JP3143328U - IC card system - Google Patents

Abstract

Provided is an IC card system that performs appropriate personal authentication in service transactions.
An IC customer card / service provider IC card including an IC tag and storing personal information and biometric data, and an IC card terminal having an IC tag reader, an IC card reader, and a biometric authentication device. The personal computer 20 connected as a peripheral device, and when providing service is required, the customer's biometric authentication process and the service provider's biometric authentication process are executed, both of which are positive results. Disclose personal information on the condition that it exists.
[Selection] Figure 1

Description

  The present invention relates to an IC card system for verifying the identity of both a service providing side and a service receiving side in service transactions including medical services.

  Patent Document 1 discloses a system for managing medical information by reading the contents of a prescription, the names of medical workers, medicines, and the names of patients with barcodes.

  Patent Document 2 discloses a medical information management system in which a wireless ID chip having a unique ID is assigned to a medical examination ticket held by a patient and a medicine to be administered, medical chart, medical treatment content, and the like.

In Patent Document 3, management of information on medicines is performed by a server that manages information on medicines, a non-contact IC tag provided in the medicine container, and a plurality of communication terminals connected to the server via a communication line. A chemical information management system is disclosed. The non-contact IC tag has storage means for storing medicine identification data for identifying medicine contained in the medicine container. Each of the plurality of communication terminals includes an antenna that reads medicine identification data stored in the storage means of the non-contact IC tag, and a transmission / reception means that transmits the medicine identification data to the server and receives information from the server. The server has a medicine information database for registering medicine stock information based on medicine identification data received from the communication terminal.
Patent Document 3 identifies a medicine stored in a storage means of a non-contact IC tag and a reading means for reading prescription data stored in a storage means of a medical record card on a communication terminal installed in a hospital. The antenna that reads the medicine identification data, the prescription data read by the reading means and the medicine identification data that identifies the medicine read by the antenna are collated to determine whether or not the medicine corresponds to the medicine indicated in the prescription. A system having collation determination means is disclosed.

  Patent Document 4 discloses a mobile phone with an IC tag in which an identification tag is attached to a telephone casing that incorporates a conductive layer that shields an internal circuit, and the identification information is held in a contactless manner. ing.

Patent Document 5 discloses an IC tag reading terminal for reading an IC tag in which information on a medical product to be stored is recorded, a first IC tag reading / writing terminal for reading and writing to an IC tag of a medical product to be stored, and a patient Alternatively, a card reading / writing terminal that reads / writes from / to a card in which information on medical personnel is stored, and a second IC tag reading / writing terminal that reads / writes from / to an IC tag of a medical product to be treated by a patient, Order server that receives information transmitted from the card reading / writing terminal and the second IC tag reading / writing terminal, and the information transmitted from the IC tag reading terminal, the first IC tag reading / writing terminal, and the order server. A medical information management system having an SPD (Supply Processing & Distribution) server that receives information and collects the number of stocks is disclosed.

  Patent Document 6 discloses a medical material logistics system and a medical examination system using IC tags. A portable terminal equipped with an IC tag reader / writer for reading and / or writing to an IC tag provided on medical materials or an IC examination card, and a server are connected to each other through a communication network using the Internet. Medical material distribution system and medical examination system, wherein the portable terminal receives data in the IC tag from the IC tag reader / writer that has read the IC tag, and data in the IC tag Server data request transmitting means for transmitting a data request signal to request server data related to the server.

  Patent Document 7 discloses a mobile phone with an IC tag reader in which an IC tag reader having an IC tag reader chip having an IC tag reading function and an IC tag communication antenna connected to the IC tag reader is built in a mobile phone body. . The IC tag reader is powered by a power source in the mobile phone body, operates by an IC tag dedicated reading application program installed in the mobile phone body, and displays the reading result on the display unit of the mobile phone body. The IC tag reader is attached to the front surface portion when the foldable mobile phone body is folded.

JP 2001-155098 A Tokushui W001 / 069510 JP 2003-95440 A JP 2003-46627 A JP 2006-215562 A JP 2007-133635 A Noto 3133084 publication

  In recent years, the use of IC tags has been sought in various fields. In the business field including the medical field, the need for an IC tag is expected to supply an appropriate product to the time and place where it is necessary.

  However, the inventors of the present invention have noticed that the use of IC tags is often discussed from the viewpoint of physical distribution. Even if the flow of medicines and the like is appropriately performed, there is a risk of serious medical errors if there is a mistake in the patient who is the person who administers the medicine or a medical worker.

  Recently, biometric authentication using vein patterns may be used for transactions with financial institutions. However, if it is a human-to-machine transaction, it may be sufficient to authenticate only the customer side, but if it is a human-to-human live body transaction, if both sides are not authenticated, one hand will be dropped. The inventor noticed.

  An object of the present invention is to provide a system for performing proper personal authentication in service transactions.

  In order to solve the above-mentioned problem, the device described in claim 1 includes an IC tag, and includes an IC customer card for storing personal information and biometric data of a customer who receives the service, and the IC tag to provide the service. Service provider IC card for storing personal information and biometric authentication data of service provider, IC tag reader for reading the IC tag, IC card reader for reading the IC customer card / service provider IC card, and biometric authentication device An IC card terminal, and a personal computer for a service provider that connects the IC card terminal as a peripheral device. When service provision is required, a biometric authentication process for a customer who possesses the IC customer card, and the service Perform biometric authentication processing of the service provider who owns the provider IC card, and On condition that the type of the biometric authentication process is positive results both, it is intended to disclose personal information of the customer receiving the service to the service provider.

  The invention described in claim 2 is the IC card system according to claim 1, wherein the service provision is a medical examination, the customer is a patient, and the service provider is a medical worker There is something.

  The invention described in claim 3 is the IC card system according to any one of claims 1 and 2, wherein the biometric authentication data stored in the IC customer card / service provider IC card is from a biometric. This is data obtained as a result of extraction from the acquired original data according to a predetermined rule.

  The device described in claim 4 is the IC card system according to any one of claims 1 and 2, provided that the two types of biometric authentication processes are both positive results. The personal information of the customer receiving the service disclosed in the above is personal information of the customer stored in the IC tag in the IC customer card.

  The invention described in claim 5 is the IC card system according to any one of claims 1 and 2, provided that the two types of biometric authentication processes are both positive results. The personal information of the customer who receives the service disclosed in the above is personal information of the customer stored in the personal computer for the service provider.

  The invention described in claim 6 is the IC card system according to any one of claims 1 and 2, provided that the two types of biometric authentication processes are both positive results. The personal information of the customer who receives the service disclosed in the above is personal information of the customer stored in the external device connected to the network on the personal computer for service provider.

  According to the IC card system of the present invention, it is possible to authenticate the identity of the customer and the service provider so that transactions can be conducted with peace of mind.

  In particular, when applied in medical practice or medical examination, it is possible to prevent a patient's mistake and a doctor's mistake, and to build a trust relationship between the patient and the doctor.

  By using the result of extracting biometric authentication data stored in an IC card from the original data according to a predetermined rule without using the original data as it is obtained from the biometric, impersonation, fraud, forgery, etc. It is hard to do.

  When both the personal authentications are positive results, the accessible information is the information stored in the IC tag in the IC customer card, which makes it easy for the customer to understand. The IC card terminal is provided with a separate IC tag reader / writer and an IC card reader / writer, and it is clear that it is switched using a function switch, so whether the IC tag or IC card is accessed. This is because it is clear.

  If all the authentication results are positive, and if the information that can be accessed is stored in the external device connected to the computer or network, show the display screen of the computer to the customer, The operation is easy for the customer to understand. This is because, when trying to access the personal information of the customer, a block is required, and personal authentication is required, and biometric authentication processing is performed.

  Hereinafter, embodiments to which the present invention is applied will be described.

  FIG. 1 is a perspective view showing a system configuration of an IC card system. The IC card terminal 10 is connected as a peripheral device of the personal computer 20 by a USB cable 19. The personal computer 20 is configured using, for example, Windows XP of Microsoft Corporation (“Windows” is a registered trademark of Microsoft Corporation, USA) as basic software, and is connected to an external device via a wireless LAN modem 22 through a network. You can refer to the database. The display screen 21 is a display screen of a display device (CRT device, liquid crystal display, etc.) that displays the processing contents of the personal computer 20. By arranging the touch panel on the display screen 21 and inputting the position information touched by the operator to the personal computer 20, the personal computer 20 can be operated without using the keyboard.

  The power of the IC card terminal 10 is supplied by the AC adapter 18. When the AC adapter 18 is connected to a power outlet, the power switch 15 is turned on, and the USB cable 19 is connected to the personal computer 20, the personal computer 20 recognizes the IC card terminal 10 and functions (driver software is installed). If you need to install it, install it when you first use it).

  On the upper surface of the IC card terminal 10, an IC tag reader / writer 11, a fingerprint authentication sensor 12, an IC card reader / writer 13, a function switch 16, and an LED 17 are provided. The IC tag reader / writer 11 and the IC card reader / writer 13 have different standards and different communication protocols. These two readers / writers are installed separately. This is not only to prevent the two radio waves (electromagnetic waves) from interfering with each other but also to clearly recognize which reader / writer is used by the person who performs the operation and the person who is authenticated.

  The fingerprint authentication sensor 12 is an example of a biometric authentication device. In the case of using other biometric authentication such as a palm vein pattern, an iris pattern, a retina pattern, a voice print, a face contour, etc., other sensors are provided. The function switch 16 is a switch used for switching functions such as biometric authentication processing, IC card reading processing, and IC tag reading processing. The LED 17 indicates the type of function currently used and the status thereof depending on the lighting method (difference between the cycle of constant lighting and blinking).

  The heat radiating hole 14 vents so that the circuit stored in the housing of the IC card terminal 10 does not have heat. In addition, the sound of the buzzer provided inside is transmitted to the outside.

  FIG. 2 is a block diagram showing a circuit configuration of the IC card system. The IC card 30 including the IC tag stores an IC card read by the ISO 14443A standard known as a MIFARE card and an IC tag read by the ISO 15693 standard known as a my-d tag, respectively. For example, a card made of plastic. The meaning that the IC card and the IC tag are independent is stored in a single business card-sized plastic card. However, when reading / writing close to the IC card reader / writer 13, Only the card communicates, and when reading / writing close to the IC tag reader / writer 11, only the IC tag communicates.

  An MPU (microprocessor unit) 29 is provided in the IC card terminal 10, and each circuit in the IC card terminal 10, that is, an IC tag reader / writer 11, a fingerprint authentication sensor 12, and an IC card reader / writer 13. , Signal switching of the function switch 16, buzzer, LED 17, etc., input / output control, and the like are executed. As described above, the IC card terminal 10 is configured as a peripheral device of the personal computer 20. Here, the IC card terminal 10 is configured as a USB device and is connected to the personal computer via the USB cable 19. Other embodiments in which the IC card terminal 10 is configured not as a USB device but as a computer network device and connected to the personal computer 20 via a so-called LAN are also possible.

  Hereinafter, Example 1 is demonstrated, referring FIG.3 and FIG.4. FIG. 3 is a conceptual diagram showing a case where the IC card system according to the present invention is used in a regional medical cooperation system. The IC card system according to the present invention can be generally used for service provision in which one-to-one transactions are made between a service provider and a consumer. Hereinafter, in FIG. An example applied to will be described.

  In this case, an IC card possessed by a consumer, that is, a patient is referred to as an IC examination card, and an IC card possessed by a service provider, that is, a medical worker, is referred to as a medical worker IC card. To avoid complications, the IC card is simply called an IC card when it is not necessary to distinguish between them. As described above, the IC card in the present invention is a mifare card (an IC card that reads and writes with ISO 14443A) and a my-d tag (with ISO 15693). IC card to be read and written on a single plastic card, and the memory area of the mifare card contains data necessary for personal authentication (in this example, data extracted from fingerprint image data according to a predetermined rule). ) And personal information such as an insurance number of the cardholder is stored in the storage area of the my-d tag.

  The regional medical cooperation system shown in FIG. 3 includes a regional medical cooperation DB (database) 49 that links A hospital and B hospital located in the same area as the university hospital. 42 is connected to the data security center through a dedicated line, and is a system that realizes medical cooperation among a plurality of hospitals in the area. At the same time, from the viewpoint that the IC examination card 50 is a system that can be used in any hospital in the area, it can be said that it is an IC examination card system.

  A patient who possesses an IC examination card 50, in hospital A, which is a medical institution in the area where the patient lives, meets the medical staff and performs personal authentication by fingerprint authentication using the terminal 41 of the regional medical cooperation system. After that, the user has access to the personal information in the IC tag provided on the IC examination card 50, discloses personal information such as insurance information, and undergoes examination. Findings, examination results, examination results, etc. at hospital A are stored in the regional medical cooperation database 49 of the data security center via a dedicated line independent of the hospital network.

  Assume that a patient who has been examined at hospital A and recommended a treatment policy, treatment method, etc., goes to hospital B in order to obtain a second opinion. In Hospital B, which participates in the same regional medical cooperation system as Hospital A, the patient uses the same IC examination card 50 used in Hospital A, and conducts an examination after performing identity authentication in the same manner. Can receive. Since both the patient and the health care worker authenticate each other in person, it becomes possible to access the test result of the previous A hospital and describe the second opinion about it in the B hospital. It is not necessary for the patient to borrow and carry medical records, radiographs, blood test results, MRT images, etc. from Hospital A.

  If a patient who has obtained a second opinion at Hospital B wants to further diagnose a university hospital, a referral letter can be issued electronically and stored in the regional medical DB 49. The patient who received the letter of introduction goes to the university hospital at the prescribed time, meets the other medical staff, authenticates both using the IC examination card 50, and then issues the regional medical care. Access to the cooperation database 49 and refer to a letter of introduction, a medical record, a test result, and the like. In this way, regional medical cooperation is realized.

  FIG. 4 is a perspective view of the terminal 40 of the regional medical cooperation system. Although the configuration is almost the same as the IC card terminal 10 shown in FIG. 1, in FIG. 4, the portion of the fingerprint sensor 12 is recessed to make it easier to imagine that the patient puts a finger for fingerprint authentication. It is. About the same member as FIG. 10, the same code | symbol is used. The medical staff also has a card similar to the IC examination card 50 possessed by the patient. This is the medical staff IC card 51 shown in FIG.

  In a hospital, a patient and a medical worker (doctor) face each other and first place the IC examination card 50 possessed by the patient on the IC card reader / writer 13 of the terminal 40 of the regional medical cooperation system, and put the patient's finger. It is placed on the fingerprint authentication sensor 12. The terminal 40 uses the IC card reader / writer 13 to read the patient's fingerprint data (data extracted from the fingerprint image according to a predetermined rule) stored in the storage area of the mifare card portion of the IC examination card. The data is sent to the PC side. Also, the terminal 40 reads the patient's fingerprint by the fingerprint authentication sensor 12, and sends data extracted from the fingerprint image according to a predetermined rule to the PC side. On the PC side, the two data are collated to determine whether they match or do not match. The PC is operated by medical personnel.

  The authentication of the medical staff who operates the PC is also performed in front of the patient's eyes. That is, the medical worker IC card 51 is placed on the IC card reader / writer 13 and the medical worker's finger is placed on the fingerprint authentication sensor 12 to authenticate the medical worker. The patient's personal information, medical information, etc. are disclosed only when both the patient and the medical staff are able to clear the personal authentication.

  The first stage of patient personal information to be disclosed is information such as insured name, insured number, date of birth, sex, date of qualification, expiry date of insurance card, etc. Are stored in a storage area in the IC tag included in the IC examination card 50. After the identity authentication is cleared, the terminal 40 reads the personal information and sends it to the PC side by replacing the IC examination card 50 with the IC tag reader / writer 11 by the patient's own hand.

  The second stage of the patient's personal information to be disclosed is the contents of the patient's electronic medical record stored in the computer system in the hospital, past test results, medication history, visit history, etc. The thing of a stage is the information preserve | saved in regional medical cooperation DB49 shown in FIG. In disclosing such information to medical staff, it is possible to apply security such as having the patient in front of you enter a PIN. In order to input the personal identification number, it is desirable to add a numeric keypad for inputting the personal identification number (keyboard for inputting numeric characters) to the terminals 40, 41, 42 and the like.

  FIG. 5 is a conceptual diagram of personal authentication by card fingerprint verification. Personal authentication is performed when the two events of being an IC card holder and a match between fingerprint data stored in the IC card and the fingerprint of the person are affirmative.

  FIG. 6 is a conceptual diagram illustrating details of fingerprint authentication. As shown in FIG. 6, the fingerprint data stored in the IC card is not a fingerprint image itself but a list of 16 numerical values extracted from the fingerprint image according to a predetermined rule. Therefore, the fingerprint image cannot be reconstructed from the numerical data. When the fingerprint authentication sensor reads the fingerprint, it extracts 16 numerical values in accordance with a predetermined rule to obtain a fingerprint reading result. The PC scans the fingerprint reading result and the IC examination card reading result. Here, “Extracted by a predetermined rule” is used, but only the system administrator of this system knows what this “predetermined rule” is, and this rule is managed as a secret. The higher the security level, the higher the security of this fingerprint authentication.

  FIG. 7 is an explanatory diagram for explaining the classification of a non-contact type IC card using a frequency of 13.56 MHz. As shown in FIG. 7, the non-contact type IC card using a frequency of 13.56 MHz is classified into four types: ISO 14443 type A, ISO 14443 type B, ISO 14443 type C (FELICA), and ISO 15693. The first three are for human authentication, all of which have different protocols, and data is encrypted and written. The encryption method is secretly managed by each system designer and system administrator. Type C is widely used in Edy, Suica, etc., but the format is changed, so that they are not compatible with each other. ISO14443 type A adopted in the present invention is widely used as mifare all over the world.

  Further, ISO15693 is used for IC tags, is for identifying objects, and requires compatibility, and therefore has a design concept different from types A, B, and C. Encryption is not assumed. The system designer can determine the writing format, and the system can be constructed so that the data written for the first time using the dedicated software can be displayed as meaningful.

  FIG. 8 is a table showing an example of the description format of the IC tag of the IC examination card. As shown in FIG. 8, the IC tag of the IC examination card includes the name of the health insurance card, the insurer number, the date of qualification acquisition, gender, date of birth, name, number, symbol, delivery date, hospital Codes, ID numbers, URLs, etc. are described according to a format determined by the system designer.

  FIG. 9 is a table showing an example of a description format of an IC tag of a medicine. As shown in FIG. 9, the IC tag to be attached to the medicine includes a medical institution name, expiration date, storage years, class classification, lot number, date of manufacture, product code, product name, manufacturer name, manufacturer ID, The URL and the like are described according to a format determined by the system designer.

  It is generally available for service provisions where one-on-one transactions are made between service providers and consumers.

It is a perspective view which shows the system configuration | structure of an IC card system. It is a block diagram which shows the circuit structure of an IC card system. It is a conceptual diagram of a regional medical cooperation system. It is a perspective view of the terminal of a community medicine cooperation system. It is a conceptual diagram of personal authentication by fingerprint collation of a card. It is a conceptual diagram explaining the detail of fingerprint authentication. It is explanatory drawing explaining the classification | category of the non-contact-type IC card using the frequency of 13.56 MHz. It is a table | surface which shows an example of the description format of the IC tag of an IC examination card. It is a table | surface which shows an example of the description format of the IC tag of a pharmaceutical.

Explanation of symbols

10 IC Card Terminal 11 IC Tag Reader / Writer 12 Fingerprint Authentication Sensor 13 IC Card Reader / Writer 14 Heat Dissipation Hole 15 Power Switch 16 Function Switch 17 LED
18 AC adapter 19 USB cable 20 Personal computer 21 Display screen 22 Wireless LAN modem 29 MPU (microprocessor unit)
30 IC cards including IC tags 40, 41, 42 Terminals of regional medical cooperation system 49 Regional medical cooperation DB
50, 51 IC examination card

Claims (6)

An IC customer card containing an IC tag and storing personal information and biometric data of the customer receiving the service;
A service provider IC card that includes an IC tag and stores personal information and biometric data of the service provider providing the service;
An IC tag reader comprising an IC tag reader for reading the IC tag, an IC card reader for reading the IC customer card / service provider IC card, and a biometric authentication device;
A personal computer for a service provider that connects the IC card terminal as a peripheral device. When service provision is required, a biometric authentication process for a customer who possesses the IC customer card, and the service provider IC card Execute the biometric authentication process of the possessed service provider, and disclose the personal information of the customer receiving the service to the service provider on the condition that both of these two types of biometric authentication processes are positive results IC card system characterized by The IC card system according to claim 1,
The service provision is a medical examination.
The customer is a patient;
An IC card system, wherein the service provider is a medical worker who performs a medical examination. The IC card system according to any one of claims 1 and 2,
The IC card system, wherein the biometric authentication data stored in the IC customer card / service provider IC card is data obtained as a result of extraction from original data acquired from a biometric according to a predetermined rule. The IC card system according to any one of claims 1 and 2,
On the condition that both of the two types of biometric authentication processes are affirmative, the personal information of the customer receiving the service disclosed to the service provider is the customer stored in the IC tag in the IC customer card. IC card system characterized by being personal information. The IC card system according to any one of claims 1 and 2,
Personal information of the customer receiving the service, which is disclosed to the service provider on the condition that both of the two types of biometric authentication processes are positive, is stored in the personal computer for the service provider. IC card system characterized by being personal information. The IC card system according to any one of claims 1 and 2,
The personal information of the customer receiving the service, which is disclosed to the service provider, is connected to the personal computer for the service provider on the condition that both of the two types of biometric authentication processes are positive results. An IC card system characterized in that it is personal information of a customer stored in an external device.

Images