JP2009118232A - Information relay system and communication terminal - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an information relay system which prevents an unauthorized use by dynamically changing an encryption key while reducing a user's effort for the authentication of a communication terminal, with respect to information transmission/reception using a LAN, and a communication terminal. <P>SOLUTION: The information relay system wherein communication terminals connected to the LAN are used to relay information transmission/reception performed through the LAN and a wide area network connected to the LAN includes: a first holding means which holds first collation information collated with first identification information held in a communication terminal which is updated on the basis of a prescribed condition; an updating means which updates the first collation information synchronously with updating the first identification information; a first acquisition means which automatically acquires the first identification information through the LAN; a first collation means which collates the first identification information acquired by the first acquisition means with the first collation information; and an information control means which allows a relay of information transmission/reception using the communication terminal in the case of coincidence between the first identification information and the first collation information in the collation of the first collation means. <P>COPYRIGHT: (C)2009,JPO&INPIT

Description

  The present invention relates to an information relay system and a communication terminal, and in particular, in information transmission / reception via a local communication network by a communication terminal, the information relay system that ensures the security of information transmitted and received and enables highly secure information transmission / reception. Etc.

  In recent years, various information can be transmitted and received by a communication terminal connected to a wide area communication network such as the Internet network. If a communication terminal such as a personal computer (hereinafter referred to as a personal computer) is used to connect to a wide area communication network, a user of the communication terminal can communicate with another communication terminal (for example, a server) connected to the wide area communication network. Various information such as information and music information can be transmitted and received.

  Connection to a wide area communication network by a communication terminal can be performed using wireless communication. A communication base station called an access point connected to a wide area communication network and a communication terminal having a wireless communication function (hereinafter referred to as a wireless communication terminal) perform wireless communication, thereby enabling a wide area communication network by the wireless communication terminal to be established. It is possible to transmit and receive information through the network.

  A communication network that has an access point connected to a wide area communication network and enables a wireless communication terminal to connect to the wide area communication network is called a wireless local area communication network (also referred to as a wireless LAN). A large number of wireless local area communication networks are connected to the wide area communication network, and wireless local area communication networks are constructed at various locations.

  If there is a wireless communication terminal in a range where radio waves transmitted from an access point as a communication base station can reach (hereinafter, this range is referred to as a communication area), the wireless communication terminal and the access point must perform wireless communication. Can do.

  Therefore, even when the wireless communication terminal is carried, information can be transmitted and received in various places without being restricted by the place as long as the carried destination is within the communication area of the access point.

  Voice communication using the wide area communication network is also possible by transmitting and receiving voice information via the wide area communication network. In general, a voice call using a wide area communication network often requires a low charge, is very convenient, and its spread is remarkable.

  Even if the wireless communication terminal is carried around in various places, it is possible to carry out a voice call using the wide area communication network and the wireless local area communication network connected to the wireless communication terminal. A voice call can be easily and easily made via an access point without connecting to a wide area communication network.

  As an example of what enables transmission and reception of information using a wide area communication network by a wireless communication terminal as described above, for example, there are those disclosed in Patent Documents 1 to 3.

JP 2006-222549 A JP 2005-277517 A JP 2004-304824 A

  In order for a wireless communication terminal to transmit and receive information via an access point, the wireless communication terminal must be authenticated for that access point. More specifically, the access point and the wireless communication terminal encrypt information for wireless communication using an encryption key such as a WEP (Wired Equivalent Privacy) key. That is, the access point authenticates the wireless communication terminal using common information (encryption key) used for information encryption (hereinafter referred to as encryption authentication).

  The encryption key is often generated based on information held as unique information on the access point side. The wireless communication terminal generates an encryption key that matches the access point and sends the encryption key to the access point. As a result, authentication of the communication terminal and information transmission / reception are performed.

  Therefore, a different encryption key is generated (that is, different unique information is held). When the wireless communication terminal moves to the access point communication area, the encryption key is set again on the wireless communication terminal side each time. Otherwise, authentication and information transmission / reception cannot be performed, which is very troublesome. Note that the information that is the source of the encryption key between the terminals that communicate in this way is also referred to as PSK (Pre-Shared Key).

  If the effort of authentication is omitted, information transmission / reception is performed between the wireless communication terminal and the access point without being encrypted, and information is easily intercepted by a third party, which is not preferable in terms of security.

  In addition, when an encryption key is illegally obtained by some means, if the encryption key set in the access point is always the same, information can be continuously transmitted and received using the illegally obtained encryption key. There is also the problem of being able to do it.

  Furthermore, even if the information is encrypted with an encryption key and sent and received, if the information is intercepted and decrypted with an illegally obtained encryption key, the contents of the information can be easily seen. The confidentiality of information is also impaired, and information cannot be transmitted and received safely.

  The present invention has been made in view of the above circumstances, and in the transmission and reception of information using a local communication network, the authentication key and the encryption key are dynamically changed while reducing the effort of the user for authentication of the communication terminal. It is an exemplary problem to provide an information relay system and a communication terminal that can prevent unauthorized use of information communication and ensure the safety of information transmitted and received by wireless communication.

  In order to solve the above-described problem, an information relay system as an exemplary aspect of the present invention uses a communication terminal connected to a local communication network, via a local communication network and a wide area communication network connected thereto. An information relay system for relaying information transmission / reception to be performed, which is updated based on a predetermined condition and holds first verification information for verification with first identification information held in a communication terminal for use in information transmission / reception First holding means, updating means for updating the first verification information at the same time as the update of the first identification information, first acquisition means for automatically acquiring the first identification information via the local area network, When the first identification information and the first verification information match in the verification by the first verification unit and the first verification unit that collates the first identification information acquired by the first acquisition unit and the first verification information Use a communication terminal for Information control means for allowing the relay of information transmission and reception was configured with a.

  Since the first identification information and the first verification information are updated at the same time, it is possible to always match the updated information. Since the first collation information is information updated by the updating means, and information transmission / reception is permitted when the first identification information and the first collation information match, the first collation information is obtained illegally. In addition, it is possible to prevent unauthorized transmission / reception of information using the first verification information by updating the first verification information.

  The “predetermined condition” for updating the first identification information may be a “predetermined period” such as “1 day” or “January” or “when a predetermined operation is performed” such as “every time information is transmitted / received”. Good.

  Since the 1st acquisition means acquires the 1st discernment information automatically, since collation of information, ie, authentication of a communication terminal, can be performed without bothering a user's hand, it is very convenient. The automatic acquisition can be performed when the communication terminal is turned on or when the user performs an operation for transmitting and receiving information. If the local area communication network is a wireless local area communication network, automatic acquisition may be performed when a communication terminal enters the communication area. That is, “automatic acquisition of information” in the present application means that the information relay system can acquire information without the user of the communication terminal performing a special operation for transmitting information. For example, acquiring information automatically sent from a communication terminal that has received a request signal issued by an information relay system also corresponds to “automatic acquisition”, and when a user performs a dial operation for a voice call, etc. The acquisition of information automatically transmitted from the communication terminal is also included in the concept of “automatic acquisition”.

  Here, the wide area communication network refers to a relatively large-scale communication network such as the Internet network, for example, and refers to a communication network that enables transmission and reception of information between communication terminals in different buildings and different areas. On the other hand, the local communication network is a communication network having a smaller scale than the wide area communication network. For example, it is possible to transmit and receive information between communication terminals in the same building. If the local communication network is connected to the wide area communication network, the communication terminal connected to the local communication network can pass through the wide area communication network. It is also possible to send and receive information.

  In addition, “connected to the local communication network” means that the communication terminal can transmit and receive information to and from a repeater (for example, a router that relays information between the communication terminal and the wide area communication network). Say something. When the local area communication network is a wireless local area communication network (wireless LAN), it means a state in which the wireless communication terminal is in the communication area of the access point as a communication base station.

  Here, the communication terminal refers to a communication terminal device, and examples thereof include a device having a function of transmitting and receiving information via a wide area communication network, such as a personal computer and a mobile phone terminal. Further, a communication terminal having software (soft phone) for realizing a voice call through a wide area communication network, for example, a mobile phone type soft phone (mobile phone type terminal) is also included in the concept of the communication terminal.

  The first identification information is information held in advance in the communication terminal. For example, it may be held in the memory of the communication terminal before shipment of the communication terminal, or may be held when the communication terminal is purchased. The first identification information may be SSID (Service Set Identifier) as static information stored in advance in the communication terminal, PSK, or any of these static information and dynamic parameters such as one-time password and date / time. It is also possible to use the derived dynamic information by inputting into the function. Other static information includes ID, password, electronic certificate, and the like. It is possible to increase the security strength by dynamically changing even the static information.

  The first holding means holds the first collation information before the update as the second collation information for collating with the first identification information even after the update of the first collation information by the updating means. The first identification information and the second collation information are collated, and the information control means arbitrarily relays information transmission / reception even when the first identification information and the second collation information match in the collation by the first collation means. You may be comprised so that a period may be permitted.

  Even when the first identification information and the second verification information match, relaying of information transmission / reception is allowed, so even if the first verification information is updated before the first identification information and becomes different information If the first identification information matches the second verification information, relaying of information transmission / reception is allowed. For example, when the first identification information and the first collation information are configured to be updated at the same time, the clock indicating the update time of the first identification information is more than the clock indicating the update time of the first collation information. Relaying of information transmission / reception can be allowed even if it is delayed. Therefore, it is possible to prevent such a problem that a communication terminal that is allowed to transmit and receive information is not authenticated due to a clock delay or the like.

  In order to collate the second identification information, which is given differently for each communication terminal in order to identify the communication terminal, with the second identification information automatically acquired from the communication terminal via the wide area communication network and the second identification information And a second collating unit that collates the acquired second identification information with the third collating information, and the information control unit includes the first collating unit. In addition to the case where the first identification information and the first verification information match in the verification by the means, the relay of information transmission / reception is permitted when the second identification information and the third verification information match in the verification by the second verification means It may be configured to.

  Since the relay of information transmission / reception is permitted when the second identification information given differently for each communication terminal and the third verification information match, when the first identification information is obtained illegally, Even if one identification information is overlooked, transmission / reception of information can be restricted by the second identification information uniquely given to the communication terminal. Therefore, the safety of information transmission / reception by the communication terminal can be further enhanced.

  Since the second holding means holds the third collation information, the amount of information held by the first holding means can be reduced. Further, if the second holding means is provided in a server or the like that is capable of transmitting / receiving information to / from a plurality of local communication networks via the wide area communication network, the third verification information is provided without providing the second holding means for each local communication network. Can be managed collectively. Therefore, the management cost of the third verification information can be reduced.

  The second identification information may be the MAC address or terminal manufacturing number of the communication terminal. The MAC address is unique ID information given to each terminal that can be connected to an information communication network such as a wide area communication network or a private communication network. Therefore, if this MAC address is used as the second identification information, the communication terminal can be identified without newly giving information to the communication terminal.

  As the second identification information, a terminal manufacturing number such as a manufacturing serial number of a communication terminal can be used. This is because the manufacturing serial number is also given as information unique to the communication terminal and can identify the communication terminal.

  The private communication network may be a wireless private communication network, and information transmission / reception may be performed by wireless communication. Since information transmission / reception is performed by wireless communication, wiring for the communication terminal to transmit / receive information becomes unnecessary. Therefore, the communication terminal can be freely carried without being limited to connection wiring to the local communication network.

  Here, the wireless local area communication network enables a communication terminal to transmit / receive information to / from a wide area communication network. In general, a local area communication network has an access point as a communication base station connected to a wide area communication network, and information can be transmitted and received by wireless communication between the access point and a communication terminal. Of course, the communication terminal needs to have a function of performing wireless communication, and a communication terminal having such a function is also referred to as a wireless communication terminal. The range where radio waves emitted from the access point can reach is called “communication area” where wireless communication is possible. In this application, the phrase “wireless local area network” and the phrase “communication area” of the access point are used. Used almost synonymously.

  Here, the wireless communication is not limited to the conventional IEEE802.11 series, but may use WiMAX (IEEE802.16E) or a wireless technology developed in the future, and is limited to a specific wireless system. Is not to be done.

  The information transmission / reception may be audio information transmission / reception. By transmitting and receiving voice information, a voice call can be made through a wide area communication network. If information is transmitted / received via a wireless local area communication network, voice communication via a wide area communication network can be easily performed at various locations. Since the cost of voice calls over a wide area communication network is generally low, it is very convenient for users to use. Further, since there is no troublesome authentication of the communication terminal, it can be easily used like a mobile phone terminal.

  A communication terminal according to another exemplary aspect of the present invention is a communication terminal for transmitting and receiving information via a local communication network and a wide area communication network connected thereto, and uses first identification information for use in information transmission and reception. A holding unit that holds the information in an updatable manner, a transmission unit that automatically transmits the first identification information to the information relay system via the local area communication network, and an information update unit that updates the first identification information based on a predetermined condition. And having.

  Since the first identification information is automatically transmitted to the information relay system, the communication terminal is automatically authenticated. Therefore, the user of the communication terminal is very convenient because it is automatically authenticated without having to input identification information. The automatic transmission can be performed when the communication terminal is turned on or when a user performs an operation for transmitting and receiving information. If the local area communication network is a wireless local area communication network, automatic transmission may be performed when a communication terminal enters the communication area. In other words, “automatic transmission of information” in the present application means that the communication terminal transmits information without the user of the communication terminal performing a special operation for transmitting information. For example, automatic transmission of information by a communication terminal that has received a request signal issued by an information relay system also corresponds to “automatic transmission”, and communication is performed when a user performs a dial operation for a voice call. The automatic transmission of information from the terminal is also included in the concept of “automatic transmission”.

  In addition, when the transmitted and received information is encrypted and decrypted using the first identification information, even if the first identification information is illegally acquired by a third party, the first verification information is updated, The information transmitted / received after the update is not combined by the first identification information obtained illegally, and the damage of eavesdropping can be minimized.

  The holding unit may be provided so as to be detachable from the communication terminal. This is convenient because the communication terminal can be a communication terminal capable of transmitting and receiving information by simply replacing the holding unit with a different communication terminal.

  The holding unit may be a SIM card. This is convenient because the communication terminal can be a communication terminal capable of transmitting and receiving information by simply replacing the SIM card with a different communication terminal. Since the SIM card is small and easy to attach and detach, it can be made more convenient.

  The private communication network may be a wireless private communication network, and information transmission / reception may be performed by wireless communication. Since information transmission / reception is performed by wireless communication, wiring for the communication terminal to transmit / receive information becomes unnecessary. Therefore, the communication terminal can be freely carried without being limited to connection wiring to the local communication network.

  The information transmission / reception may be transmission / reception of audio information. By transmitting and receiving voice information, a voice call can be made through a wide area communication network. If information is transmitted / received via a wireless local area communication network, voice communication via a wide area communication network can be easily performed at various locations. Since the cost of voice calls over a wide area communication network is generally low, it is very convenient for users to use. Further, since there is no troublesome authentication of the communication terminal, it can be easily used like a mobile phone terminal.

  Further objects and other features of the present invention will become apparent from the preferred embodiments described below with reference to the accompanying drawings.

  According to the present invention, it is possible to authenticate a communication terminal without causing a user of the communication terminal to perform a special operation, and it is possible to easily use information transmission / reception via a wide area communication network. In addition, since information used for authentication of the communication terminal is updated based on a predetermined condition, information transmission / reception with high security can be realized. Furthermore, since the information used for authentication is updated so as to be synchronized, information mismatch can be prevented.

[Embodiment]
Hereinafter, an information relay system S1 according to an embodiment of the present invention will be described with reference to the drawings. FIG. 1 is a schematic block diagram illustrating an overall configuration of an information transmission / reception system S2 that includes an information relay system S1 and that performs information transmission / reception using a communication terminal.

  The information transmission / reception system S2 has a mobile phone type terminal (communication terminal) 2 and an information relay system S1 and is roughly configured.

  The mobile phone type terminal 2 is a communication terminal for transmitting and receiving information by wireless communication via wireless local area communication networks (local area communication networks) 34a and 34b and an internet network (wide area communication network) W, which will be described later. Hereinafter, the procedure for transmitting and receiving information by the mobile phone type terminal 2 will be described on the assumption that the mobile phone type terminal 2 is in the communication area of the wireless local area communication network 34a.

  FIG. 2 is a diagram showing a schematic configuration of the mobile phone type terminal 2. The mobile phone type terminal 2 has a main body part 3 and an antenna part (radio wave transmission / reception part) 5 and is generally configured. On the surface of the main body 3, there are arranged a display unit 2 a and operation buttons 2 d for the user of the mobile phone type terminal 2 to perform various operations. The display unit 2a displays information necessary for the operation of the mobile phone type terminal 2 or when the WEB page held by the server connected to the Internet network W is accessed using the mobile phone type terminal 2. The WEB page can be displayed.

  Inside the main body 3, a terminal side clock unit 6, a SIM card 8 as a storage device, a memory 9, and a CPU 10 as an arithmetic processing unit are arranged.

  The terminal-side clock unit 6 has a clock function that outputs the current time. The terminal-side clock unit 6 has a function of periodically transmitting terminal-side current time information 6 a indicating the current time to the CPU 10.

  The SIM card 8 of the mobile phone type terminal 2 is a storage device that is easily provided in the main body 3 and is detachable.

  The SIM card 8 of the mobile phone type terminal 2 has an area that functions as a terminal-side PSK information holding unit (holding unit) 8a. In the terminal-side PSK information holding unit 8a, as shown in FIG. 3, a terminal-side PSK database 8b is constructed. The terminal-side PSK database 8b holds available service types 8c and terminal-side PSK information (first identification information) 8d, which are associated with each other. The available service type 8c is information indicating a service that can be used by the mobile phone type terminal 2. The mobile phone type terminal 2 in the present embodiment uses a voice call function using the information relay system S1, a WEB page browsing function, E Mail transmission / reception function can be used. The service that can be used can be set for each mobile phone type terminal 2 and is determined depending on which type of available service type 8c the terminal side PSK information held by the mobile phone type terminal 2 corresponds to. ing. For example, if the mobile phone type terminal 2 does not hold the terminal-side PSK information corresponding to the WEB page browsing function, the WEB page cannot be browsed.

  Note that PSK (Pre-Shared Key) is information that is the basis of encryption keys and authentication keys held between communication terminals and servers that transmit and receive information. For example, a server and a communication terminal that perform information transmission and reception include By holding the same PSK, mutual information transmission / reception is possible. In the present embodiment, the mobile phone terminal 2 and the access points AP1 and AP2 hold the same PSK so that information can be transmitted and received. The PSK information is transmitted from the mobile phone terminal 2 to the access points AP1 and AP2 for authentication, and may be transmitted after being converted by a specific function or the like at the time of transmission. However, in this Embodiment 1, it demonstrates as a structure which transmits / receives PSK information itself instead of transmitting / receiving after converting PSK information by a specific function etc. This is to clarify that the PSK information itself, which is essentially static information, is regularly updated in the present embodiment.

  The terminal-side PSK information 8d is information necessary for transmitting and receiving information such as a voice call via the Internet network W using the mobile phone type terminal 2. When the terminal-side PSK information 8d matches the AP-side PSK information 30d held by the access points AP1 and AP2 (see also FIG. 5A), information transmission / reception via the Internet network W becomes possible. The collation procedure between the terminal-side PSK information 8d and the AP-side PSK information 30d will be described in detail later. The terminal-side PSK information 8d is held in the terminal-side PSK information holding unit 8a so as to be updatable.

  In the present embodiment, the terminal-side PSK information 8d is numerical information. However, the present invention is not limited to this, and may be character / symbol information such as alphabets, or may be information combining numbers and characters. Of course.

  The SIM card 8 of the mobile phone type terminal 2 is constructed with an area that functions as terminal side MAC address holding means 8e that holds the MAC address (second identification information) 8f of the mobile phone type terminal 2. The MAC address is information unique to each communication terminal that is assigned differently for each communication terminal, and the communication terminal can be identified by this MAC address. The MAC address is generally composed of a 48-bit code, and the first 24 bits are allocated so as to differ depending on the manufacturer of the communication terminal. Therefore, the manufacturer of the mobile phone type terminal 2 can be specified by the MAC address.

  In addition, you may control the service which can be utilized with the mobile telephone type | mold terminal 2 by a MAC address (2nd identification information). If controlled by the MAC address (second identification information), it is possible to use a plurality of services with one PSK. In addition to the MAC address, for example, a service that can be used by information that can identify the mobile phone terminal 2 such as a terminal manufacturing number (manufacturing serial number) of the mobile phone terminal 2 may be controlled.

  The SIM card 8 of the mobile phone type terminal 2 holds a terminal algorithm 8g that defines an update rule for updating the terminal-side PSK information 8d. In the present embodiment, a terminal algorithm 8g that defines “add 3” to the terminal-side PSK information 8d held as numerical information is held. In order to simplify the explanation, the algorithm in this embodiment is a simple algorithm of “add 3”, but a more complicated algorithm may be defined. Improvements can also be made.

  The memory 9 of the mobile phone type terminal 2 is a storage device provided inside the main body 3 so as to be difficult to attach and detach. The memory 9 stores a terminal program P1. Based on the command of the terminal program P1, the CPU 10 of the mobile phone type terminal 2 exhibits the following various functions.

  The CPU 10 of the mobile phone type terminal 2 has a function as terminal side update means (information update unit) 10a that updates the terminal side PSK information 8d at a predetermined time based on a predetermined condition (terminal algorithm 8g). Based on the terminal algorithm 8g, the terminal-side updating unit 10a adds “3” to the terminal-side PSK information 8d that is “111”, for example, and updates it to “114”.

  The terminal-side update unit 10a is configured to generate a predetermined time (in this embodiment, the “minute” of the time is “10 minutes”, “20 minutes”) based on the terminal-side current time information 6a transmitted from the terminal-side clock unit 6. The terminal side PSK information 8d is updated at “30 minutes”, “40 minutes”, and “50 minutes”. Accordingly, the terminal-side PSK information 8d is changed by sequentially adding “3” every 10 minutes.

  The CPU 10 of the mobile phone type terminal 2 has a function as PSK transmission means 10b that automatically transmits the terminal-side PSK information 8d toward the access point AP1. The PSK transmission means 10b directs the terminal-side PSK information 8d toward the access point AP1 when the user of the mobile phone type terminal 2 performs an operation for transmitting and receiving information, for example, a dial operation for performing a voice call. Send automatically. Therefore, the user does not need to perform a special operation for transmitting the terminal-side PSK information 8d, and is convenient and convenient.

  The PSK transmission unit 10b also has a function of automatically transmitting different terminal-side PSK information 8d in accordance with the type of information transmission / reception performed by the user. When the terminal side PSK database 8b is in the state shown in FIG. 3, if the user performs an operation for voice call, "111" is transmitted, and if the operation for browsing the WEB page is performed. “222” is transmitted, and “333” is transmitted when an operation for sending / receiving e-mail is performed. When services that can be used with the MAC address (second identification information) are controlled, a plurality of services can be used with the same PSK.

  The CPU 10 of the mobile phone type terminal 2 has a function as a MAC address transmitting means 10c that automatically transmits the MAC address 8f toward the access point AP1. The MAC address transmission unit 10c automatically transmits the MAC address 8f at the same timing as the PSK transmission unit 10b transmits the terminal-side PSK information 8d, that is, when an information transmission / reception operation is performed by the user.

  The CPU 10 of the mobile phone type terminal 2 has a function as time information transmitting means 10d for transmitting the terminal side current time information 6a transmitted from the terminal side clock unit 6 to the access point AP1. Further, the CPU 10 of the mobile phone type terminal 2 has a function as a time correction unit 10e that corrects the time information of the terminal-side clock unit 6 based on the correction information 44 (detailed later) transferred from the access point AP1. For example, when the time indicated by the terminal-side clock unit 6 is delayed by “4 minutes” from the time indicated by the server-side clock unit 36 (see also FIG. 7) of the authentication server described later, the terminal-side clock unit 6 The time correction unit 10e makes correction to advance the time indicated by “4 minutes”.

  The antenna unit 5 of the cellular phone type terminal 2 is used to receive and transmit radio waves in order to transmit and receive various information such as terminal-side PSK information 8d by wireless communication with access points AP1 and AP2 described later. It is.

  The information relay system S1 is roughly configured to include access points AP1 and AP2, an authentication server 4 and an Internet network (wide area communication network) W. The access points AP1 and AP2 and the authentication server 4 are connected to the Internet network W. Are connected so that information can be transmitted and received.

  FIG. 4 is a diagram showing a schematic configuration of the access points AP1 and AP2. The access points AP1 and AP2 are roughly configured to include a housing 28, a memory 30, and a CPU 32. Access points are connected to the Internet network W and are arranged at various locations. The casing 28 constitutes the outline of the access points AP1 and AP2, and an antenna portion 28a is formed so as to protrude. Wireless communication with the mobile phone type terminal 2 is possible by transmitting and receiving wireless radio waves by the antenna unit 28a. The access points AP1 and AP2 are connected to the Internet network W so that information can be transmitted and received. In the present embodiment, the reach of wireless radio waves transmitted from the antenna units 28a of the access points AP1 and AP2, that is, the communication areas of the access points AP1 and AP2 are determined using the mobile phone terminal 2 and the Internet network W. Are defined as wireless local area communication networks (local area communication networks) 34a and 34b that can perform information transmission / reception.

  The memory 30 of the access points AP1 and AP2 is a storage device accommodated in the housing 28. The memory 30 of the access points AP1 and AP2 has a function as an AP-side PSK information holding unit (first holding unit) 30a that holds a plurality of PSK information.

  In the AP side PSK information holding means 30a, an AP side PSK database 30b is constructed as shown in FIG. The AP-side PSK database 30b holds the information type 30c and the AP-side PSK information 30d and is associated with each other.

  The information type 30c is information indicating the type of the AP side PSK information 30d. The AP side PSK information 30d is updated at a predetermined time by the AP side update means 32g described later. The AP side PSK information 30d before the update and the AP side PSK information 30d obtained by further updating the updated information are also included. It is held in the AP side PSK database 30b. The AP-side PSK information 30d updated at a predetermined time is held in the AP-side PSK database 30b as current PSK information (first verification information) 30e. The AP-side PSK information 30d before being updated to the current PSK information 30e is pre-update PSK information (second collation information) 30f, and information obtained by further updating the current PSK information 30e is re-updated PSK information (second collation information) 30g. Is held in the AP side PSK database 30b. The information type 30c of the current PSK information 30e is “present”, the information type 30c of the pre-update PSK information 30f is “before update”, and the information type of the re-update PSK information 30g is “re-update”.

  The AP-side PSK information 30d is information used when a voice call is made via the Internet network W using the mobile phone type terminal 2. FIG. 5A shows an AP-side PSK database 30b that holds PSK information used when making a voice call. In addition to this, the AP side PSK information holding means 30a is also constructed with a database for holding PSK information used when browsing WEB pages and PSK information used when sending and receiving e-mails. The data structure is the same as that shown in FIG.

  The memory 30 of the access points AP1 and AP2 has an area that functions as temporary holding means 30h that temporarily holds the MAC address 8f transmitted from the mobile phone type terminal 2 on which an operation for information transmission / reception has been performed. Further, the memory 30 of the access points AP1 and AP2 stores an AP-side MAC address holding unit 30j that holds, as AP-side MAC address information 30i, the MAC address of the mobile phone type terminal 2 that is allowed to transmit and receive information via the Internet network W. As a function. As shown in FIG. 6, the AP side MAC address information 30i is held in the AP side MAC address database 30k constructed in the AP side MAC address holding means 30j, and can be written / erased by the writing means 32d described later. ing.

  The AP program P2 is stored in the memory 30 of the access points AP1 and AP2. Based on the command of the AP program P2, the CPUs 32 of the access points AP1 and AP2 perform the following various functions.

  The CPUs 32 of the access points AP1 and AP2 have a function as AP side PSK information acquisition means (first acquisition means) 32a for acquiring the terminal side PSK information 8d transmitted from the mobile phone type terminal 2.

  The CPUs 32 of the access points AP1 and AP2 have a function as first collating means 32b that collates the acquired terminal-side PSK information 8d with the AP-side PSK information 30d held in the AP-side PSK information holding means 30a. All of the current PSK information 30e, the pre-update PSK information 30f, and the re-updated PSK information 30g held as the AP-side PSK information 30d are to be collated with the terminal-side PSK information 8d by the first collating unit 32b.

  When the terminal-side PSK information 8d and the AP-side PSK information 30d match in the verification by the first verification means 32b, the CPU 32 of the access points AP1 and AP2 uses the MAC address 8f transmitted from the mobile phone type terminal 2 It has a function as the MAC address transfer means 32c which transfers to the authentication server 4.

  When the CPU 32 of the access points AP1 and AP2 acquires the coincidence signal (details will be described later) transmitted from the authentication server 4, the MAC address 8f held in the temporary holding unit 30h is transferred to the AP side MAC address holding unit 30j. It has a function as writing means 32d for writing as AP-side MAC address information 30i. The CPU 32 of the access points AP1 and AP2 has a function as a deletion unit 32e that deletes the written MAC address 8f when a specific condition is satisfied. In this embodiment, the passage of 2 hours from the writing of the MAC address is a specific condition. This specific condition can be set in various ways, such as when a call ends or when a predetermined number of times of information transmission / reception has ended.

  The CPU 32 of the access points AP1 and AP2 determines that the terminal-side PSK information 8d and the AP-side PSK information 30d match in the collation by the first collating means, and the MAC address 8f of the mobile phone type terminal 2 and the AP-side MAC When the AP-side MAC address information 30i held in the address holding means matches, it has a function as information control means 32f that permits information transmission / reception by the mobile phone type terminal 2. Therefore, in order to allow transmission / reception of information by the mobile phone type terminal 2, the MAC address 8f of the mobile phone type terminal 2 needs to be held in the AP side MAC address holding unit 30j, not the temporary holding unit 30h. .

  Note that the first verification unit 32b can select any one of PSK information used when making a voice call, PSK information used when browsing a WEB page, and PSK information used when sending / receiving an e-mail. Can also be excluded from verification targets. For example, if the PSK information used for the WEB page is excluded from collation targets, the WEB page cannot be browsed via the access point. By using this function, it is possible to prevent specific information transmission / reception (for example, browsing of a WEB page) from a specific access point among access points installed in various places.

  The CPU 32 of the access points AP1 and AP2 updates the AP side PSK information held in the AP side PSK information holding means 30a based on the update instruction information 42 transmitted from the authentication server 4 (update means). It has the function of 32g. When the AP side PSK database 30b shown in FIG. 5A is updated by the AP side update means 32g, the state shown in FIG. 5B is obtained. That is, when the AP-side update unit 32g acquires the update instruction information 42 transmitted from the authentication server 4, the AP-side update unit 30g updates the pre-update PSK information 30f to “111” that is the current PSK information 30e (pre-update PSK information 30m and Become.). Then, the current PSK information 30e is updated (“3” is added based on an AP algorithm 38d (see also FIG. 7) described later), and “111” is changed to “114” (current PSK information 30l and Become.). Then, “114”, which is the current PSK information 30e after the update, is further updated to “117”, and that “117” is used as the re-updated PSK information 30n.

  The CPUs 32 of the access points AP1 and AP2 have a function as time information transfer means 32h that transfers the terminal side current time information 6a transmitted from the mobile phone type terminal 2 to the authentication server 4. The CPUs 32 of the access points AP1 and AP2 have a function as correction information transfer means 32i that transfers the correction information 44 transmitted from the authentication server 4 toward the mobile phone type terminal 2.

  FIG. 7 is a diagram showing a schematic configuration of the authentication server 4. The authentication server 4 is a server for authenticating the mobile phone type terminal 2. Here, “authentication” determines whether or not the mobile phone terminal 2 that has attempted to transmit and receive information via the Internet network W is a communication terminal that should be allowed to relay information transmission and reception by the information relay system S1. That means. The “communication terminal that is allowed to relay information transmission / reception” refers to, for example, a communication terminal sold by an operator that provides an information transmission / reception service by the information relay system S1 or an information transmission / reception service with the operator. This refers to a communication terminal with a contract. In the present embodiment, whether or not the authentication server 4 is a mobile phone type terminal manufactured or sold by a provider (hereinafter, referred to as the provider) that provides an information transmission / reception service by the information relay system S1. Is determined using the MAC address 8f. The determination procedure will be described in detail later.

  The authentication server 4 includes a server-side clock unit 36, a hard disk 38 as a storage device, and a CPU 40 as an arithmetic processing unit. The authentication server 4 is connected to the Internet network W so that information can be transmitted and received. Via the access points AP1 and AP2.

  The server-side clock unit 36 of the authentication server 4 has a clock function that outputs the current time. The server-side clock unit 36 has a function of periodically transmitting server-side current time information 36 a indicating the current time to the CPU 40.

  The hard disk 38 of the authentication server 4 functions as an area for storing and holding the MAC address of the mobile phone type terminal 2 as terminal identification information (third verification information) 38c, that is, a server-side MAC address holding means (second holding means) 38a. Has an area.

  As shown in FIG. 8, a MAC address database 38b is constructed in the server-side MAC address holding means 38a. In the MAC address database 38b, a plurality of MAC addresses 8f assigned to communication terminals that should be allowed to relay information transmission / reception by the information relay system S1 are held as terminal identification information 38c. The MAC address database 38b can be updated. In the present embodiment, before the mobile phone terminal 2 sold by the operator is shipped from the manufacturing factory, the MAC address of the mobile phone terminal 2 is stored. It is added to the MAC address database 38b and updated as needed. The timing at which the MAC address is additionally updated includes various variations such as when the mobile phone type terminal 2 is purchased by the user, and is limited to before the shipment from the factory as in the present embodiment. Is not to be done.

  Note that a service that can be used for each terminal identification information (for example, voice communication or browsing of a WEB page) is associated with and stored in the hard disk 38 of the authentication server 4, so that a mobile phone type can be used for authentication using a MAC address. Different services can be permitted for each terminal 2.

  The hard disk 38 of the authentication server 4 holds an AP algorithm 38d that defines an update rule for updating the AP-side PSK information 30d. In the present embodiment, an AP algorithm 38d that defines “add 3” to the current PSK information 30e held as numerical information is held. Therefore, the terminal-side PSK information 8d and the current PSK information 30e are updated with the same update rule, and if the same information is updated with the terminal algorithm 8g or the AP algorithm 38d, It is supposed to be the same information.

  The hard disk 38 of the authentication server 4 stores a server program P3. Based on the command of the server program P3, the CPU 40 of the authentication server 4 performs the following various functions.

  The CPU 40 of the authentication server 4 has a function as MAC address acquisition means (second acquisition means) 40a for acquiring the MAC address 8f transferred from the access point AP1 via the Internet network W.

  The CPU 40 of the authentication server 4 has a function as a second verification unit 40b that collates the acquired MAC address 8f with the terminal identification information 38c held in the MAC address database 38b. If the acquired MAC address 8f matches the terminal identification information 38c as a result of the verification by the second verification means 40b, it is determined that the mobile phone type terminal manufactured and sold by the operator and the match signal 11 is accessed. It is transmitted toward the point AP1. If the MAC address 8f and the terminal identification information 38c do not match, the mismatch signal 12 is transmitted toward the access point AP1.

  The CPU 40 of the authentication server 4 serves as update instruction information transmitting means 40c that transmits the update instruction information 42 simultaneously to the access points AP1 and AP2 based on the server side current time information 36a transmitted from the server side clock unit 36. It has the function of. As described above, the access points AP1 and AP2 that have acquired the update instruction information update the AP-side PSK information 30d. Since the update instruction information 42 is simultaneously transmitted to all the access points AP1 and AP2, the PSK information is updated all at the same time at all the access points. Accordingly, information can be transmitted and received via the access points AP1 and AP2 using the same PSK information in any of the wireless local area networks 34a and 34b.

  In the present embodiment, it is a predetermined time (in this embodiment, the time “minute” is “10 minutes”, “20 minutes”, “30 minutes”, “40 minutes”, “50 minutes”). ) Is sent the update instruction information 42. This predetermined time is the same time as the time when the terminal side update means 10a updates the terminal side PSK information 8d. Therefore, if the time indicated by the terminal-side clock unit 6 and the time indicated by the server-side clock unit 36 are the same, the terminal-side PSK information 8d and the AP-side PSK information 30d are simultaneously updated and become matching information. If there is a difference between the time indicated by the terminal-side clock unit 6 and the time indicated by the server-side clock unit 36, a period in which the two pieces of information do not match will occur. Therefore, the CPU 40 of the authentication server 4 has the following functions to correct the time lag.

  The CPU 40 of the authentication server 4 acquires the terminal-side current time information 6a transferred by the access point AP1 and calculates difference information with the server-side current time information 36a transmitted from the server-side clock unit 36. It has a function as 40d. If time difference information is T, terminal-side current time information 6a is t1, and server-side current time information is t2, T is calculated by the following equation.

T = t2-t1
When T becomes “−3” or less or “3” or more, the CPU 40 of the authentication server 4 transmits the correction information 44 to the access point AP1 to correct the time indicated by the terminal-side clock unit 6. It has a function as correction information transmission means 40e. That is, the correction information 44 is transmitted when the difference between the time indicated by the terminal-side clock unit 6 and the time indicated by the server-side clock unit 36 is 3 minutes or more, and if the difference is less than 3 minutes, The correction information 44 is not transmitted because the difference is within the allowable range. The time difference of 3 minutes can be set arbitrarily.

  Since the terminal side current time information 6a is information transmitted when the user performs an information transmission / reception operation with respect to the mobile phone type terminal 2, the time correction is performed each time the information transmission / reception operation is performed. It has become. Note that the time correction timing of the mobile phone type terminal 2 can be arbitrarily set.

  As described above, the terminal program P1, the AP program P2, and the server program P3 cooperate with each other to exhibit functions as an information relay program and a time correction program.

  Next, a procedure for performing a voice call as information transmission / reception via the wireless local area communication network 34a and the Internet network W using the mobile phone type terminal 2 will be described with reference to the flowchart of FIG.

  When the user operates the operation button 2d of the mobile phone type terminal 2 to make a call to the other party to make a voice call (S.1), the terminal-side PSK information 8d is converted by the PSK transmission means 10b into the MAC address transmission means Thus, the MAC address 8f is transmitted to the access point AP1 (S.2). The MAC address 8f is temporarily stored in the temporary storage unit 30h (S.3), and the first verification unit 32b compares the terminal-side PSK information 8d with the current PSK information 30e stored in the AP-side PSK information storage unit 30a. (S.4). When the terminal side PSK information 8d and the current PSK information 30e do not match as a result of the collation by the first collating means (S.5), the terminal side PSK information 8d and the AP side PSK information are obtained by the first collating means 32b. The pre-update PSK information 30f held in the holding means 30a is collated (S.6). When the terminal side PSK information 8d and the pre-update PSK information 30f do not match as a result of the collation by the first collating means (S.7), the terminal side PSK information 8d and the AP side PSK are obtained by the first collating means 32b. The re-update PSK information 30g held in the information holding means 30a is collated (S.8). As a result of the collation by the first collating means, if the terminal side PSK information 8d and the re-update PSK information 30g do not match (S.9), the voice call is rejected (S.10).

  If the terminal side PSK information 8d matches the current PSK information 30e, the pre-update PSK information 30f, or the re-update PSK information 30g as a result of the collation by the first collating means, the MAC address 8f is transferred to the authentication server 4. (S.11). The MAC address 8f and the terminal identification information 38c are verified by the second verification unit 40b of the authentication server 4 (S.12). When the MAC address 8f and the terminal identification information 38c do not match (S.13), the mismatch signal 12 is transmitted toward the access point AP1 (S.14). When the MAC address 8f matches the terminal identification information 38c (S.13), the match signal 11 is transmitted to the access point AP1 (S.15), and the temporarily held MAC address 8f is changed to the AP side. It is written in the MAC address holding means 30j (S.16). Then, the AP-side MAC address information 30i matches the MAC address 8f, and the information control means 32f allows relaying of information transmission / reception (S.17). Establish.

  Here, the other party who makes a call from the mobile phone type terminal 2 may be a communication terminal connected to the Internet network W and capable of making a voice call, or a telephone (not shown) connected to a public telephone network (not shown). .).

  Next, the procedure for correcting the time indicated by the terminal-side clock unit 6 of the mobile phone type terminal 2 will be described with reference to the flowchart of FIG.

  When the user operates the operation button 2d of the mobile phone type terminal 2 to make a call to the other party to make a voice call (S.18), the time information transmitting means 10d causes the terminal side current time information 6a to be changed to an access point. It is transmitted toward AP1 (S.19). The terminal-side current time information 6a is transferred toward the authentication server 4 by the time information transfer means 32h of the access point AP1 (S.20).

  The difference calculation means 40d of the authentication server 4 calculates time difference information between the terminal-side current time information 6a and the server-side current time information 36a (S.21). When the time difference information, that is, the time difference is 3 minutes or more (S.22), the correction information 44 is transmitted from the correction information transmitting means 40e to the access point AP1 (S.23). The correction information transfer means 32i of the access point AP1 transfers the correction information 44 to the mobile phone type terminal 2 (S.24). The time correction unit 10e of the mobile phone type terminal 2 corrects the time indicated by the terminal-side clock unit 6 based on the correction information 44 (S.25). The time difference of 3 minutes can be set arbitrarily.

  If the time difference is less than 3 minutes (S.22), the correction information 44 is not transmitted (S.26) because the time difference is within the allowable range. The time difference of 3 minutes can be set arbitrarily.

  If the terminal-side clock unit 6 and the server-side clock unit 36 have a function as a so-called radio clock that receives a standard radio wave indicating standard time and corrects the time, the time correction using the correction information 44 is performed. Can greatly reduce the opportunity.

  Thus, although the time lag indicated by the terminal-side clock unit 6 and the server-side clock unit 36 is corrected every time information is transmitted / received, in the information relay system 1 according to the present embodiment, the terminal-side PSK information 8d is The information transmission / reception is permitted after being compared with the current PSK information 30e, the pre-update PSK information 30f, and the re-update PSK information 30g. Even when the information update time is shifted due to the time shift, if the terminal-side PSK information 8d matches the pre-update PSK information 30f or the re-update PSK information 30g, the information transmission / reception is permitted. The time is corrected. Therefore, a stable information transmission / reception service can be provided to the user.

  The mobile phone type terminal 2 described in the present embodiment has a function of making a voice call through the Internet network W. The mobile phone type terminal 2 makes a voice call through the public telephone network. It may have a function. In this case, for example, when the mobile phone is in the wireless communication network, a voice call is made through the Internet network with a relatively low call charge, and when the mobile phone is out of the wireless communication network, the voice is sent through the public telephone network. You can also make a call.

  In the present embodiment, the authentication using the second identification information is performed after the authentication using the first identification information. However, the present invention is not limited to this, and the first authentication is performed after the authentication using the second identification information. You may comprise so that the authentication by identification information may be performed.

  For example, automatic transmission of the MAC address as the second identification information by the MAC address transmission unit 10c is performed when a signal broadcast from the access point is received, and automatic transmission by the PSK transmission unit 10b is performed at the time of information transmission / reception operation by the user It may be done. In this case, when the mobile phone type terminal enters the communication area, authentication by the MAC address is performed in advance, and the MAC address is written in the access point holding means. Therefore, in the authentication at the time of information transmission / reception operation by the user, it is not necessary to transmit / receive information by the access point and the authentication server, so that information transmission / reception by the mobile phone type terminal can be performed more smoothly and in a short time.

  In the present embodiment, the terminal-side PSK information is configured to be updated by the terminal-side updating means. However, the terminal-side PSK information is notified by notifying the mobile phone terminal of the PSK information updated by the access point. You may comprise so that it may be updated.

  In addition, you may comprise so that the update of AP side PSK information can be stopped for a fixed period (update invalidation). While updating of the AP-side PSK information is invalidated, continuous information transmission / reception is possible without updating the terminal-side PSK information.

  As mentioned above, although preferable embodiment of this invention was described, this invention is not limited to these, A various deformation | transformation and change are possible within the range of the summary.

It is a schematic block diagram which shows the whole structure of the information transmission / reception system comprised by having the information relay system which concerns on embodiment of this invention. It is a figure which shows schematic structure of the mobile telephone type | mold terminal which comprises the information transmission / reception system shown in FIG. It is a figure which shows the data structure of the terminal side PSK database constructed | assembled in the terminal side PSK information holding means which the mobile telephone type terminal shown in FIG. 2 has. It is a figure which shows schematic structure of the access point which comprises the information transmission / reception system shown in FIG. It is a figure which shows the data structure of AP side PSK database constructed | assembled in the AP side PSK information holding means which the access point shown in FIG. 4 has, Comprising: (a) Data structure before update, (b) Data structure after update FIG. FIG. 5 is a diagram showing a data configuration of an AP type MAC address database constructed in an AP side MAC address holding unit included in the access point shown in FIG. 4. It is a figure which shows schematic structure of the authentication server which comprises the information transmission / reception system shown in FIG. It is a figure which shows the data structure of the MAC address database constructed | assembled in the server side MAC address holding means which the authentication server shown in FIG. 7 has. It is a flowchart which shows the procedure which performs the voice call by a mobile telephone type terminal using the information relay system shown in FIG. 2 is a flowchart showing a procedure for correcting a time indicated by a terminal side clock unit of a mobile phone type terminal in the information relay system shown in FIG. 1.

Explanation of symbols

AP1, AP2: Access point P1: Terminal program P2: AP program P3: Server program S1: Information relay system S2: Information transmission / reception system W: Internet network (wide area communication network)
2: Mobile phone type terminal (communication terminal)
2a: Display unit 2d: Operation button 3: Body unit 4: Authentication server 5: Antenna unit (radio wave transmission / reception unit)
6: Terminal side clock unit 6a: Terminal side current time information 8: SIM card 8a: Terminal side PSK information holding means (holding unit)
8b: Terminal-side PSK database 8c: Available service type 8d: Terminal-side PSK information (first identification information)
8e: Terminal-side MAC address holding means 8f: MAC address (second identification information)
8g: Algorithm for terminal 9: Memory 10: CPU (arithmetic processing unit)
10a: Terminal side update means (information update unit)
10b: PSK transmission means (transmission unit)
10c: MAC address transmission unit 10d: time information transmission unit 10e: time correction unit 11: coincidence signal 12: mismatch signal 28: housing 28a: antenna unit 30: memory 30a: AP side PSK information holding unit (first holding unit)
30b: AP side PSK database 30c: Information type 30d: AP side PSK information
30e, 30l: Current PSK information (first collation information)
30f, 30m: Pre-update PSK information (second verification information)
30g, 30n: Re-update PSK information (second verification information)
30h: Temporary holding means 30i: AP side MAC address information 30j: AP side MAC address holding means 30k: AP side MAC address database 32: CPU
32a: AP side PSK information acquisition means (first acquisition means)
32b: first verification means 32c: MAC address transfer means 32d: writing means 32e: deletion means 32f: information control means 32g: AP side update means (update means)
32h: Time information transfer means 32i: Correction information transfer means 34a, 34b: Wireless local area communication network (local area communication network)
36: Server-side clock unit 36a: Server-side current time information 38: Hard disk 38a: Server-side MAC address holding means 38b: MAC address database 38c: Terminal identification information (third verification information)
38d: AP algorithm 40: CPU
40a: MAC address acquisition means (second acquisition means)
40b: second collating means 40c: update instruction information transmitting means 40d: difference calculating means 40e: correction information transmitting means 42: update instruction information 44: correction information

Claims (11)

An information relay system that relays information transmission / reception performed via the local communication network and a wide area communication network connected thereto using a communication terminal connected to the local communication network,
First holding means that is updated based on a predetermined condition and holds first collation information for collating with first identification information held in the communication terminal for use in the information transmission and reception;
Updating means for updating the first verification information at the same time as updating the first identification information;
First acquisition means for automatically acquiring the first identification information via the local area communication network;
First verification means for verifying the first identification information acquired by the first acquisition means and the first verification information;
An information control unit that allows relaying of the information transmission / reception using the communication terminal when the first identification information and the first verification information match in the verification by the first verification unit; Information relay system. The first holding means holds the first collation information before the update as the second collation information for collating with the first identification information even after the update of the first collation information by the updating means,
The first verification unit compares the first identification information with the second verification information;
2. The information relay according to claim 1, wherein the information control unit allows relaying of the information transmission / reception even when the first identification information and the second verification information match in the verification by the first verification unit. system. Second acquisition means for automatically acquiring, from the communication terminal via the wide-area communication network, second identification information given differently for each communication terminal in order to identify the communication terminal;
Second holding means for holding a plurality of third collation information for collating with the second identification information;
A second verification means for verifying the acquired second identification information with the third verification information;
In addition to the case where the first identification information and the first verification information match in the verification by the first verification unit, the information control unit includes the second identification information and the third verification information in the verification by the second verification unit. 3. The information relay system according to claim 1 or 2, wherein relaying of the information transmission / reception is permitted when and match.   The information relay system according to claim 3, wherein the second identification information is a MAC address or a terminal manufacturing number of the communication terminal. The local area communication network is a wireless local area communication network;
The information relay system according to any one of claims 1 to 4, wherein the information transmission / reception is performed by wireless communication.   The information relay system according to claim 1, wherein the information transmission / reception is transmission / reception of voice information. A communication terminal for transmitting and receiving information via a local area communication network and a wide area communication network connected thereto,
A holding unit that holds the first identification information for use in the information transmission and reception in an updatable manner;
A transmitter that automatically transmits the first identification information to the information relay system according to any one of claims 1 to 6 via the local area communication network;
An information updating unit that updates the first identification information at the predetermined time based on the predetermined condition.   The communication terminal according to claim 7, wherein the holding unit is detachably attached to the communication terminal.   The communication terminal according to claim 8, wherein the holding unit is a SIM card. The local area communication network is a wireless local area communication network;
The communication terminal according to any one of claims 7 to 9, wherein the information transmission / reception is performed by wireless communication.   The communication terminal according to any one of claims 7 to 10, wherein the information transmission / reception is transmission / reception of audio information.

Images