JP2001290779A - Illegal use preventing method for original identification card and individual certifying system using the same - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide an illegal use preventing method for an ID card and a person-himself (herself) certifying system, by which a person himself (herself) can be certified with high accuracy by using a simple and inexpensive device. SOLUTION: High and low thresholds are set for the similarity between registered data and input data of physical feature data on an individual. The collation of the password of an individual is used only to intermediate similarity between both thresholds. Thus, the accuracy of certification is improved by a fewer operations and the password of the individual and physical feature data are used and inputted. Consequently, the individual certifying system having high accuracy and high rate for certifying the person himself (herself) is realized by a comparatively simple feature data reader. Impression image data or signature image data are added to original ID information and it is stored in the ID card. It is collated with image data which is previously registered if necessary. Thus, the integrated preventing measure of the illegal use of the ID card, which is matched with existing method, is realized.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a method for preventing unauthorized use of a personal identification card and a personal identification system, and more particularly, to a personal identification system using electronic means utilizing personal physical characteristic data and personal identification marks. Authentication methods and systems.

[0002]

2. Description of the Related Art Conventionally, as used in a cash card handled by a bank ATM, as a method of authenticating an individual, an ID for identifying an individual such as a name and a date of birth is used.
Present the ID card storing the information to the information terminal,
A method of reading information, and then inputting a four-digit personal identification number as an individual identification sign into an information terminal, collating it with a pre-registered number, and confirming the cash card presenter as the identity when the password matches. Are widely spread.

[0003] Recently, it has been noticed that information obtained from fingerprints of fingers, voiceprints of voices, iris patterns of eyes, etc., which are physical characteristics of individuals, is very effective as data for identifying individuals. Therefore, identification methods using these are also being put to practical use.

[0004] In particular, personal identification using fingerprints is effective as an individual identification method as it is used as an auxiliary means for immigration inspection in some countries and criminal investigation in many countries.

[0005]

The problem with the personal identification method using a personal identification number is that if a card is illegally obtained or forged by any method and the personal identification number is illegally known and misused, it is relatively easy. That is, unauthorized use of the card is performed.

On the other hand, in the case of identifying a fingerprint or the like and identifying the person, in order to make a determination with a high level of certainty, it is necessary to extract features from a large amount of data using an expensive device. A long time is required for the determination. Further, if the accuracy of a practical apparatus is increased and the accuracy is increased by a desirable operation so that another person is not erroneously determined to be a person, the person may not be able to be determined to be a person. FIG. 10 is an explanatory diagram for explaining a problem when such physical feature data is used to identify a person. The person is A, when the B others, data characterizing the person A is to the A ₁ is n pieces of symbol string A _n. Each of A ₁ to _An is a symbol string of 1 or 0 or x (x is 1 or 0 but means that it cannot be determined), and each has a meaning of defining a feature. Other B
Similarly, there are n symbol strings B ₁ to B _n , and empirically, it is guaranteed by each person that the symbol strings are not necessarily the same. When the physical feature is a fingerprint of a finger, the fingerprint is a flow pattern or a swirl pattern, and further, is feature data at a place called feature points of various patterns. Person A is under certain circumstances, for example, a specific input terminal, holding out a finger, in a short time, when it is attempted to the reading of the fingerprint, not every, the A _n from the characteristic data A ₁ accurate In some cases, it cannot be read. Certain symbols are noise, may be inverted, may be incorrectly or deliberately presented with the finger out of place, or many bits may not be readable due to foreign objects or the like. While the extent of such a case is different, the data is actually extracted is more or less different from the person A of the characteristic data is from mutation data a ₁ of the person A a _n. Similarly, variation data of another person B is from b ₁ b _n. Here, each of the mutation data is composed of 1, 0, and x. x means that neither 1 nor 0 can be determined, and when comparing and determining with the feature data A or B, x does not become a difference and must be compared and determined as having either possibility. . One of the methods for increasing the effectiveness of the system determination is to increase the number of features to be compared so as to increase the difference between the feature data of the person A to be extracted by the device and the feature data of the other person B, The mutation data of the other person B is not to be confused with the mutation data of the person A, and the other one is to improve the reading accuracy of the characteristic data so as to minimize the variation of the characteristic data of the mutation data as much as possible. is there. In general, these methods increase the cost of the apparatus in any of the methods, or require a long time for determination. Conventionally, in order to reduce costs and shorten the judgment time, the probability of actually judging another person as the person is increased, or the number of cases in which the person cannot be judged as the person despite being the person has been compromised. Is also often.

SUMMARY OF THE INVENTION It is an object of the present invention to prevent unauthorized use of a personal identification number by using a relatively simple device and method, and to increase the level of certainty of personal identification in physical characteristic data.
An object of the present invention is to provide a simple and reliable personal authentication method and system for preventing unauthorized use. Another problem with unauthorized use of personal ID cards is forgery of the cards. A countermeasure against counterfeiting cannot be a perfect countermeasure with one countermeasure, but the second object of the present invention is to provide an effective countermeasure against counterfeiting. In particular, it is an object of the present invention to provide an identity verification means that is consistent with a mechanism for verifying an imprint and a signature that has been conventionally used in a business custom.

Further, a third object of the present invention is to provide an integrated system and method capable of selectively applying various preventive measures to various kinds of fraudulent factors in order to prevent unauthorized use. To provide. This is because the optimal preventive measures also change depending on the environmental conditions of the system. In some cases, multiple preventive measures may need to be used together to increase the effectiveness of the preventive measures. It is necessary to coexist.

[0009]

According to the present invention, there is provided a method for preventing unauthorized use of a personal identification card. The method comprises the steps of: connecting a host computer to a plurality of information terminals via a communication network; An unauthorized use prevention method, wherein at least personal ID information is stored in an identification card possessed by an identified person, and the selected personal identification information is stored in a host computer in correspondence with the personal ID information, Individual I entered in the information terminal
According to the D information, the stored selected personal identification information can be output to the information terminal, and the selected personal identification information can be output to the personal identification number input to the information terminal, the physical information input to the information terminal. A combination of at least two types of personal characteristic data, an imprint image stored on the personal identification card and input to the information terminal, and a signature image stored on the personal identification card and input to the information terminal. By the comparison of the personal identification information with the personal identification information stored in the host computer by a predetermined procedure, the permission / prohibition of the authentication is automatically determined.

If the imprint image or the signature image is selected, the image is further stored in the host computer displayed on the information terminal with the imprint of the real seal stamped by the authenticating witness or the signature of the authentic seal witness. It may be possible to determine whether or not the authentication is to be performed by comparing with the imprint image data or the signature image.

[0011] The person to be identified has a personal identification card in which personal ID information is stored, and in the host computer, a personal identification number and physical feature point data corresponding to the personal ID information are stored in advance. The identified person reads the personal identification card into the information terminal, inputs predetermined physical characteristics to the information terminal according to the instruction of the information terminal, and the information terminal
Based on the personal ID information stored in the personal identification card, the personal identification number and physical characteristic point data stored in the host computer are read in advance, and the physical characteristics of the identified person input to the information terminal are read out. Of each feature point, extract predetermined phenomena for each feature point, digitize them as feature point data, and compare them with physical feature point data read from the host computer to calculate the similarity level numerically. If the similarity level is equal to or more than a predetermined first threshold, the user is authenticated as an individual. If the similarity does not reach a predetermined second threshold lower than the first threshold, authentication is disabled. If the first threshold value is not reached but is equal to or greater than a predetermined second threshold value, the identified person is instructed to input a personal identification number, and the identified person inputs the personal identification number to the information terminal according to the instruction of the information terminal. And the information end Authenticates that the PIN of the person read from code number and a host computer which is input is identity if they match, if not matched well be impossible to authenticate, further, the host computer,
Information as to whether or not physical feature point data corresponding to personal ID information is to be collated is stored in advance.
Reads from the host computer whether or not to perform physical feature point data collation with the personal identification number and physical feature point data, and if the information indicates that physical feature point data is to be collated, all If the information does not match physical feature point data,
The authentication may be determined only by collating the personal identification number without collating the physical feature point data, and the physical characteristic may be the fingerprint of the person to be identified, and may be stored in the host computer in advance. It is desirable that the physical feature data of is a digitized fingerprint feature point data.

[0012] The person to be identified has a personal identification card in which personal ID information is stored, and the host computer stores in advance the personal identification number and fingerprint feature point data corresponding to the personal ID information, For the ID information, a designation as to whether or not to use the fingerprint for verification is stored, and the identified person reads the personal identification card into the information terminal, and inputs the personal identification number to the information terminal according to the instruction of the information terminal. The information terminal uses the personal ID information stored in the personal identification card to determine whether the personal identification number stored in the host computer in advance, the digitized feature point data of the fingerprint, and the fingerprint are to be used for verification. If the personal identification number read from the host computer does not match the personal identification number read from the host computer, authentication is not possible, If the designation is not used for verification, the user is authenticated.If the designation is to use fingerprint for verification, the identified person is instructed to input the fingerprint. The information terminal extracts the characteristic points of the input fingerprint, extracts predetermined phenomena for each characteristic point, quantifies them as characteristic point data, and reads the characteristic points of the fingerprint read from the host computer. Quantify the level of similarity in comparison to the data,
If the level of similarity is equal to or greater than a predetermined threshold, the user is authenticated as an individual. The personal authentication system of the present invention is a personal authentication system formed by connecting a host computer and a plurality of information terminals via a communication network for identifying a person using the personal identification card. In the host computer, at least the personal ID information is stored, and the host computer stores the personal identification number input to the information terminal corresponding to the personal ID information, the physical personal characteristic data input to the information terminal, A personal information storage unit in which pre-selected personal identification information, which is a combination of at least two or more types of signature images stored in the personal identification card and input to the information terminal, is stored on the personal identification card, The information terminal has a card reader for the personal identification card and personal identification information for inputting the selected personal identification information. An input unit, and personal identification information for comparing the personal identification information input to the personal identification information input unit with the selected personal identification information corresponding to the personal ID information read from the personal information storage unit of the host computer. A comparison unit; an authentication determination unit that determines whether to perform authentication in a predetermined procedure based on a comparison result of the personal identification information comparison unit; and a display unit that externally displays necessary information.

[0013] The personal identification card stores personal ID information, and the host computer has an input / output unit for inputting and outputting information to and from an information terminal via a communication network.
A personal information storage unit in which a personal identification number corresponding to personal ID information and physical feature point data are stored in advance, and the personal information storage unit corresponds to the personal ID information according to the personal ID information input from the input / output unit. A control unit for reading out the personal identification number and the physical feature point data of the individual to be output to the information terminal that has been queried via the input / output unit and the communication network. A card reader, a physical characteristic input unit for inputting physical characteristics, a character input unit for inputting a personal identification number, a display unit for displaying necessary information externally, and a host computer via a communication network An input / output unit for inputting / outputting information between the personal computer and a personal ID information for outputting personal ID information read by a card reader to a host computer via the input / output unit and a communication network A sending unit, a personal information storage unit that stores a personal identification number corresponding to personal ID information input from a host computer via a communication network, and physical feature point data; A threshold value storage unit that stores a first threshold value of the similarity level used at the time and a second threshold value lower than the first level, and a feature point of the physical feature recognized by the physical feature input unit; A digitizing section for extracting predetermined phenomena for each of the feature points and digitizing them as feature point data; feature point data digitized by the digitizing section and feature points stored in the personal information storage section A similarity level calculation unit that compares the data with the similarity level to calculate a similarity level; a determination unit; and a control unit that controls the operation of each unit. The determination unit includes a similarity calculated by the similarity level calculation unit. Level is the first threshold If it is above, it is authenticated that it is the person, and if it does not reach the second threshold, it is rejected. If it does not reach the first threshold but it is more than the second threshold, it is displayed via the display Instruct the identified person to enter a PIN, compare the PIN entered from the character input unit with the PIN stored in the personal information storage unit, and if both PINs match, authenticate the user If they do not match, the authentication may be disabled and the result of the authentication may be output to a predetermined output destination. Further, the host computer compares the physical feature point data corresponding to the personal ID information in advance. The information terminal reads from the host computer the information as to whether or not to collate the physical characteristic point data with the personal identification number and the physical characteristic point data from the host computer. And collation of various feature point data In the case of information, the judgment unit performs all processing, and in the case of information that physical feature point data is not to be collated, it does not perform physical feature point data collation, only password identification May be determined as to whether or not the authentication is performed, and it is desirable that the physical feature is the fingerprint of the identified person.

The determination unit compares the personal identification number input to the character input unit with the personal identification number stored in the personal information storage unit. If the personal identification numbers do not match, the authentication unit disables the authentication. If the specification of whether or not to use the fingerprint stored in the verification section is not used for verification, the identity of the user is authenticated, and the fingerprint that matches and is stored in the personal information storage section is used for verification. If the designation is used for verification, the fingerprint is input to the fingerprint input unit by the identified person through the display unit, and the similarity level calculated by the similarity level calculation unit is stored in the threshold storage unit. If the threshold value is exceeded, the user is authenticated. If the threshold value is not reached, the authentication is disabled and the authentication result may be output to a predetermined output destination.

Further, the personal identification card stores personal ID information and imprint image data or signature image data, and the determination unit stores the personal identification number input to the character input unit and the personal information storage unit. The password is compared with the personal identification number. If they do not match, the authentication is rejected. If they match, the imprint image data or signature image data stored on the personal identification card is read out, and the registered imprint image data or Verifies the signature image data.If they do not match, the authentication is disabled.If they match, it is authenticated that the user is the identity if collation with the actual seal or actual signature is not required. Output to a specified output destination, and if the certification witness selects collation with a real seal or collation with an actual signature is necessary. Displays the registered imprint image data or signature image data read from the host computer on at least one of the screen of the display section of the information terminal and the printing paper from the printer, and seals the imprint of the seal possessed by the identified person. Alternatively, the identification may be performed by the identified person, and the authenticating witness may compare the two to determine whether or not to perform the authentication.

[0016]

Next, embodiments of the present invention will be described with reference to the drawings. FIG. 1 is a general schematic block diagram illustrating the concept of the personal authentication system of the present invention. The personal authentication system includes a host computer 110 connected to a communication network 120 and a plurality of information terminals 130.
The host computer 110 stores personal identification information 114 required for personal authentication linked to personal ID information 113 and is used as necessary. You. Information terminal 130
Is an information processing device that performs personal authentication at each site, and includes a personal ID information input unit 134, a personal identification information input unit 133, a personal identification information comparison unit 141, an authentication availability determination unit 142, and a display unit 144.

Here, the personal identification information is stored in the information terminal 130.
The personal identification number 192 input to the personal identification information input unit 133 of the information terminal 130 via a character input unit, and the physical personal characteristic data 193 such as a fingerprint, a voiceprint, and an iris pattern input to the personal identification information input unit 133 of the information terminal 130. The imprint image stored in the personal identification card (ID card) 190 and input to the personal identification information input unit 133 of the information terminal 130, and the imprint image stored in the personal identification card 190 and input to the personal identification information input unit 133 of the information terminal 130. A combination of at least two or more of the signature images is selected according to the usage environment, and whether or not authentication is performed is determined in a predetermined procedure.

The exchange of information between the host computer 110 and the plurality of information terminals 130 is performed through the communication network 120. The personal ID information 191 is usually stored in a personal identification card 190 possessed by the individual, and in this case, the personal ID information input unit 134 is a normal card reader. The personal identification number 192 of the personal identification information is a unique number determined in advance for each individual.
4 is read into the personal identification information input unit 133 by the character input means using the input unit on the liquid crystal screen. The personal identification information 195 of the imprint image data and the signature image data read out of the personal identification information is stored in the personal identification card 190. The image data is read into the personal identification information input unit 133 by a card reader capable of inputting image data.

The physical characteristic data 193 is physical characteristic data extracted from a person who is to be personally authenticated, and includes a fingerprint of a finger, a voiceprint of a voice, an iris pattern of an eye, and the like. When the physical characteristic data 193 is a fingerprint, it is read by the fingerprint reader into the personal identification information input unit 133, and when the physical characteristic data 193 is a voiceprint, it is read into the personal identification information input unit 133 by a microphone, and the physical characteristics Data 1
When 93 is an iris pattern, it is read into the personal identification information input unit 133 by the camera.

When the individual needs to identify himself / herself in order to perform any action, the identified person inserts the personal identification card 190 into the card reader of the information terminal 130 and reads the personal ID information 191 read by the card reader. , Two or more types of pre-selected personal identification information 114 stored in the host computer 110 are read out to the information terminal 130. Host computer 110 and information terminal 1
The exchange of information with 30 is performed through communication network 120. The information terminal 130 receives the presentation of two or more types of personal identification information selected in advance from the principal, and identifies the inputted personal identification information and the personal identification information 114 read from the host computer 110 according to a predetermined procedure. The information comparison unit 141 makes a comparison, and based on the result of the comparison, the authentication possibility determination unit 142 authenticates the user according to a predetermined standard.

When the seal image or the signature image is selected as the personal identification information, the seal image or the actual signature of the personal seal stamped by the authenticating witness is further displayed on the display unit 144 of the information terminal 130. It is also possible to determine whether or not to perform authentication by comparing with imprint image data or signature image data stored in the host computer 110.

Combining two or more types of personal identification information,
Furthermore, by using a procedure as described later, authentication is performed using a relatively simple device and method to prevent unauthorized use of the personal identification number, and to increase the level of certainty in the personal identification in the physical characteristic data. Forgery of the card can be prevented, in particular, by incorporating in the system a mechanism for checking the imprint and signature that has been conventionally performed in the business customs world. In addition, by providing an integrated system and method capable of selectively applying various preventive measures according to environmental conditions to various fraudulent factors, fraudulent use can be prevented. Further, in order to facilitate the transition from existing precautionary measures to new ones, a plurality of precautionary measures can be temporarily coexisted.

Next, a personal authentication system according to a first embodiment of the present invention will be described with reference to the drawings. FIG. 2 is a schematic block diagram of the personal authentication system according to the first embodiment of the present invention. The personal authentication system is built in a system composed of a host computer 210 and a plurality of information terminals 230 connected by a communication network 220. 291 are stored.

The host computer 210 has an input / output unit 211 for inputting / outputting information to / from the information terminal 230 via the communication network 220 and a personal ID information 29 in advance.
The personal information storage unit 212 stores the personal identification number 214 and the fingerprint feature point data 215 corresponding to No. 1 and the necessity information 216 of the fingerprint collation for the personal ID information. The personal identification number 214, the fingerprint feature point data 215, and the fingerprint collation necessity information 216 corresponding to the personal ID information 213 are read from the personal information storage unit 212 in accordance with the personal ID information 291, and the input / output unit 211 and the communication network 220 are read. And a control unit 219 that outputs the information to the information terminal 230 that has been queried via the control unit 219.

The information terminal 230 has a personal identification card 29
0, a character input unit 232 for inputting a personal identification number 292, a fingerprint input unit 233 for inputting a fingerprint 293, a display unit 244 for externally displaying necessary information, and a communication network 220. An input / output unit 236 for inputting / outputting information to / from the host computer 210 via the PC, and a personal ID read by the card reader 231
Personal ID information storage unit 234 storing information 291, and personal ID information 291 stored in personal ID information storage unit 234.
235 to the host computer 210 via the input / output unit 236 and the communication network 220, and a personal identification number corresponding to the personal ID information 291 input from the host computer 210 via the communication network 220. 214 and fingerprint feature point data 215
And a personal information storage unit 237 for storing fingerprint matching necessity information 216 and a similarity level first threshold value and a second threshold value lower than the first level used when comparing fingerprint feature point data. A threshold storage unit 238 for storing, and a fingerprint input unit 233
A feature point extraction digitizer 241 extracts feature points of the fingerprint recognized in step 1, extracts predetermined phenomena for each feature point, and digitizes them as feature point data. The similarity level calculating unit 2 that compares the obtained fingerprint feature point data with the fingerprint feature point data 215 stored in the personal information storage unit 237 to calculate a similarity level.
42, a determination unit 243, and a control unit 249 that controls the operation of each unit.

When the similarity level calculated by the similarity level calculating unit 242 is equal to or greater than the first threshold stored in the threshold storing unit 238, the determining unit 243 determines that the user is the person in question. If the authentication is not performed and the second threshold is not reached, the authentication is disabled. If the first threshold is not reached but the second threshold is exceeded, the identification number of the personal identification number 292 is displayed to the identified person via the display unit 244. An input is instructed, the personal identification number 292 input from the character input part 232 is compared with the personal identification number 214 stored in the personal information storage part 237, and if the two personal identification numbers match, the user is authenticated, If they do not match, authentication is disabled and the result of authentication is output to a predetermined output destination.

When an individual needs to identify himself / herself in order to perform any action, the personal identification number 291 stores the personal identification number 214 and the fingerprint feature point data 215 stored in the host computer 210 as information. Terminal 230
Drawn to. The exchange of information between the host computer 210 and the information terminal 230 is performed through the communication network 220.

The information terminal 230 sends a password 2
Receiving the 92 and the fingerprint 293, the personal authentication is performed. Referring to FIG. 3, the meaning of the authentication performed when both the personal identification number 292 and the personal fingerprint 293 are presented, assuming that the authentication under a certain condition at this time, will be described. 3A and 3B are schematic diagrams for explaining the mutual relationship of the feature data for authentication. FIG. 3A shows a case where the region of the mutation data is close to the region of the feature data, and FIG. 3B shows a region of the mutation data. Is spread from the region of the feature data.

An area 301 in FIG. 3 is a space for feature data of another person. The area 302 is a space for the mutation data of another person. The area 303 is a space for the feature data of the person.
An area 304 is a space for the person's mutation data. As in the case of FIG. 2A, the region 304 of the mutation data of the person himself
If there is no overlap between the region and the other person's mutation data area 302, the person and the other person are strictly and correctly distinguished. On the other hand, in the case of FIG. 2B, this distinction becomes difficult. An area 311 is a space for feature data of another person.
The area 312 is a space for the mutation data of another person. Area 3
Reference numeral 13 denotes a space for the personal characteristic data. Region 314
Is the space of the person's mutation data. The region 315 is a region where the region 312 and the region 314 overlap. In the case of FIG. 2B, the space of the mutation data of the person and the space of the mutation data of the other person overlap, and it is difficult to distinguish the person from the other person in the overlapped space. At this time, by inputting the personal identification number, the area 31
Even if there is an overlap of 5, it is possible to distinguish between a person who inputs a correct password and another person who cannot input a correct password. At this time, it should be noted that the area 315
Others who are restricted to a certain extent and try to misuse their personal identification number or personal ID information,
It is difficult to intentionally create the mutation data shown in the area 315, which is to prevent fraud. Here, since the others in the above description are composed of many individuals, they are represented as representatives. As described above, the effect of using the personal identification number together is to allow the overlapping area 215 of the personal mutation data area and the other person mutation data area, and this effect is, as described in the conventional example, the personal characteristic data. In the case of only the judgment, it is possible to correctly judge, for example, 20% of the person who is not judged as the person in consideration of the risk of confusion with another person. On the other hand, by using it together with the personal characteristic data, it is possible to exclude others who intend to perform intentional injustice with extremely certainty. In addition, in the case of being excluded despite the identity of the person, the case where the device is not operated correctly and, for example, in the case of a fingerprint, the secretion of a large amount of lipid at the fingertip due to the unique constitution of the person, etc. For example, fingerprint data may not be correctly read by the reading device, resulting in large variation data exceeding an allowable range. Normally, this ratio is suppressed to 2% or less in terms of the number of people.

Next, a method for preventing unauthorized use of the personal identification card of the personal authentication system according to the first embodiment of the present invention will be described with reference to the drawings. FIG. 4 is a flowchart of a method for preventing unauthorized use of the personal identification card in the personal authentication system according to the first embodiment of this invention.

When personal authentication is started (S101), ID
Upon receiving the presentation of the card 290 (S102), the personal ID information 291 is read from the ID card (S103), and data of the personal information is requested to the host computer 210 (S1).
04), obtained password 214, fingerprint feature point data 2
15 and the fingerprint collation necessity information 216 are stored in the personal information storage unit 237 (S105), and the fingerprint collation necessity information 216 is stored.
If the fingerprint is required for fingerprint collation (S106Y), the user is instructed to input a fingerprint via the display unit 244 (S107), and if the fingerprint 293 is input from the fingerprint input unit 233 (S10).
8) The feature point extraction / numerization unit 241 extracts feature points from the fingerprint 293, extracts predetermined phenomena for each feature point, quantifies them as feature point data (S109), and the similarity level calculation unit 242. The similarity level is quantified by comparing it with the fingerprint feature point data 215 stored in the personal information storage unit 237 (S110), and is compared with a first threshold value stored in the threshold value storage unit 238 in advance (S111). , First
If it is equal to or more than the threshold value (S111Y), step S116
Then, it is determined that authentication is possible (S116), the result is output (S118), and the personal authentication ends (S119).

If it is equal to or less than the first threshold value (S111N),
It is compared with the second threshold value (S112). If it is equal to or less than the second threshold value (S112N), the process proceeds to step S117, where it is determined that authentication is not possible (S117), and the result is output (S11).
8), the personal authentication ends (S119). If the password is equal to or greater than the second threshold value (S112Y), the identification instruction is input to the identified person via the display unit 244 (S113), and if the password 292 is input from the character input unit 232 (S11).
4) The determination unit 243 compares the password with the password 214 stored in the personal information storage unit 237 (S115). If the password matches the password 214 (S115Y), it is determined that authentication is possible (S116). The password is output (S118), the personal authentication is terminated (S119), and if the password does not match the password (S119).
115N), it is determined that the authentication is not possible (S117), the result is output (S118), and the personal authentication ends (S11).
9).

In step 106, the fingerprint collation necessity information 216
If is not necessary for fingerprint collation (S106N), step 11
Proceed to 3 to check the password.

The personal authentication system according to the first embodiment of the present invention mainly performs collation using a fingerprint, and when it is difficult to judge whether or not authentication is possible by collation using a fingerprint, the personal identification is used to confirm the password. If an attempt is made to increase the accuracy of confirmation by fingerprint-only collation, an expensive fingerprint sensor and analysis system are required, and the collation time is prolonged. Here, two types of thresholds are set for the similarity, and a person with a similarity higher than the higher threshold allows authentication without collating the password, and a person with a similarity lower than the lower threshold performs collation of the password. Authentication is disabled without performing,
Only the person between the higher threshold and the lower threshold performs collation of the password. By setting the respective thresholds to appropriate values, most people can be authenticated without entering a password, and the efficiency of authentication is improved.

In some cases, the fingerprint reader cannot output valid fingerprint feature point data. For example, this is a case of a person who extremely easily attaches a lipid or a foreign substance to a finger. Alternatively, some individuals do not want to present their fingerprints for personal reasons.
In such a case, by setting in advance in the personal information storage unit 212 of the host computer that fingerprint collation is unnecessary,
Authentication is performed only by collation of the personal identification number. Only the party knows that such a setting has been made, so a user of a stolen or forged personal identification card thinks that fingerprint matching will be performed and will avoid using this information terminal, preventing unauthorized use Is done. Currently, the information terminal is only for collation of personal identification number, but if you plan to convert it for fingerprint collation in the future to prevent unauthorized use of the personal identification card, first set fingerprint collation unnecessary. This can be easily handled by setting fingerprint collation as necessary at the time of conversion for fingerprint collation.

In the present embodiment, the fingerprint collation necessity information is registered in advance in the personal information storage unit of the host computer, but this information registration may not be performed. In this case, fingerprint matching is performed for all the persons to be identified.

Next, a personal authentication system according to a second embodiment of the present invention will be described with reference to the drawings. Since the system itself is almost the same as the first embodiment, reference is made to FIG. In the second embodiment, the identification numbers are first collated for all the identified persons, and the fingerprint is collated only for the designated identified persons for authentication. Therefore, the contents of the determination unit 243 and the control unit 249 of the information terminal 230 in FIG. 2 are changed to correspond to the operation, and the first embodiment is performed except that the threshold value stored in the threshold value storage unit 238 is one. The description of the system is omitted because it is the same as the embodiment.

Next, a method for preventing unauthorized use of a personal identification card in a personal authentication system according to a second embodiment of the present invention will be described with reference to the drawings. FIG. 5 is a flowchart of a method for preventing unauthorized use of a personal identification card in a personal authentication system according to a second embodiment of this invention.

When personal authentication starts (S201), ID
Upon receiving the presentation of the card 290 (S202), the personal ID information 291 is read from the ID card (S203), and the host computer 210 is requested for personal information data (S2).
04), obtained password 214, fingerprint feature point data 2
15 and the fingerprint collation necessity information 216 are stored in the personal information storage unit 237 (S205), and a password is instructed to the identified person via the display unit 244 (S206). Is input (S20
7) The comparing unit 243 compares the password with the personal identification number 214 stored in the personal information storage unit 237 (S208).
Proceeding to S16, it is determined that the authentication is not possible (S216), the result is output (S217), and the personal authentication ends (S21).
8).

If the password matches the password (S208Y) and the fingerprint collation necessity information 216 is unnecessary, the fingerprint collation is unnecessary (S209).
N), proceed to step 215 to determine that authentication is possible (S21)
5) The result is output (S217), and the personal authentication ends (S218).

If the password matches the password (S208Y) and the fingerprint collation necessity information 216 is a fingerprint collation required (S209).
Y), the fingerprint input is instructed to the identified person via the display unit 244 (S210). Is extracted, a predetermined phenomenon is extracted for each feature point, and these are quantified as feature point data (S2
12) The similarity level calculation unit 242 uses the personal information storage unit 2
37, the similarity level is quantified by comparing with the fingerprint feature point data 215 stored in the memory 37 (S213), and is compared with a threshold stored in the threshold storage 238 in advance (S21).
4) If it is equal to or larger than the threshold value (S214Y), it is determined that authentication is possible (S215), the result is output (S216), and the personal authentication ends (S217).

If it is less than the threshold value (S214N), the process proceeds to step S216, where it is determined that authentication is not possible (S216), the result is output (S217), and the personal authentication is terminated (S2).
18). In the second embodiment, in principle, the collation of the personal identification number and the fingerprint are used together to increase the accuracy of authentication without using a high-quality fingerprint reader, thereby preventing unauthorized use of the personal identification card. Furthermore, the fingerprint collation necessity information is provided in advance in the personal information storage unit of the host computer, for example, a distinguished person who cannot output valid fingerprint feature point data with a fingerprint reader such as a person who extremely easily attaches a lipid or a foreign substance to a finger, or By setting the fingerprint collation to be unnecessary for the discriminated person who does not want to present the fingerprint, the authentication is performed only by collating the password. Only the party knows that such a setting has been made, so a user of a stolen or forged personal identification card thinks that fingerprint matching will be performed and will avoid using this information terminal, preventing unauthorized use Is done. Currently, the information terminal is only for collation of personal identification number, but if you plan to convert it for fingerprint collation in the future to prevent unauthorized use of the personal identification card, first set fingerprint collation unnecessary. This can be easily handled by setting fingerprint collation as necessary at the time of conversion for fingerprint collation.

Next, a personal authentication system according to a third embodiment of the present invention will be described with reference to the drawings. FIG. 6 is a schematic block diagram of a personal authentication system according to the third embodiment of the present invention. The personal authentication system is built in a system composed of a host computer 610 connected to a communication network 620 and a plurality of information terminals 630. The personal identification card 690 owned by the person to be identified has personal ID information. 691 and imprint image data 695 are stored.

The host computer 610 has an input / output unit 611 for inputting / outputting information to / from the information terminal 630 via the communication network 620, and personal ID information 69 in advance.
The personal information storage unit 612 in which the personal identification number 614 and the imprint image data 617 corresponding to No. 1 are stored, and the personal information storage unit 612 corresponding to the personal ID information 613 according to the personal ID information 691 input from the input / output unit 611. And a control unit 619 for reading out the personal identification number 614 and the imprint image data 617 of the individual to be output to the information terminal 630 that has made the inquiry via the input / output unit 611 and the communication network 620.

The information terminal 630 has a personal identification card 69
0 to personal ID information 691 and imprint image data 695
And a character input unit 632 for inputting a personal identification number 692, a real seal verification instruction input unit 645 for inputting a real seal verification instruction 696 of an authentication witness, Display section 644 to be displayed on
And an input / output unit 636 for inputting and outputting information to and from the host computer 610 via the communication network 620
And the personal ID information 69 read by the card reader 631
1 and a personal ID information transmitting unit 635 that outputs the personal ID information 691 stored in the personal ID information storing unit 634 to the host computer 610 via the input / output unit 636 and the communication network 620.
From the host computer 610 to the communication network 6
The personal information storage unit 637 stores the personal identification number 614 and the imprint image data 617 corresponding to the personal ID information 691 input through the personal computer 20, and the imprint image data 690 stores the imprint image data 690 read by the card reader 631. A section 637, a determination section 643, and a control section 649 for controlling the operation of each section are provided.

The determination section 643 instructs the identified person to input a personal identification number 692 via the display section 644 in accordance with the instruction of the control section 649, and the personal identification number storage section 692 and the personal identification number 692 inputted from the character input section 632. The personal identification number is compared with the personal identification number 614 stored in the personal identification information storage part 637. If they do not match, the authentication is disabled. The data is compared with the imprint image data 617 stored in the 637. If the two do not match, the authentication is disabled. If the two match, the user is authenticated and the authentication result is output to a predetermined output destination. I do. Further, when the actual seal stamp collation instruction input unit 645 has the actual seal stamp collation instruction 696, the seal image data 617 stored in the personal information storage unit 637 is displayed on the display unit 644 as a seal image. The authentication witness seals the seal of the seal owned by the identified person, and compares the seal with the seal image displayed on the display unit 644 to determine whether or not authentication is possible.

The imprint image data 695 stored in the personal identification card 690 is stored in the host computer 61 in advance.
It is the same as the one registered in 0, and it can be said that it is a copy. Imprint image data is registered as digital data by a scanner or the like as image data from a personal seal stamp. The imprint image data 695 of the personal identification card 690 complicates the bit configuration of the personal identification card 690, making it difficult to forge the card. With the personal ID information 691 of the personal identification card 690, the imprint image data 617 of the host computer 610 is read,
By performing comparison with the imprint image data 695 of the personal identification card 690, forgery of the card can be prevented. However, although the stolen card cannot be identified, it cannot be misused by collating the PIN unless the PIN is stolen. In order to completely prevent the personal identification card from being misused even when the personal identification number is stolen, the person brings a seal and the seal image data 6 of the host computer 610.
By displaying or printing the number 17 on the screen, it is possible to prevent unauthorized use of the personal identification card 690 by human intervention as in the custom of personal authentication using a seal. The imprint image data to be displayed may be the imprint image data 695 stored in the personal identification card 690.

Next, a method for preventing unauthorized use of a personal identification card in a personal authentication system according to a third embodiment of the present invention will be described with reference to the drawings. FIG. 7 is a flowchart of a method for preventing unauthorized use of a personal identification card in a personal authentication system according to a third embodiment of the present invention.

When personal authentication starts (S301), ID
Upon receiving the presentation of the card 690 (S302), the personal ID information 691 is read from the ID card (S303).
The imprint image data 695 is read from the card and stored in the imprint image data storage unit 639 (S304), personal data is requested to the host computer 610 by the personal ID information 691 (S305), the obtained personal identification number 614, the imprint image The data 617 is stored in the personal information storage unit 637 (S306), and a password is instructed to the identified person via the display unit 644 (S307).
8) The comparing unit 643 compares the password with the password 614 stored in the personal information storage unit 637 (S309). If the password does not match with the password 614 (S309N), Step 3
In step S313, it is determined that authentication is not possible (S313), the result is output (S315), and the personal authentication is terminated (S31).
8).

If the password matches the password 614 (S309)
Y), the seal image data 695 stored in the seal image data storage unit 639 is compared with the seal image data 617 stored in the personal information storage unit 637 (S31).
0), if they do not match (S311N), proceed to step 313 to determine that authentication is not possible (S313), output the result (S315), and end personal authentication (S31).
8).

The seal image data 695 stored in the seal image data storage unit 639 and the personal information storage unit 637
If the seal imprint image data 617 stored in the file matches (S311Y), it is determined that authentication is possible (S312), and the result is output (S314). If not (S31
6N), the personal authentication ends (S318).

If the actual seal stamp collation instruction 696 has been input to the actual seal stamp collation instruction input unit 645 (316Y), the seal image is displayed on the display unit 644 from the stored seal image data 617, and the personal authentication ends. Yes (S31
8).

Next, a personal authentication system according to a fourth embodiment of the present invention will be described. In the third embodiment, the personal identification number and the imprint image data are used as the targets of comparison, but in the fourth embodiment, signature image data is used instead of the imprint image data. The contents of the configuration of the personal authentication system and the flowchart of the method for preventing unauthorized use are the same as those of the third embodiment except that the imprint image data is replaced with the signature image data.

The registered image of the seal or the signature changes slightly as a bit string depending on the conditions of the scanner at the time of registration, has no regularity, and is a random number. Therefore, it is difficult to intentionally create this image by forgery or the like.

Next, a personal authentication system according to a fifth embodiment of the present invention will be described with reference to the drawings. FIG. 8 is a schematic block diagram of a personal authentication system according to a fifth embodiment of the present invention. The personal authentication system according to the fifth embodiment of the present invention is a personal authentication system that integrates the functions of the personal authentication systems according to the second to fourth embodiments, and the personal information storage unit 212 of the host computer 810 stores a fingerprint. By registering in advance the necessity information of collation by collation, imprint image data, and collation by signature image data in advance, it is adapted to the usage environment, collation by PIN, collation by fingerprint, collation by imprint image data, Authentication can be performed by combining at least one type of collation based on signature image data, and only collation based on a password can be performed. Also, the registered seal or signature can be displayed by the authenticating witness issuing the actual seal verification instruction or the actual signature verification instruction, and the seal can be compared with the seal impression of the actual seal or the actual signature.

The personal authentication system is a communication network 82
The personal identification card 890 owned by the person to be identified includes personal ID information 891 and imprint image data. 895 and signature image data 897 are stored.

The host computer 810 has an input / output unit 811 for inputting / outputting information to / from the information terminal 830 via the communication network 820, and a personal ID information 89 in advance.
1, personal identification number 814, fingerprint feature point data 815a, fingerprint collation necessity information 815b, imprint image data 817a, and imprint collation necessity information 817b.
And personal image storage unit 812 storing signature image data 818a and signature collation necessity information 818b, and from personal information storage unit 812 to personal ID Corresponding personal identification number 814 and fingerprint feature point data 815a
Fingerprint necessity information 815b, imprint image data 817a, imprint collation necessity information 817b, signature image data 818a, and signature collation necessity information 818b.
And the input / output unit 811 and the communication network 82
And a control unit 819 that outputs the information to the information terminal 830 that has been queried via the “0”.

The information terminal 830 has a card reader 831
, A character input unit 832, a fingerprint input unit 833, an actual seal verification instruction input unit 845, and an actual signature verification instruction input unit 846.
A display unit 844, an input / output unit 836, a personal ID information storage unit 834, a seal image data storage unit 839,
Signature image data storage unit 840, personal ID information sending unit 835, personal information storage unit 837, threshold storage unit 83
8, a feature point extraction / numerization unit 841, a similarity level calculation unit 842, a determination unit 843, and a control unit 849.

The card reader 831 is used for identifying the personal identification card 8.
90 personal ID information 891 and imprint image data 89
5 and the signature image data 897, the password number 892 is input to the character input unit 832, the fingerprint 893 is input to the fingerprint input unit 833, and the authentication verification Person's actual seal verification instruction 896
Is input to the actual signature verification instruction input unit 846, and the actual signature verification instruction 898 of the authenticating witness is input to the display unit 844.
, Necessary information is externally displayed and the input / output unit 836
Then, information is input / output to / from the host computer 810 via the communication network 820. The personal ID information storage unit 834 stores the personal ID information 891 read by the card reader 831 and stores the stamp image data storage unit. Reference numeral 839 stores the seal image data 895 read by the card reader 831 and stores the signature image data storage unit 8.
Reference numeral 40 stores the signature image data 897 read by the card reader 831.

The personal ID information sending section 835 outputs the personal ID information 891 stored in the personal ID information storage section 834 to the host computer 810 via the input / output section 836 and the communication network 820, and the personal information storage section 837 ,
Communication network 820 from host computer 810
The personal identification number 814 and the fingerprint feature point data 815a corresponding to the personal ID information 891 inputted through the, the necessity information 815b of the fingerprint collation, and the imprint image data 817a
, Imprint collation necessity information 817b, signature image data 818a, and signature collation necessity information 818b. The threshold value storage unit 838 stores a threshold value of the similarity level used for comparing the characteristic point data of the fingerprint. The feature point extraction and digitization unit 841 stores the fingerprint 89 recognized by the fingerprint input unit 833.
3 is extracted, predetermined phenomena are extracted for each of the feature points, and the extracted phenomena are digitized as feature point data. The similarity level calculation unit 842 calculates the fingerprint feature digitized by the feature point extraction and digitization unit 841. The similarity level is calculated by comparing the point data with the fingerprint feature point data 815 stored in the personal information storage unit 837.

The determination section 843 instructs the identification target to input the personal identification number 892 via the display section 844 according to the instruction from the control section 849, and the personal identification number storage section 892 and the personal identification number 892 input from the character input section 832. The password is compared with the password 814 stored in the memory 837. If the passwords do not match, authentication is disabled and the result of the authentication is output to a predetermined output destination. If the similarity level calculated by the level calculation unit 842 does not reach the threshold value stored in the threshold value storage unit 838, authentication is disabled and the authentication result is output to a predetermined output destination. When the setting is not performed, if the setting is to perform the seal imprint verification, the seal imprint image data 895 stored in the seal imprint image data storage unit 839 and the personal information storage unit 837
Is compared with the imprint image data 817a stored in the storage unit. If the two do not match, the authentication is disabled and the result of the authentication is output to a predetermined output destination. If the signature verification is set, the signature image data 897 stored in the signature image data storage unit 840 and the signature image data 818a stored in the personal information storage unit 837 are compared, and the two do not match. In this case, authentication is disabled and the result of authentication is output to the specified output destination. If both match and signature verification is not performed, the user is authenticated and the authentication result is output to the specified output destination. Output to Further, when there is a real seal verification instruction 896 in the real seal verification instruction input unit 845, the seal image data 817 a stored in the personal information storage unit 837 is displayed as a seal image on the display unit 844. When the actual signature verification instruction 898 is present in the input unit 846, the signature image data 818a stored in the personal information storage unit 837 is displayed on the display unit 8
At 44, it is displayed as a signature image.

The control unit 849 controls the operation of each unit.

Next, a method for preventing unauthorized use of a personal identification card in a personal authentication system according to a fifth embodiment of the present invention will be described with reference to the drawings. FIG. 9 is a flowchart of a method for preventing unauthorized use of a personal identification card in a personal authentication system according to a fifth embodiment of the present invention.

When personal authentication is started (S501), ID
Upon receiving the presentation of the card 890 (S502), the personal ID information 891 is read from the ID card (S503), the imprint image data 895 is read from the ID card and stored in the imprint image data storage unit 839 (S504).
The signature image data 897 is read from the D card and stored in the signature image data storage unit 840 (S505).
Host computer 810 according to personal ID information 891
(S506), the obtained personal identification number 814, fingerprint feature point data 815a, fingerprint collation necessity information 815b, imprint image data 817a, imprint collation necessity information 817b, signature image data 818a, signature collation The necessity information 818b is stored in the personal information storage unit 837 (S507), and an instruction is given to the person to be identified through the display unit 844 to input a personal identification number 892 (S508).
If the password 892 is input from the terminal 32 (S509),
The determination unit 843 compares the password with the password 814 stored in the personal information storage unit 837 (S510), and obtains the password 81.
If the number does not match with No. 4 (S510N), the process proceeds to step 524 to determine that authentication is not possible (S524), outputs the result (S526), and ends the personal authentication (S531).

When the password matches the password 814 (S510)
Y), if the fingerprint collation necessity information 815b is the fingerprint collation necessity (S511Y), the input of the fingerprint 893 is instructed to the identified person via the display unit 844 (S512), and the fingerprint input unit 833 is entered.
When the fingerprint 893 is input from the fingerprint (S513), the feature point extraction / numerization unit 841 extracts feature points from the fingerprint 893, extracts a predetermined phenomenon for each feature point, and quantifies them as feature point data (S514). ), The similarity level calculation unit 842 quantifies the similarity level by comparing it with the fingerprint feature point data 815a stored in the personal information storage unit 837 (S515), and the threshold value stored in the threshold storage unit 838 in advance. (S516), and if it is equal to or smaller than the threshold value (S5).
16N), the process proceeds to step S524, where it is determined that authentication is not possible (S524), the result is output (S526), and the personal authentication ends (S531). At step 516, when the value is equal to or more than the threshold value (S516Y), and at step S511, when the fingerprint collation necessity information 815b does not require fingerprint collation (S511
N) If the seal imprint necessity information 817b is the seal imprint necessity information (S517Y), the seal imprint image data 895 stored in the seal imprint image data storage unit 839 and the personal information storage unit 8
37 is compared with the imprint image data 817a stored in S37 (S518), and if they do not match (S519).
N), proceed to step 524 to determine that authentication is not possible (S5)
24) The result is output (S526), and the personal authentication ends (S531).

The seal image data 695 stored in the seal image data storage unit 639 and the personal information storage unit 637
(S519Y), and when the imprint collation necessity information 817b is not required in step S517 (S517).
N), if the signature verification necessity information 818b is a signature verification necessity (S520Y), the signature image data 897 stored in the signature image data storage unit 840 and the personal information storage unit 8
37 is compared with the signature image data 818a (S521), and if they do not match (S522).
N), proceed to step 524 to determine that authentication is not possible (S5)
24) The result is output (S526), and the personal authentication ends (S531).

The signature image data 897 stored in the signature image data storage section 840 and the personal information storage section 837
(S522Y), and if the signature verification necessity information 818b does not require signature verification in step S520 (S520).
N), it is determined that authentication is possible (S523), and the result is output (S523).
525) If the actual seal verification instruction 896 has not been input to the actual seal verification instruction input unit 845 (S527N), the process proceeds to step S529, and if the actual seal verification instruction 896 has been input to the actual seal verification instruction input unit 845. (S527
Y) The imprint image is displayed on the display unit 844 using the stored imprint image data 817a (S52).
8), proceed to step S529.

In step S529, if the actual signature verification instruction 898 has not been input to the actual signature verification instruction input section 846 (S529N), the personal authentication is terminated (S531).
If the actual signature collation instruction 897 has been input to the actual signature collation instruction input unit 846 (S529Y), the signature image is displayed on the display unit 844 with the stored signature image data 818a (S530), and the personal authentication ends. Do (S
531).

[0069]

The first effect is that illegal use of a personal ID card is extremely difficult and can be prevented by using personal physical characteristic data and a personal identification number together.

The second effect is that, by using a simple and inexpensive fingerprint data reader and simultaneously inputting a personal identification number, the ratio of persons who are judged to be not the persons in spite of being the person is extremely small. It is possible to realize a personal authentication system that can be performed, has high accuracy, and has a simple configuration and operation.

The third effect is that the fingerprint data reading apparatus is, for example, for a specific person who cannot effectively read the fingerprint data due to a constitutional factor of an individual, or for some persons who are not good at presenting fingerprints. That is, personal authentication can be performed only by inputting a personal identification number without lowering the reliability of the entire system and without relying on the determination of fingerprint feature data.

A fourth effect is that the system can be partially or gradually shifted from a conventional personal identification system using only a personal identification number to a system in which measures against fraud are strengthened.

A fifth effect is that forgery of an ID card can be made more difficult by incorporating and utilizing imprint data and signature data in an ID card.

The sixth effect is that an imprint data and a signature data are incorporated into an ID card and utilized, whereby an information system that matches the custom of personal authentication performed by a person confirming a seal or a signature is used. With the support, it is possible to provide an identity authentication system that makes it more difficult to prevent fraudulent use of an ID card.

[Brief description of the drawings]

FIG. 1 is a general schematic block diagram illustrating the concept of a personal authentication system of the present invention.

FIG. 2 is a schematic block diagram of the personal authentication system according to the first embodiment of the present invention.

FIG. 3 is a schematic diagram for explaining a mutual relationship between feature data for authentication. (A) is a case where the area of the mutation data is close to the area of the feature data. (B) is a case where the region of the mutation data is diffused from the region of the feature data.

FIG. 4 is a flowchart of a method for preventing unauthorized use of the personal identification card of the personal authentication system according to the first embodiment of the present invention.

FIG. 5 is a flowchart of a method for preventing unauthorized use of a personal identification card in a personal authentication system according to a second embodiment of the present invention.

FIG. 6 is a schematic block diagram of a personal authentication system according to a third embodiment of the present invention.

FIG. 7 is a flowchart of a method for preventing unauthorized use of a personal identification card in a personal authentication system according to a third embodiment of the present invention.

FIG. 8 is a schematic block diagram of a personal authentication system according to a fifth embodiment of the present invention.

FIG. 9 is a flowchart of a method for preventing unauthorized use of a personal identification card in a personal authentication system according to a fifth embodiment of the present invention.

FIG. 10 is an explanatory diagram illustrating a problem in a case where physical characteristic data is used to identify a person.

[Explanation of symbols]

110, 210, 610, 810 Host computer 112, 212, 612, 812 Personal information storage unit 113, 213, 613, 813 Personal ID information 114 Personal identification information 120, 220, 620, 820 Communication network 130, 230, 630, 830 Information terminal 133 Personal identification information input unit 134, 234, 634, 834 Personal ID information input unit 141 Personal identification information comparison unit 142 Authentication availability determination unit 144, 244. 644, 844 Display unit 190, 290, 690, 890 Personal identification card (ID card) 191, 291, 691, 891 Personal ID information 192, 292, 692, 892 PIN 193 Physical characteristic data 211, 611, 811 Input / output unit 214, 614, 814 PIN 215, 815a Fingerprint point characteristic data 2 6, 815b Fingerprint collation necessity information 219, 619, 819 Control unit 231, 631, 831 Card reader 232, 632, 832 Character input unit 233, 833 Fingerprint input unit 235, 635, 835 Personal ID information sending unit 236, 636, 836 Input / output unit 237, 637, 837 Personal information storage unit 238, 838 Threshold storage unit 241, 841 Feature point extraction digitization unit 242, 842 Similarity level calculation unit 243, 643, 843 Judgment unit 249, 649, 849 Control unit 293, 893 Fingerprints 294, 694, 894 Validity of authentication 617, 817a Imprint image data 639, 839 Imprint image data storage unit 645, 845 Actual imprint collation instruction input unit 695, 895 Imprint image data 696, 896 Actual imprint collation instruction 817b Imprint collation Necessity information 8 8a signature image data 818b certificate verification necessity information 840 signature image data storage unit 846 the real signature verification instruction input unit 897 signature image data 898 real signature verification instruction S101~S119, S201~S218, S301~
S318, S501 to S531 steps

Continued on the front page (51) Int.Cl. ⁷ Identification symbol FI Theme coat II (reference) G06K 19/10 G06T 7/00 530 5J104 G06T 7/00 530 570 570 570 590 590 G06K 19/00 R G07F 7/12 S H04L 9/32 G07F 7/08 B H04L 9/00 673A 673D 673E F term (reference) 3E044 BA04 DA05 DA06 DE01 5B035 AA13 BB09 BC01 5B043 AA01 AA09 BA02 BA06 BA09 CA09 FA02 FA04 GA04 GA13 GA18 GA19 5B033 KA12 KA12 KA12 KA12 AE03 AE11 AE25 5J104 AA07 KA01 KA16 KA17 KA18 NA33 NA36 NA38 PA10

Claims (15)

[Claims] 1. A method for preventing unauthorized use of a personal identification card in a personal authentication system formed by connecting a host computer and a plurality of information terminals via a communication network, the personal identification card being possessed by a person to be identified. Stores at least personal ID information, and the host computer stores the selected personal identification information in correspondence with the personal ID information, and stores the personal identification information according to the personal ID information input to the information terminal. The selected personal identification information can be output to the information terminal, and the selected personal identification information is a personal identification number input to the information terminal, physical personal characteristic data input to the information terminal, A seal image stored on an identification card and input to the information terminal, and a signature stored on the identification card and input to the information terminal It is a combination of at least two or more types of name images, and it is automatically determined whether or not authentication is possible by comparing the personal identification information input to the information terminal with the personal identification information stored in the host computer according to a predetermined procedure. A method for preventing fraud of an identification card, which is determined. 2. When an imprint image is selected,
Further, it is possible to determine whether or not the authentication is possible by comparing the seal imprint of the actual seal stamp stamped by the authenticating witness and the seal imprint image data stored in the host computer displayed on the information terminal. In the case where the authentication is performed, it is further possible to determine whether or not the authentication is possible by comparing the signature of the principal by the authentication witness with the signature image data stored in the host computer displayed on the information terminal. 2. The method for preventing fraud of an identification card according to item 1. 3. A person to be identified has an identification card storing personal ID information, and the host computer stores in advance a personal identification number and physical feature point data corresponding to the personal ID information. Storing, the identified person causes the information terminal to read the identification card, and inputs predetermined physical characteristics to the information terminal according to an instruction of the information terminal; and the information terminal includes the identification card. The personal identification number and the physical characteristic point data stored in advance in the host computer are read out from the personal ID information stored in the host computer, and the physical characteristics of the identified person input to the information terminal are read out. Extract feature points, extract predetermined phenomena for each feature point, digitize them as feature point data,
The similarity level is quantified by comparing with the physical feature point data read from the host computer, and if the similarity level is equal to or more than a predetermined first threshold, the user is authenticated as a first person, If it does not reach a predetermined second threshold lower than the threshold, the authentication is disabled. If it does not reach the predetermined first threshold but is equal to or higher than the predetermined second threshold, the identification number is given to the identification person. The identified person inputs a personal identification number to the information terminal according to the instruction of the information terminal, and the information terminal displays the input personal identification number and the personal identification number read from the host computer. 2. The method for preventing unauthorized use of an identification card according to claim 1, wherein if the passwords match, the user is authenticated. If the passwords do not match, authentication is disabled. 4. The host computer further comprises:
Information on whether or not physical feature point data corresponding to personal ID information is to be collated is stored in advance, and the information terminal sends a personal identification number and physical feature point data together with the personal identification number from the host computer. Information on whether or not to perform physical feature point data collation, and in the case of information to perform physical feature point data collation, perform all the processing according to claim 3 and perform physical 4. Unauthorized personal identification card according to claim 3, wherein in the case of the information that collation of the feature point data is not performed, authentication is determined only by collation of the personal identification number without collation of physical feature point data. How to prevent use. 5. The physical feature is a fingerprint of the identified person,
The method for preventing unauthorized use of an identification card according to claim 3 or 4, wherein the physical characteristic data of the individual previously stored in the host computer is digitized characteristic point data of the fingerprint. 6. An identification person has an identification card in which personal ID information is stored, and the host computer previously stores personal identification number and fingerprint feature point data corresponding to the personal ID information, For the personal ID information, a designation as to whether or not to use a fingerprint for verification is stored.The identified person reads the personal identification card into the information terminal, and enters a personal identification number according to the instruction of the information terminal. Input to the information terminal, the information terminal, according to the personal ID information stored in the personal identification card, the personal identification number stored in advance in the host computer, feature point data of the digitized fingerprint, Read out the designation of whether to use the fingerprint for verification or not, and if the personal identification number read from the host computer does not match the personal identification number input to the information terminal, authentication is prohibited. If it is specified, and the fingerprint is not used for verification, the user is authenticated.If the fingerprint is used for verification, the discriminator is instructed to input a fingerprint. A fingerprint is input to the information terminal according to an instruction of the information terminal, and the information terminal extracts feature points of the input fingerprint, extracts a predetermined phenomenon for each of the feature points, and quantifies them as feature point data. Then, the similarity level is quantified by comparing it with the fingerprint feature point data read from the host computer, and if the similarity level is equal to or higher than a predetermined threshold, the user is authenticated as an individual, and reaches the predetermined threshold. 2. The method for preventing unauthorized use of an identification card according to claim 1, wherein authentication is prohibited if not performed. 7. The identified person has a personal identification card in which personal ID information and imprint image data are stored, and a personal identification number and imprint image data corresponding to the personal ID information are stored in the host computer in advance. The identified person reads the personal identification card into the information terminal, inputs a personal identification number to the information terminal according to an instruction of the information terminal, and stores the personal identification card in the personal identification card. Based on the personal ID information, the personal identification number stored in the host computer in advance and the registered imprint image data are read out, and the personal identification number read into the information terminal and the personal identification number read out from the host computer are read out. If the password does not match, the authentication is not allowed. If the password matches, the imprint image data stored on the personal identification card is read. Then, the registered imprint image data read from the host computer is compared with the registered imprint image data. If they do not match, the authentication is disabled. If the authentication witness selects the necessity of collation with the actual seal, the registered information read from the host computer is displayed on at least one of the screen of the display unit of the information terminal and the printing paper from the printer. Displaying the imprint image data, and stamping the imprint of the seal possessed by the identified person,
3. The method according to claim 2, wherein the authentication witness compares the two to determine whether or not to perform authentication. 8. An identification person has a personal identification card storing personal ID information and signature image data, and the host computer stores in advance a personal identification number and signature image data corresponding to the personal ID information. The identified person reads the personal identification card into the information terminal, inputs a personal identification number to the information terminal according to an instruction of the information terminal, and stores the personal identification card in the personal identification card. The personal identification number stored in the host computer in advance and the registered signature image data are read out based on the personal ID information, and the personal identification number input to the information terminal and the personal identification number read out from the host computer are read out. If the password does not match, the authentication is not allowed.If the password matches, the signature image data stored in the personal identification card is read. Then, the signature is compared with the registered signature image data read from the host computer.If they do not match, the authentication is disabled.If they match, if the authenticating witness selects no collation with the actual signature, the user himself / herself is required. If the authentication witness selects that verification with the actual signature is necessary, the registration read out from the host computer on at least one of the screen of the display unit of the information terminal and the printing paper from the printer. 3. The unauthorized use of the personal identification card according to claim 2, wherein the signature image data displayed is displayed, the identification is performed by the identified person, and the authentication witness determines whether or not to perform authentication by comparing the two. Prevention method. 9. A personal authentication system formed by connecting a host computer and a plurality of information terminals via a communication network for identifying a person using the person identification card, wherein the person identification card includes: At least personal ID information is stored. The host computer stores a personal identification number corresponding to the personal ID information, which is input to the information terminal, physical personal characteristic data input to the information terminal, and the personal identification card. Personal information in which preselected personal identification information, which is a combination of at least two types of a seal image input to the information terminal and a signature image stored in the personal identification card and input to the information terminal, is stored. The information terminal includes a card reader for the personal identification card, and the selected personal identification card. A personal identification information input unit for inputting information, the personal identification information input to the personal identification information input unit, and the selected personal information corresponding to the personal ID information read from the personal information storage unit of the host computer. A personal identification information comparing unit for comparing the personal identification information with the user identification information, an authentication determining unit for determining whether or not to perform authentication in a predetermined procedure based on the comparison result of the personal identification information comparing unit, and displaying necessary information to the outside. A personal authentication system comprising a display unit. 10. The personal identification card stores personal ID information. The host computer has an input / output unit for inputting and outputting information to and from the information terminal via a communication network. A personal information storage unit in which a personal identification number and physical feature point data corresponding to the ID information are stored, and the personal information storage unit corresponding to the personal ID information according to the personal ID information input from the input / output unit A control unit that reads out the personal identification number and physical feature point data of the individual to be output to the information terminal that has been queried via the input / output unit and the communication network. A card reader for the personal identification card, a physical characteristic input unit for inputting physical characteristics, a character input unit for inputting a personal identification number, and a display unit for displaying necessary information to the outside, An input / output unit for inputting and outputting information to and from the host computer via the communication network; and outputting personal ID information read by the card reader to the host computer via the input / output unit and the communication network. A personal information storage unit for storing a personal identification number and physical characteristic data corresponding to the personal ID information input from the host computer via the communication network; A threshold value storing unit that stores a first threshold value of the similarity level and a second threshold value that is lower than the first level used in comparing the characteristic point data, and a physical object recognized by the physical characteristic input unit. A feature point for extracting feature points of a feature, extracting a predetermined phenomenon for each feature point, and digitizing them as feature point data; A similarity level calculation unit that calculates a similarity level by comparing the feature point data with the feature point data stored in the personal information storage unit; a determination unit; and a control unit that controls the operation of each unit. The determination unit authenticates the user if the similarity level calculated by the similarity level calculation unit is equal to or greater than the first threshold, and authenticates if the similarity does not reach the second threshold. If the password is not reached and the first threshold is not reached but is equal to or greater than the second threshold, a password is instructed to the identified person via the display unit, and a password input from the character input unit is entered. Compare with the personal identification number stored in the personal information storage unit, if the two personal identification numbers match, authenticate the identity,
10. The personal authentication system according to claim 9, wherein if the passwords do not match, the authentication is disabled, and the result of the authentication is output to a predetermined output destination. 11. The information processing apparatus according to claim 1, wherein the host computer stores in advance information on whether or not to perform physical feature point data matching corresponding to personal ID information. Reads information as to whether or not to perform physical feature point data collation together with the personal identification number and physical feature point data. If the information indicates that all the processes described in claim 10 are to be performed and the physical feature point data is not to be collated, the physical feature point data is not collated and only the personal identification number is collated. The personal authentication system according to claim 10, which determines whether or not to perform authentication. 12. The personal authentication system according to claim 10, wherein the physical feature is a fingerprint of the identified person. 13. A personal authentication system formed by connecting a host computer and a plurality of information terminals via a communication network for identifying a person using the person identification card, wherein the person identification card includes: Personal ID information is stored; an input / output unit for inputting / outputting information to / from the information terminal via a communication network; a personal identification number and a fingerprint corresponding to the personal ID information in advance; A personal information storage unit for storing a specification as to whether or not to use a fingerprint for verification with respect to the personal ID information; and a personal information storage unit according to the personal ID information input from the input / output unit. Read out the personal identification number and the fingerprint corresponding to and the designation of whether or not to use the fingerprint for verification, and inquired through the input / output unit and the communication network. The information terminal, a card reader of the personal identification card, a fingerprint input unit for inputting a fingerprint, a character input unit for inputting a personal identification number, A display unit for externally displaying information; an input / output unit for inputting / outputting information to / from the host computer via a communication network; and a personal computer with the input / output unit for reading personal ID information read by the card reader. And a personal ID information sending unit for outputting to the host computer via the host computer, and the personal ID information input from the host computer via the communication network.
A personal information storage unit for storing a personal identification number and a fingerprint corresponding to the D information and a designation of whether or not to use the fingerprint for verification, and a threshold for a similarity level used for comparing physical feature point data. A threshold value storage unit, and a digitizing unit that extracts feature points of physical features recognized by the physical feature input unit, extracts a predetermined phenomenon for each of the feature points, and digitizes them as feature point data. A similarity level calculation unit that calculates a similarity level by comparing the feature point data quantified by the quantification unit with the feature point data stored in the personal information storage unit; a determination unit; Control unit for controlling the operation of the, the determination unit compares the password input to the character input unit and the password stored in the personal information storage unit, if not matched, authentication Impossible, matched and said personal information If the specification of whether to use the fingerprint stored in the storage unit for verification is not used for verification, the authentication unit authenticates the user, and verifies the fingerprint that matches and is stored in the personal information storage unit. If the designation of whether or not to use is designated for verification, the identification unit is caused to input a fingerprint to the fingerprint input unit through the display unit, and the similarity level calculated by the similarity level calculation unit is set to the threshold value. 10. The individual according to claim 9, wherein if the threshold is not less than the threshold stored in the storage unit, the user is authenticated. If the threshold is not reached, the authentication is disabled and the authentication result is output to a predetermined output destination. Authentication system. 14. The personal identification card stores personal ID information and imprint image data, and the host computer inputs and outputs information to and from the information terminal via a communication network. Unit, a personal information storage unit in which a personal identification number and imprint image data corresponding to the personal ID information are stored in advance, and the personal information storage unit according to the personal ID information input from the input / output unit. A control unit that reads the personal identification number and the imprint image data corresponding to and outputs the information to the information terminal that has been queried via the input / output unit and the communication network. A card reader for an identification card, a character input unit for inputting a personal identification number, a display unit for displaying necessary information to the outside, An input / output unit for inputting / outputting information to / from a host computer, and a personal ID information sending unit for outputting personal ID information read by the card reader to the host computer via the input / output unit and a communication network. A personal information storage unit for storing a personal identification number and imprint image data corresponding to the personal ID information input from the host computer via the communication network;
An imprint comparison instructing unit that instructs whether to use the comparison between the actual imprint and the imprint image data for authentication, a determining unit, and a control unit that controls the operation of each unit, wherein the determining unit includes the character input unit The personal identification number input to the personal information storage unit is compared with the personal identification number. If they do not match, the authentication is disabled.If they match, the imprint image data stored in the personal identification card is read. Then, the data is compared with the registered imprint image data read from the host computer. If the data does not match, the authentication is disabled. Then, the result of the authentication is output to a predetermined output destination, and if the authentication witness selects the necessity of collation with the actual seal, the screen of the display unit of the information terminal and the printing paper from the printer are reduced. At least one of the registered seal imprint image data read from the host computer is displayed, the seal imprint of the seal possessed by the identified person is imprinted, and the authentication witness compares the two to determine whether or not authentication is possible. The personal authentication system according to claim 9, which determines. 15. The personal identification card stores personal ID information and signature image data, and the host computer inputs and outputs information to and from the information terminal via a communication network. Unit, a personal information storage unit in which a personal identification number and signature image data corresponding to the personal ID information are stored in advance, and the personal information storage unit according to the personal ID information input from the input / output unit. A control unit that reads a personal identification number and signature image data corresponding to the information terminal and outputs the personal identification number and the signature image data to the information terminal that has been queried via the input / output unit and the communication network. A card reader for an identification card, a character input unit for inputting a personal identification number, a display unit for displaying necessary information to the outside, An input / output unit for inputting / outputting information to / from a host computer, and a personal ID information sending unit for outputting personal ID information read by the card reader to the host computer via the input / output unit and a communication network. The personal I input from the host computer via the communication network
A personal information storage unit that stores a personal identification number and signature image data corresponding to the D information, an actual signature comparison instruction unit that instructs whether or not a comparison between an actual signature and the signature image data is used for authentication; A determination unit, and a control unit that controls the operation of each unit, wherein the determination unit compares the password input to the character input unit with the password stored in the personal information storage unit, If you do not, authentication will be disabled,
If they match, the signature image data stored in the personal identification card is read, and compared with the registered signature image data read from the host computer,
If they do not match, authentication is disabled.If they match, authentication is not required to match the actual signature.If it is selected, the user is authenticated, and the authentication result is output to a predetermined output destination.
If the authentication witness selects the necessity of collation with the actual signature, the registered signature image data read from the host computer is displayed on at least one of the screen of the display unit of the information terminal and the printing paper from the printer. 10. Displaying and making the distinguished person perform an actual signature, and the authenticating witness determines whether or not to authenticate by comparing the two.
Personal authentication system described in.