JP2007220000A - Portable terminal apparatus for authentication and portable terminal program for authentication - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To correctly identify a user who accesses. <P>SOLUTION: A portable terminal apparatus for authentication comprises: a biological sensor 115 for detecting the biological data value of the user; a meteorologic sensor 112 for detecting meteorologic data in an atmosphere where the user is located; a threshold table 114 for presetting a biological data threshold to manage the physical condition of the user by each meteorologic condition and holding the threshold; a threshold reading means 111c for retrieving the biological data threshold, which is set for the meteorologic condition corresponding to the meteorologic data detected by the meteorologic sensor, and reading the threshold; a comparing means 111d for comparing the biological data threshold read by the threshold reading means with the biological data value detected by the biological sensor; and a control means 111a for transmitting identification information when the user is identified, based on the result of the comparing means. <P>COPYRIGHT: (C)2007,JPO&INPIT

Description

  The present invention relates to an authentication portable terminal device that performs identity verification of a user and transmits identification information, and an authentication portable terminal program for realizing the authentication portable terminal device.

  In the case of performing settlement or accessing an in-company system, a technique for performing identity verification using an IC card or the like, or identity verification using biometrics such as fingerprint authentication or iris authentication has been widespread.

This output security technique is also described in detail in Non-Patent Document 1 below.
“Client Security Technology” FUJITSU 2004 No. 01, pp. 62-67

Generally, there is no person with the same fingerprint or iris, and it is said that the identity verification is correctly performed by biometric authentication using personal features such as fingerprints and iris.
However, since fingerprint information and iris information captured by a server or the like are digital data, the possibility that this digital data leaks to the outside is not zero. In this case, various modes are conceivable, such as when digital data leaks or is stolen directly from the server, or when digital data is stolen on the network.

  If digital data such as fingerprint information or iris information leaks to the outside, it will pretend to be the person, clear biometric authentication, and unauthorized payment or unauthorized access will be possible.

  The present invention has been devised in view of such problems, and an object of the present invention is to accurately perform identity authentication as to whether a user who makes a payment or accesses a system is the person himself / herself.

In order to achieve the above object, the present invention is configured as follows.
(1) According to the first aspect of the present invention, a biometric sensor for detecting a biometric data value of a user, a meteorological sensor for detecting meteorological data in the atmosphere where the user is located, and managing the physical condition of the user The biometric data threshold is preset and held for each weather condition, and the biometric data threshold set for the weather condition corresponding to the weather data detected by the weather sensor is retrieved from the threshold table and read out. Threshold value reading means, comparison means for comparing the biometric data threshold value read by the threshold value reading means with the biometric data value detected by the biometric sensor, and the result of comparison by the comparison means is the user himself / herself. And a control means for sending the personal identification information when the information is confirmed. The mobile terminal device for authentication is characterized by comprising:

  (2) The invention described in claim 2 further includes position detecting means for detecting the position of the user, and the control means confirms the user's position detected by the position detecting means. The authentication portable terminal device according to claim 1, wherein the authentication portable terminal device is transmitted together with information.

  (3) The invention according to claim 3 further includes a notification means for notifying a predetermined contact address registered in advance, wherein the control means detects the abnormal condition of the user by the comparison by the comparison means. The mobile terminal device for authentication according to claim 1 or 2, wherein the abnormality in physical condition is notified to a predetermined contact through the notification means.

  (4) The invention according to claim 4 is configured by connecting the biometric sensor and the weather sensor to a cellular phone radio, and the cellular phone radio includes the threshold value table, the threshold value reading means, the comparing means, The authentication portable terminal device according to any one of claims 1 to 3, wherein the authentication portable terminal device has a function as the control means.

  (5) The invention according to claim 5 is based on the user's biological data value detected by the biological sensor and the weather data in the user's location atmosphere detected by the weather sensor. A portable terminal program for authentication that allows a computer to check whether or not the user is a person, and creates a threshold value table that stores a biometric data threshold value for managing the physical condition of the user in advance for each weather condition Means for setting, threshold value reading means for searching and reading out the threshold value of the biometric data set for the weather conditions corresponding to the weather data detected by the weather sensor, and the living body read by the threshold value reading means The comparison means for comparing the data threshold value with the biological data value detected by the biological sensor, and the comparison result by the comparison means indicates that the user If it is confirmed, a control means and, to authenticate the portable terminal program for causing the computer to function for sending identification information.

  (6) The invention according to claim 6 is a position detecting means for detecting the location of the user, and a control means for sending the location detected by the position detecting means together with the identity confirmation information. 6. The authentication portable terminal program according to claim 5, which causes the computer to function.

  (7) The invention according to claim 7 causes the computer to function as notifying means for notifying a predetermined contact when a physical condition abnormality of the user is detected as a result of comparison by the comparing means. The authentication portable terminal program according to claim 5 or 6, wherein the authentication portable terminal program is the authentication portable terminal program.

  (8) The invention according to claim 8 is configured by connecting the biological sensor and the weather sensor to a mobile phone radio, and the mobile phone radio functions as each of the means. An authentication portable terminal program according to claim 7.

  In the present invention described above, a biometric data threshold value for managing the physical condition of the user is preset for each weather condition in the threshold value table, and meteorological data detected by a weather sensor (for example, temperature, water temperature, humidity, atmospheric pressure). , Water pressure, sunshine status, and ultraviolet light amount), the biometric data threshold set for the weather condition corresponding to the meteorological condition is retrieved from the threshold table and read out, and is detected by the read biometric data threshold and the biosensor. Use as a result of comparing biometric data values (for example, at least one of body temperature, blood pressure, heart rate, respiratory rate, pulse wave, electrocardiogram, blood oxygen saturation, blood oxygen concentration, muscle tissue oxygen concentration) It is confirmed whether or not the person himself is. Then, when the identity of the user is confirmed, the control means sends the identity confirmation information to a management server or the like.

Thus, it is possible to accurately determine whether the user is a genuine person while using the biometric data value as biometrics based on the biometric data threshold corresponding to the weather data in the user's location atmosphere. It becomes possible. As a result, it is possible to prevent “spoofing” in settlement and system access.

In this case, even if the authentication portable terminal device is worn by another person for some reason, it is possible to accurately determine whether or not it is a genuine person.
At this time, by transmitting the user's position information together with the identity confirmation information, it becomes possible to more accurately determine whether the user is the identity of the user.

  In addition, by using biometric data values as biometrics based on the biometric data threshold according to the weather data in the user's atmosphere, it is the person himself, but under circumstances involving intimidation or assault. It is also possible to detect that the person is in a state contrary to the will of the person, and by contacting a predetermined contact address, unauthorized settlement and access can be prevented in advance.

  In addition, the biometric sensor and the weather sensor are connected to the mobile phone wireless device, and the mobile phone wireless device functions as various means for realizing the authentication portable terminal device of the present invention. The portable terminal device can be realized very easily and simply.

Embodiments of the present invention will be described below with reference to the drawings.
[1] Configuration of one embodiment of the present invention:
FIG. 1 is a block diagram showing a configuration of an authentication portable terminal device as one embodiment of the present invention, and FIG. 2 is a block diagram showing a configuration of an information processing system as an embodiment of the present invention including the authentication portable terminal device. It is.

  First, the configuration of the information processing system of this embodiment will be described with reference to FIG. As illustrated in FIG. 2, the information processing system 100 according to the present embodiment includes a plurality of authentication portable terminal devices 110 a to 110 n that are respectively possessed by a plurality of users. Note that the authentication portable terminal devices 110a to 110n are collectively referred to as the authentication portable terminal device 110.

  The information processing system 100 according to the present embodiment includes a management server 101, a user terminal device 120, an administrator terminal 130, a contact terminal 140, and a network 170. The user terminal devices 120a to 120n are collectively referred to as the user terminal device 120.

  Here, the management server 101 is provided for providing a service (to be described later) to a user (a person who has previously contracted / registered to receive the service of the management server 101). In addition, it is configured to authenticate a user who desires to provide a service based on the personal identification information received from each authentication portable terminal device 110 and to permit the user who has been authenticated to access the system. Yes.

  The authentication portable terminal device 110 is possessed by a user (settler, person accessing the system, etc.) who is to be authenticated at the time of authentication, and will be described in detail later with reference to FIG. It is structured as it is.

  The user terminal device 120 is a terminal device such as a computer or ATM that allows a user who has the authentication portable terminal device 110 to access a system such as the management server 101 and perform an operation to perform settlement or access to the system. is there.

The administrator terminal 130 is a terminal used by an administrator who manages the management server 101 accessed by the authentication portable terminal device 110.
The contact terminal 140 is a contact that is registered in advance in the authentication mobile terminal device 110 by the user whose identity is to be confirmed using the authentication mobile terminal device 110 (for example, the friend, relative, This terminal is used by spouses and other close relatives and workplace supervisors.

  The user terminal device 120, the administrator terminal 130, and the contact terminal 140 all have a telephone call / communication function and an e-mail transmission / reception function, and are notified from the authentication portable terminal device 110. (Notification by a notification means 111f described later) is configured to be received.

  The network 170 connects the above-described authentication portable terminal device 110, management server 101, user terminal device 120, administrator terminal 130, and contact terminal 140 so that they can communicate with each other. It is assumed that a network of various communication systems such as a telephone line and a wireless local area network (LAN) is included, and a telephone line is used between the authentication portable terminal device 110, the management server 101, and the administrator terminal 130-contact terminal 140. It is also possible to make a call / communication by means of e-mail, and to send and receive e-mails.

Next, the configuration of the authentication portable terminal device 110 used in the information processing system 100 described above will be described with reference to FIG.
As shown in FIG. 1, the authentication portable terminal device 110 of this embodiment includes a biosensor 115, a weather sensor 112, a GPS position detection unit 113, a threshold table 114, a CPU 111, a stop operation unit 116, and an answer input unit 117. It is prepared for.

  The biometric sensor 115 is attached to a part of the user's body (for example, an arm), and the body temperature, blood pressure, heart rate, respiration rate, pulse wave, electrocardiogram, blood oxygen saturation concentration is used as the biometric data value of the user. In this embodiment, body temperature, blood pressure, heart rate, and respiratory rate are detected. At least one of blood oxygen concentration and muscle tissue oxygen concentration is detected in a predetermined cycle.

  The weather sensor 112 predetermines at least one of temperature, water temperature, humidity, atmospheric pressure, water pressure, sunshine situation, and ultraviolet light amount as weather data in the user's location atmosphere (where the user is located). In this embodiment, the temperature (or water temperature), humidity, and atmospheric pressure (or water pressure) are detected.

  The GPS position detection unit (position detection means) 113 detects a user's current location (longitude / latitude information) at a predetermined cycle by a global orientation measurement system (GPS). At that time, altitude and depth may be detected as the current location of the user. In that case, the position detection means is an altimeter that measures altitude based on atmospheric pressure (it can be substituted with the atmospheric pressure measurement function of the weather sensor) and a depth meter that measures depth based on water pressure (which can be substituted with the water pressure measurement function of the weather sensor) Prepare as.

  The biometric sensor 115, the weather sensor 112, and the GPS position detection unit 113 are built in or externally attached to the main body of the authenticating portable terminal device 110, and are wired or wirelessly connected via a cable or the like. As described later with reference to FIG. 5, the result detected at a predetermined cycle is transmitted to the main body of the authentication portable terminal device 110.

  The threshold value table 114 stores biometric data threshold values for managing the physical condition of the user in advance for each weather condition, and is created and set by a function as a threshold value setting unit 111b of the CPU 111 described later. Thus, the authentication portable terminal device 110 is stored and stored in a storage unit such as a RAM (Random Access Memory), a ROM (Read Only Memory), and a hard disk.

  At this time, the biometric data threshold value varies depending on the user and also varies depending on the access environment, and is set for each user according to the weather conditions corresponding to the environment. For example, when access is performed in a hot and humid environment with reference to the normal body temperature T0, blood pressure P0, and heart rate N0 of the user, the weather conditions are 25 to 30 ° C. and the humidity is 80% or more. Body temperature T1, blood pressure P1, and heart rate N1 are set as biometric data threshold values for (weather condition 1), and body temperature is set as the biometric data threshold value when meteorological conditions are an air temperature of 30 to 35 ° C. and a humidity of 60% or more (weather condition 2). T2, blood pressure P2, and heart rate N2 are set, and body temperature T3, blood pressure P3, and heart rate N3 are set as biometric data threshold values when the weather condition is a temperature of 35 ° C. or higher and a humidity of 50% or higher.

  And when it is the weather condition 1 (weather condition 3), when any one or all of a user's actual body temperature T, blood pressure P, and heart rate N exceeds threshold value T1, P1, N1, When the weather condition is 2, any one or all of the user's actual body temperature T, blood pressure P, and heart rate N exceed the thresholds T2, P2, and N2, and when the weather condition is 3, the user's When any one or all of the actual body temperature T, blood pressure P, and heart rate N exceed the threshold values T3, P3, and N3, it is determined that the user's physical condition is abnormal.

  In this embodiment, it does not occur in a general situation such as a change that occurs in the body of the user in a threatening situation or an extreme decrease in consciousness, rather than fatigue or a cold in the normal state of the user. Detects physical and mental changes without any physical condition.

  When access is performed in a low temperature environment, body temperature T4 is set as a biometric data threshold when the weather condition is air temperature 0 to 10 ° C. (weather condition 4), and the weather condition is air temperature −10 to 0 ° C. Body temperature T5 is set as a biological data threshold value at a certain time (weather condition 5), and body temperature T6 is set as a biological data threshold value when the weather condition is air temperature -10 ° C. or lower (weather condition 6). If the actual body temperature T of the user falls below the threshold value T4 when the weather condition is 4, and if the actual body temperature T of the user falls below the threshold value T5 when the weather condition is 5, the weather condition When it is 6, when the user's actual body temperature T falls below the threshold value T6, it is determined that the user's physical condition is abnormal.

  Furthermore, when accessing in a high altitude (low pressure) environment, heart rate N7 and respiration rate K7 are set as biometric data thresholds when the weather conditions are atmospheric pressures A2 to A1 (weather conditions 7), and the weather When the conditions are atmospheric pressure A3 to A2 (weather condition 8), heart rate N8 and respiration rate K8 are set as biometric data thresholds, and the weather condition is 35 ° C. or higher and 50% or higher humidity (weather condition 9) Heart rate N9 and respiration rate N9 are set as the biometric data threshold values. When the weather condition 7 is met, when one or both of the user's actual heart rate N and respiration rate K exceed the thresholds N7 and K7, and when the weather condition 8 is met, the user's actual heart rate When one or both of the number N and the respiratory rate K exceed the thresholds N8 and K8, and when the weather condition is 9, either or both of the user's actual heart rate N and respiratory rate K are the thresholds When N9 and K9 are exceeded, it is determined that the user's physical condition is abnormal.

A CPU (Central Processing Unit) 111 is a predetermined application program (
By executing the authentication portable terminal program), it functions as threshold setting means 111b, threshold reading means 111c, comparison means 111d, warning means 111e, notification means 111f, control means 111a, and inquiry means 111g described later.

  The stop operation unit 116 is for stopping a warning operation (sounding operation, blinking operation, etc.) executed by a warning unit 111e described later by a user's conscious operation. It is comprised by the operation switch etc. in the terminal device 110.

  The answer input unit 117 is for a user to answer whether or not to execute a notification by a notification means 111f (to be described later) in response to an inquiry by the inquiry means 111g (to be described later). It is comprised by the operation switch in the terminal device 110, the touchscreen on a display screen (display), etc.

  The threshold value setting unit 111b creates and sets the above-described threshold value table 114 for each user and for each weather condition corresponding to the access environment. The normal temperature T0, blood pressure P0, and heart rate N0 of the user. As a reference, a pair of weather conditions as described above and a predetermined biometric data threshold value is input and set. The user may be manually input, or the user's normal It may be configured to automatically input the body temperature T0, blood pressure P0, heart rate N0, and access environment at the specified time.

  The threshold value reading means 111c searches the threshold value table 114 and reads out the biometric data threshold value set for the weather conditions corresponding to the weather data (temperature / water temperature, humidity, pressure / water pressure) detected by the weather sensor 112. .

  The comparison unit 111d compares the biometric data threshold value read by the threshold value reading unit 111c with the biometric data values (body temperature, blood pressure, heart rate, respiration rate) detected by the biometric sensor 115, and uses them according to the above-described criteria. It is judged / detected whether the person is a genuine person or has a physical condition.

  The warning unit 111e is controlled by a control unit 111a, which will be described later, and issues a warning to the user when a physical condition abnormality of the user is detected as a result of comparison by the comparison unit 111d. For example, a buzzer or the like in the authentication portable terminal device 110 is sounded or an LED lamp or the like is blinked. Such a warning operation (ringing operation or blinking operation) is stopped via the control unit 111a described later when the user operates the stop operation unit 116 as described above. When a mobile phone is used as the main body of the authentication portable terminal device 110 as described later, the calling operation may be performed by the warning means 111e on the mobile phone as a ringing operation.

  The operation of the notifying unit 111f is controlled by the control unit 111a described later, and if the comparison unit 111d detects the identity of the user or a physical condition as a result of the comparison, the notifying unit 111f (identity confirmation information, abnormal physical condition) Information) to a predetermined contact, and when the user's identity confirmation information and physical condition abnormality information are notified, the biometric data value detected by the biometric sensor 115 and the meteorological sensor 112 are detected. The weather data and the location of the user detected by the GPS position detector 113 are also notified. At that time, if the person is not a genuine person or a physical condition is detected, the notification unit 111f may notify the abnormality by automatically calling a telephone number registered in advance. The user may be notified of abnormalities by automatically transmitting an e-mail to the registered mail address.

  The predetermined contact address is switched by the control means 111a, and details will be described later. In addition, the notification unit 111f manages the above-described biometric data value detected by the biometric sensor 115, the meteorological data detected by the meteorological sensor 112, and the user's location detected by the GPS position detecting unit 113. It is assumed that the function of transmitting to the server 101 at a predetermined cycle is achieved.

Here, when the operation of the inquiry unit 111g is controlled by the control unit 111a and an operation for stopping the warning operation of the warning unit 111e is performed within a predetermined time, whether or not the notification unit 111g performs the notification by the notification unit 111f. Inquires the user. Actually, the display is performed on the display of the authentication portable terminal device 110, and the control unit 111a receives an answer input by the user by operating the touch panel or the operation switch. Has been.

The control unit 111a controls the notification operation of the notification unit 111f and the warning operation of the warning unit 111e. Specifically, the control unit 111a mainly performs the following controls (a) to (f).
(a) When it is detected as a result of comparison by the comparison unit 111d that the user is a genuine person, the identification information is sent to the management server 101 via the notification unit 111f and the network 170.

(b) As a result of comparison by the comparison unit 111d, when it is detected that the user is a genuine person, the location of the user detected by the GPS position detection unit 113, together with the person confirmation information, the notification unit 111f and the network 170 to the management server 101.

(c) As a result of comparison by the comparison unit 111d, when it is detected that the user is not a genuine person, non-person confirmation information is sent to the management server 101 via the notification unit 111f and the network 170.

(d) When the comparison unit 111d detects that the user is not a true person, the location of the user detected by the GPS position detection unit 113 is notified to the notification unit 111f and the network together with the non-person identification information. 170 to the management server 101.

(e) As a result of the comparison by the comparison unit 111d, when abnormal physical condition of the user is detected, the abnormal physical condition information is transmitted to the management server 101 via the notification unit 111f and the network 170. Here, the abnormal physical condition means a change in physical condition that occurs when the patient is in a specific state such as a threat, not due to symptoms such as normal fatigue or a common cold.

(f) If the user's physical condition is detected as a result of comparison by the comparison unit 111d, GPS
The location of the user detected by the position detection unit 113 is transmitted to the management server 101 via the notification unit 111f and the network 170 together with the abnormal physical condition information.

(g) As a result of the comparison by the comparison unit 111d, when the user is not an authentic person or when the user's physical condition is detected, a warning operation for the user is executed via the warning unit 111e.

(h) When the operation for stopping the warning operation of the warning unit 111e (operation of the stop operation unit 116) is not executed even after a predetermined time has elapsed since the start of the warning operation, the notification by the notification unit 111f is executed. In this case, for example, the administrator terminal 130 and the contact terminal 140 are notified.

(i) The notification means 11 is continuously received by the user a predetermined number of times in response to the inquiry by the inquiry means 111g.
When the execution of the notification by 1f is rejected, the notification by the notification unit 111f is forcibly executed. In this case, for example, the administrator terminal 130 and the contact terminal 140 are notified.

The authentication portable terminal device 110 of the present embodiment can be configured as a dedicated terminal device. For example, the biometric sensor 115, the weather sensor 112, and the GPS position detection unit 113 are connected to a mobile phone radio. It can also be configured. In the case of a mobile phone radio device with a built-in GPS function, the biosensor 115 and the weather sensor 112 are connected to each other. Thus, when the mobile phone radio is used as the main body of the mobile terminal device 110, the threshold value table 114, the control means 111a, the threshold value setting means 111b, the threshold value reading means 111c, the comparison means 111d, the warning means 111e, the notification means 111f, and the inquiry The function as the means 111g is provided.

[2] Operation of one embodiment of the present invention:
Next, the operation of the present embodiment will be described with reference to the flowcharts shown in FIGS.

  FIG. 3 is a flowchart for explaining the operation of the biosensor 115 of the present embodiment. As shown in FIG. 3, the biometric sensor 115 detects a user's biometric data values (body temperature, blood pressure, heart rate, respiration rate, etc.) in a predetermined cycle (step S11 in FIG. 3), and the detected biometric data. The data value is transmitted to the CPU 111 (step S12 in FIG. 3).

  FIG. 4 is a flowchart for explaining the operation of the weather sensor 112 of the present embodiment. As shown in FIG. 4, the meteorological sensor 112 detects meteorological data (temperature / water temperature, humidity, pressure / water pressure, etc.) in the atmosphere where the user is located at a predetermined cycle (step S21 in FIG. 4). The detected weather data is transmitted to the CPU 111 (step S22 in FIG. 4).

  FIG. 5 is a flowchart for explaining the operation of the GPS position detection unit 113 of the present embodiment. As shown in FIG. 5, the GPS position detection unit 113 detects the current location of the user (longitude / latitude information or longitude / latitude information / altitude information) at a predetermined cycle by the global orientation measurement system. (Step S31 in FIG. 5), the detected location is transmitted to the CPU 111 (Step S32 in FIG. 5).

  In addition, when it becomes impossible to receive the radio wave from the GPS satellite and the current location is unknown, the information on the immediately preceding location may be transmitted to the CPU 111 while indicating the immediately preceding information.

  Here, the transmission operation of the user data to the CPU 111 by the living body sensor 115, the weather sensor 112, and the GPS position detection unit 113 is controlled so as to be executed almost simultaneously in synchronization with each other in the predetermined cycle. Shall.

  FIG. 6 is a flowchart for explaining the operation of the CPU 111 which is the core of the authentication portable terminal device 110 of this embodiment. As shown in FIG. 6, from the biosensor 115, the weather sensor 112, and the GPS position detection unit 113, the biometric data value of the user wearing the authentication portable terminal device 110 and the authentication portable terminal device 110 are worn. When the weather data of the user and the location of the user wearing the authentication portable terminal device 110 are received, the operation proceeds to the next operation (YES route in step S101 in FIG. 6).

  A user terminal device for the user wearing the authentication portable terminal device 110 to access the bank management server 101 to withdraw or transfer money, or to access the management server 101 system. When 120 is operated (step S102 in FIG. 6), the management server 101 requests the mobile terminal device for authentication 110 to send identification information.

  Here, in the authentication portable terminal device 110, the biometric data threshold set as described above for the weather conditions corresponding to the weather data (temperature / water temperature, humidity, pressure / water pressure) detected by the weather sensor 112 is the threshold value reading. It is retrieved from the threshold value table 114 and read by the means 111c (step S103 in FIG. 6).

  Then, the comparison means 111d compares the biometric data threshold value read by the threshold value reading means 111c with the biometric data values (body temperature, blood pressure, heart rate, respiration rate) detected by the biometric sensor 115 (in FIG. 6). Step S104).

  That is, the comparison unit 111d determines and detects whether the user wearing the authentication portable terminal device 110 is a registered user himself / herself in accordance with the above-described criteria (step S105 in FIG. 6). ).

  In the comparison by the comparison unit 111d, it is determined that the biometric data value is within the range of the biometric data threshold and is an authentic person (YES in step S105 in FIG. 6), and further, the biometric data value is equal to the biometric data threshold. When it is determined that it is within the normal range (YES in step S105 in FIG. 6), the control unit 111a confirms the identity of the management server 101 via the notification unit 111f and the network 170. Information is transmitted (step S107 in FIG. 6). Further, the control unit 111a sends the current location of the user (longitude / latitude information or longitude detected by the GPS position detection unit 113) to the management server 101 via the notification unit 111f and the network 170. (Latitude information / altitude information) is transmitted (step S108 in FIG. 6).

  Thus, it is possible to accurately determine whether the user is a genuine person while using the biometric data value as biometrics based on the biometric data threshold corresponding to the weather data in the user's location atmosphere. It becomes possible. As a result, it is possible to prevent “spoofing” in settlement and system access.

  At this time, the location information of the user is sent together with the identity verification information, so that the location where the user terminal 120 is operated and the location where the user holding the authentication portable terminal device 110 is the same. It becomes clear whether it is or not, and it becomes possible to judge more accurately whether it is a user himself / herself. In other words, in remittances at bank ATMs, payments made with credit cards, etc., it is possible to detect and prevent unauthorized remittance and settlement by checking the user's location information with a bank or credit server. Become. That is, a bank or a credit card company can stop remittance and settlement.

  In addition, when the location where the user terminal device 120 is operated and the location of the user who owns the authentication portable terminal device 110 are different in this way, separately registered users, families, relatives , By sending an email to a mobile phone radio or computer such as a guardian, guardian, etc. that the remittance or payment is about to be done, Awareness of relatives, guardians, and guardians can help prevent and prevent unauthorized remittances and payments.

Further, in the comparison by the comparison unit 111d, if the biometric data value is not within the range of the biometric data threshold value, and it is determined that the person is not an authentic person (NO in step S105 in FIG. 6), the control unit 111a notifies The non-person identification information is sent to the management server 101 via the means 111f and the network 170 (step S109 in FIG. 6). Further, the control unit 111a sends the current location of the user (longitude / latitude information or longitude detected by the GPS position detection unit 113) to the management server 101 via the notification unit 111f and the network 170. (Latitude information / altitude information) is transmitted (step S111 in FIG. 6). Further, the administrator terminal 130 and the contact terminal 140 are notified that the authentic identity could not be confirmed (step S112 in FIG. 6). In addition, the control unit 111a issues a warning or inquiry to the current user through the warning unit 111e or the inquiry unit 111g to the effect that the authentic user cannot be confirmed. Here, when the operation of the stop operation unit 116 for stopping the warning operation of the warning unit 111e is not executed even after a predetermined time has elapsed since the start of the warning operation, the administrator terminal 130 or the contact terminal by the notification unit 111f 140 is notified that the warning operation has not been stopped. If the answer input operation in the answer input unit for the inquiry of the inquiry unit 111g is not executed even after a predetermined time has elapsed since the start of the inquiry operation, the administrator unit 130 or the contact terminal 140 by the notification unit 111f To notify that there is no answer to the inquiry.

  This makes it possible to prevent impersonation, which is not an authentic person, while using biometric data values as biometrics based on biometric data threshold values according to weather data in the user's location. It becomes possible. At this time, it is possible to instantly specify the location where “spoofing” is performed by sending the user's position information together with the non-person identification information.

In this case, it is also possible to identify a criminal by notifying the police or the like of the location where “spoofing” is executed from the management server 101.
Further, in the comparison by the comparison unit 111d, it is determined that the biometric data value is within the range of the biometric data threshold and is a genuine person (YES in step S105 in FIG. 6), but the biometric data value is normal. When it is determined that the range is exceeded (NO in step S106 in FIG. 6), the control unit 111a sends abnormality information to the management server 101 via the notification unit 111f and the network 170 (in FIG. 6). Step S110). Further, the control unit 111a sends the current location of the user (longitude / latitude information or longitude detected by the GPS position detection unit 113) to the management server 101 via the notification unit 111f and the network 170. (Latitude information / altitude information) is transmitted (step S111 in FIG. 6). Further, the administrator terminal 130 and the contact terminal 140 are notified that the authentic identity could not be confirmed (step S112 in FIG. 6). In addition, the control unit 111a issues a warning or inquiry to the current user through the warning unit 111e or the inquiry unit 111g to the effect that the authentic user cannot be confirmed. Here, when the operation of the stop operation unit 116 for stopping the warning operation of the warning unit 111e is not executed even after a predetermined time has elapsed since the start of the warning operation, the administrator terminal 130 or the contact terminal by the notification unit 111f 140 is notified that the warning operation has not been stopped. If the answer input operation in the answer input unit for the inquiry of the inquiry unit 111g is not executed even after a predetermined time has elapsed since the start of the inquiry operation, the administrator unit 130 or the contact terminal 140 by the notification unit 111f To notify that there is no answer to the inquiry.

  At this time, as described above, the situation in which the operation of the stop operation unit 116 is not executed even after a predetermined time has elapsed or the user is not in a normal physical condition, or the user terminal device 120 is forcibly used. Therefore, the administrator terminal 130, the contact terminal 140, and the like are notified together with the biometric data value, the weather data, and the location of the user when the abnormality occurs. In addition, in the state as described above, it is considered that the user himself / herself is not in a state that can be handled by telephone or e-mail. By attaching the value, weather data, and location, automatic call by voice or automatic transmission of e-mail is performed to notify the physical condition abnormality.

  This makes it possible to use the biometric data values as biometrics based on the biometric data threshold value according to the weather data in the user's atmosphere, while being a true person but also intimidating or assaulting. This makes it possible to prevent settlement and access in a state contrary to the will of the person or in a state where some abnormality occurs in the mind and body.

  Also in this case, the management server 101 notifies the police etc. of the location where “spoofing” is being executed with reference to the location information obtained from the authentication portable terminal device 110, thereby threatening the threat. It is also possible to identify the crime scene being conducted.

  As the warning operation for the user by the above warning means 111e, specifically, a buzzer, an alarm sound or the like in the authentication portable terminal device 110 is sounded, an LED lamp or the like is blinked, or used. For example, when a person's own mobile phone radio is used, a call operation is performed.

  FIG. 7 is a flowchart for explaining the operation of the management server 101 of this embodiment. First, as shown in FIG. 7, the management server 101 monitors whether or not the user is using the user terminal device 120 (step S41 in FIG. 7).

  When user use occurs in the user terminal device 120 (YES route in step S41 in FIG. 7), the management server 101 uses the authentication portable terminal possessed by the user who started using the user terminal. User identification information is requested from the device 110 (step S42 in FIG. 7).

  The management server 101 waits for a certain period of time to receive the identity verification information, the non-identity verification information or the abnormality information from the authentication portable terminal device 110 (step S43 in FIG. 7).

  If the personal identification information is obtained from the authentication portable terminal device 110 (YES route in step S44 in FIG. 7), the management server 101 executes a normal logon process (step S45 in FIG. 7).

  When the personal identification information is not obtained from the authentication portable terminal device 110 within a predetermined time, when the non-personal identification information is received, or when abnormality information is received (NO route in step S44 in FIG. 7), the management The server 101 executes error processing without executing normal logon processing (step S46 in FIG. 7).

[3] Effects of one embodiment of the present invention:
In the embodiment described above, a biometric data threshold value for managing the physical condition of the user is set in advance for each weather condition in the threshold value table, and meteorological data detected by a weather sensor (for example, temperature, water temperature, humidity, atmospheric pressure). , Water pressure, sunshine status, and ultraviolet light amount), the biometric data threshold set for the weather condition corresponding to the meteorological condition is retrieved from the threshold table and read out, and is detected by the read biometric data threshold and the biosensor. Use as a result of comparing biometric data values (for example, at least one of body temperature, blood pressure, heart rate, respiratory rate, pulse wave, electrocardiogram, blood oxygen saturation, blood oxygen concentration, muscle tissue oxygen concentration) It is confirmed whether the user is the user himself / herself, and if the user is confirmed, the person confirmation information is transmitted to the management server 101 or the like.

  Thus, it is possible to accurately determine whether the user is a genuine person while using the biometric data value as biometrics based on the biometric data threshold corresponding to the weather data in the user's location atmosphere. It becomes possible. As a result, it is possible to prevent “spoofing” in settlement and system access. At this time, by transmitting the user's position information together with the identity confirmation information, it becomes possible to more accurately determine whether the user is the identity of the user.

  In addition, by using biometric data values as biometrics based on the biometric data threshold according to the weather data in the user's atmosphere, it is the person himself, but under circumstances involving intimidation or assault. It is possible to detect that the person is in a state contrary to the will of the person or that the mind and body are in an abnormal state due to illness, etc., and to prevent unauthorized payments and access by contacting the designated contact Can do.

  In addition, the biometric sensor and the weather sensor are connected to the mobile phone wireless device, and the mobile phone wireless device functions as various means for realizing the authentication portable terminal device of the present invention. The portable terminal device can be realized very easily and simply.

  Further, by simultaneously notifying the user's location by the GPS position detector 113, the user's location can be immediately confirmed, and an emergency vehicle or the like can be immediately directed to the location where the user is located. It is possible to realize a quick initial response.

  In addition, the living body sensor 115, the weather sensor 112, and the GPS position detection unit 113 are connected to the mobile phone, and the mobile phone is made to function as various means 111b to 111g for realizing the device of the present invention. The authentication portable terminal device 110 according to the embodiment can be realized very easily and simply.

[4] Other:
The present invention is not limited to the above-described embodiment, and various modifications can be made without departing from the spirit of the present invention.

  For example, the functions (all or part of the functions of each unit) as the control unit 111a, threshold setting unit 111b, threshold reading unit 111c, comparison unit 111d, warning unit 111e, notification unit 111f, and inquiry unit 111g described above are: This is realized by a computer (including a CPU, an information processing apparatus, and various terminals) executing a predetermined application program (authentication portable terminal program).

  The program is, for example, a computer such as a flexible disk, CD (CD-ROM, CD-R, CD-RW, etc.), DVD (DVD-ROM, DVD-RAM, DVD-R, DVD-RW, DVD + R, DVD + RW, etc.). It is provided in a form recorded on a readable recording medium. In this case, the computer reads the authentication portable terminal program from the recording medium, transfers it to the internal storage device or the external storage device, and uses it. Further, the program may be recorded in a storage device (recording medium) such as a magnetic disk, an optical disk, or a magneto-optical disk, and provided from the storage device to a computer via a communication line.

  Here, the computer is a concept including hardware and an OS (operating system), and means hardware operating under the control of the OS. Further, when the OS is unnecessary and the hardware is operated by the application program alone, the hardware itself corresponds to the computer. The hardware includes at least a microprocessor such as a CPU and means for reading a computer program recorded on a recording medium. The application program as the authentication portable terminal program is stored in the above-described computer as threshold setting means 111b, threshold reading means 111c, comparison means 111d, warning means 111e, notification means 111f, control means 111a, and inquiry means 111g. Contains program code that implements the function. Also, some of the functions may be realized by the OS instead of the application program.

  Furthermore, as a recording medium in the present embodiment, in addition to the flexible disk, CD, DVD, magnetic disk, optical disk, and magneto-optical disk described above, an IC card, ROM cartridge, magnetic tape, punch card, computer internal storage device (RAM) In addition, various computer-readable media such as an external storage device or a printed matter on which a code such as a barcode is printed can be used.

  In addition, the control unit 111a, which has recognized from the detection result of the biosensor 115 that the authentication portable terminal device 110 has been removed from the user and has been reattached, confirms whether or not the authentic mobile terminal device 110 has been reattached by a genuine person. During a predetermined period, normal operation (such as sending of personal identification information) is stopped, and the biometric data threshold value read by the threshold value reading means 111c and the biometric data value detected by the biometric sensor 115 are compared by the comparing means 111d. The operation is continued, and when it is confirmed that the user is the user as a result of the comparison by the comparison unit 111d, the normal operation is restored. In this case, it is confirmed that the person is genuine when the comparison results in a match with a certain probability or more.

  In addition, when it cannot be confirmed that the user is a genuine person, the control unit 111a notifies the management server 101 of the non-person confirmation information and the position information, and stops the operation of the authentication portable terminal device 110. Also good. In addition, in the case where it is not possible to confirm the identity as such, it is not possible to confirm the identity of the cellular phone radio or computer such as a separately registered user, family, relative, guardian or guardian. To this effect, a mail may be transmitted from the management server 101 or a mail may be transmitted from the authentication portable terminal device 110.

  In this case, for example, even when the authentication portable terminal device 110 is attached to another person who has almost the same pulse and respiration rate in normal times, the threshold value reading unit 111c is used under conditions that take weather conditions into consideration for a certain period of time. By continuing the operation of comparing the biometric data threshold read out by the biometric data value detected by the biometric sensor 115 with the comparison unit 111d, it is possible to detect impersonation by another person.

It is a block diagram which shows the structure of the authentication portable terminal device as one Embodiment of this invention. It is a block diagram which shows the structure of the information processing system as one Embodiment of this invention. It is a flowchart for demonstrating the operation | movement (operation | movement of a biosensor) of this embodiment. It is a flowchart for demonstrating the operation | movement (operation | movement of a weather sensor) of this embodiment. It is a flowchart for demonstrating the operation | movement (operation | movement of a GPS position detection part) of this embodiment. It is a flowchart for demonstrating operation | movement (Operation | movement of CPU which makes the core of the authentication portable terminal device) of this embodiment. It is a flowchart for demonstrating the operation | movement (operation | movement of a management server) of this embodiment.

Explanation of symbols

DESCRIPTION OF SYMBOLS 100 Information processing system 101 Management server 110 Authentication portable terminal device 111 CPU
111a control means 111b threshold value setting means 111c threshold value reading means 111d comparison means 111e warning means 111f notification means 111g inquiry means 112 weather sensor 113 GPS position detection unit (position detection means)
114 Threshold Table 115 Biosensor 116 Stop Operation Unit 117 Answer Input Unit 120 User Terminal Device 130 Administrator Terminal 140 Contact Terminal 170 Network

Claims (8)

A biometric sensor for detecting a biometric data value of the user;
A weather sensor for detecting weather data in the user's location atmosphere;
A threshold value table for storing biometric data threshold values for managing the physical condition of the user, which are preset for each weather condition; and
Threshold value reading means for searching and reading out the biometric data threshold value set for the weather condition corresponding to the weather data detected by the weather sensor from the threshold value table;
Comparing means for comparing the biometric data threshold read by the threshold reading means with the biometric data value detected by the biometric sensor;
As a result of comparison by the comparison means, when it is confirmed that the user is the user, control means for sending the person confirmation information;
A portable terminal device for authentication, comprising: Further comprising position detecting means for detecting the location of the user;
The control means sends out the location of the user detected by the position detection means together with the identity confirmation information.
The portable terminal device for authentication according to claim 1. A notification means for notifying a predetermined contact registered in advance;
When the control means detects the abnormal condition of the user by the comparison by the comparison means, the control means notifies the abnormality of the physical condition to a predetermined contact via the notification means.
The portable terminal device for authentication according to claim 1 or claim 2, wherein It is configured by connecting the biological sensor and the weather sensor to a mobile phone radio,
4. The mobile phone wireless device is configured to have functions as the threshold value table, the threshold value reading unit, the comparison unit, and the control unit. 5. The portable terminal device for authentication described in 1. Based on the biometric data value of the user detected by the biometric sensor and the meteorological data in the user's location atmosphere detected by the meteorological sensor, the computer is made to confirm whether the user is the user. An authentication portable terminal program,
Means for creating and setting a threshold value table for preliminarily setting and holding the biometric data threshold value for managing the physical condition of the user for each weather condition;
Threshold value reading means for searching and reading out the biometric data threshold value set for the weather condition corresponding to the weather data detected by the weather sensor from the threshold value table;
Comparing means for comparing the biometric data threshold read by the threshold reading means with the biometric data value detected by the biometric sensor;
As a result of comparison by the comparison means, when it is confirmed that the user is the user, control means for sending the person confirmation information;
An authentication portable terminal program for causing the computer to function. Position detecting means for detecting the location of the user;
Control means for sending the location detected by the position detection means together with the identity verification information;
6. The authentication portable terminal program according to claim 5, wherein the computer is caused to function. 7. The computer according to claim 5 or 6, wherein when the user's physical condition is detected as a result of the comparison by the comparison means, the computer is caused to function as a notification means for notifying a predetermined contact. The portable terminal program for authentication described. It is configured by connecting the biological sensor and the weather sensor to a mobile phone radio,
The authentication portable terminal program according to any one of claims 5 to 7, wherein the portable telephone wireless device is caused to function as each means.

Images