JP2002297551A - Identification system - Google Patents

Abstract

PROBLEM TO BE SOLVED: To obtain an identification system which safely and surely performs user identification even between different terminals. SOLUTION: Biometrics information such as fingerprints, irises and handwriting of a user is encoded by using a registration terminal 20 beforehand and registered in an identification information storage server 10. Also, key information for use in encoding and decoding it, registration terminal model information and user identification information are recorded in a portable personal information storage medium 30. When receiving identification in an identification terminal 40, encoded biometrics information acquired from the above identification information storage server 10 is decoded by using the encoding key e1 of the personal information storage medium 30. The user identification is performed by collating the decoded biometrics information with the reentered biometrics information.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to an authentication system for performing user authentication when enjoying a service via a communication line, and more particularly, to performing the user authentication safely and reliably even between different terminals. It concerns an authentication system.

[0002]

2. Description of the Related Art The Internet, which has spread rapidly in recent years, has the problem that, since it is an open network, there is a possibility that data transmitted by itself can be seen by a third party. Therefore, by introducing encryption technology, it is possible to securely transmit a credit card number or the like between a Web server and a Web browser,
Data security, such as proving that the sender or content of the email has not been forged, is being attempted.

Here, as typical encryption techniques on the Internet, a common key encryption method and a public key encryption method are known. The common key cryptography is a method in which the user and the other party perform encryption and decryption using the same encryption key. Public key cryptography, on the other hand, is currently the mainstream cryptography, in which data is encrypted and decrypted using two key pairs, a private key and a public key, and encrypted with one of the keys. Has the characteristic that it cannot be decrypted without using the other key.

[0004] In this public key cryptography, the private key, as the name implies, can be freely used only by the owner (who has the right to use it), and must be securely managed by himself. Further, the public key is widely disclosed on the Internet or the like, so that anyone can obtain and use it. Here, encrypting with a private key does not seem to make sense at first glance because anyone can obtain a public key for decryption, but in fact it is not, and data is encrypted with a private key. This has the advantage that by decrypting the data with the public key that forms a pair, it is possible to confirm that the data has been encrypted by the private key holder. That is, the identity can be confirmed by this, and what utilizes this property is a so-called digital signature.

A digital signature is attached to an electronically created document (message) in order to identify a sender (creator), and is very important in an electronic authentication system that supports electronic commerce and electronic application. Plays a role. Specifically, by extracting a hash value from the message created by the sender to create a message digest that is a reduced version of the message, and then encrypting this message digest with the sender's own private key Created.

An authentication system using a digital signature is
Certificate holder (message sender), certificate relying party (message recipient) and certificate authority (public key certificate issuer)
In general, it is composed of the three members. Here, the public key certificate can confirm who the message sender is, and usually includes the public key of the authenticated message sender and information (attributes) on the message sender. Have been. Further, the public key certificate is issued by the certificate authority, and only the person who has issued the certificate can use the private key corresponding to the certificate. In addition, the public key certificate is digitally signed by a certificate authority in order to identify the issuing certificate authority. Therefore, the certificate authority:
Often have a strong public nature.

On the other hand, biometrics authentication has attracted attention as one of the methods for performing user authentication. Biometrics authentication is a method of identifying a user based on biometric information unique to an individual, such as a fingerprint, iris, palm print, voice, and handwriting. Therefore, when inputting biometrics information, it is impossible for anyone other than the user to execute it, and user authentication with higher security can be performed.

An authentication system using such biometric information for user authentication is disclosed in, for example,
No. 00-092046 discloses a “remote authentication system”. According to this “remote authentication system”, biometrics information, which is personal information of the user, is encrypted, and the network is transferred in a state where the biometrics information can be decrypted only to the authentication server designated by the user. Your personal privacy,
Protection can be ensured in a form that reflects the user's will.

[0009]

However, in the above-described user authentication using a digital signature, once a digital signature is registered in a terminal such as a computer, it is only necessary to input a password at the time of user authentication. If the password was known to others, it was not possible to prevent spoofing from the terminal. That is, the association between the user himself and the digital signature is only required when obtaining the digital signature from a certificate authority or the like, and cannot be against social hacking such as password leakage.

On the other hand, the above-mentioned Japanese Patent Application Laid-Open No. 2000-09204
In the "remote authentication system" disclosed in No. 6, since the biometrics information can be decrypted on the authentication server side, the information cannot be completely protected if a malicious operation is performed on the server side. there were.

It is also possible to record the biometric information to be verified, ie, the registered biometric information, on a portable recording medium. In general, the size of the biometric information is compared with that of a digital signature or the like. This is not practical because a very large and large-capacity recording medium is required. Furthermore, if the recording medium is stolen, it is highly likely that spoofing is possible by analyzing the biometric information.

The present invention has been made to solve the above problems, and has as its object to obtain an authentication system that performs user authentication safely and reliably even between different terminals.

[0013]

Means for Solving the Problems The above-mentioned problems are solved,
In order to achieve the object, in the authentication system according to the present invention, at least a personal information storage medium storing an encryption key and a user's biometric information are input, and the input biometric information is stored in the personal information storage. Encrypted using the encryption key read from the medium, a registration terminal that transmits the encrypted biometrics information, and receives the encrypted biometrics information transmitted from the registration terminal, and receives the received encrypted An authentication information storage server that stores biometrics information and transmits the stored biometrics information in response to a request, and inputs biometrics information of a user, and transmits the encrypted biometrics information from the authentication information storage server. Receive,
An authentication terminal that decrypts the received encrypted biometrics information using the encryption key read from the personal information storage medium, and compares the decrypted biometrics information with the input biometrics information, The registration terminal, the authentication information storage server, and the authentication terminal are connected via a communication line.

According to the present invention, the biometrics information registered in advance is managed by the authentication information storage server located outside, so that a terminal different from the registration terminal used by the user at the time of registration, such as an authentication terminal, is used. Even in the case of trying to do so, it is possible to execute personal authentication with encryption only by transferring the personal information storage medium.

In the authentication system according to the next invention, a personal information storage medium storing at least an encryption key and a secret key and a user's biometric information are input, and the input biometric information is stored in the personal information storage device. A registration terminal that encrypts using the encryption key read from the storage medium and transmits the encrypted biometrics information, and receives the encrypted biometrics information transmitted from the registration terminal and receives the received encrypted Storing the biometrics information of the user, and inputting the biometrics information of the user and the authentication information storage server that transmits the stored biometrics information in response to the request, and the encrypted biometrics information from the authentication information storage server. And stores the received encrypted biometrics information in the personal information storage medium. Decrypted by using the encryption key read from, by matching the biometric information input and decoded biometrics information and outputs a verification result,
Receiving a session key encrypted with a public key paired with the secret key, decrypting the received encrypted session key using a secret key read from the personal information storage medium, and decrypting the decrypted session key. And the verification result are encrypted with the secret key, an authentication terminal that transmits the encrypted session key and the verification result, and services such as e-commerce are provided, and a public key that is paired with the secret key is obtained. When requesting user authentication to the authentication terminal, a session key is generated, the generated session key is encrypted with the public key, the encrypted session key is transmitted to the authentication terminal, and the encrypted An application server that receives a session key and a collation result from the authentication terminal, the registration terminal, the authentication information storage server, and the authentication terminal. And the application server, characterized in that connected via a communication line.

According to the present invention, information on the encryption key and the secret key is recorded in the personal information storage medium, and the session key issued by the application server and the result of collation of the biometrics information on the authentication terminal are subjected to public key encryption. Since the exchange is performed by law, the user authentication required by the application server can be performed.

In the authentication system according to the next invention, a personal information storage medium storing at least an encryption key and first biometric information of a user are input, and the input first biometric information is stored in plural. Registration for dividing the second biometric information into two pieces of second biometric information, encrypting each second biometric information using an encryption key read from the personal information storage medium, and transmitting the encrypted second biometric information. A terminal, receiving the encrypted second biometric information transmitted from the registered terminal,
A plurality of authentication information storage servers for storing the received encrypted second biometric information and transmitting the stored second biometric information in response to a request, and inputting the user's biometric information, The encrypted second biometrics information is received from a plurality of authentication information storage servers, and each of the received encrypted second biometrics information is read using the encryption key read from the personal information storage medium. An authentication terminal that decrypts, restores the first biometric information by merging each decrypted second biometric information, and compares the restored first biometric information with the input biometric information; Wherein the registration terminal, the authentication information storage server, and the authentication terminal are connected via a communication line.

According to the present invention, registration information is distributed and registered in a plurality of authentication information storage servers, and information from those servers is merged at the time of authentication, so that one biometric information can be stored in one server. No more centralized management.

In the authentication system according to the next invention, a personal information storage medium in which at least an encryption key and a secret key are recorded, and first biometric information of a user are input, and the input first biometric information is input. The information is divided into a plurality of pieces of second biometric information, each piece of second biometric information is encrypted using an encryption key read from the personal information storage medium, and each piece of encrypted second biometric information is encrypted. A transmitting registration terminal, receiving the encrypted second biometric information transmitted from the registration terminal, storing the received encrypted second biometric information, and storing the stored second biometric information A plurality of authentication information storage servers for transmitting information on demand,
The user inputs biometrics information and receives the encrypted second data from the plurality of authentication information storage servers.
And decrypts the received encrypted second biometric information using the encryption key read from the personal information storage medium, and decrypts the decrypted second biometric information. The first biometric information is merged to restore the first biometric information, the restored first biometric information is collated with the input biometric information to output a collation result, and the result is encrypted with a public key paired with the secret key. Receiving the encrypted session key, decrypting the received encrypted session key using the secret key read from the personal information storage medium, and encrypting the decrypted session key and the verification result with the secret key. An authentication terminal that transmits an encrypted session key and a verification result, and provides services such as electronic commerce, and a public key that is paired with the secret key. Get the key, when requesting a user authentication to the authentication terminal, generating a session key, encrypts the generated session key by the public key,
An application server that transmits an encrypted session key to the authentication terminal, and receives the encrypted session key and a comparison result from the authentication terminal, the registration terminal, the authentication information storage server, the authentication terminal, The application server is connected via a communication line.

According to the present invention, the registration information is distributed and registered in a plurality of authentication information storage servers, and the information from those servers is merged at the time of authentication, and the encryption key and the secret are stored in the personal information storage medium. The key information is recorded, and the session key issued by the application server and the result of the verification of the biometric information on the authentication terminal are exchanged by public key cryptography, so that one biometric information is concentrated on one server. It is no longer managed, and enables user authentication required by the application server.

[0021] In the authentication system according to the next invention, in the above invention, there are provided a plurality of mirror servers storing biometric information having the same contents as the biometric information stored by the authentication information storage server; Transmits the encrypted biometrics information to one of the authentication information storage server or the plurality of mirror servers, and the authentication terminal transmits the authentication information storage server or the plurality of mirror servers. Receiving the encrypted biometrics information from any one of the biometrics information;

According to the present invention, biometrics information is multiplexed and stored in a plurality of authentication information storage servers, so that even if some servers are down, information can be decrypted from other servers. .

[0023]

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS An embodiment of an authentication system according to the present invention will be described below in detail with reference to the drawings.
The present invention is not limited by the embodiment.

Embodiment 1 First, an authentication system according to the first embodiment will be described. The authentication system according to the first embodiment encrypts biometric information such as a user's fingerprint, iris, and handwriting by using a registration terminal in advance, registers the encrypted biometric information in an authentication information storage server, and a key for the encryption and decryption. Information, registered terminal model information, and user ID information are recorded on a transportable personal information storage medium, and when authentication is performed at the authentication terminal, the encrypted biometrics information obtained from the authentication information storage server described above is stored in the personal information storage medium. It is characterized in that the user is authenticated by decrypting using the encryption key of the personal information storage medium and comparing the decrypted biometric information with newly input biometric information.

FIG. 1 is a block diagram showing a schematic configuration of the authentication system according to the first embodiment. In FIG.
The authentication system according to the first embodiment includes an authentication information storage server 10, a registration terminal 20, and an authentication terminal 40, which are communicably connected via a communication line 9.

The authentication information storage server 10 has a configuration similar to a Web server on the Internet, and is a so-called general computer system. Here, the authentication information storage server 10 registers and stores the personal authentication information transmitted from the registration terminal 20,
Replies with the stored personal authentication information in response to a request from

The registration terminal 20 is a device similar to a desktop computer, a notebook computer, a PDA (Personal Digital Assistant), a mobile phone, etc., which can enjoy various services such as electronic commerce provided through the communication line 9. In the configuration, a personal authentication information input unit 22 capable of inputting biometric information and a personal information storage medium 30 are provided.

The authentication terminal 40 includes a personal authentication information input section 42 having the same configuration as the personal authentication information input section 22 of the registration terminal 20,
A personal information storage medium 30 is provided, and the entire configuration is the same as that of the registration terminal 20. Therefore, although the registration terminal 20 and the authentication terminal 40 are not particularly distinguished from each other in terms of the device configuration, at least both the personal authentication information input units 22 and 4
2 and the slot in which the personal information storage medium 30 can be loaded must have the same specifications.

For example, personal authentication information input sections 22 and 4
Reference numeral 2 denotes a fingerprint scanner when a user's fingerprint is input as biometric information, and an input pad such as a tablet which can be input using a stylus pen when a user's handwriting is input as biometric information. is there.

The personal information storage medium 30 is a non-volatile storage medium that is easy to carry, and is, for example, a magnetic card, a flash memory card, an IC card, or the like. Therefore, the registration terminal 20 is provided with a slot in which the personal information storage medium 30 can be loaded.

The communication line 9 may be a public telephone line network or a dedicated line regardless of whether it is wired or wireless. It also includes an IP network such as the Internet constructed on these communication lines.

The operation of the authentication system according to the first embodiment will be described below. FIG. 2 is a flowchart illustrating the operation of the authentication system according to the first embodiment.
In FIG. 2, first, the user inputs the personal authentication information input unit 2 via the personal authentication information input unit 22 of the registration terminal 20.
The user inputs his / her own biometric information that can be input in step 2 (step S101). For example, when the personal authentication information input unit 22 is a fingerprint scanner, the registration terminal 20
Extracts feature points based on a feature point matching method from a fingerprint image read by a fingerprint scanner, and acquires information on the extracted feature points as biometric information.

Next, the registration terminal 20 performs an encryption process on the obtained biometrics information using a predetermined encryption key e1 (step S102). The encryption key e1 is recorded on the personal information storage medium 30 together with the user ID information, the model information of the registration terminal 20, and the like.

Subsequently, the registration terminal 20 transmits the encrypted biometrics information to the authentication information storage server 10 via the communication line 9 together with the above-mentioned user ID information and model information of the registration terminal 20 ( Step S10
3). Upon receiving the registration information such as the encrypted biometric information, the authentication information storage server 10 registers the registration information in the personal authentication information database 12 (step S201).

When the user finishes the biometric information registration process according to the above procedure, the registration terminal 20
The personal information storage medium 30 loaded in the storage device is removed and stored strictly by a portable device or the like unless authentication processing is required in the authentication terminal 40. In particular, the personal information storage medium 30
May also have a function as an ID card for performing other authentication such as when entering / leaving a building whose use is restricted or when using electronic money. In this case, the user carries a plurality of recording media. There is no need, and confusion at the time of use does not occur.

Next, when the user uses an authentication terminal 40 different from the registration terminal 20, the user loads the personal information storage medium 30 into the authentication terminal 40. The user uses the biometrics using the registration terminal 20 for the user authentication required when using the authentication terminal 40 itself or when enjoying the service via the communication line 9 by the authentication terminal 40. As with the information input procedure, the user inputs his / her biometrics information via the personal authentication information input unit 42 of the authentication terminal 40 (step S301).

The authentication terminal 40 temporarily stores the biometric information input by the user, and sends the registered personal authentication information, that is, the request for the encrypted biometric information to the authentication information storage server 10. User ID information recorded on the information storage medium 30 and the registration terminal 2
(Step S30)
2).

The authentication information storage server 10 includes an authentication terminal 40
When the personal authentication information request is received from the personal authentication information request, the encrypted biometric information corresponding to the user ID information and the model information of the registration terminal 20 included in the personal authentication information request is
It is extracted from the personal authentication information database 12 and returned to the authentication terminal 40 (step S202).

The authentication terminal 40 is connected to the authentication information storage server 10
When the encrypted biometric information is received from the personal information storage medium 30, the encrypted biometric information is decrypted using the encryption key e1 recorded in the personal information storage medium 30 (step S303). Then, the authentication terminal 40 collates the biometrics information obtained by the decryption with the biometrics information input in step S301, and determines whether the two match each other (step S304).

When the authentication terminal 40 determines that they match, the authentication terminal 40 shifts to a state where the use of the authentication terminal 40 itself and the enjoyment of the service via the communication line 9 are possible, and a message or the like is displayed. . Conversely, if they do not match, a message, warning, or the like prompting re-input of biometrics information is displayed.

As described above, according to the authentication system of the first embodiment, the authentication information storage server 10 located outside manages the biometric information registered in advance, so that the registration terminal 20 and the authentication terminal 40 As described above, even when the user intends to use a terminal different from that at the time of registration, personal authentication can be easily performed.

Further, since the encryption key e1 is recorded in the personal information storage medium 30 usable between different terminals, the biometric information encrypted with the encryption key e1 is stored in the personal information storage medium 30. Thus, the biometrics information can be stored in the authentication information storage server 10 in an encrypted state. In other words, the terminal without the personal information storage medium 30 cannot perform user authentication, thereby ensuring high security.

Further, since only the key information for encryption / decryption needs to be stored in the personal information storage medium 30, even if the size of the biometric information is large, the storage amount of the personal information storage medium 30 is reduced. I will not do it. For example, if the biometric information is fingerprint information,
Even if different fingerprint scanners are provided between a plurality of authentication terminals, if the specifications of the fingerprint scanner of the registration terminal 20 and the fingerprint scanner of the authentication terminal 40 match, a plurality of fingerprint scanners By registering fingerprint information for each fingerprint scanner with different specifications, individual authentication can be performed.

This means that not only the same type of biometric information but also different types of biometric information can be registered and used for one user. For example, in the authentication information storage server 10, for a single user, both fingerprint information and handwriting information are registered in an encrypted state, and both the authentication terminal having the fingerprint scanner and the authentication terminal having the input pad are registered. User authentication can be performed. That is, a plurality of different authentication mechanisms can be properly used by using the model information of the registration terminal.

Embodiment 2 Next, an authentication system according to the second embodiment will be described. The authentication system according to the second embodiment receives a session key encrypted with a public key by an application server and decrypts the session key with a private key when user authentication is requested from an application server that provides an e-commerce service. By extracting the session key and encrypting the extracted session key and the collation result collated by the authentication system according to the first embodiment with a private key and returning the encrypted session key to the application server, the application server has higher reliability. It is characterized in that user authentication with a high level of reliability has been enabled.

FIG. 3 is a block diagram showing a schematic configuration of an authentication system according to the second embodiment. In FIG. 3, portions common to FIG. 1 are denoted by the same reference numerals, and description thereof will be omitted. In the authentication system shown in FIG. 3, in addition to the encryption key e1, information on the secret key Es1 is recorded on the personal information storage medium 30 loaded in the registration terminal 20 and the authentication terminal 40. Is different from FIG.

Here, the application server 50
It is connected to the communication line 9 to provide various services such as electronic commerce, and obtains a public key that is paired with the secret key Es1. As a user authentication procedure, a session key Ks1 is issued to the authentication terminal 40. Perform
The specific device configuration is a computer system similar to the authentication information storage server 10.

The operation of the authentication system according to the second embodiment will be described below. FIG. 4 is a flowchart illustrating the operation of the authentication system according to the second embodiment.
In the operation of the authentication system according to the second embodiment, steps S101 to S103 and S20 shown in FIG.
1, S202 and S301 to S304 are common to each other, and the description thereof is omitted here. In particular, FIG. 4 omits the illustration of steps S101 to S103 and S201 shown in FIG.

Therefore, the operation after the verification processing (step S304) by the authentication terminal 40 will be described here. After the verification process in the authentication terminal 40 is completed, the user determines that he / she wants to enjoy the service provided by the application server 50,
Access to the application server 50
Generates a random number of the session key for this access. Subsequently, the application server 50
Encrypts the generated session key with the public key Ep1 obtained in advance (step S401),
The message is transmitted to the authentication terminal 40 (step S402).
Here, the public key Ep1 obtained by the application server 50 is a key unique to the user who intends to use the service provided by the application server 50, and is a pair with the secret key Es1 held by the user. is there.

The public key Ep1 can be obtained by the application server 50, for example, when the user accesses the application server 50 for the first time, by giving an instruction from the application server 50 to the user to transmit the public key Ep1. Is achieved. In addition,
The user may obtain the key pair of the public key Ep1 and the secret key Es1 unique to the user from a certificate authority, which is a third-party credit institution, or may obtain the key pair by issuing the authentication information storage server 10. Well, there is no particular limitation.

Upon receiving the encrypted session key from the application server 50, the authentication terminal 40 decrypts the session key using the secret key Es1 recorded on the personal information storage medium 30 (step S305). Further, the authentication terminal 40 transmits a message indicating the result of the collation performed in step S304 and a message indicating the result of step S305.
And the secret key Es1
(Step S306), and transmits to the application server 50 (step S307).

When the application server 50 receives the encrypted collation result and the session key from the authentication terminal 40, the application server 50 decrypts the collation result using the public key Ep1, and the decrypted collation result indicates a match and is decrypted. It is checked whether or not the session key matches the one transmitted to the authentication terminal 40 in step S402 (step S402).
403). If they match, it is determined that the access is from a valid user, and the application server 5
No. 0 provides a service by cryptographic communication using a combination of a so-called common key cryptosystem and a public key cryptosystem using the session key or a newly issued session key, a secret key and a public key.

As described above, the application server 50
When a service is provided to the authentication terminal 40, a session key is normally issued in order to improve the security. In the present embodiment, the session key is used to perform user authentication. We are using.

As described above, according to the authentication system according to the second embodiment, in addition to the configuration of the authentication system according to the first embodiment, information on the secret key Es1 is further recorded in the personal information storage medium 30. By exchanging the session key issued by the application server 50 and the collation result of the biometric information on the authentication terminal 40 by public key cryptography, the application server 50
Since the user authentication required by the server is also enabled, in addition to the effects of the first embodiment, highly reliable user authentication can be performed from the application server 50 side.

Embodiment 3 Next, an authentication system according to the third embodiment will be described. The authentication system according to the third embodiment is characterized in that a plurality of the authentication information storage servers described in the first embodiment are installed, and each authentication information storage server includes a personal authentication information database having the same contents.

FIG. 5 is a block diagram showing a schematic configuration of an authentication system according to the third embodiment. In FIG. 5, portions common to those in FIG. 1 are denoted by the same reference numerals, and description thereof is omitted. The authentication system shown in FIG. 5 differs from FIG. 1 in that a plurality of authentication information storage servers 10-1 to 10-n are provided.

In particular, the personal authentication information database 12 provided in each authentication information storage server has the same contents, and the registration terminal 20 and the authentication terminal 40 perform registration processing or biometrics processing on any of the authentication information storage servers. Metrics information acquisition processing can be performed.

For example, when the registration terminal 20 performs the biometric information registration process on the authentication information storage server 10-1 as described in the first embodiment, the authentication information storage server 10-1 In the personal authentication information database 12, the part changed by the registration process is notified to the other authentication information storage servers 10-2 to 10-n, and the authentication information storage servers 10-2 to 10-n respectively notify the notification. Update the contents of the personal authentication information database 12 provided by the user.

That is, the authentication information storage servers 10-1 to 10-1
10-n are mirror server relationships with each other,
Holds biometric information with the same contents. Therefore, the authentication terminal 40 can acquire the latest biometric information regardless of which authentication information storage server is accessed. In the authentication terminal 40, the authentication information storage server at the shortest position of the communication path may be registered in advance, and the authentication information storage server may be used during normal use. At this time, if the authentication information storage server at the time of normal use goes down due to some kind of failure, it can be set to automatically switch to another authentication information storage server.

As described above, according to the authentication system according to the third embodiment, the biometrics information is multiplexed and stored in the plurality of authentication information storage servers 10-1 to 10-n. Even if is down, information can be decrypted from another server, and reliable authentication can be performed. In particular, by setting the authentication information storage server with a fast response speed as the server for normal use,
Rapid authentication is possible regardless of the state of network traffic, and even if the terminal that issued the authentication request and the registered terminal are geographically different points, authentication that is not affected by the authentication request can be performed.

Embodiment 4 Next, an authentication system according to the fourth embodiment will be described. The authentication system according to the fourth embodiment divides biometrics information input using a registration terminal into a plurality of pieces of information, encrypts each of the divided pieces of information, and stores the encrypted information in a plurality of authentication information storage servers. It is characterized in that key information for encryption and decryption, model information of registered terminals, user ID information, and information of distributed authentication information storage servers are recorded on a transportable personal information storage medium.

FIG. 6 is a block diagram showing a schematic configuration of an authentication system according to the fourth embodiment. In FIG.
The authentication system according to the fourth embodiment includes a first authentication information storage server 100 (1) to an n-th authentication information storage server 1.
00 (n), a registration terminal 120, and an authentication terminal 140, which are communicably connected via the communication line 9.

First authentication information storage server 100 (1)-
The n-th authentication information storage server 100 (n) has the same configuration as the authentication information storage server 10 described in the first embodiment. However, the biometric information stored in each of the first authentication information storage server 100 (1) to the n-th authentication information storage server 100 (n) is different from each other.

The registration terminal 120 has the same configuration as the registration terminal 20 described in the first embodiment, and includes a personal authentication information input unit 122 and a personal information storage medium 30.
In addition to them, an authentication information dividing unit 124 is further provided. The authentication information dividing unit 124 is configured to input the personal authentication information input unit 12
2 is a means for dividing the biometrics information input via the interface 2 into a plurality of pieces of information. For example, when a fingerprint image is read by the personal authentication information input unit 122, feature points based on the feature point matching method are extracted from the fingerprint image, and information of the extracted feature points is further added to the type of the end point, the branch point, and the like. , Position, and ridge spacing.

Authentication terminal 140 has the same configuration as authentication terminal 40 described in the first embodiment, and includes personal authentication information input section 142 and personal information storage medium 30.
In addition to these, an authentication information merging unit 144 is further provided. The authentication information merging unit 144 is a unit for restoring the biometric information divided by the authentication information dividing unit 124 of the registration terminal 120 into one original biometric information.

The personal information storage medium 30 is a portable non-volatile storage medium, as in the first embodiment.
The communication line 9 is no different from the first embodiment.

The operation of the authentication system according to the fourth embodiment will be described below. FIG. 7 is a flowchart illustrating the operation of the authentication system according to the fourth embodiment.
In FIG. 7, first, as described in the first embodiment, the user operates personal authentication information input section 122 of registration terminal 120.
, The user's own biometrics information that can be input in the personal authentication information input unit 122 is input (step S111).

Next, the registration terminal 120 divides the acquired biometric information into a plurality of pieces of predetermined biometric information by the authentication information dividing unit 124 (step S112). In particular, the first authentication information storage server 1
00 (1) to the n-th authentication information storage server 100 (n) are divided so as to correspond to the types of information stored respectively.

Further, the registration terminal 120 performs an encryption process on each of the plurality of divided biometrics information using a predetermined encryption key e1 (step S113). Note that this encryption key e1 is stored in the user ID information or the registration terminal 1
The information is recorded in the personal information storage medium 30 together with the 20 model information and the like. Here, the encryption key e1 used for each of the divided biometrics information may be common or may be different for each piece of information. Note that this encryption key e1 is the user ID information, the registration terminal 1
20 model information and the first authentication information storage server 100 (1) to the n-th authentication information storage server 100 as the registration destination.
(N) Each personal information storage medium 3 together with the server information etc.
0 is recorded.

Subsequently, the registration terminal 120 records the encrypted biometric information together with the above-mentioned user ID information and the model information of the registration terminal 120 in the personal information storage medium 30 via the communication line 9. On the basis of the server information thus obtained, the first authentication information storage server 100
(1) to the n-th authentication information storage server 100 (n) are transmitted (step S114). First authentication information storage server 100 (1) to n-th authentication information storage server 100 (n)
Each server of the personal authentication information database 12 receives the encrypted registration information such as biometrics information.
Then, the registration information is registered (step S211).

When the user completes the biometric information registration process according to the above procedure, the registration terminal 12
The personal information storage medium 30 that has been loaded into the storage device 0 is removed and, as described in the first embodiment, is strictly stored in a portable device or the like unless the authentication terminal 140 requires authentication processing.

Next, when using the authentication terminal 140, the user loads the personal information storage medium 30 into the authentication terminal 140. The user uses the biometrics using the registration terminal 120 for user authentication required when using the authentication terminal 140 itself or when enjoying the service via the communication line 9 by the authentication terminal 140. As in the information input procedure, the user inputs his / her biometric information via the personal authentication information input unit 142 of the authentication terminal 140 (step S311).

The authentication terminal 140 temporarily holds the biometrics information input by the user and determines the first information determined by the server information recorded in the personal information storage medium 30.
The registered personal authentication information, that is, the request for the encrypted biometrics information is sent to the personal information storage medium 30 from the authentication information storage server 100 (1) to the n-th authentication information storage server 100 (n). The information is transmitted together with the recorded user ID information and the model information of the registration terminal 120 (step S312).

First authentication information storage server 100 (1)-
Each server of the n-th authentication information storage server 100 (n)
When the personal authentication information request is received from the authentication terminal 140, the encrypted biometric information corresponding to the user ID information and the model information of the registration terminal 120 included in the personal authentication information request is extracted from the personal authentication information database 12. Is returned to the authentication terminal 140 (step S21).
2).

The authentication terminal 140 includes the first authentication information storage server 100 (1) to the n-th authentication information storage server 100.
Upon receiving the encrypted biometric information from each server in (n), the encrypted biometric information is
An encryption key e recorded on the personal information storage medium 30
1 (step S313). further,
The authentication terminal 140 combines the biometrics information obtained by the decryption with the original biometrics information by the authentication information combining unit 144 and restores the same (step S314).

Then, the authentication terminal 140 compares the biometric information obtained by the merging with the above-described step S
In step 311, the input information is compared with the input biometrics information to determine whether the two match.
15).

If the authentication terminal 140 determines that they match, the authentication terminal 140 shifts to a state where the use of the authentication terminal 140 itself and the enjoyment of the service via the communication line 9 are possible, and a message to that effect is displayed. . Conversely, if they do not match, a message, warning, or the like prompting re-input of biometrics information is displayed.

As described above, according to the authentication system according to the fourth embodiment, the effects of the first embodiment can be enjoyed, and the registration information is distributed and registered in a plurality of authentication information storage servers. At the time of authentication, information from those servers is merged, so that one biometric information is not centrally managed by one server. In addition, since each authentication information storage server holds the divided biometric information, user authentication cannot be performed with only the biometric information stored in one authentication information storage server, ensuring high security. Is done.

Further, since the personal information storage medium 30 that moves between terminals only needs to hold server information including at least the authentication information storage server to be distributed and the type of divided biometric information, the biometrics Even when the size of the information is large, the storage amount of the personal information storage medium 30 is not pressed.

Embodiment 5 Next, an authentication system according to the fifth embodiment will be described. In the authentication system according to the fifth embodiment, a plurality of the authentication information storage servers described in the second embodiment are installed as described in the third embodiment, and each authentication information storage server has the same personal authentication information database. It is characterized by having.

FIG. 8 is a block diagram showing a schematic configuration of the authentication system according to the fifth embodiment. In FIG. 8, portions common to FIG. 3 are denoted by the same reference numerals, and description thereof will be omitted. In the authentication system shown in FIG. 8, as shown in FIG. 5, a plurality of authentication information storage servers 10-1 to 10-1 are provided.
It is different from FIG. 3 in that 0-n is provided.

As described above, according to the authentication system according to the fifth embodiment, the effects of the second embodiment can be enjoyed, and the biometric information can be stored in the plurality of authentication information storage servers 10-1 to 10-n. Since the metrics information is multiplexed and held, even if some servers are down, information can be decrypted from other servers, and reliable authentication can be performed. In particular, by setting an authentication information storage server with a high response speed as a server for normal use, quick authentication is possible regardless of network traffic conditions, and the terminal that issued the authentication request and the registered terminal Even if the location is geographically different, authentication that is not affected by the location can be performed.

Embodiment 6 FIG. Next, an authentication system according to the sixth embodiment will be described. The authentication system according to the sixth embodiment is the same as the authentication system according to the fourth embodiment.
A plurality of servers from the authentication information storage server to the n-th authentication information storage server are further provided as described in the third embodiment.

FIG. 9 is a block diagram showing a schematic configuration of an authentication system according to the sixth embodiment. In FIG. 9, the same parts as those in FIGS. 5 and 6 are denoted by the same reference numerals, and description thereof will be omitted. In the authentication system shown in FIG. 9, a plurality of mirror servers are installed for each of the first authentication information storage server 10-1 (1) to the m-th authentication information storage server 10-1 (m). 6 is different from FIG. For example, the first authentication information storage server 10-1
Regarding (1), a plurality of first authentication information storage servers 10-2 (1) to 10-3 storing the same biometric information
10-n (1) is installed.

As described above, according to the authentication system according to the sixth embodiment, in the authentication system according to the fourth embodiment, the first authentication information storage server that stores the divided biometric information in a distributed manner. 10-1
As described in the third embodiment, a plurality of mirror servers are provided for each of the (1) to m-th authentication information storage servers 10-1 (m). The effect of the third aspect can be enjoyed.

As described in the sixth embodiment, the configuration in which the divided biometrics information is distributed to a plurality of authentication information storage servers and a plurality of mirror servers are installed in each authentication information storage server is not described. Needless to say, the present invention can be applied to the authentication system according to the second aspect.

[0087]

As described above, according to the present invention, the biometrics information registered in advance is managed by the authentication information storage server located outside, so that the user uses the biometrics information at the time of registration like an authentication terminal. Even when trying to use a terminal different from the registered terminal, it is possible to perform personal authentication with encryption only by transferring the personal information storage medium and not to load the personal information storage medium At the terminal, user authentication becomes impossible,
This has the effect of ensuring high security.

According to the next invention, information on the encryption key and the secret key is recorded on the personal information storage medium, and the session key issued by the application server and the result of collation of the biometric information on the authentication terminal are compared with the public key. Since the exchange is performed by the encryption method, an effect that the user authentication requested by the application server side can be performed with high reliability is achieved.

According to the next invention, the registration information is distributed and registered in a plurality of authentication information storage servers, and the information from those servers is merged at the time of authentication, so that one biometric information can be stored in one server. As a result, it is not possible to receive user authentication with only the biometric information stored in one authentication information storage server, so that high security is ensured.

According to the next invention, the registration information is distributed and registered in a plurality of authentication information storage servers, and at the time of authentication, the information from those servers is merged, and the encryption key and the encryption key are stored in the personal information storage medium. The secret key information is recorded, and the session key issued by the application server and the result of the verification of the biometric information on the authentication terminal are exchanged by public key cryptography, so that one biometric information is concentrated on one server. It is no longer managed, and high security can be secured.
There is an effect that the user authentication requested by the application server can be performed with high reliability.

According to the next invention, the biometrics information is multiplexed and stored in a plurality of authentication information storage servers, so that even if some servers are down, the information can be decrypted from other servers. This has the effect of enabling reliable authentication.

[Brief description of the drawings]

FIG. 1 is a block diagram illustrating a schematic configuration of an authentication system according to a first embodiment;

FIG. 2 is a flowchart illustrating an operation of the authentication system according to the first exemplary embodiment;

FIG. 3 is a block diagram illustrating a schematic configuration of an authentication system according to a second embodiment;

FIG. 4 is a flowchart illustrating an operation of the authentication system according to the second exemplary embodiment;

FIG. 5 is a block diagram illustrating a schematic configuration of an authentication system according to a third embodiment;

FIG. 6 is a block diagram illustrating a schematic configuration of an authentication system according to a fourth embodiment;

FIG. 7 is a flowchart illustrating an operation of the authentication system according to the fourth exemplary embodiment;

FIG. 8 is a block diagram illustrating a schematic configuration of an authentication system according to a fifth embodiment;

FIG. 9 is a block diagram illustrating a schematic configuration of an authentication system according to a sixth embodiment;

[Explanation of symbols]

9 Communication line, 10, 100 Authentication information storage server, 1
2 personal authentication information database, 20, 120 registration terminal, 22 personal authentication information input section, 22 personal authentication information input section, 30 personal information storage medium, 40, 140 authentication terminal, 42, 142 personal authentication information input section, 50 application server , 100 authentication information storage server, 12
2 Personal authentication information input unit, 124 authentication information division unit, 1
44 Authentication information merging unit.

──────────────────────────────────────────────────続 き Continued on the front page (51) Int.Cl. ⁷ Identification symbol FI Theme coat ゛ (Reference) H04L 9/00 675D (72) Inventor Masahiro Kai 2-3-2 Marunouchi 2-chome, Chiyoda-ku, Tokyo Mitsubishi Electric (72) Inventor Akihide Shiratsuke 2-3-2 Marunouchi, Chiyoda-ku, Tokyo Mitsui Electric Co., Ltd. (72) Inventor Toru Oka 2-3-2 Marunouchi, Chiyoda-ku, Tokyo Mitsubishi Electric Co., Ltd. (72) Inventor Hirokazu Tanotsu 2-3-2 Marunouchi, Chiyoda-ku, Tokyo Mitsui Electric Co., Ltd. (72) Inventor Hiroyuki Tsutada 2-3-2 Marunouchi, Chiyoda-ku, Tokyo Mitsubishi Electric In-house F term (reference) 5B035 AA13 BB02 BB09 BC01 5B058 CA31 KA31 KA35 KA37 KA38 5B085 AA01 AE11 AE25 AE29 5J104 AA07 AA16 EA06 EA19 KA01 KA16 KA17 KA19 MA04 NA02 NA03 NA34 NA 35 NA36 NA37 PA07 PA10

Claims (5)

[Claims] 1. A personal information storage medium on which at least an encryption key is recorded and biometrics information of a user are input, and the input biometrics information is encrypted using an encryption key read from the personal information storage medium. A registered terminal for transmitting the encrypted biometric information, receiving the encrypted biometric information transmitted from the registered terminal, storing the received encrypted biometric information, and storing the stored biometric information. And an authentication information storage server that transmits the requested biometrics information in response to the request, receives the encrypted biometrics information from the authentication information storage server, and receives the received encrypted biometrics information. Was decrypted using the encryption key read from the personal information storage medium and decrypted. An authentication terminal for comparing biometrics information with input biometrics information, wherein the registration terminal, the authentication information storage server, and the authentication terminal are connected via a communication line. 2. A personal information storage medium in which at least an encryption key and a secret key are recorded, a user's biometric information is input, and the input biometric information is read using an encryption key read from the personal information storage medium. A registered terminal that transmits the encrypted biometrics information, receives the encrypted biometrics information transmitted from the registered terminal, accumulates and stores the received encrypted biometrics information. An authentication information storage server that transmits biometrics information in response to a request, and a user's biometrics information is input, the encrypted biometrics information is received from the authentication information storage server, and the received encrypted Decrypting the biometrics information using the encryption key read from the personal information storage medium; , Compares the decrypted biometrics information with the input biometrics information, outputs a comparison result, receives the session key encrypted with the public key paired with the secret key, and receives the received encrypted key. An authentication terminal for decrypting the session key using the secret key read from the personal information storage medium, encrypting the decrypted session key and the collation result with the secret key, and transmitting the encrypted session key and the collation result And providing a service such as electronic commerce, obtaining a public key that is paired with the secret key, generating a session key when requesting user authentication to the authentication terminal, and generating the generated session key. Encrypted with the public key, transmits the encrypted session key to the authentication terminal, and transmits the encrypted session key and the collation result to the authentication terminal. An authentication system, comprising: an application server receiving the registration terminal, the authentication information storage server, the authentication terminal, and the application server via a communication line. 3. A personal information storage medium on which at least an encryption key is recorded, and first biometric information of a user are input, and the input first biometric information is divided into a plurality of second biometric information. A registration terminal that encrypts each second biometric information using the encryption key read from the personal information storage medium, and transmits the encrypted second biometric information; and A plurality of authentication information accumulating units that receive the encrypted second biometric information, accumulate the received encrypted second biometric information, and transmit the accumulated second biometric information in response to a request; A server for inputting biometric information of the user, and transmitting the encrypted second information from the plurality of authentication information storage servers.
And decrypts the received encrypted second biometric information using the encryption key read from the personal information storage medium, and decrypts the decrypted second biometric information. An authentication terminal for merging and restoring the first biometric information, and collating the restored first biometric information with the input biometric information. An authentication system, wherein the authentication terminal is connected via a communication line. 4. A personal information storage medium on which at least an encryption key and a secret key are recorded, first biometric information of a user is input, and the input first biometric information is input to a plurality of second biometric information. A registration terminal for encrypting each second biometric information using an encryption key read from the personal information storage medium, and transmitting the encrypted second biometric information; and A plurality of receiving the transmitted encrypted second biometric information, storing the received encrypted second biometric information, and transmitting the stored second biometric information in response to a request; An authentication information storage server, for inputting biometric information of a user, and transmitting the encrypted second data from the plurality of authentication information storage servers;
And decrypts the received encrypted second biometric information using the encryption key read from the personal information storage medium, and decrypts the decrypted second biometric information. The first biometric information is merged to restore the first biometric information, the restored first biometric information is collated with the input biometric information to output a collation result, and the result is encrypted with the public key paired with the secret key. Receiving the encrypted session key, decrypting the received encrypted session key using the secret key read from the personal information storage medium, and encrypting the decrypted session key and the verification result with the secret key. An authentication terminal that transmits an encrypted session key and a verification result, and provides services such as electronic commerce, and a public key that is paired with the secret key. Obtain an open key and, when requesting user authentication to the authentication terminal, generate a session key, encrypt the generated session key with the public key, and transmit the encrypted session key to the authentication terminal. An application server that receives the encrypted session key and the collation result from the authentication terminal, wherein the registration terminal, the authentication information storage server, the authentication terminal, and the application server are connected via a communication line. An authentication system, characterized in that: 5. A server comprising: a plurality of mirror servers storing biometrics information having the same contents as the biometrics information stored by the authentication information storage server; and the registration terminal is configured to store the authentication information storage server or the plurality of mirror servers. For any one, transmitting the encrypted biometrics information, the authentication terminal, from any one of the authentication information storage server or the plurality of mirror servers, the encrypted biometrics information The authentication system according to claim 1, wherein the authentication system receives the information.