a preset authentication pattern P2, which is the order of the marks M1 that move in front of the line of sight E. In this case, authentication can be performed using the preset authentication pattern P2 in addition to the state of the user's eyes E1. For example, it can determine whether the input pattern P1 input by the user matches the authentication pattern P2, and perform authentication based on the determination result. Therefore, even if a person with an eye E1 state similar to that of the authenticated user authenticates the terminal 1, if the input pattern P1 does not match the authentication pattern P2, it is possible to prevent the terminal 1 from being unlocked. As a result, the security of authentication can be further improved.

Next, a modified version of the terminal 1 will be described. Below, differences from the above embodiment will be mainly described, and duplicate descriptions will be omitted as appropriate.

The content of the process executed by the terminal 1 in step S7 can be changed as appropriate. In step S7, the terminal 1 may, for example, replace the focal depth of the eye E1 indicated by the first authentication information with the focal depth of the eye E1 detected in step S52 and store it. The terminal 1 may also execute a similar process for the third authentication information. In step S7, the terminal 1 may, for example, replace the number of blinks indicated by the second authentication information with the number of blinks acquired in step S52 and store it. The terminal 1 may, for example, replace the timing of the blinks indicated by the second authentication information with the timing of the blinks acquired in step S52 and store it. The terminal 1 may also execute a similar process for the fourth authentication information.

In the above embodiment, an example has been described in which the state detection unit 13 detects blinking and features related to the eye E1 as the state of the eye E1. However, the state detection unit 13 only needs to detect features of the eye E1 that are unique to each person as the state of the eye E1, and may detect features other than blinking and features related to the eye E1 as the state of the eye E1.

In the above embodiment, an example has been described in which the state detection unit 13 detects the state of wrinkles around the eyes, the focal depth of eye E1, and the number of eyeballs as features related to eye E1. However, it is sufficient for the state detection unit 13 to detect the features of eye E1 itself as features related to eye E1, and the state detection unit 13 may detect features other than the state of wrinkles around the eyes, the focal depth of eye E1, and the number of eyeballs as features related to eye E1. For example, the state detection unit 13 may detect the size or color of the iris of eye E1 as a feature related to eye E1.

The authentication device disclosed herein has the following configuration:

[1]
An eye detection unit that detects the eyes of a user;
a gaze detection unit that detects a gaze of the user based on a detection result of the eye detection unit;
a condition detection unit that detects an eye condition of the user based on a detection result of the eye detection unit;
a display unit that displays an authentication pattern including a mark for guiding the line of sight for authentication;
and an authentication unit that performs authentication based on the state of the eye when the mark is in the line of sight.
Authentication device.

[2]
The authentication pattern includes a plurality of the marks,
the authentication unit performs authentication based on a state of the eye when the gaze moves from one of the marks to the other of the marks.
The authentication device according to [1].

[3]
The state detection unit detects blinking as the eye state.
The authentication device according to [1] or [2].

[4]
The authentication unit
Obtaining at least one of the number of blinks and the timing of the blinks based on the detected blinks;
performing the authentication based on at least one of the acquired number of blinks and the acquired blink timing;
The authentication device according to [3].

[5]
The condition detection unit detects a feature related to the eye as the eye condition.
An authentication device according to any one of [1] to [4].

[6]
The state detection unit detects at least one of a state of wrinkles around the eyes, a focal depth of the eyes, and a number of eyeballs as the eye-related features.
The authentication device according to [5].

[7]
the authentication unit performs authentication based on an authentication pattern that is a sequence of the marks to which the line of sight is moved, the authentication pattern being set in advance;
An authentication device according to any one of [2] to [6].

The block diagrams used to explain the above embodiments show functional blocks. These functional blocks (components) are realized by any combination of at least one of hardware and software. Furthermore, the method of realizing each functional block is not particularly limited. That is, each functional block may be realized using one device that is physically or logically coupled, or may be realized using two or more devices that are physically or logically separated and connected directly or indirectly (for example, using wires, wirelessly, etc.) and these multiple devices. The functional blocks may be realized by combining the one device or the multiple devices with software.

Functions include, but are not limited to, judgement, determination, judgment, calculation, computation, processing, derivation, investigation, search, confirmation, reception, transmission, output, access, resolution, selection, election, establishment, comparison, assumption, expectation, regarding, broadcasting, notifying, communicating, forwarding, configuring, reconfiguring, allocating, mapping, and assignment. For example, a functional block (component) that performs the transmission function is called a transmitting unit or transmitter. As mentioned above, there are no particular limitations on the method of realization for either of these.

For example, terminal 1 in one embodiment of the present disclosure may function as a computer that performs the information processing of the present disclosure. FIG. 7 is a diagram showing an example of the hardware configuration of terminal 1 according to one embodiment of the present disclosure. The above-mentioned terminal 1 may be physically configured as a computer device including a processor 1001, memory 1002, storage 1003, communication device 1004, input device 1005, output device 1006, bus 1007, etc. The hardware configuration of terminal 20 may also be as described here.

In the following explanation, the word "apparatus" can be interpreted as a circuit, device, unit, etc. The hardware configuration of terminal 1 may be configured to include one or more of the devices shown in the figure, or may be configured to exclude some of the devices.

Each function of the terminal 1 is realized by loading a specific software (program) onto hardware such as the processor 1001 and memory 1002, causing the processor 1001 to perform calculations, control communications via the communication device 1004, and control at least one of the reading and writing of data in the memory 1002 and storage 1003.

The processor 1001, for example, runs an operating system to control the entire computer. The processor 1001 may be configured as a central processing unit (CPU) including an interface with peripheral devices, a control device, an arithmetic unit, registers, etc. For example, each function in the terminal 1 described above may be realized by the processor 1001.

The processor 1001 also reads out programs (program codes), software modules, data, etc. from at least one of the storage 1003 and the communication device 1004 into the memory 1002, and executes various processes according to these. The programs used are those that cause a computer to execute at least some of the operations described in the above-mentioned embodiments. For example, each function in the terminal 1 may be realized by a control program stored in the memory 1002 and running on the processor 1001. Although the above-mentioned various processes have been described as being executed by one processor 1001, they may be executed simultaneously or sequentially by two or more processors 1001. The processor 1001 may be implemented by one or more chips. The programs may be transmitted from a network via a telecommunications line.

Memory 1002 is a computer-readable recording medium, and may be composed of at least one of, for example, ROM (Read Only Memory), EPROM (Erasable Programmable ROM), EEPROM (Electrically Erasable Programmable ROM), RAM (Random Access Memory), etc. Memory 1002 may also be called a register, cache, main memory (primary storage device), etc. Memory 1002 can store executable programs (program codes), software modules, etc., for performing information processing related to one embodiment of the present disclosure.

Storage 1003 is a computer-readable recording medium, and may be composed of at least one of an optical disk such as a CD-ROM (Compact Disc ROM), a hard disk drive, a flexible disk, a magneto-optical disk (e.g., a compact disk, a digital versatile disk, a Blu-ray (registered trademark) disk), a smart card, a flash memory (e.g., a card, a stick, a key drive), a floppy (registered trademark) disk, a magnetic strip, etc. Storage 1003 may also be called an auxiliary storage device. The storage medium provided in terminal 1 may be, for example, a database, a server, or other appropriate medium that includes at least one of memory 1002 and storage 1003.

The communication device 1004 is hardware (transmitting/receiving device) for communicating between computers via at least one of a wired network and a wireless network, and is also called, for example, a network device, a network controller, a network card, a communication module, etc.

The input device 1005 is an input device (e.g., a keyboard, a mouse, a microphone, a switch, a button, a sensor, etc.) that accepts input from the outside. The output device 1006 is an output device (e.g., a display, a speaker, an LED lamp, etc.) that performs output to the outside. Note that the input device 1005 and the output device 1006 may be integrated into one structure (e.g., a touch panel).

Furthermore, each device such as the processor 1001 and memory 1002 is connected by a bus 1007 for communicating information. The bus 1007 may be configured using a single bus, or may be configured using different buses between each device.

In addition, the terminal 1 may be configured to include hardware such as a microprocessor, a digital signal processor (DSP), an application specific integrated circuit (ASIC), a programmable logic device (PLD), or a field programmable gate array (FPGA), and some or all of the functional blocks may be realized by the hardware. For example, the processor 1001 may be implemented using at least one of these pieces of hardware.

The processing steps, sequences, flow charts, etc. of each aspect/embodiment described in this disclosure may be reordered unless inconsistent. For example, the methods described in this disclosure present elements of various steps using an example order and are not limited to the particular order presented.

The input and output information may be stored in a specific location (e.g., memory) or may be managed using a management table. The input and output information may be overwritten, updated, or added to. The output information may be deleted. The input information may be sent to another device.

The determination may be based on a value represented by one bit (0 or 1), a Boolean value (true or false), or a numerical comparison (e.g., a comparison with a predetermined value).

Each aspect/embodiment described in this disclosure may be used alone, in combination, or switched depending on the execution. In addition, notification of specific information (e.g., notification that "X is the case") is not limited to being done explicitly, but may be done implicitly (e.g., not notifying the specific information).

　Although the present disclosure has been described in detail above, it is clear to those skilled in the art that the present disclosure is not limited to the embodiments described herein. The present disclosure can be implemented in modified and altered forms without departing from the spirit and scope of the present disclosure as defined by the claims. Therefore, the description of the present disclosure is intended to be illustrative and does not have any limiting meaning on the present disclosure.

Software shall be construed broadly to mean instructions, instruction sets, code, code segments, program code, programs, subprograms, software modules, applications, software applications, software packages, routines, subroutines, objects, executable files, threads of execution, procedures, functions, etc., whether referred to as software, firmware, middleware, microcode, hardware description language, or otherwise.

Software, instructions, information, etc. may also be transmitted and received via a transmission medium. For example, if the software is transmitted from a website, server, or other remote source using at least one of wired technologies (such as coaxial cable, fiber optic cable, twisted pair, Digital Subscriber Line (DSL)), and/or wireless technologies (such as infrared, microwave), then at least one of these wired and wireless technologies is included within the definition of a transmission medium.

As used in this disclosure, the terms "system" and "network" are used interchangeably.

In addition, the information, parameters, etc. described in this disclosure may be expressed using absolute values, may be expressed using relative values from a predetermined value, or may be expressed using other corresponding information.

As used in this disclosure, the terms "determining" and "determining" may encompass a wide variety of actions. "Determining" and "determining" may include, for example, judging, calculating, computing, processing, deriving, investigating, looking up, search, inquiry (e.g., searching in a table, database, or other data structure), and considering ascertaining as "judging" or "determining." Also, "determining" and "determining" may include receiving (e.g., receiving information), transmitting (e.g., sending information), input, output, accessing (e.g., accessing data in memory), and considering ascertaining as "judging" or "determining." Additionally, "judgment" and "decision" can include considering resolving, selecting, choosing, establishing, comparing, etc., to have been "judged" or "decided." In other words, "judgment" and "decision" can include considering some action to have been "judged" or "decided." Additionally, "judgment (decision)" can be interpreted as "assuming," "expecting," "considering," etc.

The terms "connected," "coupled," or any variation thereof, refer to any direct or indirect connection or coupling between two or more elements, and may include the presence of one or more intermediate elements between two elements that are "connected" or "coupled" to each other. The coupling or connection between elements may be physical, logical, or a combination thereof. For example, "connected" may be read as "access." As used in this disclosure, two elements may be considered to be "connected" or "coupled" to each other using at least one of one or more wires, cables, and printed electrical connections, as well as electromagnetic energy having wavelengths in the radio frequency range, microwave range, and optical (both visible and invisible) range, as some non-limiting and non-exhaustive examples.

As used in this disclosure, the phrase "based on" does not mean "based only on," unless expressly stated otherwise. In other words, the phrase "based on" means both "based only on" and "based at least on."

Any reference to an element using a designation such as "first," "second," etc., used in this disclosure does not generally limit the quantity or order of those elements. These designations may be used in this disclosure as a convenient method of distinguishing between two or more elements. Thus, a reference to a first and a second element does not imply that only two elements may be employed or that the first element must precede the second element in some way.

When the terms "include," "including," and variations thereof are used in this disclosure, these terms are intended to be inclusive, similar to the term "comprising." Additionally, the term "or," as used in this disclosure, is not intended to be an exclusive or.

In this disclosure, where articles have been added through translation, such as a, an, and the in English, this disclosure may include that the nouns following these articles are plural.

In this disclosure, the term "A and B are different" may mean "A and B are different from each other." The term may also mean "A and B are each different from C." Terms such as "separate" and "combined" may also be interpreted in the same way as "different."

1... terminal (authentication device), 11... eye detection unit, 12... gaze detection unit, 13... status detection unit, 14... display unit, 15... authentication unit, E... gaze, E1... eye, M... authentication pattern, M1... mark.

Claims (7)

An eye detection unit that detects the eyes of a user;
a gaze detection unit that detects a gaze of the user based on a detection result of the eye detection unit;
a condition detection unit that detects an eye condition of the user based on a detection result of the eye detection unit;
a display unit that displays an authentication pattern including a mark for guiding the line of sight for authentication;
and an authentication unit that performs authentication based on the state of the eye when the mark is in the line of sight.
Authentication device. The authentication pattern includes a plurality of the marks,
the authentication unit performs authentication based on a state of the eye when the gaze moves from one of the marks to the other of the marks.
The authentication device according to claim 1 . The state detection unit detects blinking as the eye state.
The authentication device according to claim 1 . The authentication unit
Obtaining at least one of the number of blinks and the timing of the blinks based on the detected blinks;
performing the authentication based on at least one of the acquired number of blinks and the acquired blink timing;
The authentication device according to claim 3. The condition detection unit detects a feature related to the eye as the eye condition.
The authentication device according to claim 1 . The state detection unit detects at least one of a state of wrinkles around the eyes, a focal depth of the eyes, and a number of eyeballs as the eye-related features.
The authentication device according to claim 5. the authentication unit performs authentication based on an authentication pattern that is a sequence of the marks to which the line of sight is moved, the authentication pattern being set in advance;
The authentication device according to claim 2 .

Images