JP2011041074A - Identification system, authentication station server, and identification method - Google Patents

Abstract

The present invention provides an identification system that makes it possible to appropriately perform identification of various visitors in the general society without requiring prior registration by a resident.
Based on the company information, proof information for certifying that the employee belongs to the company and identification information 121 for specifying the proof information are generated and held in the identification information information 132. The certificate authority server 100 that issues 121, the certificate 230 in which the identification information 121 that identifies the certification information corresponding to the employee is recorded, and the certificate authority server 100 connected via the network 400 and recorded in the certificate 230 And an authentication device 320 having a function of reading the identification information 121. The authentication device 320 reads the identification information 121 recorded in the certificate 230 when the certificate 230 is presented. The certification information specified by the identification information 121 is acquired and transmitted to the certificate authority server 100 and displayed on the monitor 331.
[Selection] Figure 1

Description

  The present invention relates to a technique for proving the identity of a visitor or the like in a general household, and in particular, an identification system, a certificate authority server, and an identity certification that prove that a visitor or the like is an employee belonging to a specific company or the like. The present invention relates to a technique effective when applied to a method.

  In recent years, crimes that threaten the lives of the general public, such as so-called transfer fraud, malicious door-to-door fraud aimed at the elderly, etc.・ Many cases have occurred.

  These are mainly for the general public because there is a lack of information that can be obtained about callers and visitors at the front door, and it is difficult to immediately determine the identity of the other party only by clothes and speaking methods. Therefore, it is thought that it is because a criminal can easily disguise himself / herself.

  On the other hand, for example, as a measure to enable a resident such as a home to determine whether or not a visitor is a suspicious person, a video camera is installed at the front door, There is known a so-called TV door phone apparatus that transmits an image taken of a visitor to a monitor, television, mobile phone, etc. in the home and confirms the visitor via these terminals.

  Further, for example, in Japanese Patent Laid-Open No. 2006-54591 (Patent Document 1), in a conventional door phone device, who is a visitor of a monitor indoor unit is a visitor unless he / she sees a video of a visitor on a monitor display unit In order to solve the problem of being unable to recognize a visitor, a visitor is identified by having a slave unit that detects a visitor and a parent unit that includes a speaker that informs the visitor of the visitor when a visitor is detected. For each QR code (quick response code), music information for identifying and reporting the visitor is stored, and when the visitor's mobile phone that records the QR code is detected by the proximity sensor on the slave side, The CCD camera starts imaging the QR code being displayed on the mobile phone, and the system control unit on the base unit reads out music information corresponding to the QR code captured by the CCD camera. It describes a television intercom device for speaker output.

  Further, for example, in Japanese Patent Application Laid-Open No. 2007-241501 (Patent Document 2), while installing an intelligent type TV door phone device in each house, each company or industry group distributes an ID card to a visitor. At the same time, biometric information such as facial images of each person in charge of visit is registered in the management server and linked to the management server of the third-party organization to obtain the ID card information, the registered biometric information, and the biometric information acquired from the TV door phone device. A visitor identification system for identifying a visitor by information is described.

JP 2006-54591 A JP 2007-241501 A

  As described above, in the conventional TV door phone device of the prior art, the resident is a person who is suspicious of the visitor only by the video information of the visitor's face and clothes, etc. displayed on the monitor etc. It may be difficult to correctly grasp the visitor's identity. Therefore, in such a case, for example, the resident requests the visitor to present something that can identify his / her identity such as an employee ID card. However, it is difficult for a resident to identify not only clothes but also employee ID cards that were created by forgery.

  On the other hand, for example, in the television door phone device described in Patent Document 1, it is possible to identify a visitor by information other than video and audio using a QR code. However, in the TV door phone device as described in Patent Document 1, each resident generates a QR code in advance for a family, a friend, or a visitor who is scheduled to re-deliver a courier service at a specified time. It is necessary to manage them in association with the visitors and to send the generated QR codes to the respective visitors. Therefore, the subject that the workload required for a resident's preparation etc. becomes large arises. In addition, both residents and visitors can respond only to the visitors in the closed range that the resident assumes and plans in advance, and cannot handle visitors in an unspecified range. For this reason, the scope of application is narrow and it is difficult to take a flexible response.

  Moreover, in the visitor identification system described in Patent Document 2, an unspecified visitor can be identified by the television door phone device reading information on the ID card and the biological information of the visitor. However, the TV door phone device requires a device for reading biological information with practically sufficient reading accuracy, and biometric information on the management server must be registered in advance in a management server of each company or the like. And biometric information read by the TV door phone device are sent to a third party for verification, and it is assumed that employees may feel resistance, and the scope of application is narrow for both residents and visitors. turn into.

  Accordingly, an object of the present invention is to provide an identification system, a certificate authority server, and an identification system that can appropriately perform identification of various visitors or senders in the general society without requiring prior registration or the like by residents. It is to provide an identification method. The above and other objects and novel features of the present invention will be apparent from the description of this specification and the accompanying drawings.

  Of the inventions disclosed in this application, the outline of typical ones will be briefly described as follows.

  The identification system according to the representative embodiment of the present invention is based on company information obtained from a company and including information on employees belonging to the company, and the employee belongs to the company. Proving certification information and identification information for identifying the certification information is generated and held in the identification information database, the certificate authority server that issues the identification information to the company, the employee possesses, A certificate comprising an apparatus having a recording medium on which the identification information for identifying the certification information corresponding to the employee is recorded; and the certificate connected to the certificate authority server via a network and recorded in the certificate An identification system having an authentication device having a function of reading identification information, and having the following characteristics.

  That is, when the certificate is presented, the authentication device in the identification system reads the identification information recorded in the certificate, transmits the read identification information to the certificate authority server, and The certification information specified by the identification information is acquired from a certificate authority server, and the content of the certification information is displayed on a monitor connected to the authentication device. The representative embodiment of the present invention can also be applied to a certificate authority server and an identification method.

  Among the inventions disclosed in the present application, effects obtained by typical ones will be briefly described as follows.

  According to a typical embodiment of the present invention, a resident acquires information related to a visitor / sender from identification information about an employee of each company managed by a certificate authority. Because it is possible to confirm the company to which it belongs, it becomes possible for residents to respond after understanding the characteristics of various visitors and senders in society in general, without prior registration work, Security can be greatly improved.

  In addition, it is possible for a visitor / caller to prove his / her identity to the resident without disclosing information related to privacy such as his / her address, and to prove that he / she is not a suspicious person. , It is possible to improve the efficiency of business execution.

It is the figure shown about the outline | summary of the structural example of the identification system which is Embodiment 1 of this invention. It is the figure shown about the example of the flow of a visitor's identification process in Embodiment 1 of this invention. (A), (b) is the figure shown about the example of the data structure of the identification information in Embodiment 1 of this invention. It is the figure shown about the example of the data structure of the authentication log in Embodiment 1 of this invention. It is the figure shown about the example of the flow of a process of confirmation of the sender | caller (calling telephone number) in Embodiment 2 of this invention. It is the figure shown about the example of the flow of a process of confirmation of the sender | caller (calling telephone number) in Embodiment 3 of this invention.

  Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings. Note that components having the same function are denoted by the same reference symbols throughout the drawings for describing the embodiment, and the repetitive description thereof will be omitted.

<Overview>
The identification system according to one embodiment of the present invention is an identification system that can be used not only in a closed range but also in the general public for employees of companies or the like who visit or call a general household for business purposes. As information, there is a certificate authority server that holds identification information that proves that the employee belongs to the company or the like correctly.

  An employee, for example, has a certificate issued by recording identification information for identifying identification information held by a certificate authority server on an IC chip (for example, an employee ID card or a mobile phone), etc. To visit the residence. Examples of such visits include collection and delivery by courier, individual delivery of food and daily necessities, delivery of registered mail and parcels, inspection and inspection of electricity, water and gas, fires by fire stations, etc. Inspection and inspection of equipment such as alarms, visits by public organizations such as the police and census officials, collection of newspapers and other products, and door-to-door sales are assumed.

  Here, for example, the employee presents the certificate to an authentication device that can be read from the information on the IC chip, which is installed at the entrance of the visited residence. The authentication device transmits the identification information read from the IC chip to the certificate authority server via the network, receives the identification information corresponding to the identification information from the certificate authority server, and monitors the received identification information in the home Etc. This makes it possible for the resident to grasp the visitor's identity before actually opening the front door and responding.

  For example, the employee calls a residence such as a general household by using the telephone number recorded in the identification information held by the certificate authority server. At this time, the residential telephone or the like transmits the caller ID and the like to the certificate authority server via the network before calling by the ring tone, and authenticates the confirmation information as to whether or not the corresponding identification information exists correctly. Receive from the station server. Depending on the content of the received confirmation information, the residential telephone notifies the confirmation result of the caller at the same time as calling. This makes it possible to determine whether or not the caller is a suspicious person before the resident actually makes a telephone call.

  Here, in the above example, the processing model consisting of the certificate authority server, the certificate possessed by the employee, such as a company, and the identification / acquisition information at the visit / destination residence is currently the Internet etc. A server certificate mechanism widely used in networks is applied to real life in the general society.

  That is, in the identification system of the present embodiment, the certificate authority server that performs employee identification corresponds to a so-called root certificate authority in the server certificate mechanism, and holds identification information in the certificate authority server; Issuing an identification certificate by recording identification information for identifying identification information on the IC chip is equivalent to issuing a server certificate at the root certificate authority. In addition, when an employee who has a certificate visits a residence such as a general household and presents the certificate to an authentication device for identification, the server certificate is acquired by a Web browser in the server certificate mechanism. This corresponds to verification with a root certificate.

<Embodiment 1>
Below, the identification system which is Embodiment 1 of this invention is demonstrated. As described above, the identification system according to the present embodiment has a certificate authority server that holds identification information that certifies that an employee belongs to a company or the like. The identification information for identifying the identification information held by the station server is recorded on the IC chip, and the issued certificate is carried to visit a residence such as a general household.

  Here, the employee presents the certificate to an authentication device that can read the information on the IC chip, for example, installed at the entrance of the visited residence or presented by the visited resident or the like. The authentication device transmits the identification information read from the IC chip to the certificate authority server via the network, receives the corresponding identification information from the certificate authority, and displays it on the monitor in the house. Thereby, it becomes possible to grasp the identity of the visitor before the resident actually responds.

[System configuration]
FIG. 1 is a diagram showing an outline of a configuration example of an identification system that is Embodiment 1 of the present invention. The identification system includes, for example, a certificate authority server 100, a certificate 230 possessed by a visitor 210 to the residence 300, an authentication device 320 installed in the residence 300, and a monitor 331 connected to the authentication device 320. The certificate authority server 100 and the authentication device 320 are connectable via a network 400 such as the Internet.

  The certificate authority server 100 is configured by a computer system and includes, for example, an authentication unit 110 and a certification information generation unit 120 implemented by a software program, and an authentication log 131 and identification information 132 database. In response to a request from an authentication device 320 (to be described later), the authentication unit 110 acquires certification information corresponding to identification information 121 (to be described later) recorded in a certificate 230 possessed by the visitor 210 from the identification information 132. Has a function to transmit. Further, the processing content at this time is recorded in the authentication log 131 as history information.

  The proof information generation unit 120 acquires proof information for the visitor 210 (employee) from the company to which the visitor 210 belongs, generates proof information for the employee, and creates the proof information 132. Has the function of recording. At this time, identification information 121 for specifying the certification information is generated and issued.

  The certificate 230 is a device having a recording medium for recording the identification information 121 issued by the certification information generation unit 120 of the certificate authority server 100. For example, as an IC card device incorporating an IC chip in which identification information 121 is recorded, it can be implemented as an employee ID card or mobile phone having an IC card function. The authentication device 320 installed at the entrance of the residence 300 is a device having a reader function capable of reading the identification information 121 recorded on a recording medium such as an IC chip in the certificate 230, and the network 400. It is connected to the certificate authority server 100 via

  The certificate 230 has, for example, a security function and is compatible with an IC card compatible with FeliCa (registered trademark), which has been widely used in recent years as a technical method of a non-contact IC card, and mobile FeliCa / Osaifu-Keitai (registered trademark). Can be implemented as a mobile phone. In this case, the authentication device 320 uses a card reader having a reader function of the FeliCa chip.

  The means for reading the identification information 121 in the certificate 230 by the authentication device 320 is not limited to the one using the above FeliCa, but other non-contact IC cards, wireless IC tags, contact IC cards, and magnetic stripe cards. Various means can be used, such as those that record the identification information 121 on a recording medium such as a semiconductor memory.

  The authentication device 320 can be implemented as an independent device, but can also be implemented as an outdoor unit of a door phone device, for example. In this case, in addition to the function of reading the identification information 121 in the certificate 230 described above, a general intercom function or a function of capturing an image of the visitor 210 by a video camera may be provided. Further, in the residence 300, a monitor 331 is installed and connected to the authentication device 320 as an indoor unit of a door phone device.

  The authentication device 320 has a function of sending an identification request by sending the identification information 121 read from the certificate 230 to the certificate authority server 100 via the network 400. Upon receiving the authentication request from the authentication device 320, the authentication unit 110 of the certificate authority server 100 acquires the proof information of the visitor 210 corresponding to the identification information 121 from the identification information 132 and responds to the authentication device 320. The authentication device 320 displays the content of the acquired certification information on the monitor 331, and the resident 310 of the residence 300 grasps the identity of the visitor 210 before actually responding by checking the display content of the monitor 331. can do.

  In addition to the monitor 331, the authentication device 320 sends the certification information acquired from the certificate authority server 100 to an e-mail to a portable terminal such as a mobile phone 332 that can be connected to the network 400 owned by the resident 310 or a PC. For example, the transmission may be performed. Thus, even if the resident 310 cannot move to the location of the monitor 331 or is absent from the residence 300 due to going out, etc., the resident 310 carries the visitor 210's visit and the visitor's 210 identity, etc. It can be grasped by telephone 332.

  When the above-described FeliCa / mobile FeliCa technology is used for the certificate 230, if the mobile phone 332 supports mobile FeliCa, the mobile phone depends on the version of the corresponding FeliCa function, software in the mobile phone 332, and the like. It is possible to make 332 function as a FeliCa reader. In this case, the functions of the authentication device 320 and the monitor 331 can be realized only by the mobile phone 332, and a special authentication device 320 is not required, and an environment for authentication in the residence 300 is easily realized at low cost. be able to.

  In this case, the resident 310 needs to face the visitor 210 in order to receive the presentation of the certificate 230. If the visitor 230 is malicious, the identity of the visitor 230 is confirmed. There is a possibility that the initial purpose of improving security by responding to the security cannot be achieved. In response to this, for example, by displaying a wording such as “At this house, we will confirm the certification of the employee ID card with a mobile phone” at the entrance of the residence 300, a mark indicating that, etc. It is also possible to warn the malicious visitor 230 in advance and reduce the motivation.

[Process flow]
FIG. 2 is a diagram showing an example of the flow of visitor identification processing in the identification system of the present embodiment. First, the certificate using company 200, which is the company to which the employee (visitor 210) who visits the residence 300 with the certificate 230, belongs to the certificate authority (the certificate authority server 100). Request to generate certification information. At this time, the certificate using company 200 sends information about the company and information about one or more employees for which certification information is generated as company information 220 to the certificate authority (the certificate authority server 100). Note that the certificate using company 200 may include not only general companies but also public institutions and organizations such as police and local public organizations. The company information 220 may be sent electronically via the network 400 or the like, or may be sent by paper or recording medium.

  The certificate authority (the certificate authority server 100) that has received the company information 220 confirms the validity of the company information 220 and imports it into the certificate authority server 100. Further, based on the company information 220, the proof information generation unit 120 generates proof information for proof that the employee is a person belonging to the certificate using company 200 for each employee. 132.

  At this time, identification information 121 for specifying the target certification information is generated, recorded in the identification information 132 in association with the target certification information, and issued to the certificate using company 200. As described above, the certificate using company 200 records the identification information 121 sent from the certificate authority server 100 in an IC card such as an employee card corresponding to FeliCa or mobile FeliCa, or in an IC chip such as a mobile phone. Certificate 230.

  In the above example, the certificate authority server 100 issues the identification information 121, and the certificate using company 200 records this in the employee card or the IC chip of the mobile phone as the certificate 230. The issuing procedure is not limited to this. For example, in the state where the certificate authority 230 records the identification information 121 in an IC chip such as an employee ID card or a mobile phone that is newly procured or passed from the certificate using company 200, the certificate 230 is used. It may be issued to the user company 200.

  At this time, the process of generating certification information by the certification information generation unit 120 and the process of recording the identification information 121 in an IC chip such as an employee ID card or a mobile phone and issuing it as a certificate 230 are not performed by a certificate authority. For example, another company or organization that issues an IC card as a business may perform it on behalf. In this case, the function of the certification information generation unit 120 in the certificate authority server 100 is not owned by the certificate authority server 100 but is owned by these companies or organizations, and the certificate authority server 100 uses the certification information generated by these companies or organizations. May be obtained and held as identification information 132.

  When the employee of the certificate using company 200 visits the residence 300 for business, he / she visits with the certificate 230 in which the identification information 121 for identifying his / her certification information is recorded. An authentication device 320 is installed at the entrance of the visited residence 300, and the employee (visitor 210) receives the identification information 121 recorded in the certificate 230 possessed by the employee (visitor 210). Let me read.

  The authentication device 320 that has read the identification information 121 recorded in the certificate 230 transmits the identification information 121 to the authentication unit 110 of the certificate authority server 100 via the network 400 and makes an authentication request. Upon receiving the authentication request, the authentication unit 110 of the certificate authority server 100 acquires certification information corresponding to the identification information 121 from the identification information 132 and transmits it to the authentication device 320. At this time, the authentication unit 110 records the processing content in the authentication log 131.

  The authentication device 320 that has received the certification information from the authentication unit 110 of the certification authority server 100 displays the content of the acquired certification information on the monitor 331 in the residence 300. Thereby, the resident 310 of the residence 300 can grasp the identity of the visitor 210. In addition, by referring to the history information recorded in the authentication log 131 of the certificate authority server 100 on the monitor 331 via the authentication device 320, for example, the history of the visitor 210 who has visited in the past can be grasped.

  Note that the history information of the visitor 210 is not necessarily held as the authentication log 131 in the certificate authority server 100, and may be configured to be held in the authentication device 320, the monitor 331, or the like on the residence 300 side. In this case, the resident 310 may be able to select whether the history information is held in the certificate authority server 100 or on the residence 300 side.

  As described above, the identification information 121 recorded in the certificate 230 identifies certification information whose reliability is guaranteed by a highly public third party called a certificate authority (the certificate authority server 100). Therefore, by using this to prove the identity of the visitor 210, the resident 310 of the residence 300 does not particularly need to perform prior registration or the like (provided in the identification information 132 of the certificate authority server 100). The identity of the unspecified visitor 210 can be ascertained (within the employee whose information is recorded).

[Data structure]
FIG. 3 is a diagram showing an example of the data configuration of the identification information 132 in the identification system according to the present embodiment. FIG. 3A shows an example of a data structure of a company table for holding information about the certificate using company 200 in the identification information 132. FIG. 3B shows an example of the data structure of an employee table for holding certification information for each employee of the certificate using company 200 in the identification information 132. Values of these tables are set by the certification information generation unit 120 based on the contents of the company information 220 sent in the request for generation of certification information from the certificate using company 200 in FIG.

  In the company table of FIG. 3A, a record is recorded for each certificate-using company 200. For example, the company ID, company name, key information, telephone number, e-mail address, homepage URL (Uniform Resource Locator), etc. Have items. The items of the company ID and the company name are information for specifying the certificate using company 200, and each ID uniquely identifying the certificate using company 200 allocated by the certification information generation unit 120, and the certificate using company 200. Holds the name information.

  The key information item holds key information for confirming / certifying that the target certificate 230 is a genuine certificate issued by the certificate authority (the certificate authority server 100). This key information is, for example, data of a predetermined length generated by the proof information generation unit 120 from data unique to the certificate using company 200 in the company table by a predetermined method. In this embodiment, the data is stored in the company table as data unique to the certificate using company 200, but may be stored in the employee table of FIG. 3B described later as data specific to each employee. Good.

  This key information is held in the company table and is also recorded in the certificate 230 issued to the employee of the target certificate using company 200. For example, in the processing flow shown in FIG. 2, the authentication device 320 reads this key information in addition to the identification information 121 from the certificate 230, and recognizes the processing content from the outside with respect to the read key information. A calculation result obtained by adding a predetermined calculation that cannot be performed is transmitted to the certificate authority server 100 together with the identification information 121.

  In the certificate authority server 100, the authentication unit 110 acquires corresponding key information from the company table in FIG. 3A, and the calculation result obtained by adding the same predetermined calculation as the calculation performed by the authentication device 320 to the acquired key information. Is compared with the calculation result transmitted from the authentication device 320. Only when this comparison matches, it is assumed that the used certificate 230 is genuine (having the same key information as the certificate authority), and the verification of the identification information 121 and other identification information 132 Enable data acquisition.

  As a result, identification by a person other than the person who possesses the regular certificate 230 can be rejected, and only the value corresponding to the identification information 121 (for example, the employee number may not be particularly confidential information). It is possible to prevent reference to data held in the identification information 132 from unnecessary access or impersonation by a third party who knows. Note that the method for identifying that the certificate 230 used is authentic by using the key information and protecting the data held in the identification information 132 is not limited to the method described above. Other methods may be used.

  The telephone number, e-mail address, and homepage URL items in the company table each hold information on the access destination from the outside for the certificate-using company 200. Even if the certificate authority (the certificate authority server 100) proves that the visitor 210 possessing the certificate 230 is an employee of the target certificate using company 200, the resident 310 uses the target certificate. There may be cases where nothing is known about the company 200 itself. Accordingly, such information is held so that the resident 310 can access information related to the target certificate using company 200, and the authentication device 320 obtains this information and provides the resident 310 with the information during identification. Alternatively, it may be presented.

  In addition to the information on the access destinations, as items indicating the outline of the certificate utilizing company 200 itself, for example, general disclosure items such as location, industry, business content, number of employees, capital, etc. The authentication device 320 may acquire such information and present it to the resident 310 at the time of certification.

  In the employee table of FIG. 3B, a record holding certification information is recorded for each employee of the certificate using company 200. For example, the employee ID, company ID, department name, employee number, and name are recorded. , Items such as phone number, e-mail address, image. The item of employee ID is information for specifying the target employee, and holds ID information for uniquely identifying the employee allocated by the certification information generation unit 120 of the certificate authority server 100.

  The “affiliation company ID” item holds information on the company ID of the certificate using company 200 to which the target employee belongs. This item is associated with the information of the certificate using company 200 recorded in the company table of FIG. The items of department name and employee number respectively hold the name of the department to which the subject employee belongs and the information of the employee number. The name item holds information on the name of the target employee.

  The telephone number and e-mail address items each hold information on the access destination from the outside for the target employee. The image item holds information on an image such as a face photograph of the target employee. For example, at the time of identification, the authentication device 320 obtains image information about the visitor 210 from the employee table and presents it to the resident 310, so that the resident 310 has the entrance visitor 210. Whether or not the employee has been authenticated by the certificate authority (the certificate authority server 100) can also be determined from the appearance.

  Here, in the example of FIGS. 1 and 2, as the identification information 121 for identifying the employee certification information recorded on the IC chip or the like in the certificate 230, for example, the employee table of FIG. Of the items, items unique to the target employee, such as employee ID, company ID + employee number, can be used.

  Further, as described above, the information recorded in the identification information 132 including the tables shown in FIG. 3 is business information for proving that the visitor 210 is an employee of the certificate using company 200. It does not include information relating to the privacy of the visitor 210 (employee). Therefore, for example, even when the employee loses or is stolen the certificate 230, information related to the employee's privacy does not leak, and the employee uses it without any sense of resistance. be able to. In such a case, a countermeasure such as disabling the record of the employee in the employee table of FIG. 3B may be performed.

  Specifically, for example, the certificate 230 is made unusable by deleting a record in the employee table specified by the identification information 121 recorded in the lost certificate 230. Alternatively, an item for holding the status of the certificate 230 is added to the employee table so that statuses such as “lost” and “theft” can be held. In this case, in response to the authentication request from the authentication device 320, the certificate authority server 100 cannot be used if the presented certificate 230 is in a “lost” or “stolen” state. May be displayed on the monitor 331 of the residence 300 to notify the resident 310.

  FIG. 4 is a diagram showing an example of the data configuration of the authentication log 131 in the identification system according to the present embodiment. In the authentication log 131, the processing content is recorded as a history (log) for each authentication processing by the authentication unit 110, and includes items such as SeqID, date / time, identification information, access source, and processing result. The SeqID item holds information on a sequence number uniquely assigned by the authentication unit 110 for each log record.

  The date / time item holds information on the date / time when the target log was recorded. The identification information item holds the information of the identification information 121 received by the authentication unit 110 when performing the authentication process related to the target log. The access source item holds information related to the authentication device 320 that has performed authentication processing related to the target log. This item can hold, for example, the IP address of the authentication device 320 that is the transmission source of the authentication request. The processing result item holds information on the success or failure of the authentication processing related to the target log.

  As described above, by referring to the history information recorded in the authentication log 131 on the monitor 331 via the authentication device 320, for example, the history of the visitor 210 who has visited in the past can be grasped. Further, not limited to the monitor 331, for example, the certificate authority server 100 is accessed by a web browser or the like possessed by a PC or a mobile phone, and the database of the authentication log 131 can be accessed via an application program, or the PC or History information may be sent to a mobile phone. Further, for the certificate utilizing company 200, for example, it can be used as a visit log or a delivery record (including a function as a substitute for a receipt confirmation) of an employee (visitor 210). It can also be used to manage delivery routes.

  As described above, the history information of the visitor 210 does not necessarily have to be held in the certification authority server 100 as the authentication log 131, but is configured to be held in the authentication device 320 on the residence 300 side, the monitor 331, or the like. Is also possible. In this case, access source information is not required.

  As described above, according to the identification system that is Embodiment 1 of the present invention, the visitor 210 (employee) specifies the certification information held in the identification information 132 of the certificate authority server 100. The certificate 230 in which the identification information 121 is recorded is presented to the authentication device 320 of the visited residence 300. The authentication device 320 transmits the read identification information 121 to the certificate authority server 100, acquires the corresponding certification information from the identification information 132, and displays it on the monitor 331 or the like. As a result, the resident 310 does not involve any prior registration or the like, and before actually responding to an unspecified visitor 210, the company to which the visitor 210 belongs (certificate utilizing company 200). It is possible to grasp the identity by referring to the authenticated information about the security, and greatly improve the security.

  The visitor 210 can prove his / her identity to the resident 310 without disclosing information related to his / her privacy, and can prove that he / she is not a suspicious person. The efficiency concerning can be improved.

<Embodiment 2>
Below, the identification system which is Embodiment 2 of this invention is demonstrated. As in the first embodiment, the identification system according to the present embodiment includes a certificate authority server that holds identification information that certifies that an employee belongs to a company or the like. Unlike employees, employees do not visit a residence with a certificate that holds identification information that identifies identification information, but use a telephone that corresponds to the telephone number registered in the identification information. Make a business phone call to a person.

  Here, the residential telephone that has received the telephone call from the employee transmits the telephone number information of the caller to the certificate authority server via the network before calling. The certificate authority server confirms whether the identification information corresponding to the telephone number exists and transmits the confirmation result to the telephone. The telephone that has received the confirmation result notifies the resident of the confirmation result together with the call. This makes it possible to know whether the caller is a suspicious person (who has not been registered with the certification authority server as a public institution or company) before the resident actually takes the call. And

[Process flow]
FIG. 5 is a diagram showing an example of a processing flow of confirmation of a caller (calling telephone number) in the identification system of the present embodiment. Since the configuration of the identification system is the same as that of the first embodiment, the certificate authority server 100 is not described here. On the other hand, as described above, the employee of the certificate using company 200 does not visit the residence 300 but makes a phone call to the residence 300. In the residence 300, the telephone 340 replaces the authentication device 320. The point of being configured to connect to the certificate authority server 100 via the network 400 is different from the first embodiment.

  Here, the telephone of the certificate using company 200 may be a normal telephone, but the telephone 340 of the residence 300 is similar to the authentication device 320 of the first embodiment as described above, and the certificate authority server is connected via the network 400. It has a function of connecting to 100, confirming the telephone number of the caller, and notifying the confirmation result by display or voice. The telephone 340 may be a fixed telephone or a mobile phone, or may be a so-called IP telephone terminal.

  In FIG. 5, first, as in the first embodiment, the certificate using company 200, which is the company to which the caller (employee) belongs, certifies the employee to the certificate authority (the certificate authority server 100). Request information generation. At this time, the certificate using company 200 sends information about the company and information about the employee for which certification information is generated as company information 220 to the certificate authority (the certificate authority server 100). This information includes telephone number information as shown in FIG. Note that the certificate using company 200 may include not only general companies but also public institutions and organizations such as police and local public organizations.

  The certificate authority (the certificate authority server 100) that has received the company information 220 fetches the company information 220 into the certificate authority server 100, and the certificate information generation unit 120 causes the employee to use the certificate using company 200 for each employee. Proof information that proves the identity of the person belonging to is generated and registered in the identification information 132.

  Thereafter, the employee who has generated the certification information and registered in the identification information 132 uses the telephone corresponding to the registered telephone number to notify the telephone number 340 of the residence 300 of the caller number and Make a phone call. Receiving the telephone, the telephone 340 transmits the caller's telephone number information to the certificate authority server 100 via the network 400 for confirmation before calling. In the certificate authority server 100, the authentication unit 110 confirms whether there is certification information having a telephone number corresponding to the identification information 132, and transmits the confirmation result to the telephone 340. Receiving the confirmation result, the telephone 340 makes a normal call using a ring tone and notifies the resident of the confirmation result.

  In the notification, for example, when it is a confirmation result that the telephone number of the caller is registered in the identification information 132, a predetermined mark or wording is displayed on the liquid crystal screen of the telephone 340, a button, etc. It is possible to notify that the caller is not a suspicious person by various means such as turning on the back lamp or outputting a predetermined voice or sound together with the ringing tone of the call. Further, when the confirmation result indicates that the telephone number of the caller is not registered in the identification information 132, it is possible to take measures such as automatically switching to a rejection response or an answering machine.

  In addition to displaying the confirmation result, the caller information registered in the identification information 132 is transmitted from the certificate authority server 100 to the telephone 340, and the contents are displayed on the liquid crystal screen of the telephone 340, etc. You may be able to grasp the name of the company and the identity of the company to which it belongs.

  As described above, according to the identification system that is Embodiment 2 of the present invention, the caller (employee) is registered in the certification information held in the identification information 132 of the certificate authority server 100. A call corresponding to the telephone number is sent to the telephone 340 of the residence 300. The telephone 340 transmits the caller's telephone number to the certificate authority server 100, acquires a confirmation result as to whether or not the caller's telephone number exists in the identification information 132, and notifies it by display or voice.

  As a result, the resident knows whether or not the call from an unspecified caller is from a suspicious person before actually taking the call without any prior registration or other work. Security, such as prevention of wire fraud, can be greatly improved.

<Embodiment 3>
Below, the identification system which is Embodiment 3 of this invention is demonstrated. As in the second embodiment, the identification system according to the present embodiment grasps whether or not the caller is a suspicious person before the resident actually takes a call regarding the call to the resident of the residence. Make it possible. On the other hand, unlike the second embodiment, the certificate authority server does not use a telephone number that is an item of identification information that certifies the employee's identity, but instead uses the telephone number of the organization for the organization that wants to prove its own trust. Confirm the caller with the information that proves.

  Also, unlike the second embodiment, considering the environment where the telephone cannot be connected to the network, the telephone company that exchanges the telephone confirms the telephone number on behalf of the certificate authority when exchanging the telephone from the caller, Call the residence phone with the confirmation result. The telephone that has received the confirmation result from the telephone company notifies the resident of the confirmation result together with the call. This makes it possible to determine whether the caller is a reliable organization before the resident actually takes a call.

[Process flow]
FIG. 6 is a diagram showing an example of a processing flow for confirming a caller (calling telephone number) in the identification system according to the present embodiment. As described above, the configuration of the identification system is different from that of the second embodiment shown in FIG. 5 in that the telephone company 500 that exchanges the telephone instead of the certification authority (the certification authority server 100) has the telephone number of the caller. Is confirmed, and the confirmation result is transmitted to the telephone 340 of the residence 300. Here, the telephone company 500 refers to a system unique to the telephone company including an exchange. Further, the certificate authority server 100 has databases of individual permission telephone numbers 133 and organization certification telephone numbers 134.

  In FIG. 6, first, the organization (use organization 202) that wants to prove its own trust registers the telephone number of the use organization 202 in the certificate authority (the certificate authority server 100). The certificate authority server 100 registers the telephone number of the user organization 202 in the organization certification telephone number 134 database. At this time, as in the first embodiment, the certificate authority (the certificate authority server 100) determines that the user organization 202 can be trusted, for example, by acquiring information corresponding to the company information 220 from the user organization 202. If possible, it shall be registered in the organization certification telephone number 134.

  Note that the user organization 202 has a task of making a call to a general household and requires a guarantee of trust (or a trust is guaranteed). For example, a public organization such as a police or a local public organization Organizations, financial institutions, lawyers, research companies, questionnaire companies, etc. are typical. For public institutions, it is possible to register telephone numbers at the certificate authority (certificate authority server 100) as unconditionally reliable without waiting for requests for registration of telephone numbers from these institutions. Good.

  Furthermore, a general user (for example, a resident of the residence 300) may be able to register the telephone number of an organization, family, or acquaintance trusted by the user with the certificate authority (the certificate authority server 100). In this case, the certificate authority server 100 acquires the telephone number of the organization that the user trusts and permits the call from the user and registers it in the database of the personally permitted telephone number 133 in association with the telephone number of the target telephone 340. To do.

  Thereafter, the contents of each database of the personal permission telephone number 133 and the organization certification telephone number 134 are periodically transferred to the database of the personal authorization telephone number 511 and the organization certification telephone number 512 of each telephone company 500 via the network 400. It is reflected in. Note that each telephone company 500 does not independently hold the personal permit telephone number 511 and the organization certification telephone number 512, but the personal authorization telephone number 133 and the organization certification telephone number 134 of the certificate authority server 100 are transmitted via the network 400. You may make it refer each time.

  Thereafter, an employee of the user organization 202 notifies the caller number to the telephone 340 of the residence 300 and makes a business call. The telephone company 500 that exchanges the telephone confirms whether the caller's telephone number is registered in the personally authorized telephone number 511 or the organization certification telephone number 512 before making a call to the telephone 340 by an exchange or the like. To do. Thereafter, a call is made to the telephone 340 together with the confirmation result. The telephone 340 that has received a call from the telephone company with the confirmation result notifies the resident of the confirmation result together with a normal call. The notification method is the same as in the second embodiment.

  As described above, according to the identification system of the third embodiment of the present invention, the user organization 202 who wants to prove his / her trust registers the telephone number information in the certificate authority server 100. In addition, the user registers information on the telephone number in the certificate authority server 100 for an organization or the like that he trusts. The certificate authority server 100 provides the information to the telephone company 500, so that the telephone company 500 refers to the information when the telephone is exchanged to determine whether the telephone number of the caller is registered. Confirm and send to the telephone 340 together with the confirmation result.

  As a result, the certificate authority (the certificate authority server 100) guarantees the caller's trust, and whether or not the call is from a suspicious person before the resident actually makes a call. And can greatly improve security, such as prevention of wire fraud. Further, the present invention can be applied even when the telephone 340 cannot be connected to the network 400.

  Further, even if the use organization 202 does not need to issue the certificate 230, it can be authenticated by registering only the telephone number, and can efficiently perform the business by telephone. In addition, the resident of the residence 300 registers the telephone number of the organization or family / friend who permits the call, thereby managing the list of telephone numbers permitted to receive the call on the network, and other mobile phones, etc. It is also possible to share with.

  Note that the above-described identification systems according to the first to third embodiments do not need to be constructed as independent systems, and can be implemented in a single certificate authority server 100 in a coexistent manner. is there. The certificate authority (certificate authority server 100) here authenticates the employee or telephone number of a company that makes a business contact with a resident of a general household, and has a function of guaranteeing the trust to the resident. It can be provided as a social infrastructure, not a closed area.

  As mentioned above, the invention made by the present inventor has been specifically described based on the embodiment. However, the present invention is not limited to the embodiment, and various modifications can be made without departing from the scope of the invention. Needless to say.

  For example, in Embodiment 1, the certificate 230 is used for identification at the entrance of the visited residence 300, but the door is unlocked based on the result of identification in the certificate 230. It can also be used as such a “key”. At this time, by managing it together with the history information recorded in the authentication log 131, for example, it can be applied to an entrance / exit / exit management system in a company, an apartment, or the like.

  In addition to unlocking the doors, for example, by controlling the opening and closing of the entrance of the mailbox at the front door based on the result of identification, it is possible to refuse the posting of unnecessary advertisements and leaflets from unauthorized businesses It is also possible.

  In the first embodiment, as a means for reading the identification information 121 recorded in the certificate 230 by the authentication device 320, a non-contact IC card such as FeliCa is taken as an example, but infrared communication or other short-range wireless communication is used. By using this method, it is possible to confirm the absence of a resident and notify the driver's contact information when the driver is absent without having to get off the vehicle and go to the front door when delivering mail or courier. It is also possible to apply to a simple delivery support system.

  When the certificate 230 is used as an employee ID card, in addition to security management for entering and leaving the room, various in-house systems such as login authentication for business PCs and in-house systems, use authentication for shared printers, cabinets, etc. are constructed. It can be a fundamental technology. Further, the identification information 121 recorded in the certificate 230 is used to identify certification information authenticated by a highly public third party called a certification authority (the certification authority server 100). The certificate 230 can be used not only as an in-house system but also as a user authentication means in a system linked between companies.

  Further, since the identification information 132 held in the certificate authority server 100 holds information equivalent to a business card used for business by the employee, for example, the information of the certificate 230 is stored in the mobile phone. It is also possible to use the information of the identification information 132 as an electronic business card by reading it with a device having an IC card reader function such as a telephone and acquiring the corresponding certification information from the identification information 132 of the certificate authority server 100. It is.

  In the second and third embodiments, an example in which an employee of the user organization 202 makes a business contact with a general household by telephone is shown. It can be handled similarly. In this case, for example, by an e-mail client (corresponding to the telephone 340) or a service provider (corresponding to the telephone company 500), the e-mail address or IP address of the sender, authentication information of the sender in NGN (Next Generation Network), etc. By using the information for identifying the sender, it is possible to use it as a measure against spam mail.

  INDUSTRIAL APPLICABILITY The present invention can be used for an identification system that verifies the identity of a visitor or the like at a front door of a general household, a certificate authority server that issues a certificate, and an identification method.

DESCRIPTION OF SYMBOLS 100 ... Certification authority server, 110 ... Authentication part, 120 ... Certification information generation part, 121 ... Identification information, 131 ... Authentication log, 132 ... Identification information, 133 ... Personal permission telephone number, 134 ... Organization certification telephone number,
200 ... Certificate using company, 202 ... User organization, 210 ... Visitor, 220 ... Company information, 230 ... Certificate,
300 ... Residence, 310 ... Resident, 320 ... Authentication device, 331 ... Monitor, 332 ... Mobile phone, 340 ... Telephone,
400 ... Network,
500: Telephone company, 511: Personal permission telephone number, 512: Organization certification telephone number.

Claims (10)

Based on company information including information on employees belonging to the company acquired from the company, certification information for proving that the employee belongs to the company, identification information for identifying the certification information, A certificate authority server that generates and holds the identification information in the identification information database, and issues the identification information to the company;
A certificate comprising a device possessed by the employee and having a recording medium on which the identification information for identifying the certification information corresponding to the employee is recorded;
An identification device connected to the certificate authority server via a network and having an authentication device having a function of reading the identification information recorded in the certificate,
When the certificate is presented, the authentication device reads the identification information recorded in the certificate, transmits the read identification information to the certificate authority server, and from the certificate authority server, An identification system characterized by acquiring the certification information specified by identification information and displaying the content of the certification information on a monitor connected to the authentication device. In the identification system according to claim 1,
The identification system according to claim 1, wherein the certificate is a contactless IC card, and the authentication device is a contactless IC card reader. In the identification system according to claim 2,
The identification device is a mobile phone having a non-contact IC card reader function, and the mobile phone itself is used as the monitor. In the identification system according to claim 1 or 2,
The identification system is an outdoor unit of a door phone device installed at a front door of a residence, and the monitor connected to the authentication device is an indoor unit of the door phone device. In the identification system of any one of Claims 1-4,
The certificate authority server obtains the corresponding certification information from the identification information database based on the identification information transmitted from the authentication device, and uses the processing content when transmitting to the authentication device as history information. An identification system characterized by recording in an authentication log database. Based on company information including information on employees belonging to the company acquired from the company, certification information for proving that the employee belongs to the company, identification information for identifying the certification information, A certificate authority server that generates and holds the identification information in the identification information database, and issues the identification information to the company;
An identification system comprising a telephone connected to the certificate authority server via a network,
The proof information held in the identification information database includes information on the employee's telephone number,
When the telephone receives a call, the telephone transmits the caller's telephone number to the certificate authority server before making a call, and the certification information specified by the caller's telephone number is transmitted from the certificate authority server. The identification system is characterized in that, when a call is made to obtain a confirmation result as to whether or not exists in the identification information database, notification is made according to the confirmation result. A certificate authority server that maintains the authenticated organization phone number in the organization certification phone number database;
A telephone company system that periodically acquires and holds the contents of the organization certification telephone number database from the certificate authority server;
An identification system having a telephone,
When the telephone company system replaces the telephone, the telephone company system checks whether the caller's telephone number exists in the organization certification telephone number database of the telephone company system, and makes a call to the telephone together with the confirmation result. And
When the telephone receives a call from the telephone company system and makes a call, the telephone makes a notification according to the transmitted confirmation result. In the identification system of Claim 7,
The certificate authority server further stores a telephone number permitted by a resident of the residence in a personally permitted telephone number database in association with the resident telephone number;
The telephone company system periodically acquires and holds the contents of the personal permission telephone number database,
When the telephone company system exchanges a telephone, it checks whether the caller's telephone number exists in the organization certification telephone number database or the personally authorized telephone number database of the telephone company system. And an identification system for calling the telephone together with the confirmation result. Based on company information including information on employees belonging to the company acquired from the company, certification information for proving that the employee belongs to the company, identification information for identifying the certification information, A certificate authority server having a certification information generation unit that generates and holds the identification information in the identification information database and issues the identification information to the company,
Further, the identification information is received via a network, and the certification information corresponding to the identification information database is acquired and returned based on the received identification information, and the processing contents are used as history information as an authentication log database. A certificate authority server. An identification method for verifying the identity of an employee of a company that is a visitor at a destination,
The certificate authority server includes certification information for certifying that the employee belongs to the company based on company information including information on the employee belonging to the company acquired from the company, and the certification Generating identification information for identifying information and holding it in the identification information database, issuing the identification information to the company,
The authentication device installed in the visited residence is a certificate composed of a device having a recording medium on which the identification information for identifying the certification information corresponding to the employee is recorded, which is presented by the employee. Read the identification information, send the read identification information to the certificate authority server via a network,
Based on the received identification information, the certificate authority server obtains and returns the corresponding certification information from the identification information database, records the processing contents as history information in an authentication log database,
The authentication device displays the content of the certification information received from the certification authority server on a monitor connected to the authentication device.