JP2004070894A - Card system with individual identification - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To surely identify an individual for securely and quickly performing settlement by a card while maintaining high security, preventing illicit uses such as alteration and impersonation, and improving convenience. <P>SOLUTION: Features such as a fingerprint pattern, the contour of a face, a bone structure and the iris of an eye for individual identification are stored and registered in the card beforehand. When using the card, the individual is identified newly from the card and comparison and collation with an identification pattern inside the card are performed. When it matches, a use for prescribed time is made possible. When it is used once, the use is made impossible unless the individual is identified again. When it is not used within the prescribed time, the use of the card is invalidated. A card reader is also provided with an individual identification function and used together with the card and high level safety and security are secured. <P>COPYRIGHT: (C)2004,JPO

Description

[0001]
TECHNICAL FIELD OF THE INVENTION
The present invention provides a card system with personal authentication, which is a system adapted to the IT society in which progress has been remarkable in recent years, and is necessary for electronic payment. Electronic payment and personal authentication for various cards will cause social unrest and economic turmoil unless the security accuracy is high. At present, the use of the card is easily carried by the person himself and depends only on the personal identification number. Tampering, spoofing, and other abuse are far behind.
[0002]
In order to prevent tampering and prevent spoofing, sophisticated identity authentication is required. To provide a highly convenient and secure card system that is necessary for the advanced information society, especially for settlement and confidentiality.
[0003]
[Prior art]
For example, in the past, most people use personal identification numbers (passwords) as personal authentication in bank cards and credit cards. These code numbers generally have the disadvantage that their birthdays and home phone numbers are mostly abusable to others, and that if a card is stolen or lost, the PIN can be easily read. there were. Fingerprint authentication and personal identification by extracting facial features are currently being used on a trial basis for personal computer use and room security. These systems have a heavy software weight and are not applicable to everyday cards.
[0004]
[Problems to be solved by the invention]
For this reason, in the case of highly confidential settlement, the use of a card has been avoided, and a bank or other financial institution or a business partner has to go to a bank to make a payment in writing. Alternatively, the hotel entrance card is issued at each check-in, but as mentioned above, it is often misused when it is lost. Even if it was not lost, it could easily penetrate and was harmful.
[0005]
[Object of the invention]
The present invention has improved the disadvantages of the conventional example. In particular, the card immediately before use is authenticated, and can be used only for a certain period of time, so that the card can be used with high accuracy and security.
[0006]
[Means for Solving the Problems]
According to the present invention, in order to solve such a problem, a fingerprint and a pattern of an individual stored in the card are collated with a fingerprint and a pattern for personal identification when the card is used. If they match, the card is made usable for a certain period of time. According to the second aspect of the present invention, if the card is not used for a predetermined time, the use of the card becomes invalid. It is not abused if lost. Further, once used, the input fingerprint pattern for authentication is erased. That is, the user is authenticated for security every time it is used.
[0007]
Further, according to the invention of claim 3, personal authentication is ensured by not only a single fingerprint of a finger but also fingerprints of a plurality of fingers. In addition, the order of the fingerprints of the fingers to be input is also set as the target of the authentication. Further, in addition to the fingerprint, the features of the face outline, skeleton, and iris of the eye are used for the personal authentication determination according to the application.
[0008]
According to the fourth aspect of the present invention, the card reader is provided with a similar function, and the card reader and the card itself are authenticated each time the card is used to maintain high security and confidentiality.
[0009]
The predetermined time is a very short time unit when using the card, and is not a long time such as one day, but a unit that does not exceed at least one hour for 5 minutes and 10 minutes.
[0010]
The inventor has named these methods as TWCS (Teraware Card Payment System) method. The TWCS card system is intended to achieve the above-mentioned object.
[0011]
BEST MODE FOR CARRYING OUT THE INVENTION
[0012]
Hereinafter, a first embodiment of the present invention will be described with reference to FIGS. According to the present invention, an authentication function is always added to the card carried by the user, and the card is recognized and executed each time the card is used. When used in combination with a card reader to be described later, the security is further improved. An object of the present invention is to secure personal authentication required for e-commerce (e-commerce) in an IT (Information Technology) society.
[0013]
FIG. 1 shows an internal block diagram of a card with personal identification. The card has the same outer shape as a commuter pass and a telephone card, and has a CPU, a memory, and a communication device printed inside. The chip size of the CPU function and the communication device is embedded in a micro size of about 0.4 × 0.4 mm 2 like a μ chip (trade name of Hitachi, Ltd.). The communication frequency is 2,45 GHZ for transmitting and receiving weak radio waves.
[0014]
101 is a system bus having a card, and 102 is a GPS (Global Position System) antenna printed or embedded in the card. A transmission / reception unit 110 wirelessly connects the card to an external device, and uses the antenna 102. Reference numeral 103 denotes a GPS for position recognition.
[0015]
Numeral 104 denotes an arithmetic CPU of the card system, and numeral 105 denotes its memory. This memory includes a program memory and an operation memory, and is a ROM or a RAM.
[0016]
Reference numeral 106 denotes a pattern memory for confirming the identity of the user. The identity confirmation pattern extracts features such as a fingerprint of a finger, a pattern of a palm, an iris of an eye, a contour of a face, a skeleton, and the like, and stores the extracted features. These patterns are input from the authentication unit 112.
[0017]
The authentication unit denoted by reference numeral 112 inputs a fingerprint of a finger or a palm pattern from an optical system (not shown) to the sensor. If it is the iris of the eye, the contour of the face, or the skeleton of the skeleton, the authentication unit 112 inputs from the lens system, that is, the camera. The data input by these means is extracted and input to the pattern storage unit 106.
[0018]
The data for personal authentication stored in 106 can be encrypted so as to be invisible even when it is externalized, if the confidentiality is desired to be further enhanced. Reference numeral 107 denotes an interface with the outside of the card, which is connected to a display lamp 108 and a key switch 109 on the card.
[0019]
If the card is in the valid state, 108 emits green, blue, and the like, and if the card is in the invalid state, 108 emits red and yellow. "Valid" means that the card is in a valid state until the user is authenticated and used, or for a certain period after the authentication. Invalid means that the card has not been authenticated yet or that the card cannot be used after a predetermined time has passed since the card was authenticated.
[0020]
An arithmetic unit 113 for calculating the authentication pattern input from the 112 and for performing a feature extraction operation matches the stored personal registration pattern 106, that is, performs matching. Reference numeral 114 denotes a password collating unit, which uses a password in combination with a strict security. Input using the touch keys on the card.
[0021]
Reference numeral 115 indicates a response when a finger or a palm touches a finger or a palm when the pattern of the finger or the palm is read by the pressing sensor. Also, when inputting the outline and skeleton of the face, if the user brings the face close and presses it with a finger or the like, it can be determined that the authentication pattern is to be verified.
[0022]
Reference numeral 110 denotes an input / output unit between the card and an external device. Numeral 111 denotes electromagnetic waves and induction waves. For example, when the reader approaches the card reader, the reader emits the electromagnetic waves 111 and the system in the card is activated by receiving power from the outside. This card itself does not have a power supply in principle. However, although not shown, a capacitor can be used to hold the power for a short time.
[0023]
FIG. 2 shows an external view of a card according to the present invention. There are at least two configurations. FIG. 2A shows a method of authenticating a person from a fingerprint of a finger and a pattern of a hand, and FIG. 2B shows a configuration with a camera. This is a method of authenticating the person from the outline and skeleton of the person.
[0024]
In FIG. 2A, 201 is a card body, 202 is an antenna, 203 is a functional element such as a CPU and a memory, and 203 is a sensor for reading fingerprints and hand patterns. The surface of 204 is glassy and has a jagged structure on an uneven surface so that fingerprints and patterns are not left behind until it is used only once. If the surface of the 204 becomes dirty and becomes unreadable, the indicators 205 and 206 are blinked to prompt the user to send a caution signal to clean.
[0025]
Reference numeral 210 in FIG. 2B denotes a card with a camera. This is another embodiment different from FIG. 2A, in which a camera 211 is built in. In FIG. 2A, the personal authentication is performed using the fingerprint and the hand pattern. In this example, the personal authentication is performed based on the contour of the face and the skeleton of the face.
[0026]
The user brings his / her face close to 211 in FIG. 2B for personal authentication. If the card 210 can be authenticated, the display lamp 205 turns on green or emits a light beep from the card. If the recognition is not possible, the red lamp 206 lights up and an intermittent sound is generated to prompt the user to recognize again.
[0027]
2A, the green lamp 205 turns on when a fingerprint or a hand pattern is successfully recognized, and a light voice is generated. If the recognition is not successful, the red or yellow lamp 206 blinks to prompt the user to input again.
[0028]
2A and 2B, 207 key switches are arranged, but for simplicity, the function can be achieved without the necessity. This key switch is provided when it is used for inputting a password to further ensure security.
[0029]
FIGS. 3A and 3B are patterns obtained by reading the fingerprint of the finger and the pattern of the hand with the sensor 204 in FIG. 2A. FIG. 3A shows an example of a fingerprint, and 301 indicates a fingerprint. If there is only one fingerprint, such as the thumb, index finger, little finger, etc. and it is not sufficient for security, a plurality of fingers are registered.
[0030]
The dots indicated by 302, 303, and 304 indicate the trajectory of the fingerprint. Since the fingerprint pattern differs from person to person, this locus also differs from person to person. A pattern registered for authentication on the card is stored as a fingerprint and a locus pattern, and a pattern and a locus of the fingerprint are generated from the inputted fingerprint by an arithmetic unit in the card. ,validate.
[0031]
FIG. 3B shows a fingerprint pattern of another finger. If FIG. 3A is a thumb, FIG. 3B is an example of a little finger. In FIG. 3B, reference numeral 308 denotes the fingerprint patterns 305, 306, and 307 of the other fingers, and the locus of the fingerprint. The determination method is the same as in FIG. The same applies to the case where the palm is registered, and the portion to be registered is registered at the left and right palm portions. The determination method is as described above.
[0032]
The order of inputting fingerprints as to which of the ten right and left fingers are registered and used for authentication is also a factor for authentication determination. The same goes for the palm. If less importance is required, one fingerprint registration is sufficient.
[0033]
FIG. 4 is a detailed view of the fingerprint recognition unit 204 in FIG. In FIG. 4, reference numeral 401 denotes a fingerprint reader, and reference numeral 402 denotes a fingerprint imprinting part, which is made of a glass substrate. The present invention is characterized in that it is used only once and disappears when it is recognized. In step 403, a projection is formed on the glass substrate 402 so that a fingerprint pattern does not remain behind.
[0034]
Reference numeral 404 indicates a finger of a person. Reference numeral 405 denotes a light emitting source for reading a fingerprint, and an LED, an EL, a lamp, or the like is used. Reference numeral 406 denotes a fingerprint reading sensor which normally scans a CCD area sensor or a CCD line sensor to read the fingerprint.
[0035]
Reference numeral 407 denotes a sensor that detects whether a finger or a hand is put on the fingerprint reading unit 402, and is a pressure sensor that detects the weight of the finger or hand. When a finger or hand touches 402, preparations for fingerprint recognition are made inside the card.
[0036]
FIG. 5 is a diagram illustrating a use state of the card 201 and the card reading device 501. First, the user places his / her finger on the fingerprint recognition unit 204 of the card 201 to make the card recognize that he / she is himself.
[0037]
Next, the user places his / her finger on the fingerprint recognition unit 503 of the card reader 501 to perform personal authentication. Reference numeral 501 is attached to an ATM of a bank, a door of a hotel, a safe, or the like. Fingerprint authentication is performed by the card 201 and the card reader 503 of the card reader 501 each time it is used, so that security is double-guarded.
[0038]
Reference numeral 502 denotes an electromagnetic wave, which is transmitted from 501. The card 201 operates in response to electromagnetic waves without contact even without a power source. If the card has been authenticated, it will work if the card and reader are brought close without contact.
FIG. 6 is a block diagram showing the internal configuration of the card reader. In the figure, reference numeral 601 denotes a system bus of the reader 501; 602, an arithmetic unit; and 603, a storage unit including a program memory such as a ROM and a RAM.
[0040]
Reference numeral 604 denotes a fingerprint pattern storage unit in which a pattern, an iris of an eye, a contour, a feature, and a skeleton of a face are also stored, and are recorded as basic patterns for personal authentication. To secure confidentiality, such information is encrypted and recorded. When sending a pattern such as a fingerprint for personal authentication via a public communication network, sending raw data is dangerous.
[0041]
Reference numeral 605 denotes an interface with the outside, 606 denotes a display device, and 607 denotes a key switch which is used together with a password to secure security.
[0042]
603 is an authentication unit. A part 503 in FIG. 5 is inputted with a fingerprint, a contour of a face, and a skeleton, and is compared with authentication data stored and registered in 604. An operation unit 609 performs an operation to convert the fingerprint, face outline, and skeleton input at 608 into data. Further, an encryption algorithm is generated if necessary. Reference numeral 609 includes a DSP (Digital Signal Processor) required for these processes.
[0043]
Reference numeral 610 denotes a collation unit in the case of using a personal identification number, and collates the fingerprint, face outline, and skeleton input at 608 with data registered in the pattern storage unit 604. Reference numeral 611 denotes an interface with an external device, which transmits the electromagnetic wave of 612 and reads data of the external device. If the external device has no power supply, power is supplied from the electromagnetic wave of 612 to operate the external device. The card 201 of FIG. 5 shows this pattern.
[0044]
FIG. 7A shows an example in which the present system is applied to a door lock of a hotel or an apartment. 706 indicates a hotel or apartment. Reference numeral 501 denotes a card reader. Here, the card 201 shown in FIG. 5 is made to recognize its own fingerprint, the outline of the face, and the like. It is released.
[0045]
Reference numerals 701 and 703 are doors, and 702 and 704 are door knobs. Since the card recognizes itself first and the card reader also authenticates itself, the system can ensure the strongest security.
[0046]
This system is the most suitable for taking in and out of cash because strict identification is performed. FIG. 7B shows an example in which the present invention is applied to an ATM (Cash Dispenser) of a bank. Reference numeral 707 denotes an ATM which is a cash dispenser, and 708 denotes an ATM touch panel. Reference numeral 501 denotes a card reader with personal identification. Since the user uses the personal identification card 201 shown in FIG. 7, the security can be sufficiently ensured.
[0047]
In the example of use in FIG. 7, both the reader 501 and the card 201 can be used for the first time after confirming the identity authentication. If the conventional card is used in combination with a personal identification number (password) instead of the conventional card, security can be ensured, so that this method may be used.
[0048]
Even if the user loses the card, the card cannot be used without authenticating the fingerprint, facial contour and skeletal features. In addition, even if the owner loses the card after authenticating the card, the card becomes invalid after a lapse of a predetermined time. Since re-authentication is necessary, there is no danger of being misused by others.
[0049]
Even if the user tries to falsify the data in the card 201, data such as a fingerprint for personal authentication cannot be easily copied because it is encrypted.
[0050]
FIG. 8 is a diagram showing the spread of service spots (hot spots) showing application examples in hotels, bank safes, and the like. Reference numerals 801, 802, and 803 denote service spots, and the server 804 at the entrance authenticates the user. Reference numeral 807 denotes a registration device that recognizes fingerprints of each finger, facial features, skeletal features, and the like necessary for personal authentication and registers them in the server 804.
[0051]
The registered personal data is transmitted wirelessly or by wire to the wireless transmission / reception devices of the base units 805 and 806 installed for each service pot. From 805 and 806, personal authentication data is input to 501 using wireless and Bluetooth means.
[0052]
When the user brings the card 201 into contact with the card 501, the lock is released. The areas 805 and 806 are service spots, and in the case of a hotel floor, one or two can be covered. In the case of a large area, the service area is expanded by increasing 805 and 806 according to the area. 808 is a weak radio wave of Bluetooth.
[0053]
The Bluetooth standard is IEEE802. a and b, g, and h. Currently 802. b is mainly used as a wireless LAN in hamburger chains, stations and the like, which are called hot spots in the city. Functionally, 802. g spreads.
[0054]
FIG. 9 shows a flowchart of this embodiment. For example, the personal authentication is performed based on three fingerprint patterns of the right thumb, the right index finger, and the right thumb finger.
Of course, as described above, the card may be provided with a camera to extract the iris of the eye, the contour of the face, and the features of the skeleton to determine the authentication.
[0055]
In FIG. 9, S901 is a step of performing personal authentication on the card to make the card usable. It is assumed that personal authentication is registered on the card. In this example, fingerprints of three fingers of the right hand are registered. Only the person knows which finger is registered and the order of registration.
[0056]
The order of fingerprint authentication of the three fingers of the right hand is also a determination of authentication. The registration to the card is generated by the server of the management company of the card system, 804 in FIG. Also, the registration pattern can be changed as appropriate. If the card has not been used for a predetermined period, the internal registration pattern is destroyed by itself to prevent misuse.
[0057]
Since the GPS is built in the card 201, the position of the card can be specified from a wireless site (not shown) even if the card is dropped or lost.
[0058]
In step S902, the fingerprint of the right thumb is authenticated. In step S903, the pattern is compared with the pattern registered in the card. If they match, the process proceeds to S904, and the fingerprint pattern of the right index finger is collated in S905. Similarly, if they match, the fingerprint pattern of the right thumb finger is collated in S907 in S907.
[0059]
If all the fingerprint authentication orders and patterns (patterns) of the finger match, the card becomes valid in S908. That is, it becomes a usable card. In step S909, the card is actually used. You can enjoy shopping by card as well as ATM or ordinary credit card.
[0060]
As mentioned above, once used, the card must be re-authenticated. In step S910, if the card is validated and the card is validated, if the card is not used for a predetermined time, the fingerprints of the three fingers of the right hand authenticated to the card in step S911 are erased for security. If not used for a predetermined period, the registration pattern for authentication registered in the card is destroyed. If used at regular intervals, the registered pattern is retained.
[0061]
The flowchart of FIG. 10 shows an embodiment in which a personal identification card and a card reader are used in combination. As shown in FIGS. 7 (a) and 7 (b), it is used for door locks of hotels, ATMs of financial institutions, and the like, which further require security.
[0062]
In step S1001, a fingerprint is stamped on the card itself, the user is authenticated, and the card can be used. As in the case of FIG. 9, when one finger is uneasy, the right and left fingers are recognized in the order registered in the card in the type and order of the fingers. As described above, in the case other than the fingerprint authentication, the card is made to recognize the outline of the face and the features of the skeleton.
[0063]
In step S2002, if the pattern matches the pattern registered in the card and matches, the card is in use. In step S1003, the card reader is caused to authenticate itself. The procedure is the same as the authentication for the card body. If they match in S1004, the card reader can be used. As described above, if neither the card nor the reader is used within a predetermined time, the card or reader becomes invalid.
[0064]
In step S1005, the recognized usable (hot) card is similarly brought into contact with the hot reader. In S1006, the card and the pattern input to the reader are collated. In S1007, if they match, the card is in use in S1008, and the card is used in S1009 to unlock the door and use it in an ATM.
[0065]
In S1010, since the card has been used, the recognized fingerprint is erased and cannot be used again. Re-use requires re-authentication. The same applies to the card reader. In S1011, the card authenticated within a predetermined time and the fingerprint pattern authenticated in S1010 if the reader is not used are erased. If the predetermined period has not elapsed, both cards are valid in step S1012.
[0066]
For the registration pattern of a card reader of a financial institution or the like, authentication management is performed on a website on the Internet. In this case, since the information is managed in the same way as the seal of a bank passbook, in order to prevent abuse, the fingerprint pattern, the type of the finger, the order, the contour of the face, the skeleton, and the characteristics of the iris of the eye are recorded. After a certain period of time, a change in the registration pattern is urged from a management center such as a financial institution.
[0067]
Use at a hotel, department store, or the like is accepted as described with reference to FIG. 8, and registration is performed at the entrance. In department stores, supermarkets, and mass retailers, a management center may be provided to manage registered patterns such as fingerprints for convenience.
[0068]
The present system may be applied as cash settlement to a growing debit card. Security is several steps better than current system passwords. Furthermore, it is an indispensable system for secure operation of e-commerce and e-commerce in the evolving IT era.
[0069]
【The invention's effect】
Since the present invention is configured and functions as described above, according to this, it is not necessary to perform authentication using only a PIN like a conventional credit card or bank card, and only a single finger or a plurality of fingers registered on the card itself is used. The fingerprint, the personal characteristic pattern itself, or the encrypted personal data is stored in an encrypted form, and the card can be authenticated and used in a hot state (usable) immediately before using the card.
[0070]
If the hot state is not used even after a predetermined time elapses, the input authentication pattern disappears and becomes unusable. Therefore, there is no damage if lost or stolen.
[0071]
In a financial institution, a hotel, a supermarket, and the like, since the card reader reads the card in a hot state, similarly to the above-mentioned card, the security is further enhanced. In addition, falsification, such as falsification and spoofing, cannot be performed. Therefore, it is very effective for large-scale cash settlement.
[Brief description of the drawings]
FIG. 1 is a block diagram showing an internal configuration of a card.
FIG. 2 is a diagram showing an appearance of a card.
FIG. 3 is a diagram showing a fingerprint of a finger, a palm pattern, and a locus.
FIG. 4 is a schematic diagram showing a method of reading a fingerprint of a finger.
FIG. 5 is a diagram showing a state of contact between a card and a card reader.
FIG. 6 is a block diagram showing an internal configuration of the card reader.
FIG. 7 is a diagram showing application to a door lock and a cash dispenser.
FIG. 8 is a diagram showing the spread of the present system to service spots.
FIG. 9 is a flowchart showing a procedure of personal authentication on a card.
FIG. 10 is a flowchart showing a procedure for using a card and a card reader.
[Brief description of reference numerals]
101 Card internal bus 102 GPS antenna 103 GPS
104, 602 Central processing unit, CPU
105, 603 Memory, ROM, RAM
106, 604 pattern storage unit, registration unit 107, 605 input / output unit 108, 205, 206, 606 display unit 109, 207, 607 key switch 110, 611 wireless input / output device 111, 502, 612, electromagnetic wave, induced wave 112, 608 authentication unit 113, 609 calculation unit 114, 610 personal identification number identification unit 201, 210 personal authentication card 202 antenna 203 CPU, memory, functional element 204, 503 fingerprint authentication unit 211 camera 301, 308 fingerprint, hand pattern 302, 303, 304 Fingerprint, pattern locus 305, 306, 307 Fingerprint, pattern locus 401 Fingerprint reader 402 Fingerprint authentication touch plate 403 Projection 404 405 Light emitting unit 406 Pattern reading sensor 407 Pressing sensor 501 Card reader 701, 703 Door 702, 704 Door knob 706 Hotel, apartment 707 Automatic teller machine 708 Touch panel 801 Front, entrance 802, 803 Service spot 804 For registration of personal authentication pattern Server 805, 806 Wireless transceiver 807 Personal authentication registration machine 808 Wireless radio wave

Claims (5)

A system relating to a card related to e-commerce, credit card, bank card and its reader,
Means for pre-registering and storing personal authentication patterns on the card,
A card system with personal identification, comprising: means for authenticating a card to use the card when the card is used so that the card can be used for a predetermined time. 2. The method according to claim 1, further comprising:
A means to limit the use time of the card after authentication,
A card system with personal authentication, comprising: means for invalidating after a predetermined time has elapsed; and means for erasing a personal authentication pattern input before use of the card. The personal authentication pattern is a means for extracting the fingerprint of the finger, the contour of the face, the skeleton, the iris of the eye,
A card system with personal authentication, comprising means for encrypting and storing a personal authentication pattern to be registered in a card. Means for storing a personal identification pattern similar to the card in the reader for use of the card and its reader;
A card system with personal authentication, comprising means for performing personal authentication on a card reader before use and enabling use of the reader. The method of determining a fingerprint for personal authentication described above is a means for recognizing a fingerprint pattern, and a means for comparing a fingerprint pattern of a single or a plurality of fingers,
A card system with personal identification, comprising means for identifying a type of finger and determining the order of recognition of the finger to perform personal authentication.

Images