JP2025119198A - Information processing system, terminal device, information processing method and program - Google Patents

Abstract

It is necessary to take measures against fraud such as user impersonation.
[Solution] The information processing system 1 includes a first acquisition unit 643 that acquires processing information to be used for a specific process, an authentication unit 651 that authenticates a user who instructs the execution of the specific process using biometric information acquired from the user, a post-authentication information output unit 655 that outputs post-authentication information including the processing information acquired by the first acquisition unit 643 after authentication is performed by the authentication unit 651, a second acquisition unit 143 that acquires the post-authentication information, a determination unit 151 that determines whether the post-authentication information satisfies predetermined permission conditions, and a permission information output unit 155 that outputs permission information to permit the execution of the specific process to a specific processing device 910 when the determination unit 151 determines that the permission conditions are satisfied. The information processing system 1 makes it possible to easily and reliably authenticate a specific user and then execute a specific process related to that user.
[Selected Figure] Figure 2

Description

The present invention relates to an information processing system, terminal device, information processing method, and program capable of authenticating users.

Conventionally, information processing systems configured to authenticate users use the user's biometric information (see, for example, Patent Document 1 below).

Patent No. 6617086

In systems that perform specific processing using user information, it is important to develop countermeasures against fraud, such as user impersonation. The user authentication system described in Patent Document 1 performs first-stage authentication using a location identifier and second-stage authentication using the user's biometric information. However, there are cases where it is difficult to introduce such a user authentication system into existing systems that use previously used devices. In particular, in relatively large-scale systems that use specific processing devices that perform specific processing related to financial institutions, etc., it is extremely important to take measures to increase the security of user authentication, but there is a problem in that this requires a large amount of capital investment, etc.

The present invention therefore aims to provide an information processing system, terminal device, information processing method, and program that can easily and reliably authenticate a specific user and then execute specific processing related to that user.

The information processing system of the first invention includes a terminal device and an information processing device, and is capable of outputting information to a specific processing device that executes a specific process. The information processing system comprises: a first acquisition unit provided in the terminal device that acquires processing information to be used for the specific process; an authentication unit provided in the terminal device that authenticates a user who instructs the execution of the specific process using biometric information acquired from the user; a post-authentication information output unit provided in the terminal device that outputs post-authentication information including the processing information acquired by the first acquisition unit after authentication by the authentication unit; a second acquisition unit provided in the information processing device that acquires the post-authentication information; a determination unit provided in the information processing device that determines whether the post-authentication information satisfies predetermined permission conditions; and a permission information output unit provided in the information processing device that outputs permission information to the specific processing device to permit the execution of the specific process when the determination unit determines that the permission conditions are satisfied.

This configuration makes it possible to easily and reliably authenticate a specific user and then execute specific processing related to that user.

In addition, the information processing system of the second invention is an information processing system in which, compared to the first invention, a location information acquisition unit is provided in the terminal device and acquires location information related to the location of the terminal device, and the post-authentication information output unit outputs post-authentication information including the location information.

This configuration allows the location of the terminal device to be used to make decisions regarding permission conditions.

Furthermore, the information processing system of the third invention is an information processing system in which, compared to the second invention, the permission conditions include at least one of the following: the location information is within an area associated with the terminal device, the area associated with the processing information, and the area associated with the external device used to instruct the specific process.

This configuration allows for more reliable user authentication to prevent fraud such as impersonation before specific processing can be performed.

Furthermore, the information processing system of the fourth invention is an information processing system according to any one of the first to third inventions, in which the permission information output unit acquires time information regarding the time during which execution of the specific process is permitted based on the judgment result of the judgment unit, and outputs the permission information based on the time information.

This configuration makes it possible to set the time during which specific processing is permitted to be executed based on the judgment result of the judgment unit.

Furthermore, the information processing system of the fifth invention is an information processing system in which, when the processing information acquired by the first acquisition unit satisfies a predetermined processing condition, the permission information output unit transmits, to an external device different from the specific processing device, second permission information for authorizing the external device to execute a second specific process.

This configuration makes it possible to easily and reliably authenticate a specific user and then have the external device execute a second specific process that is different from the specific process.

The terminal device of the sixth invention is a terminal device that, together with an information processing device, constitutes an information processing system capable of outputting information to a specific processing device that executes a specific process, and includes a first acquisition unit that acquires processing information to be used for the specific process, an authentication unit that authenticates a user who instructs the execution of the specific process using biometric information acquired from the user, and a post-authentication information output unit that outputs post-authentication information including the processing information acquired by the first acquisition unit after authentication by the authentication unit, and the information processing device is a terminal device that includes a second acquisition unit that acquires the post-authentication information, a determination unit that determines whether the post-authentication information satisfies predetermined permission conditions, and a permission information output unit that outputs permission information to the specific processing device to permit the execution of the specific process when the determination unit determines that the permission conditions are satisfied.

This configuration makes it possible to easily and reliably authenticate a specific user and then execute specific processing related to that user.

This invention makes it possible to easily and reliably authenticate a specific user and then execute specific processing related to that user.

FIG. 1 is a diagram showing an overview of an information processing system according to an embodiment of the present invention. FIG. 1 is a block diagram showing an example of the configuration of an information processing device and a terminal device of the information processing system. FIG. 10 is a diagram showing an example of pre-registration information used in the information processing device; FIG. 10 is a diagram showing an example of destination information used in the information processing apparatus; A flowchart showing an example of the operation of the terminal device A flowchart showing an example of the operation of the information processing device FIG. 10 is a diagram illustrating a specific example of the operation of the information processing system. FIG. 10 is a diagram illustrating a specific example of user authentication performed using the terminal device. FIG. 10 is a diagram illustrating a specific example of the operation of an information processing system according to a modified example of the present embodiment. Overview of the computer system in the above embodiment Block diagram of the computer system

Embodiments of information processing systems, etc. will be described below with reference to the drawings.

The terms used below are generally defined as follows. However, the meanings of these terms should not always be interpreted as shown here; for example, when they are explained individually below, they should be interpreted taking into account that explanation.

An identifier for a certain item is a character or code that uniquely identifies that item. An identifier could be an ID, for example, but any type of information can be used as long as it can identify the corresponding item. In other words, an identifier could be the name of the thing it represents, or a combination of codes that uniquely identify the item.

Acquisition may include acquiring information entered by a user, etc., or acquiring information stored on another device. Acquiring information stored on another device may include acquiring information stored on another device via an API, etc., or acquiring the contents of document files (including the contents of web pages) provided by other devices by scraping, etc. It may also include acquiring information in a different format from the original information, such as acquiring information by performing optical character reading on image files.

The concept of outputting information includes displaying on a monitor, projecting using a projector, printing on a printer, outputting sound, sending to an external device, storing on a recording medium, and passing the processing results to other processing devices or other programs. Specific examples include making it possible to display information on a web page, sending it as email, and outputting information for printing.

The concept of receiving information includes receiving information entered from input devices such as a keyboard, mouse, or touch panel, receiving information transmitted from other devices via wired or wireless communication lines, and receiving information read from recording media such as optical disks, magnetic disks, and semiconductor memory.

(Embodiment)

An overview of this embodiment is as follows: An information processing system is capable of outputting information to a specific processing device that executes a specific process. The information processing system authenticates a user who instructs the execution of a specific process using biometric information acquired from the user. After authentication, the information processing system outputs predetermined post-authentication information including processing information to be used for the specific process, determines whether the post-authentication information satisfies predetermined permission conditions, and, if it is determined that the permission conditions are satisfied, outputs permission information for permitting the execution of the specific process. In this embodiment, for example, user authentication and output of post-authentication information are performed on a terminal device used by the user, and the determination of whether the post-authentication information satisfies the permission conditions and output of permission information are performed on the information processing device.

The terminal device may acquire location information and output it together with the post-authentication information. The permission conditions may include at least one of the following: the location information being within an area associated with the terminal or the processing information, and being within an area associated with the external device used to instruct the specific process. It may also be possible to set the time for which execution of the specific process is permitted based on the result of determining whether the post-authentication information satisfies the specified permission conditions. The information processing system may also be able to transmit permission information to an external device different from the specific processing device when it determines that the processing information satisfies the specified processing conditions.

The following describes an information processing system configured in this manner.

Figure 1 shows an overview of an information processing system 1 according to one embodiment of the present invention.

The information processing system 1 includes an information processing device 100 and a terminal device 600. The information processing device 100 and the terminal device 600 can communicate with each other via a network such as the Internet. However, the configuration of the information processing system 1 is not limited to this. The number of devices included in the information processing system 1 is not important, and other devices may also be included in the information processing system 1.

A user of the information processing system 1 can use the information processing system 1 using a terminal device 600. Note that while FIG. 1 shows a mobile information terminal device such as a smartphone as the terminal device 600, the terminal device 600 is not limited to such a mobile information terminal device. The terminal device 600 may be, for example, a personal computer (PC) such as a laptop computer, or other devices such as a tablet-type information terminal device. In the following example, the explanation will be given assuming that a mobile information terminal device such as a smartphone is used as the terminal device 600.

In this embodiment, the information processing system 1 is used together with a specific processing device 910 that performs specific processing. Furthermore, the information processing system 1 can also be used together with a second external device 950.

Specific processing is, for example, a predetermined process performed for each user. In other words, specific processing is processing performed after identifying the user involved in the processing. Specific processing can also be said to be processing performed when providing a service unique to each of two or more specific users. Specific processing is, for example, processing related to finance or payment, but it may also be processing related to predetermined application processing or management of specific user information. More specifically, specific processing is, for example, processing related to bank transfers, online banking, payments using credit cards, etc., but is not limited to these, and may also be processing related to online application procedures performed with specific institutions, processing performed when using various web services, etc.

The specific processing device 910 is a device that performs specific processing. The specific processing device 910 is, for example, a server device, but is not limited to this. For example, when an instruction based on a user operation is given, the specific processing device 910 can execute specific processing in accordance with that instruction. The specific processing device 910 is a device that has a known configuration for performing specific processing.

A specific external device 920, which is an external device, may be used to execute a specific process in the specific processing device 910. The specific external device 920 is, for example, a device that accepts input of information related to a user and issues instructions to have the specific external device 920 execute a specific process based on the accepted information. In other words, the specific external device 920 can be said to be an external device used to issue instructions for a specific process. The specific external device 920 can transmit information to the specific processing device 910 via a network such as the Internet or a local area network, but is not limited to this.

In this embodiment, for example, if the specific processing involves bank transfers or online banking, the specific processing device 910 can be a server device belonging to an administrative center or the like participating in a nationwide bank data communication system. In this case, the specific external device 920 can be, for example, an automated teller machine or a terminal for using online banking. Furthermore, for example, if the specific processing involves payments using credit cards, the specific processing device 910 can be a server device of a payment service provider. In this case, the specific external device 920 can be, for example, a credit card payment terminal or a terminal for reading credit card information, etc., to make online payments.

Note that the specific processing device 910 may be the same device as the information processing device 100. That is, one device may have both the functions of the specific processing device 910 and the functions of the information processing device 100. Also, the specific external device 920 may be the same device as the terminal device 600. One device may have both the functions of the specific external device 920 and the functions of the terminal device 600.

The second external device 950 is a device that performs a process different from the specific process (hereinafter, sometimes referred to as the second specific process). The second specific process is a process that, like the specific process, is performed after identifying the user involved in the process, and can be said to be a process that is not performed by the specific processing device 910. For example, when an instruction based on a user's operation is received, the second external device 950 can execute the second specific process in accordance with the instruction. The second external device 950 is a device having a known configuration for performing the second specific process. For example, consider a case where the specific processing device 910 is a server that manages accounts at a specific first bank, and the specific process involves withdrawals from the account at the first bank. In such a case, the second external device 950 may be a server that manages accounts at a specific second bank different from the first bank, and the second specific process involves withdrawals from the account at the second bank. Furthermore, in the above case, the second external device 950 may be a server that performs payment processing using a specific credit card, and the second specific process involves payment processing using the credit card.

In this embodiment, the specific processing device 910 is configured to receive instructions regarding the execution of a specific process using the specific external device 920, and is also configured to be able to execute the specific process when it acquires permission information output from the information processing system 1, as described below. The permission information can also be said to be information for permitting the execution of a specific process. The permission information includes information corresponding to the target user, and accordingly, the specific process corresponding to that user can be executed.

In addition to receiving instructions regarding the execution of a second specified process using a device similar to the specified external device 920, the second external device 950 is configured to be able to execute the second specified process when it acquires second permission information output from the information processing system 1, as described below. The second permission information can also be said to be information for authorizing the execution of the second specified process. The second permission information includes information corresponding to the target user, and accordingly, the second specified process corresponding to that user can be executed.

The information processing system 1 is communicatively connected directly or via a network or the like so that it can transmit information to the specific processing device 910 and the second external device 950. The connection method is not important.

Figure 2 is a block diagram showing an example configuration of the information processing device 100 and terminal device 600 of the information processing system 1.

The information processing device 100 includes a storage unit 110, a receiving unit 120, a reception unit 130, a processing unit 140, and a transmission unit 170. The information processing device 100 is, for example, a server device.

The terminal device 600 includes a terminal storage unit 610, a terminal receiving unit 620, a terminal acceptance unit 630, a terminal processing unit 640, a terminal output unit 660, a terminal transmission unit 670, and a sensor unit 680. The terminal output unit 660 includes a display unit 661, such as an LCD display.

The storage unit 110 and the terminal storage unit 610 are preferably non-volatile recording media, but can also be implemented as volatile recording media. These store information acquired by the respective devices, but the process by which the information is stored is not limited to this. For example, information may be stored via a recording medium, information transmitted via a communication line, or information input via an input device.

The processing unit 140 and the device processing unit 640 are typically implemented using an MPU, memory, etc. The processing procedures of the processing unit 140 and the device processing unit 640 are typically implemented using software, and this software is recorded on a recording medium such as a ROM. However, they may also be implemented using hardware (dedicated circuits).

The input means that can be used to input information that can be accepted by the acceptance unit 130 and the terminal acceptance unit 630 may be any means, such as a numeric keypad, keyboard, mouse, or menu screen. The acceptance unit 130 and the terminal acceptance unit 630 may be realized by a device driver for an input means such as a numeric keypad or keyboard, or control software for a menu screen, etc.

The receiving unit 120 and the terminal receiving unit 620 are typically implemented using wireless or wired communication means, but may also be implemented using means for receiving broadcasts.

The transmitter 170 and the terminal transmitter 670 are typically implemented using wireless or wired communication means, but may also be implemented using broadcasting means.

The terminal device 600 is configured to display various information on the display unit 661 and to be able to accept user operations. The terminal device 600 is configured to be able to receive information transmitted from an external device such as the information processing device 100 via a network such as the Internet. The terminal device 600 is also configured to be able to transmit information to an external device via the network in response to user operations or the operation of predetermined software, for example.

In this embodiment, the components of the information processing device 100 and the terminal device 600 are configured, for example, as follows:

The terminal storage unit 610 stores programs that can be executed by the computer of the terminal device 600, as well as information used during operation of the terminal device 600. In this embodiment, the terminal storage unit 610 is provided with an authentication information storage unit 611 and a terminal identifier storage unit 613.

The authentication information storage unit 611 stores, for example, information used to authenticate a user. In this embodiment, biometric authentication information may be used to authenticate a user using the user's biometric information. Examples of biometric authentication information include the user's fingerprint, blood vessel pattern, and facial recognition data. These are used to match an individual's biometric characteristics and perform authentication. The biometric authentication information may be information acquired in advance from the user himself/herself, for example. Note that information used to authenticate a user may also store information such as a password or answers to predetermined questions.

The terminal identifier storage unit 613 stores a terminal identifier. The terminal identifier is information that can identify the terminal device 600, but is not limited to this. It may be possible that other information cannot be written to the terminal identifier storage unit 613.

The terminal identifier can be considered information that identifies the terminal device 600 that the user normally uses. In this embodiment, the terminal identifier is used to determine whether or not to permit specific processing, as described below.

In addition to this information, the terminal storage unit 610 may also store, for example, user information. User information is information about the user who uses the terminal device 600. User information may include a variety of information. For example, user information may be information about the user received from the information processing device 100, or information about the user acquired by the terminal device 600 as described below.

User information is information that can be associated with a user identifier that identifies the user using the terminal device 600. The user information may be associated with a terminal identifier. Note that the terminal identifier may also be used as the user identifier.

In this embodiment, the terminal storage unit 610 stores user information such as the user's current location. The user's current location is, for example, location information determined using the detection results of the sensor unit 680, but may also be location information determined using other methods.

The terminal receiving unit 620 receives information transmitted from the information processing device 100 or other devices via the network. The terminal receiving unit 620 stores the received information, for example, in the terminal storage unit 610, so that it can be acquired by the device processing unit 640, etc.

The terminal reception unit 630 receives various input operations for the terminal device 600 by the user of the terminal device 600. Operations are performed, for example, using a touch panel provided on the display unit 661, but may also be performed using other input devices not shown. The terminal reception unit 630 may also receive input operations using voice input via a microphone, for example.

The terminal acceptance unit 630 may be considered to accept the information received by the terminal reception unit 620 as information input to the terminal device 600. In other words, inputting information to the terminal device 600 may be interpreted as meaning that the information is indirectly input to the terminal device 600 by the user via the information processing device 100 or the like, or that the information is directly input to the terminal device 600 by the user using an input means. Furthermore, inputting information to the terminal device 600 may be considered to mean that the user provides information to the terminal device 600 by executing a program that automatically generates information or by providing various information to a program to make it function.

The device processing unit 640 performs various information processing operations using each unit of the terminal device 600. In this embodiment, the device processing unit 640 includes a first acquisition unit 643, a location information acquisition unit 645, an authentication unit 651, and a post-authentication information output unit 655.

The first acquisition unit 643 acquires processing information to be used for the specific process. In this embodiment, the processing information is, for example, information that identifies information about the user related to the specific process to be executed by the specific processing device 910. More specifically, it can be, for example, information that identifies the means of payment used by the user. For example, the processing information may be information that identifies the user's bank account, other information used to make payments to that bank account, or information for making payments using the user's credit card, electronic money, etc. In other words, when transferring money from a bank account or withdrawing cash, the processing information can be information corresponding to the processing medium, such as a cash card or passbook, used for such transfers or withdrawals. Furthermore, when making payments using a credit card, for example, the processing information can be information corresponding to the credit card, etc. In these cases, the processing information can be, for example, an identifier that identifies the processing medium, or information identified by or recorded on the processing medium.

The first acquisition unit 643 may also acquire, as processing information, information to be used in the second specific process to be executed by the specific external device 920.

The processing information is acquired, for example, by the sensor unit 680 provided in the terminal device 600 acquiring information from the processing medium. However, this is not limited to this, and the first acquisition unit 643 may acquire information read by or stored in another device that can communicate with the terminal device 600.

Furthermore, for example, the processing information may be stored in advance as user information in the terminal storage unit 610, etc. In this case, the first acquisition unit 643 can acquire the stored information.

The location information acquisition unit 645 acquires location information regarding the location of the terminal device 600. The location information is acquired using, for example, the sensor unit 680.

The authentication unit 651 is configured to authenticate a user who instructs the execution of a specific process using biometric information acquired from the user. The authentication unit 651 is configured, for example, to acquire biometric information from the user using the sensor unit 680, and to perform authentication by comparing the acquired information with the biometric authentication information stored in the authentication information storage unit 611. This comparison process may be performed using a known method.

When the authentication unit 651 authenticates the user (when authentication is successful), the post-authentication information output unit 655 then outputs post-authentication information. The post-authentication information is information that includes the processing information acquired by the first acquisition unit 643. In this embodiment, the post-authentication information may include, for example, a terminal identifier along with the processing information. Instead of the terminal identifier, it may also include a user identifier or the like that identifies the user. Information such as a passphrase entered by the user may also be included in the post-authentication information. This information, together with the information acquired by the first acquisition unit 643, may be referred to as processing information. The post-authentication information may also be information acquired by performing encoding or the like based on the processing information or the like.

In this embodiment, the post-authentication information output unit 655 may output post-authentication information that includes location information. For example, information detected by the sensor unit 680 when authentication is performed can be used as the location information.

The post-authentication information output unit 655 outputs the post-authentication information, for example, by transmitting it to the information processing device 100 using the terminal transmission unit 670. Note that the method for outputting the post-authentication information is not limited to this, and the information may also be stored in the terminal storage unit 610, etc., or displayed on the display unit 661. The post-authentication information output unit 655 only needs to output the post-authentication information in a manner that allows it to be acquired by the information processing device 100.

The terminal output unit 660 has a display unit 661. The terminal output unit 660 outputs information, for example, by displaying a screen on the display unit 661. Note that the method of outputting information is not limited to this, and information may also be output by outputting sound or the like from a speaker or the like.

The terminal transmission unit 670 transmits information acquired by, for example, the terminal processing unit 640 via the network.

Sensor unit 680 includes, for example, an illuminance sensor, a camera, and a location information sensor that can identify its location using GPS or the like. Sensor unit 680 is capable of detecting information related to the surrounding conditions and outputting the detection results. Note that the types of sensor unit 680 are not limited to these, and a microphone, acceleration sensor, barometric pressure sensor, etc. may also be provided.

In addition, in this embodiment, the sensor unit 680 has a sensor for acquiring specific biometric information of the user who is the subject of authentication, such as a fingerprint scanner, a face recognition camera, or a vein pattern reader. In other words, when authenticating a user, the user can use the sensor unit 680 to have the processing unit 140 acquire their own biometric information and perform authentication.

In addition, in this embodiment, the sensor unit 680 may have a sensor for acquiring the processing information from a processing medium (such as a credit card) owned by the user. For example, an RFID chip or the like on which the processing information is recorded may be embedded in the processing medium, and the sensor unit 680 may have a module for reading it. In this case, the first acquisition unit 643 can acquire the processing information using the sensor unit 680.

The information processing device 100 is capable of communicating with, for example, a terminal device 600 or an external device (not shown), and is configured to perform information processing using information transmitted from the terminal device 600 or an external device, and to transmit information to the terminal device 600 or an external device.

The storage unit 110 stores various information used by the information processing device 100. For example, information acquired by the information processing device 100, information output by the information processing device 100, etc. may be stored. Programs executed by the information processing device 100 may also be stored.

In this embodiment, the storage unit 110 has a pre-registration information storage unit 115 and a destination information storage unit 117.

The pre-registration information storage unit 115 stores pre-registration information for each of two or more users who use the information processing system 1. The pre-registration information includes, for example, the terminal identifier of the terminal device 600 used by that user. The pre-registration information may also include information related to the processing information used by that user. For example, the pre-registration information may include information related to a bank account number or credit card used to execute a specific process using the information processing system 1. The pre-registration information is stored in association with, for example, a user identifier that identifies each user, but is not limited to this. The terminal identifier of each user may be used as the user identifier that identifies each user. It may also be interpreted that the account number, information related to the credit card, etc. is used as the user identifier for each specific process.

Figure 3 shows an example of pre-registration information used in the information processing device 100.

In the example shown in the figure, the pre-registration information includes, for example, a terminal identifier (terminal ID) and processing information associated with a user identifier (user ID). Note that information relating to two or more different specific processes may be stored as processing information.

Returning to FIG. 2, the destination information storage unit 117 stores destination information used to transmit permission information or second permission information to the specified processing device 910 or the second external device 950. For example, the destination information storage unit 117 stores information indicating an endpoint for accepting permission information, etc. in the specified processing device 910, etc., and the address of the specified processing device 910, etc. The information processing device 100 can use this information to transmit permission information, etc. to the specified processing device 910, etc.

In this embodiment, the destination information is stored, for example, in association with matching information related to the processing information. In other words, when the processing information corresponds to matching information, it is possible to identify the destination information corresponding to that matching information. This makes it possible to send permission information, etc. to the specified destination, such as the specified processing device 910 or second external device 950, depending on the processing information.

Figure 4 shows an example of destination information used by the information processing device 100.

In the example shown in the figure, the destination information, for example, endpoint information for the specific processing device 910 and the second external device 950, is shown in association with matching information. The matching information can be, for example, various forms of information that can be used to determine whether or not it matches the processing information. The matching information can also be said to be a condition for determining the destination.

Returning to FIG. 2, the receiving unit 120 receives information transmitted from another device. The receiving unit 120 stores the received information, for example, in the storage unit 110. The receiving unit 120 can store each piece of transmitted information in the storage unit 110 in association with a user identifier. When receiving this information from the terminal device 600, the receiving unit 120 can identify the user identifier of the user involved in the transmission based on the transmitted information.

The reception unit 130 receives information input using an input means (not shown) connected to the information processing device 100. The reception unit 130 stores the received information in the storage unit 110, for example. The input means may be any means, such as a numeric keypad, keyboard, mouse, or menu screen. The reception unit 130 may also receive information input by an input operation (including, for example, information read by a device) performed using a reading device (e.g., a code reader) connected to the information processing device 100.

Note that the accepting unit 130 may be considered to accept the information received by the receiving unit 120 as information input to the information processing device 100. In other words, inputting information to the information processing device 100 may be interpreted as meaning that the information is indirectly input to the information processing device 100 by the user via the terminal device 600 or the like, or that the information is directly input to the information processing device 100 by the user using an input means. Furthermore, inputting information to the information processing device 100 may be considered to mean that the user provides information to the information processing device 100 by executing a program that automatically generates information or by providing various information to a program to make it function.

The processing unit 140 has a second acquisition unit 143, a judgment unit 151, and a permission information output unit 155. The processing unit 140 performs various types of processing. For example, the various types of processing are processing performed by each unit of the processing unit 140 as follows:

The second acquisition unit 143 acquires the post-authentication information transmitted from the terminal device 600 and received by the receiving unit 120.

The judgment unit 151 judges whether the post-authentication information satisfies a predetermined permission condition. The predetermined permission condition can be, for example, that a combination of a terminal identifier and processing information that matches pre-registered pre-registration information has been transmitted. In this case, the judgment unit 151 judges, for example, whether the combination of a terminal identifier and processing information included in the post-authentication information matches the combination of a terminal identifier and processing information stored in the pre-registration information storage unit 115. If they match, it can be determined that the predetermined permission condition is met.

Note that the permission conditions are not limited to these. Permission conditions may also include, for example, conditions related to the location information included in the post-authentication information.

That is, for example, the permission condition can be that the location is within an area associated with the terminal device 600. For example, a user of the terminal device 600 can register in advance the location where they often find themselves, and if the location information corresponds to an area within a predetermined range from that location, it can be determined that the condition related to the location information is met. More specifically, for example, a user of the terminal device 600 can register the location of their home in advance, and if the post-authentication information includes location information indicating their home, it can be determined that the permission condition related to the location information is met.

Furthermore, for example, the permission condition can be that the location is within an area associated with the processing information. For example, if the processing information is information about a specific bank, and it can be determined that the location information is in a location corresponding to the location of the bank's head office or branch, it can be determined that the condition related to the location information is met.

Furthermore, for example, the permission condition can be that the location is within an area associated with the specific external device 920 used to instruct the specific process. For example, if it can be determined that the location corresponds to the location of a pre-specified specific external device 920 or the location of a specific external device 920 that can be identified using processing information, it can be determined that the condition related to the location information is met. More specifically, for example, if user authentication using terminal authentication 600 is performed near a specific station (the location can be identified based on location information), and an instruction for the specific process is given using a specific external device 920 that is near the specific station, it can be determined that the permission condition related to the location information is met.

When the judgment unit 151 determines that the permission conditions are satisfied, the permission information output unit 155 outputs permission information for permitting the execution of a specific process. The permission information is output to the specific processing device 910. Here, the permission information output unit 155 can output the permission information using the destination information stored in the destination information storage unit 117. For example, the permission information output unit 155 identifies matching information stored in the destination information storage unit 117 that corresponds to the processing information included in the post-authentication information. Then, the permission information output unit 155 outputs the permission information using the destination information corresponding to the identified matching information. For example, consider a case where the specific processing device 910 is associated with the first matching information, and the second matching information is associated with the second external device 950. In this case, if the processing information corresponds to the first matching information, permission information is output to the specific processing device 910, and if it corresponds to the second matching information, permission information (which in this case can be considered second permission information) is output to the second external device 950. In other words, in the latter case, when the processing information satisfies a predetermined processing condition, the permission information output unit 155 transmits the second permission information to a second external device 950 different from the specified processing device 910. In this case, the predetermined processing condition is that the processing information corresponds to the second matching information.

The transmitting unit 170 transmits information to other devices constituting the information processing system 1 via the network. The transmitting unit 170 transmits information to, for example, the terminal device 600. In other words, the transmitting unit 170 outputs information to, for example, the terminal device 600.

Next, an example of the operation of the information processing device 100 performed when a user uses the information processing system 1 according to this embodiment will be described. In this embodiment, a user who intends to execute a specific process can, for example, use the terminal device 600 to run a specific application or access the information processing device 100, and then perform other operations necessary for the specific process, thereby causing the specific processing device 910 to execute the specific process. Note that the specific application may be, for example, a dedicated application that operates using information transmitted from the information processing device 100, or a web browser that usably displays web applications provided on the information processing device 100.

In this embodiment, the information processing system 1 is typically used as follows. That is, a user uses the terminal device 600 to read processing information and perform user authentication operations with the aim of performing a specific process. In response, post-authentication information is transmitted from the terminal device 600 to the information processing device 100. The information processing device 100 uses the post-authentication information to output permission information. This allows the user to perform the required operations, etc., to execute the specific process.

When the information processing system 1 operates in this manner, the terminal device 600 and the information processing device 100 perform various operations, for example, as follows. These operations are performed by the device processing unit 640 and the processing unit 140 executing control operations and the like using each unit. Note that the user has previously registered in the information processing device 100 a combination of the terminal identifier of their own terminal device 600 and the processing information to be used for the specific process.

Figure 5 is a flowchart showing an example of the operation of the terminal device 600.

For example, when a user issues an instruction to start an operation to execute a specific process by running a specific application on the terminal device 600, the following process is performed.

(Step S11) The device processing unit 640 acquires processing information.

(Step S12) The device processing unit 640 acquires location information of the terminal device 600.

(Step S13) The device processing unit 640 performs user authentication. For example, the device processing unit 640 acquires the user's biometric information and compares it with the biometric authentication information stored in the authentication information storage unit 611 to perform authentication.

(Step S14) The device processing unit 640 determines whether user authentication was successful. If it is determined that user authentication was successful, proceed to step S15; if not, end processing.

(Step S15) The device processing unit 640 outputs post-authentication information. The post-authentication information is sent to the information processing device 100.

Figure 6 is a flowchart showing an example of the operation of the information processing device 100.

(Step S31) The processing unit 140 determines whether post-authentication information has been received from the terminal device 600. If it determines that post-authentication information has been received, the processing proceeds to step S32; if not, the processing of step S31 is executed again.

(Step S32) The processing unit 140 uses the received post-authentication information to determine whether the permission conditions are met. If it determines that the permission conditions are met, it proceeds to step S34; if not, it proceeds to step S33.

(Step S33) The processing unit 140 outputs error information. The error information may include information such as that the permission conditions were not met, that the permission information was not transmitted, that the user is in a state where the specific process cannot be executed, or that user authentication or the like should be performed again so that the permission conditions are met. The error information may be transmitted to the terminal device 600, for example, and output to the display unit 661 or the like of the terminal device 600 so that the user can be made aware of the error information. Once the error information has been output, the process returns to step S31.

(Step S34) The processing unit 140 uses the post-authentication information to identify the destination information. That is, by identifying matching information that corresponds to the processing information from the information stored in the destination information storage unit 117, it is possible to identify the destination information associated with that matching information.

(Step S35) The processing unit 140 uses the destination information to send the permission information. This allows the permission information to be sent to the appropriate external device.

When the processing of step S35 is completed, the series of operations ends.

Next, a specific example of the operation of the information processing system 1 according to this embodiment will be described.

In the following specific example, we will consider a scenario in which a user uses their cash card at an automated teller machine to perform a specific transaction, such as withdrawing money from their bank account.

Figure 7 is a diagram illustrating a specific example of the operation of the information processing system 1.

In Figure 7, an automated teller machine is shown as the specific external device 920, and the specific processing device 910 is shown as a host device that manages each bank account. A user can use the information processing system 1 and the automated teller machine as follows, using processing medium C (card C), which is, for example, a cash card.

(Step S1) First, before conducting a transaction using the specified external device 920, the user operates the terminal device 600 and performs user authentication.

Figure 8 is a diagram illustrating a specific example of user authentication performed using the terminal device 600.

As shown in the figure, first, the user uses the terminal device 600 to perform a predetermined operation, for example, to start the execution of a specific process (step S101). More specifically, for example, the user performs an operation to select a menu item for performing a specific process from the menu screen of an application for internet banking.

Next, the user uses the terminal device 600 to read card C to obtain processing information (step S102). Here, for example, an operation is performed to read the IC chip embedded in card C via contactless communication.

Next, the user uses the terminal device 600 to read biometric information for biometric authentication (step S103). Here, for example, an operation to read the user's fingerprint is performed. The terminal device 600 outputs guidance information to the user for reading the biometric information, and the user follows the guidance to read the biometric information.

Once the processing information has been acquired and the biometric information has been read in this way, biometric authentication is performed using the read biometric information. Return to Figure 7.

(Step S2) When user authentication using the terminal device 600 is successful, post-authentication information is transmitted from the terminal device 600 to the information processing device 100. The post-authentication information includes a terminal identifier and processing information. For example, the post-authentication information may also include location information. Note that in addition to or instead of the location information, the user's identity or other unique information related to the user's current status may be transmitted. This can further enhance the effectiveness of preventing impersonation.

(Step S3) When the post-authentication information is sent in this manner, the information processing device 100 determines whether the permission conditions are met. Then, depending on the result of the determination, permission information is sent to the specified processing device 910.

When the specific processing device 910 receives the permission information, it becomes capable of executing specific processing for that user.

(Step S4) Once the operation (preliminary operation) using the terminal device 600 is completed in this manner, the user performs an operation such as a withdrawal using card C on the specific external device 920.

(Step S5) When the specific external device 920 accepts the operation performed by the user, it transmits corresponding information to the specific processing device 910. For example, the account information obtained by reading card C by the specific external device 920 and the result of obtaining the PIN number by the specific external device 920 are transmitted to the specific processing device 910.

Once the account information, PIN number, etc. are sent in this manner, the specific processing device 910 uses that information to execute specific processing.

As described above, according to this embodiment, after authenticating a user, it is possible to accept operations related to specific processing performed by that user. Therefore, it is possible to reliably authenticate a specific user and then execute specific processing related to that user. There is no need to use a separate complex device to authenticate the user; the results of authentication using the terminal device 600 owned by the user themselves can be used. Therefore, it can be easily introduced over a wide area and at low cost. Because location information is used to determine whether processing can be performed on the specific processing device 910, it is possible to more reliably prevent the occurrence of fraud such as impersonation.

The processing in this embodiment may be implemented using software. This software may be distributed by software download, etc. Furthermore, this software may be distributed by recording it on a recording medium such as an optical disc. The software implementing information processing system 1 in this embodiment is the following program. Specifically, this program is executed on one or more computers in information processing system 1, and causes the computers to function as: a first acquisition unit that acquires processing information to be used for a specific process; an authentication unit that authenticates a user who instructs the execution of the specific process using biometric information acquired from the user; a post-authentication information output unit that outputs post-authentication information including the processing information acquired by the first acquisition unit after authentication by the authentication unit; a second acquisition unit that acquires the output post-authentication information; a determination unit that determines whether the post-authentication information satisfies the permission conditions; and a permission information output unit that outputs permission information to the specific processing device to permit the execution of the specific process when the determination unit determines that the permission conditions are satisfied.

In the above-described embodiment, the terminal device 600 of the user that performs user authentication may be different from the terminal device 600 that acquires the processing information. For example, a user that instructs the execution of a specific process (here referred to as a first user U1) and a second user U2 who acts with the permission of the first user U1 may each use different terminal devices 600 and both be able to use the information processing system 1.

Figure 9 is a diagram illustrating a specific example of the operation of information processing system 1 according to one variation of this embodiment.

In this case, the information processing system 1 may include two terminal devices 600: a first terminal device 601 used by the first user U1 and a second terminal device 602 used by the second user U2. The first terminal device 601 and the second terminal device 602 may each have the same configuration as the terminal device 600 described above, but are not limited to this. The first terminal device 601 may include an authentication unit 651 and a post-authentication information output unit 655, and the second terminal device 602 may include a first acquisition unit 643.

In this modified example, the operations prior to the execution of a transaction using the specified external device 920 are slightly different from those in the above-described embodiment. That is, first, the second user U2 uses the second terminal device 602 to read the processing medium C (step S1A). This acquires the processing information. The terminal processing unit 640 of the second terminal device 602 transmits the processing information to the information processing device 100 (step SS1B). In this case, the terminal identifier and location information of the second terminal device 602 may be transmitted together with the processing information.

When the information processing device 100 receives the processing information, it transmits a notification requesting user authentication to the first terminal device 601 corresponding to the terminal identifier of the sender (step S1C). The first terminal device 601 then receives the notification and outputs it so that the first user U1 can recognize it. It is sufficient if information indicating the correspondence between the first terminal device 601 and the second terminal device 602 is stored in the information processing device 100 in advance. The information processing device 100 may also be configured to identify the first terminal device 601 corresponding to the processing information and transmit the notification.

Next, the first user U1 performs biometric authentication using the first terminal device 601. If user authentication is successful, post-authentication information is output from the first terminal device 601 (step S2). Note that the post-authentication information may include the terminal identifier of the first terminal device 601, but is not limited to this.

The information processing device 100 then uses the post-authentication information to determine whether the permission conditions are met, and, as in the above-described embodiment, the operations from step S3 onwards can be performed. That is, the specific process can be executed when the second user U2 performs an action of operating the specific external device 920 using the processing medium C. In this modified example, it is possible to execute a specific process in response to the action of another user, the second user U2, on the condition that user authentication of the first user U1 has been performed, i.e., post-authentication information has been obtained. Therefore, it is possible to ensure that the specific process is performed with the permission of the first user U1.

In this variant, the information processing system 1 can be said to include a first acquisition unit that acquires processing information to be used for the specific processing; an authentication unit that authenticates the user who instructs the execution of the specific processing using biometric information acquired from the user; a post-authentication information output unit that outputs post-authentication information after authentication is performed by the authentication unit; a second acquisition unit that receives the processing information and post-authentication information acquired by the first acquisition unit; a determination unit that determines whether the post-authentication information satisfies predetermined permission conditions; and a permission information output unit that outputs permission information to the specific processing device to permit the execution of the specific processing when the determination unit determines that the permission conditions are satisfied.

(others)

Figure 10 is an overview of the computer system 800 in the above embodiment. Figure 11 is a block diagram of the same computer system 800.

These figures show example computer configurations that execute the programs described in this specification to realize the information processing systems and other aspects of the above-described embodiments. The above-described embodiments can be realized by computer hardware and computer programs executed on the computer hardware.

The computer system 800 includes a computer 801 with an optical disk drive, a keyboard 802, a mouse 803, and a monitor 804.

In addition to an optical disc drive (ODD) 8012, the computer 801 includes an MPU 8013, a bus 8014 connected to the optical disc drive 8012 etc., a ROM 8015 for storing programs such as a boot-up program, a RAM 8016 connected to the MPU 8013 for temporarily storing application program instructions and providing temporary storage space, and a hard disk (HDD) 8017 for storing application programs, system programs, and data. Although not shown here, the computer 801 may also include a network card that provides connection to a LAN.

A program that causes the computer system 800 to execute the functions of the information processing device or the like of the above-described embodiments may be stored on an optical disk 8101, inserted into the optical disk drive 8012, and then transferred to the hard disk 8017. Alternatively, the program may be transmitted to the computer 801 via a network (not shown) and stored on the hard disk 8017. The program is loaded into RAM 8016 when executed. The program may also be loaded directly from the optical disk 8101 or the network.

The program does not necessarily have to include an operating system (OS) or third-party programs that cause the computer 801 to execute the functions of the information processing device of the above-described embodiment. The program need only include instructions that call appropriate functions (modules) in a controlled manner to achieve the desired results. How the computer system 800 operates is well known, and a detailed description will be omitted.

Note that in the above program, the sending step of transmitting information and the receiving step of receiving information do not include processing performed by hardware, such as processing performed by a modem or interface card in the sending step (processing that can only be performed by hardware).

Furthermore, the computer that executes the above program may be a single computer or multiple computers. In other words, it may perform centralized processing or distributed processing.

Furthermore, in the above embodiments, two or more components present in one device may be physically realized on one medium.

In the above embodiments, each component may be configured using dedicated hardware, or, for components that can be implemented using software, they may be implemented by executing a program. For example, each component may be implemented by a program execution unit such as a CPU reading and executing a software program recorded on a recording medium such as a hard disk or semiconductor memory. During execution, the program execution unit may execute the program while accessing a memory unit or recording medium. The program may also be executed by being downloaded from a server or the like, or by being read from a predetermined recording medium (e.g., an optical disk, a magnetic disk, semiconductor memory, etc.). This program may also be used as a program constituting a program product. The program may be executed by a single computer or multiple computers. In other words, it may perform centralized processing or distributed processing.

Furthermore, in the above embodiments, each process (each function) may be realized by centralized processing in a single device (system), or by distributed processing by multiple devices (in this case, the entire system made up of multiple devices performing distributed processing can be considered as a single "device").

Furthermore, in the above embodiments, the exchange of information between components may be performed, for example, by one component outputting information and the other component receiving information if the two components exchanging information are physically different, or, if the two components exchanging information are physically the same, by shifting from the processing phase corresponding to one component to the processing phase corresponding to the other component.

In addition, in the above embodiments, information related to the processing performed by each component, such as information accepted, acquired, selected, generated, transmitted, or received by each component, and information such as thresholds, formulas, and addresses used in processing by each component, may be stored temporarily or for a long period of time on a recording medium (not shown), even if not explicitly stated in the above description. Furthermore, the storage of information on this recording medium (not shown) may be performed by each component or a storage unit (not shown). Furthermore, the reading of information from this recording medium (not shown) may be performed by each component or a reading unit (not shown).

Furthermore, in the above embodiments, if the information used by each component, such as thresholds, addresses, and various setting values used by each component in processing, may be changed by the user, the user may or may not be able to change that information as appropriate, even though this is not explicitly stated in the above description. If the information is changeable by the user, the change may be realized, for example, by a reception unit (not shown) that receives a change instruction from the user, and a change unit (not shown) that changes the information in response to that change instruction. The reception unit (not shown) may receive the change instruction from an input device, may receive information transmitted via a communication line, or may receive information read from a specified recording medium, for example.

The present invention is not limited to the above-described embodiments, and various modifications are possible, all of which are within the scope of the present invention.

Embodiments may be created by appropriately combining the components of the above-described embodiments and variations. Furthermore, some of the components and functions of the above-described embodiments and variations may be omitted.

When permission information is sent from an information processing device to a specific external device, the time during which the specific process can be executed on the specific external device, i.e., the time during which execution of the specific process is permitted, may be limited to a predetermined time. For example, the specific external device may be prevented from executing the specific process after a preset time has elapsed. This allows for more secure use of a system using a specific processing device, as only the user can execute the specific process.

In the above case, for example, the permission information output unit may be configured to output permission information including information specifying the time during which the specific process is permissible, and the specific external device may set the permissible time in accordance with the permission information. In this case, the permission information output unit may, for example, obtain time information regarding the time during which execution of the specific process is permissible based on the determination result of the determination unit, and output the permission information based on the time information.

Note that time information may be acquired, for example, according to location information included in the post-authentication information. For example, time information may be associated with and set in advance for specific areas such as the user's home, workplace, or other locations, and time information may be identified according to location information. By limiting the time during which execution of a specific process is permitted according to time information in this way, systems using specific processing devices can be maintained more securely.

As described above, the information processing system of the present invention has the effect of easily and reliably authenticating a specific user and then executing specific processing related to that user, making it useful as an information processing system, etc.

REFERENCE SIGNS LIST 1 Information processing system 100 Information processing device 110 Storage unit 115 Pre-registration information storage unit 117 Destination information storage unit 120 Receiving unit 130 Accepting unit 140 Processing unit 143 Second acquisition unit 145 Position information acquisition unit 151 Determination unit 155 Permission information output unit 170 Transmitting unit 600 Terminal device 610 Terminal storage unit 611 Authentication information storage unit 613 Terminal identifier storage unit 615 Life information storage unit 620 Terminal receiving unit 630 Terminal accepting unit 640 Terminal processing unit 643 First acquisition unit 651 Authentication unit 655 Post-authentication information output unit 660 Terminal output unit 661 Display unit 670 Terminal transmitting unit 680 Sensor unit 910 Specific processing device 920 Specific external device 950 Second external device

Claims (8)

An information processing system including a terminal device and an information processing device, capable of outputting information to a specific processing device that executes a specific process,
a first acquisition unit provided in the terminal device and configured to acquire processing information to be used in the specific process;
an authentication unit provided in the terminal device, which authenticates a user who instructs execution of the specific process by using biometric information acquired from the user;
a post-authentication information output unit that is provided in the terminal device and outputs post-authentication information including the processing information acquired by the first acquisition unit after authentication is performed by the authentication unit;
a second acquisition unit provided in the information processing device and configured to acquire the post-authentication information;
a determination unit provided in the information processing device and determining whether the authenticated information satisfies a predetermined permission condition;
an information processing system including a permission information output unit provided in the information processing device and configured to output permission information to the specific processing device for permitting execution of the specific processing when the judgment unit determines that the permission condition is satisfied. a location information acquisition unit provided in the terminal device and acquiring location information relating to a location of the terminal device;
The information processing system according to claim 1 , wherein the post-authentication information output unit outputs the post-authentication information including the location information. The information processing system of claim 2, wherein the permission conditions include at least one of the following: the location information is within an area associated with the terminal device, the location information is within an area associated with the processing information, and the location information is within an area associated with an external device used to instruct the specific process. The information processing system of claim 1, wherein the permission information output unit acquires time information regarding the time during which execution of the specific process is permitted based on the judgment result of the judgment unit, and outputs the permission information based on the time information. The information processing system of claim 1, wherein the permission information output unit transmits, to an external device different from the specific processing device, second permission information for permitting the external device to execute a second specific process when the processing information acquired by the first acquisition unit satisfies predetermined processing conditions. A terminal device constituting an information processing system that can output information to a specific processing device that executes a specific process together with an information processing device,
a first acquisition unit that acquires processing information to be used in the specific processing;
an authentication unit that authenticates a user who instructs execution of the specific process using biometric information acquired from the user;
a post-authentication information output unit that outputs post-authentication information including the processing information acquired by the first acquisition unit after authentication is performed by the authentication unit,
The information processing device includes:
a second acquisition unit that acquires the post-authentication information;
a determination unit that determines whether the post-authentication information satisfies a predetermined permission condition;
a permission information output unit that outputs permission information for permitting execution of the specific processing to the specific processing device when the determination unit determines that the permission condition is satisfied. An information processing method that is performed using a first acquisition unit, an authentication unit, a post-authentication information output unit, a determination unit, and a permission information output unit, and outputs information to a specific processing device that executes a specific process,
a first acquisition step in which the first acquisition unit acquires processing information to be used for the specific process;
an authentication step in which the authentication unit authenticates a user who instructs execution of the specific process using biometric information acquired from the user;
a post-authentication information output step in which the post-authentication information output unit outputs post-authentication information including the processing information acquired in the first acquisition step after authentication is performed in the authentication step;
a determination step in which the determination unit determines whether the post-authentication information satisfies a predetermined permission condition;
an authorization information output step in which the authorization information output unit outputs authorization information for permitting execution of the specific processing to the specific processing device when the determination step determines that the authorization condition is satisfied. A program executed by a computer of a terminal device constituting an information processing system that can output information to a specific processing device that executes a specific process together with an information processing device,
The information processing device includes:
a second acquisition unit that acquires post-authentication information output from the terminal device;
a determination unit that determines whether the post-authentication information satisfies a permission condition;
a permission information output unit that outputs permission information for permitting execution of the specific processing to the specific processing device when the determination unit determines that the permission condition is satisfied,
The computer of the terminal device,
a first acquisition unit that acquires processing information to be used in the specific processing;
an authentication unit that authenticates a user who instructs execution of the specific process using biometric information acquired from the user;
a post-authentication information output unit that outputs the post-authentication information including the processing information acquired by the first acquisition unit after authentication is performed by the authentication unit.