WO2006013816A1

WO2006013816A1 - Authentication system, sound output terminal, information processing device, server, and authentication method

Info

Publication number: WO2006013816A1
Application number: PCT/JP2005/014032
Authority: WO
Inventors: Masaya Ota
Original assignee: Masaya Ota
Priority date: 2004-08-06
Filing date: 2005-08-01
Publication date: 2006-02-09

Abstract

[PROBLEMS] No countermeasure against tapping of sound such as ringing melody has been conventionally taken. [MEANS FOR SOLVING PROBLEMS] An authentication method comprising a sound acquiring step of acquiring outputted sound, a demodulating step of demodulating the sound acquired at the sound acquiring step, a step of extracting temporary information and service information from the demodulated information, a service information authentication step of performing authentication on the basis of the extracted service information, an authentication step of performing authentication the basis of the extracted temporary information, and an operation step of judging the authentication results as an authentication permission only when the authentication result at the service information authentication step and the authentication result at the authentication step are both authentication permissions and performs operation according to the authentication results. According to the authentication method, a countermeasure against sound tapping can be taken.

Description

Specification

Authentication system, sound output terminal, information processing apparatus, server apparatus, and authentication method

[0001] The present invention relates to an authentication system, an authentication method, and the like for authenticating a sound output terminal using output sound.

Background art

[0002] As a first conventional technique, there is the following paperless ticket system. This paperless ticket system accepts reservations for tickets that have the power of a mobile phone, stores the identification number of the mobile phone and the reservation information of the ticket in the reservation information database, and can authenticate data according to the reservation information of the ticket. The reservation reception system that transmits the data to the mobile phone, and the data of the reservation information and identification number in the mobile phone are extracted, and the reservation information in the reservation reception system database is referred to, and the mobile phone power is recognized. It is a paperless ticket system characterized by comprising an admission management system for confirming reservations and managing admission by performing proof. A powerful paperless ticketing system makes it possible to accept reservations and manage admission in a paperless manner. Also, in such a case, it is described that the ringing melody format may be used as ticket information (see Patent Document 1).

[0003] Further, as a second conventional technique, there is the following admission management system. The admission management system includes a voice synthesizing function for voice data in a predetermined format, a portable terminal including a nonvolatile memory that stores voice data created by modulating information as an admission ticket according to a certain rule, and the portable Based on the decoded data, the microphone that plays the voice synthesis function of the terminal, the microphone that plays the sound, the voice signal processing unit for decoding the original data from the collected voice signal, and the decoded data Using an admission ticket checker equipped with a determination processing unit for determining whether or not the admission is possible, and performing admission check by reproducing the admission ticket data by voice on the mobile terminal. We provide a system for convenient and safe admission ticket distribution using a telephone and verification of legitimacy at admission ticket gates (see Patent Document 2).

Patent Document 1: Japanese Patent Laid-Open No. 2002-123730 (Pages 6-7, Fig. 1) Patent Document 2: JP 2002-183779 A (Page 1, Fig. 1)

Disclosure of the invention

Problems to be solved by the invention

[0004] However, in the above-described conventional technology, no countermeasures have been taken against wiretapping of sounds such as ringtones. In other words, for example, when a sound emitted from another place is recorded, it is possible to successfully authenticate by outputting the recorded sound, and it is possible for an unauthorized person to impersonate a ticket etc. It was.

Means for solving the problem

In order to solve the above problems, the first invention is an authentication system comprising a sound output terminal, an information processing device, and a server device, wherein the sound output terminal stores service information. The service information storage unit, the temporary information acquisition unit that acquires temporary information that can be temporarily used, and the sound information based on the service information and the temporary information. A sound output unit that outputs the sound information, and the information processing apparatus acquires the sound output unit that acquires the sound output by the sound output terminal, and the sound acquisition unit. A demodulator that demodulates sound; a temporary information extractor that extracts temporary information from information demodulated by the demodulator; a service information extractor that extracts service information from information demodulated by the demodulator; and the service information Based on the service information extracted by the extractor! A service information authentication unit that performs authentication, a temporary information transmission unit that transmits the temporary information extracted by the temporary information extraction unit to the server device, and an authentication result from the server device corresponding to the transmission of the temporary information. Based on the authentication result receiving unit that receives the authentication result, the authentication result of the service information authentication unit, and the authentication result received by the authentication result receiving unit! The server device includes an operation unit that performs an operation, and the server device receives the temporary information from the information processing device and the temporary information received by the temporary information reception unit. An authentication system includes an authentication unit that performs authentication and an authentication result transmission unit that transmits an authentication result in the authentication unit to the information processing apparatus.

[0006] The second invention is an authentication system comprising a sound output terminal, an information processing device, and a server device, wherein the sound output terminal includes a service information storage unit storing service information; A temporary information acquisition unit that acquires temporary information that is temporarily usable information,

A sound information forming unit that configures the sound information, and a sound output unit that outputs the sound information, wherein the information processing device acquires a sound output by the sound output terminal; and A demodulator that demodulates the sound acquired by the sound acquisition unit; a temporary information extraction unit that extracts temporary information from the information demodulated by the demodulation unit; and a service information extraction that extracts service information from the information demodulated by the demodulation unit Based on the service information extracted by the service information extraction unit, the service information extracted by the service information extraction unit, and the service information extracted by the service information extraction unit. An authentication unit that performs an operation based on an authentication result of the authentication unit, and the server device is an authentication system including a temporary information transmission unit that transmits temporary information to the information processing device. is there.

The third invention is an authentication system comprising a sound output terminal, an information processing device, and a server device, wherein the sound output terminal includes a service information storage unit storing service information, a temporary A temporary information acquisition unit that acquires temporary information that can be used for

A sound information forming unit that configures the sound information, and a sound output unit that outputs the sound information, wherein the information processing device acquires a sound output by the sound output terminal; and A demodulator that demodulates the sound acquired by the sound acquisition unit; a temporary information extraction unit that extracts temporary information from the information demodulated by the demodulation unit; and a service information extraction that extracts service information from the information demodulated by the demodulation unit A service information transmission unit that transmits the service information extracted by the service information extraction unit to the server device, and a temporary information transmission unit that transmits the temporary information extracted by the temporary information extraction unit to the server device. An authentication result receiving unit that receives an authentication result from the server device in response to transmission of the service information and temporary information, and an operation unit that operates based on the authentication result received by the authentication result receiving unit The The server device receives the service information from the information processing device, the temporary information reception unit that receives the temporary information from the information processing device, and the service information reception unit. Based on the received service information and the temporary information received by the temporary information receiver! An authentication system comprising: an authentication unit that performs authentication; and an authentication result transmission unit that transmits an authentication result in the authentication unit to the information processing apparatus. [0008] Further, the fourth invention is an authentication system comprising a sound output terminal and a server device, wherein the sound output terminal is temporarily used with a service information storage unit storing service information. A temporary information acquisition unit that acquires temporary information that can be generated, a sound information configuration unit that configures sound information based on the service information and the temporary information, and a sound output that outputs the sound information The server device includes: a sound acquisition unit that acquires sound output from the sound output terminal; a demodulation unit that demodulates sound acquired by the sound acquisition unit; and an information power service demodulated by the demodulation unit A service information extracting unit for extracting information, an information power recovered by the demodulating unit, a temporary information extracting unit for extracting temporary information, a service information extracted by the service information extracting unit, and a temporary information extracted by the temporary information extracting unit Based on information An authentication unit for performing authentication, an authentication system comprising an operation portion for performing an operation Te based ヽ the authentication result of the authentication unit.

With the configuration as described above, authentication using sound is easy. Even if the sound is wiretapped, authentication using temporary information, which can be used temporarily, can be performed, so that unauthorized acts (such as impersonation) can be prevented.

The invention's effect

As described above, according to the present invention, authentication can be easily performed using sound.

BEST MODE FOR CARRYING OUT THE INVENTION

Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings. Note that in this embodiment, components using the same reference numerals and steps in the flowcharts perform the same function, and thus description of what has already been described may be omitted.

(Embodiment 1)

FIG. 1 is a conceptual diagram of an authentication system according to the present embodiment. The authentication system includes a sound output terminal 11, an information processing device 12, and a server device 13. The sound output terminal 11 is, for example, a mobile phone or a PDA with a communication function. The information processing apparatus 12 is a so-called personal computer, for example. This authentication system is an authentication system in which the server device 13 authenticates the sound output terminal 11 mainly using the sound output from the sound output terminal 11 force. Also, the sound output from the sound output terminal 11 may be a musical tone having a melody. Good or mechanical sound.

Fig. 2 is a block diagram of the authentication system. The sound output terminal 11 includes an input reception unit 1101, a clock 1102, a temporary information acquisition unit 1103, a service information storage unit 1104, a sound information configuration unit 1105, and a sound output unit 1106.

The information processing apparatus 12 includes a sound acquisition unit 1201, a demodulation unit 1202, a temporary information extraction unit 1203, a service information extraction unit 1204, a service information authentication unit 1205, a temporary information transmission unit 1206, an authentication result reception unit 1207, An operation unit 1208 is provided.

The server device 13 includes a temporary information receiving unit 1301, a temporary information authenticating unit 1302, and an authentication result transmitting unit 1303. Temporary information authentication unit 1302 includes server-side clock 13021, temporary information storage unit 13022, determination unit 13023, and authentication result configuration unit 13024.

[0014] The input receiving unit 1101 receives an input. The input is usually a user input of the sound output terminal 11. The input is, for example, temporary information that is information that can be temporarily used for authentication. The input is, for example, an input of a sound output command for starting the authentication process. In addition, the input is input of various commands and information for operating the sound output terminal 11. Further, the input reception unit 1101 may perform processing for prompting the user to input a reception number. The reception number is a kind of temporary information. The reception number is, for example, a random number generated by a means (not shown) of the server device 13 and is information that the server device 13 notifies the user of the sound output terminal 11 by some means. Note that means for the server device 13 to generate a random number, means for notifying the user of the sound output terminal 11 of the random number (acceptance number), etc. are not shown. Any means such as a numeric keypad, a keyboard, a mouse, or a menu screen can be used for inputting commands and information. The input receiving unit 1101 can be realized by a device driver of an input means such as a numeric keypad or a keyboard, or control software for a menu screen.

[0015] The clock 1102 keeps time. It is assumed that the time of the clock is prepared to synchronize accurately with the server. The synchronization method of the clock 1102 of the sound output terminal 11 and the server-side clock 13021 of the server device 13 is not limited. Each of the two clocks may be a radio clock, or the sound output terminal 11 may inquire the server device 13 about the time. Also, the sound output terminal 11 obtains and stores the time difference between the server-side clock 13021 and the sound output terminal-side clock 1102 in advance. When the sound output terminal 11 needs the current time, the time difference between the time of the sound output terminal clock 1102 and the held server can be calculated. Also good. The time described here may include the date.

[0016] Temporary information acquisition section 1103 acquires temporary information that is temporarily usable information.

The temporary information includes, for example, current time information that is current time information that can be acquired from the clock 1102, a reception number that is received from the input reception unit 1101, and the like. A receipt number is information that is necessary for receiving a service and is used for authentication, and is assigned from the server at the start of acceptance and is valid only at that time. The temporary information may be information having current time information and a reception number. That is, the temporary information may include two or more pieces of information, or may be information that includes two or more pieces of information power. Temporary information is, for example, information that can be used to specify a predetermined period including the time when authentication is performed or the time when authentication is performed, and the predetermined information includes the time when authentication is performed or when authentication is included. It is information that can be used only during the period. The temporary information may be any information as long as it can constitute sound information. For example, the temporary information may be text information that can be converted into sound information. The temporary information may be sound information, or may be score information associated with information of a sound source, such as information in MIDI (registered trademark) format. The temporary information acquisition unit 1103 can usually be realized by an MPU, memory, or the like. The processing procedure of the temporary information acquisition unit 1103 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, it may be realized by hardware (dedicated circuit).

[0017] Service information storage section 1104 stores service information that is information related to services that are also received by the service provider. The service information is, for example, a number that identifies a ticket. A ticket is a ticket for entering, for example, an amusement park, a movie theater, or a concert venue. In addition, the service information may be information that can be used to identify that there is a qualification to receive a service that is also received by the service provider, such as a member number. The service information is preferably information that can be used multiple times or information that can be used by multiple sound output terminals. The service information may be any information as long as it can constitute sound information. For example, service information is sound information It may be text information that can be converted to. The service information may be sound information, or may be score information associated with information of a sound source such as information in MIDI (registered trademark) format. The service information storage unit 1104 is preferably a non-volatile recording medium, but can also be realized by a volatile recording medium.

[0018] The sound information configuration unit 1105 configures sound information based on the service information and the temporary information.

Specifically, the sound information configuration unit 1105 configures sound information based on information obtained by combining service information and temporary information in the service information storage unit 1104. Here, “combining” is, for example, processing for adding temporary information after service information, processing for adding service information after temporary information, and the like. The sound information configuration unit 1105 may configure sound information by inserting temporary information between service information, for example. In this case, for example, assuming that the service information is “12345” and the temporary information is “20040818”, the inserted information is “123200408184 5”. It is only necessary that the information processing apparatus 12 or the server apparatus 13 can extract temporary information. There is no limitation on the timing at which the sound information forming unit 1105 forms the sound information. The structure of sound information does not matter. The sound information configuration unit 1105 normally configures sound information according to user instructions. The sound information configuration unit 1105 can usually be realized by an MPU, a memory, or the like. The processing procedure of the sound information configuration unit 1105 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, it may be realized by hardware (dedicated circuit).

The sound output unit 1106 outputs the sound information configured by the sound information configuration unit 1105. There is no limitation on the timing at which the sound output unit 1 106 outputs the sound information. The sound output unit 1106 normally outputs sound information according to a user instruction. The sound output unit 1106 can be realized by, for example, a speaker and its driver software.

The sound acquisition unit 1201 acquires the sound output from the sound output terminal 11. The sound acquisition by the sound acquisition unit 1201 is acquisition through a microphone or via an audio line. The sound acquisition unit 1201 can be realized by a microphone or the like, for example.

The demodulator 1202 demodulates the sound acquired by the sound acquisition unit 1201 to obtain digital information.

The demodulator 1202 can usually also be implemented with an MPU or memory power. The processing procedure of the demodulation unit 1202 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, it may be realized by hardware (dedicated circuit). [0022] Temporary information extraction section 1203 extracts temporary information from the information demodulated by demodulation section 1202. For example, the temporary information extraction unit 1203 extracts the temporary information from the information acquired by the demodulation unit 1202. Temporary information extraction section 1203 extracts temporary information in accordance with the sound information composition method of sound information composition section 1105. The temporary information extraction unit 1203 can be usually realized from an MPU, a memory, or the like. The processing procedure of the temporary information extraction unit 1203 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, hardware (dedicated circuit) may be used.

Service information extraction section 1204 extracts information power service information demodulated by demodulation section 1202. The service information extraction unit 1204 also extracts service information corresponding to the sound information configuration method of the sound information configuration unit 1105. The service information extraction unit 1204 can usually be implemented with an MPU, memory, or the like. The processing procedure of the service information extraction unit 1204 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, it may be realized by hardware (dedicated circuit).

[0024] The service information authentication unit 1205 performs authentication based on the service information extracted by the service information extraction unit 1204. The service information authentication unit 1205 stores, for example, service information, and determines whether the service information and the service information extracted by the service information extraction unit 1204 have a predetermined relationship. Authentication is permitted, and authentication is not permitted unless there is a prescribed relationship. The predetermined relationship is, for example, coincidence. The service information authentication unit 1205 can usually be realized by an MPU, memory, or the like. The processing procedure of the service information authentication unit 1205 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, it may be realized by hardware (dedicated circuit).

The temporary information transmission unit 1206 transmits the temporary information extracted by the temporary information extraction unit 1203 to the server device 13. Temporary information transmission unit 1206 is usually realized by a wireless or wired communication means, but may be realized by a broadcasting means.

The authentication result receiving unit 1207 receives the authentication result from the server device 13 in response to the transmission of the temporary information. The authentication result receiving unit 1207 may be realized by a force broadcast receiving means that is usually realized by a wireless or wired communication means.

The operation unit 1208 includes an authentication result of the service information authentication unit 1205 and an authentication result reception unit 1 207 performs an operation based on the authentication result received. Specifically, when the authentication result of the service information authentication unit 1205 and the authentication result received by the authentication result receiving unit 1207 are both “authentication permitted”, the operation unit 1208 performs an operation corresponding to the authentication permission, In the case of, an operation corresponding to authentication disapproval is performed. The operation here may be anything such as displaying the authentication result or opening a gate. Note that when the operation unit 1208 performs the operation of displaying the authentication result, the operation in the case where the authentication is permitted and the case where the authentication is not permitted can be the same. However, the information displayed is different. Even in the case where it works, it can be said that the operation unit 1208 operates based on the authentication result of the service information authentication unit 1205 and the authentication result received by the authentication result reception unit 1207. Means for realizing the operation unit 1208 differs depending on the operation.

The temporary information receiving unit 1301 receives temporary information from the information processing apparatus 12. Temporary information receiving section 1301 is usually realized by a wireless or wired communication means, but may be realized by a broadcast receiving means.

The temporary information authentication unit 1302 performs authentication based on the temporary information received by the temporary information reception unit 1301. Temporary information authentication unit 1302 can usually be realized by an MPU, a memory, or the like. The processing procedure of the temporary information authentication unit 1302 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, it may be realized by hardware (dedicated circuit).

The authentication result transmission unit 1303 transmits the authentication result in the temporary information authentication unit 1302 to the information processing device 12. The authentication result is information indicating authentication permission or authentication disapproval. The authentication permission is “1”, for example, and the authentication disapproval is “0”, for example. The authentication result transmitting unit 13 03 is usually realized by a wireless or wired communication means, but may be realized by a broadcasting means.

The server side clock 13021 keeps time. Since the configuration of the server-side clock 13021 is the same as the configuration of the clock 1102 described above, description thereof is omitted.

[0028] Temporary information storage means 13022 stores temporary information used for authentication. The temporary information here is, for example, a reception number. Such temporary information may be stored by any means. For example, the reception number is a random number generated by the server device 13. The temporary information storage means 13022 is preferably a non-volatile recording medium, but is a volatile recording medium. Is also feasible.

Determination means 13023 determines whether authentication is permitted or not based on temporary information received by temporary information receiving section 1301. Specifically, for example, the determination unit 13023 obtains the reception number for the temporary information received by the temporary information receiving unit 1301, and the received reception number and the reception number stored in the temporary information storage unit 13022 are obtained. If the information matches, and the temporary information received by the temporary information receiver 1301 also acquires the current time information, compares the acquired current time information with the time indicated by the server clock 13021, and the difference is within a certain time. It is determined that authentication is permitted. On the other hand, the determination unit 13023 acquires the reception number for the temporary information received by the temporary information receiving unit 1301, for example, and the received reception number does not match the reception number stored in the temporary information storage unit 13022. Or Z and the temporary information received by the temporary information receiving unit 1301 also acquire the current time information, compare the acquired current time information with the time indicated by the server-side clock 13021, and if the difference is greater than a certain time, Judge that authentication is not permitted. The judging means 13023 can usually also be implemented with an MPU or memory power. The processing procedure of the judging means 13023 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, it can be realized with hardware (dedicated circuit).

The authentication result configuring unit 13024 configures an authentication result based on the determination by the determining unit 13023. For example, the authentication result configuration unit 13024 generates “1” when the determination result of the determination unit 13023 is authentication permission, and generates “0” when the determination result of the determination unit 13023 is authentication disapproval. The authentication result constituting unit 13024 can be usually realized by an MPU, a memory, or the like. The processing procedure of the authentication result constituting unit 13024 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, it may be realized by hardware (dedicated circuit).

Hereinafter, the operation of this authentication system will be described. First, the operation of the sound output terminal 11 will be described with reference to the flowchart of FIG.

(Step S301) The input receiving unit 1101 determines whether or not the input has been accepted. If an input is accepted, the process goes to step S302, and if no input is accepted, the process returns to step S301. (Step S302) The input receiving unit 1101 determines whether or not the input received in step S301 is an instruction to start an authentication service. If it is an authentication service start instruction, the process goes to step S303, and if it is not an authentication service start instruction, the process returns to step S301.

(Step S303) The input reception unit 1101 prompts the user to input a reception number and receives the input. There can be various methods for prompting the user to input a receipt number. For example, the input reception unit 1101 displays a screen for prompting the user to input a reception number. In addition, the input receiving unit 1101 gives a voice guidance, for example, “Please input the 4-digit number that is the reception number” to prompt the user to input the reception number. In addition, there are various processes for prompting the user to enter the receipt number. In addition, there are various methods for informing the user of the receipt number. A specific example of this process will be described later. Go to step S304.

(Step S 304) The input receiving unit 1101 determines whether or not the input received in step S 303 is the input of the reception number. If the receipt number is input, the process goes to step S305. If the receipt number is not entered, the process returns to step S301.

(Step S305) —The hour information acquisition unit 1103 acquires the reception number received in step S303.

(Step S306) —The time information acquisition unit 1103 acquires the current time information from the clock 1102.

(Step S307) The sound information configuration unit 1105 acquires service information from the service information storage unit 1104.

(Step S308) The sound information configuration unit 1105 is based on information obtained by combining the reception number acquired in Step S305 and the current time information acquired in Step S306 with the service information acquired in Step S307. Next, sound information is configured.

(Step S309) The sound output unit 1106 outputs the sound information configured in step S308. Return to step S301.

In the flowchart of FIG. 3, the process ends when the power is turned off or the process is terminated.

Next, the operation of the information processing apparatus 12 will be described using the flowchart of FIG. (Step S401) The sound acquisition unit 1201 determines whether or not the sound output from the sound output terminal 11 has been acquired. Determine whether. If the sound is acquired, the process goes to step S402. If the sound is not acquired, the process returns to step S401.

(Step S402) The demodulator 1202 demodulates the sound acquired in step S401 to obtain digital information.

(Step S403) The service information extraction unit 1204 demodulates in step S402 and extracts the service information from the obtained digital information.

(Step S404) The service information authentication unit 1205 performs authentication based on the service information extracted in step S403.

(Step S405) The operation unit 1208 determines whether or not the result of authentication in step S404 is authentication permission. If authentication is permitted, the process goes to step S406, and if authentication is not allowed, the process jumps to step S411.

(Step S406) —The hour information extraction unit 1203 extracts temporary information from the information demodulated in step S402.

(Step S407) —The hour information transmission unit 1206 transmits the temporary information extracted in Step S406 to the server device 13.

(Step S408) The authentication result receiving unit 1207 determines whether or not the authentication result is received from the server device 13 in response to the temporary information transmission in step S403. If the authentication result is received from the server device 13, the process goes to step S409, and if the authentication result is not received from the server device 13, the process returns to step S408.

(Step S409) The operation unit 1208 determines whether or not the authentication result received in step S408 is information indicating authentication permission. If it is information indicating authentication permission, go to Step S410, and if it is not information indicating authentication permission, go to Step S411.

(Step S410) The operation unit 1208 performs an operation (normal operation) corresponding to the authentication permission. Return to step S401.

(Step S411) The operation unit 1208 performs an operation (abnormal operation) corresponding to the authentication disapproval. Return to step S401.

In the flowchart of FIG. 4, the process ends when the power is turned off or the process is terminated. [0037] Although not described in the flowchart of FIG. 4, the information processing apparatus 12 instructs the server apparatus 13 to generate and transmit a random number (acceptance number) by a predetermined input from the user, and the server apparatus 13 The receipt number may be received and output.

Furthermore, in the flowchart of FIG. 4, the power to authenticate the temporary information after authenticating the service information is of course in any order.

Next, the operation of the server device 13 will be described using the flowchart of FIG.

(Step S501) —The hour information receiving unit 1301 determines whether or not the temporary information is received from the information processing apparatus 12. If the temporary information is received, the process goes to step S502. If the temporary information is not received, the process returns to step S501.

(Step S502) The judging means 13023 also extracts the reception number from the temporary information power received at Step S501.

(Step S503) Determination means 13023 also extracts the current time information from the temporary information received in step S501.

(Step S504) The judgment means 13023 acquires the receipt number stored in the temporary information storage means 13022.

(Step S505) Determination means 13023 determines whether the acceptance number extracted in Step S502 and the acceptance number acquired in Step S504 have a predetermined relationship. The predetermined relationship is, for example, coincidence. If both are in a predetermined relationship, go to Step S506, and if not, go to Step S510.

(Step S506) The judging means 13023 acquires the time of the server clock 13021.

(Step S507) Determination means 13023 determines whether or not the current time information extracted in step S503 and the information indicating the time acquired in step S506 are in a predetermined relationship. For example, the determination unit 13023 determines whether or not the time indicated by the current time information extracted in step S503 and the information indicating the time of the server-side clock 13021 are within a predetermined time. If the two are in a predetermined relationship, the process goes to Step S508, and if not, the process jumps to Step S510.

(Step S508) The authentication result constituting unit 13024 substitutes “1” for the authentication result.

(Step S509) Send authentication result 1303 in Step S508 or Step S509 The configured authentication result is transmitted to the information processing apparatus 12. Return to step S501.

(Step S510) The authentication result constituting unit 13024 substitutes “0” for the authentication result. Step Go to S509.

In the flowchart of FIG. 5, the process ends when the power is turned off or the process is terminated.

[0040] Although not described in the flowchart of FIG. 5, the server device 13 generates a random number by means not shown, for example, in response to an instruction from the information processing device 12, and stores the random number (acceptance number) as information. May be sent to processing unit 12!

Hereinafter, a specific operation of the authentication system in the present embodiment will be described. Figure 1 shows a conceptual diagram of the authentication system.

[0041] Now, the service information is stored in the sound output terminal 11. This service information is, for example, ticket information (for example, including a ticket number) for entering a concert venue. It is assumed that the user of the sound output terminal 11 has downloaded the service information to the sound output terminal 11 from, for example, a concert ticket selling device (not shown) on the Internet. That is, it is assumed that the user of the sound output terminal 11 has purchased service information that is ticket information. Such purchase is made, for example, by electronic payment.

It is assumed that the user of the sound output terminal 11 has gone to the concert venue. Then, the user of the sound output terminal 11 inputs an authentication service start instruction by pressing a predetermined button of the information processing apparatus 12.

Next, in response to the authentication service start instruction, the information processing device 12 requests the server device 13 to generate a receipt number. Then, the server device 13 generates and stores a receipt number (for example, “1234”). Further, the server device 13 transmits the reception number “1234” to the information processing device 12. Next, the information processing apparatus 12 receives the reception number “1234” and displays it on the display. Note that the information processing apparatus 12 is installed, for example, in front of the entrance of the concert hall.

[0043] It should be noted that the information processing device 12 is a means for accepting the authentication service start by the user power of the sound output terminal 11; These means are not shown in the block diagram of Fig. 2. Yes. That is, the user of the sound output terminal 11 only needs to obtain the reception number by some method.

Next, the user of the sound output terminal 11 who sees the reception number “1234” displayed on the display of the information processing device 12 presses a predetermined button held by the sound output terminal 11, An authentication service start instruction is input, and then the numeric keypad of the sound output terminal 11 is pressed to input “1 234”.

Next, the sound output terminal 11 receives the reception number “1234”. Then, the sound output terminal 11 acquires the current time “2004Z08Z03 18:23” and configures the current time information “20040803 1823”.

Next, the sound information configuration unit 1105 of the sound output terminal 11 configures sound information based on information obtained by combining the service number stored therein with the reception number “1234” and the current time information “200408031823”. To do. The sound output terminal 11 outputs this sound information as a sound. Then, the sound in which the service information, the reception number “1234” and the current time information “200408031823” are embedded is output as much as possible from the speaker of the sound output terminal 11.

Next, the microphone (sound acquisition unit 1201) of the information processing device 12 makes a sound and noise in which the service information, the reception number “1 234”, and the current time information “200408031823” are embedded. Next, the demodulator 1202 demodulates the sound to obtain digital information. Next, the service information extraction unit 1204 of the information processing device 12 extracts the digital information service information acquired by the demodulation unit 1202. Then, the service information authentication unit 1205 determines whether or not the extracted service information matches the stored service information. Here, it is assumed that the predetermined relationship that the two service informations should satisfy is the same.

Next, the temporary information extraction unit 1203 of the information processing device 12 extracts temporary information (“1234” and “200408031823”) from the digital information acquired by the demodulation unit 1202.

Next, the temporary information transmitting unit 1206 transmits “1234” and “200408031823” extracted by the temporary information extracting unit 1203.

[0047] Next, the Sano device 13ί, “1234” and “200408031823” are received. Then, the temporary information authentication unit 1302 of the server device 13 recognizes that the stored reception number “1234” matches a part of the received temporary information “1234”. In addition, the temporary information authentication unit 1302 Acquires the current time “2004Z08Z03 18:24” of the server-side clock 13021. Then, the temporary information authentication unit 1302 obtains “20040803182 4” as the force of “2004Ζ08Ζ03 18:24”. Then, the temporary information authentication unit 1302 determines whether or not the difference between the received “200408031823” and the acquired “200408031824” is within “2”. Here, since the difference between the two is within 2, the temporary information authentication unit 1302 permits authentication.

Next, the authentication result constituting unit 13024 substitutes “1” for the authentication result. Note that the authentication result strength S “l” means that authentication is permitted.

Next, the authentication result transmission unit 1303 transmits the authentication result “1” in the temporary information authentication unit 1302 to the information processing apparatus 12.

Then, the authentication result receiving unit 1207 of the information processing device 12 receives the authentication result “1”.

Next, the operation unit 1208 performs a predetermined operation based on the authentication result of the service information authentication unit 1205 and the authentication result “1” received by the authentication result reception unit 1207. Here, both of the two authentication processes are authentication permission. Moreover, the predetermined operation here is an operation of opening the gate of the concert hall. As a result, the user is allowed to authenticate using the service information stored in the held sound output terminal 11 and can enter the concert hall.

[0049] As described above, according to the present embodiment, authentication can be easily performed using sound. Also, if the sound is a musical sound, you will not even know that you are authenticating. Therefore, authentication is possible while maintaining high security. Furthermore, by embedding it in temporary information (current time or a random number generated temporarily) that is information that can be temporarily used for sound, security can be ensured even if the sound is eavesdropped, and impersonation measures can be taken. Is possible. In particular, when time information is used, the time when the sound information is configured and the time power to authenticate, for example, authentication is not permitted unless it is within a certain time, thus further improving security.

[0050] In the present embodiment, the information processing apparatus may not exist. In other words, the sound output terminal may output sound to the server device for authentication processing, and the server device may acquire sound and perform authentication processing. The authentication system in the case of using power is an authentication system including a sound output terminal and a server device, and the sound output terminal can be temporarily used with a service information storage unit that stores service information. Sound information that constitutes sound information based on the temporary information acquisition unit, the service information, and the temporary information. And a sound output unit that outputs the sound information, and the server device demodulates the sound acquired by the sound acquisition unit and the sound acquisition unit that acquires the sound output by the sound output terminal. A demodulator, a temporary information extractor that extracts temporary information power demodulated by the demodulator, a service information extractor that extracts service information demodulated by the demodulator, and a service information extractor described above An authentication unit that performs authentication based on the service information and the temporary information extracted by the temporary information extraction unit, and an operation system that operates based on the authentication result of the authentication unit .

[0051] Further, according to the present embodiment, the temporary information has the current time information and the reception number. However, the temporary information may be either the current time information or the receipt number, or other information. For example, when the temporary information is only the reception number, the server device 13 generates the reception number and stores it, and when a predetermined time, for example, 60 seconds elapses, the stored reception number is determined by the determination unit 13023. And so on. As a result, authentication in the server device 13 with this acceptance number is not permitted after 60 seconds. As a result, if it is not within 60 seconds after the server device 13 generates the reception number, even if the sound information configured based on the reception number and the service information is output from the sound output terminal 11, Sound output Authentication by sound information output from the terminal 11 is not performed. For this reason, even if an unauthorized person records the sound information output from the sound output terminal 11 at the time of authentication, authentication using the recorded sound information may not be permitted after 60 seconds. it can. The same applies to other embodiments.

[0052] Further, according to the present embodiment, authentication of service information is performed by the information processing apparatus, and authentication of temporary information is performed by the server apparatus. However, in this embodiment, authentication of service information may be performed by a server device, and temporary information may be authenticated by an information processing device. In other words, as long as it is configured to authenticate both service information and temporary information combined therewith, it does not matter which device performs the authentication. The device that performs either or both of the two authentications may be a device other than the information processing device and the server device. The same applies to the other embodiments. In other words, the following authentication method may be realized. A sound output step for outputting sound information in which temporary information is embedded; a sound acquisition step for acquiring the output sound; and a demodulation step for demodulating the sound acquired in the sound acquisition step And a temporary information extraction step for extracting temporary information information demodulated in the demodulation step, a service information extraction step for extracting information power service information demodulated in the demodulation step, and a service information extraction step. A service information authentication step for performing authentication based on the service information, and the temporary information extracted in the temporary information extraction step.

Only when the authentication step for performing authentication and the authentication result in the service information authentication step and the authentication result in the authentication step are both permitted for authentication, the authentication result is permitted for authentication, and based on the authentication result! An authentication method comprising an operation step of performing an operation.

Furthermore, the processing in the present embodiment may be realized by software. This software may be distributed by software download or the like. In addition, this software may be recorded and distributed on a recording medium such as a CD-ROM. This also applies to other embodiments in this specification. The software that realizes the sound output terminal in this embodiment is the following program. In other words, this program has a temporary information acquisition step for acquiring temporary information, which is information that can be temporarily used in a computer, and the service information stored and stored based on the temporary information! A sound information composing step for composing the sound and a program for executing the sound output step for outputting the sound information.

[0054] The software that realizes the information processing apparatus according to the present embodiment is the following program. In other words, this program stores a temporary information from a sound acquisition step for acquiring the sound output from the sound output terminal, a demodulation step for demodulating the sound acquired in the sound acquisition step, and information demodulated in the demodulation step. A temporary information extraction step for extracting information, a service information extraction step for extracting service information demodulated in the demodulation step, and a service information authentication step for performing authentication based on the service information extracted in the service information extraction step A temporary information transmitting step for transmitting the temporary information extracted in the temporary information extracting step to the server device; and an authentication result receiving step for receiving an authentication result from the server device in response to the transmission of the temporary information; , The authentication result in the service information authentication step, and the authentication result reception step For executing the operation steps of performing an operation on the basis of the authentication result received in-flop Program.

Furthermore, the software that implements the server device in the present embodiment is the following program. That is, the program includes a temporary information receiving step for receiving temporary information from the information processing device, an authentication step for performing authentication based on the temporary information received in the temporary information receiving step, and the authentication A program for executing an authentication result transmission step of transmitting an authentication result in the step to the information processing apparatus.

(Embodiment 2)

FIG. 6 is a conceptual diagram of the authentication system according to the present embodiment. In the present embodiment, the sound output terminal is a mode in which the server device also directly receives temporary information.

The authentication system includes a sound output terminal 61, an information processing device 12, and a server device 63. The sound output terminal 61 is, for example, a mobile phone or a PDA with a communication function.

FIG. 7 is a block diagram of the authentication system. The sound output terminal 61 includes an input reception unit 1101, a clock 1102, a temporary information acquisition unit 6103, a service information storage unit 1104, a sound information configuration unit 1105, and a sound output unit 1106.

The server device 63 includes a temporary information storage unit 6301, a temporary information transmission unit 6302, a temporary information reception unit 1301, a temporary information authentication unit 6303, and an authentication result transmission unit 1303. Temporary information authentication unit 6303 includes server-side clock 13021, determination unit 63033, and authentication result configuration unit 13024.

The temporary information acquisition unit 6103 receives temporary information from the server device 63. Temporary information acquisition unit 6103 normally requests server device 63 when input receiving unit 1101 receives an instruction to start an authentication service, and receives temporary information (for example, the above-described reception number) from server device 63. Receive. The temporary information is, for example, a random number generated by the server device 63. Temporary information acquisition unit 6103 may be realized by a means for receiving power broadcast that is usually realized by a wireless or wired communication means or the like.

[0058] Temporary information storage 6301 stores temporary information. The temporary information here is, for example, a reception number. As the temporary information, for example, a random number generated by random number generation means is suitable. Further, the temporary information may be information obtained from an external force. Temporary information , It may be fixed and stored in advance. The temporary information storage unit 6301 may be a non-volatile recording medium or a volatile recording medium.

Temporary information transmission unit 6302 transmits the temporary information stored in temporary information storage unit 6301 to sound output terminal 61. Temporary information transmitting unit 6302 normally transmits temporary information in response to receiving a request for transmitting temporary information. Temporary information transmitter 6302 may include means for generating temporary information by generating random numbers. Temporary information transmission unit 6302 can be usually realized by a wireless or wired communication means or the like, but may be realized by a broadcasting means or the like.

The determination unit 63033 determines whether authentication is permitted or not based on the temporary information received by the temporary information receiving unit 1301. Specifically, for example, the determination unit 63033 obtains the reception number of the temporary information received by the temporary information receiving unit 1301, and the received reception number and the reception number stored in the temporary information storage unit 6301 are obtained. In addition, the temporary information received by the temporary information receiving unit 1301 also acquires the current time information, compares the acquired current time information with the time indicated by the server-side clock 13021, and is a difference within a certain time. In this case, it is determined that the authentication is permitted. On the other hand, the determination means 63033, for example, also acquires the reception number for the temporary information received by the temporary information receiving unit 1301, and the acquired reception number does not match the reception number stored in the temporary information storage unit 6301. Or, the temporary information received by Z and the temporary information receiving unit 1301 also obtains the current time information, compares the obtained current time information with the time indicated by the server-side clock 13021, and if the difference is greater than a certain time. It is determined that authentication is not permitted. Judgment means 63033 can usually also be implemented with MPU or memory power. The processing procedure of the judging means 63033 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, it can be realized with hardware (dedicated circuit).

Hereinafter, the operation of this authentication system will be described. First, the operation of the sound output terminal 61 will be described using the flowchart of FIG. In FIG. 8, only the steps different from the flowchart of FIG. 3 will be described.

(Step S801) —The hour information acquisition unit 6103 requests the server device 63 to transmit an acceptance number (an example of temporary information). (Step S802) —The hour information acquisition unit 6103 determines whether or not the receipt number has been received from the server device 63. If the reception number is received, the process goes to step S306. If the reception number is not received, the process returns to step S802.

In the flowchart of FIG. 8, the process ends when the power is turned off or the process is terminated.

Next, the operation of the server device 63 will be described using the flowchart of FIG. In FIG. 9, only steps different from the flowchart of FIG. 5 will be described.

(Step S 901) —The hour information transmission unit 6302 determines whether or not the transmission request for the reception number (an example of temporary information) has been received from the sound output terminal 61. If a transmission request is received, the process goes to step S902. If no transmission request is received, the process goes to step S501.

(Step S 902) —The hour information transmission unit 6302 acquires the receipt number from the temporary information storage unit 6301. This receipt number is a random number generated by the temporary information transmitter 6302, information on the current time on the server device 63 side obtained from the clock (server side clock 13021) held by the server device 63, etc. But ok.

(Step S903) —The hour information transmitting unit 6302 transmits the receipt number acquired in Step S902 to the sound output terminal 61. Return to step S901.

In the flowchart of FIG. 9, the process ends when the power is turned off or the process is terminated.

Hereinafter, a specific operation of the authentication system in the present embodiment will be described. Figure 6 shows a conceptual diagram of the authentication system.

[0063] Now, the service information is stored in the sound output terminal 61. This service information is, for example, certification information for obtaining an article. For example, the user of the sound output terminal 11 downloaded service information (certification information) to the sound output terminal 61 from an electronic payment device (not shown) for selling goods on the Internet. To do. In other words, the user of the sound output terminal 61 has obtained the right to obtain the article. Then, it is assumed that the user of the sound output terminal 61 completes an electronic payment instead of obtaining service information (certification information).

Then, this user holds the sound output terminal 61 and goes out to the store where the goods are actually delivered. To help.

Next, the user of the sound output terminal 61 inputs an authentication service start instruction by pressing a predetermined button held by the sound output terminal 61.

Then, the sound output terminal 61 receives an instruction to start an authentication service, and the temporary information acquisition unit 6103 of the sound output terminal 61 transmits a transmission request for an acceptance number (an example of temporary information) to the server device 63.

Next, temporary information transmission unit 6302 of server device 63 receives a request for transmission of an acceptance number from sound output terminal 61. Then, temporary information transmission unit 6302 of server device 63 generates a random number. Assume that the generated random number is “586”. The random number “586” is temporarily stored in the temporary information storage unit 6301.

Next, the temporary information transmission unit 6302 of the server device 63 transmits the random number “586” to the sound output terminal 61.

Next, temporary information acquisition unit 6103 of sound output terminal 61 receives random number “586”. Then, it is assumed that the temporary information acquisition unit 6103 of the sound output terminal 61 acquires the current time “2004Z08Z04 11:38” from the clock 1102 and configures the current time information “200408041138”.

Next, the sound information configuration unit 1105 acquires service information from the service information storage unit 1104. Then, the sound information configuration unit 1105 combines “586” and “200408041 138” with the service information. Then, the sound information configuration unit 1105 configures sound information based on service information obtained by combining “586” and “200408041138”.

Next, the sound output unit 1106 outputs the sound information to the information processing apparatus 12. Note that the information processing apparatus 12 is installed in a store that delivers articles.

Next, the sound acquisition unit 1201 (microphone) of the information processing device 12 collects the sound in which the service information, the reception number “586”, and the current time information “200408041138” are embedded. Next, the demodulator 1202 demodulates the sound to obtain digital information.

[0068] Next, the service information extraction unit 1204 of the information processing device 12 also extracts the service information from the digital information power acquired by the demodulation unit 1202. Then, the service information authentication unit 1205 determines whether or not the extracted service information is stored and matches the service information. Here, it is assumed that the predetermined relationship to be satisfied by the two service information is the same. Then, the temporary information extraction unit 1203 of the information processing apparatus 12 also extracts the temporary information (“586” and “200408041138”) from the digital information power acquired by the demodulation unit 1202.

Next, temporary information transmitting section 1206 transmits “586” and “200408041138” extracted by temporary information extracting section 1203.

Next, the server device 63 receives “586” and “200408041138”. Then, the temporary information authenticating unit 6303 of the server device 63 recognizes that the accumulated random number “586” matches a part “586” of the received temporary information. Also, the temporary information authentication unit 6303 acquires the current time “2004Z08Z04 11:38” of the server-side clock 13021. Then, the temporary information authentication unit 6303 obtains the power of “200408041138” as “2004Ζ08Ζ04 11:38”. Then, the temporary information authenticating unit 1302 determines whether the difference between the received “200408041138” and the acquired “20040 8041138” is within “1”. Here, since the difference between the two is within 1 (matches), the temporary information authentication unit 1302 permits the authentication.

Next, the authentication result transmission unit 1303 transmits the authentication result “1” in the temporary information authentication unit 1302 to the information processing apparatus 12. Then, after transmitting the authentication result, the server device 63 preferably deletes the random number “586”. The same applies to the other embodiments that it is preferable to delete after using the temporary information.

The authentication result receiving unit 1207 of the information processing device 12 receives the authentication result “1”.

Next, the operation unit 1208 performs a predetermined operation based on the authentication result of the service information authentication unit 1205 and the authentication result “1” received by the authentication result reception unit 1207. Here, the operation unit 1208 outputs the authentication result “authentication permitted”. Specifically, the operation unit 1208 may display “Authentication permitted” on the display, or may output the sound.

The store owner who obtained this output gives the article to the user of the sound output terminal 61.

[0072] As described above, according to the present embodiment, authentication can be performed using sound. In addition, by embedding temporary information (current time, a random number generated temporarily, etc.) that is information that can be temporarily used for the sound, it is possible to take measures against impersonation using an eavesdropping sound. Furthermore, the user of the sound output terminal 61 is not required to input temporary information, and the authentication process is performed automatically. It is. Therefore, there is less possibility of service information being stolen and security is further improved.

[0073] In the present embodiment, the information processing apparatus may not exist. In other words, the sound output terminal may output sound to the server device for authentication processing, and the server device may acquire sound and perform authentication processing. The authentication system in the case of using power is an authentication system including a sound output terminal and a server device, and the sound output terminal can be temporarily used with a service information storage unit that stores service information. A temporary information acquisition unit that receives temporary information as information, a sound information configuration unit that configures sound information based on the service information and the temporary information, and a sound output that outputs the sound information A temporary information storage unit that stores temporary information; a temporary information transmission unit that transmits the temporary information stored in the temporary information storage unit to the sound output terminal; and A sound acquisition unit that acquires the sound output by the terminal, a demodulation unit that demodulates the sound acquired by the sound acquisition unit, a service information extraction unit that extracts service information from the information acquired by the demodulation unit, Acquired by the demodulator A temporary information extraction unit that extracts temporary information from the received information, an authentication unit that performs authentication based on the service information extracted by the service information extraction unit and the temporary information extracted by the temporary information extraction unit, and An authentication system including a service information authentication unit and an operation unit that performs processing based on an authentication result in the authentication unit. The same applies to other embodiments, in which the information processing apparatus does not exist and the main processing performed by the information processing apparatus may be performed by the server apparatus.

[0074] The software that realizes the information processing terminal in the present embodiment is the following program. In other words, this program is based on the temporary information acquisition step for receiving temporary information, which is information that can be temporarily used by the computer, from the server device, the service information to be stored and the temporary information! A sound information composing step for constructing sound information and a program for executing a sound output step for outputting the sound information.

Furthermore, the software that implements the server device according to the present embodiment is the following program. That is, the program includes a temporary information transmitting step for transmitting stored temporary information to the sound output terminal, a temporary information receiving step for receiving temporary information from the information processing device, and the temporary information receiving step. Received temporary information And an authentication step for performing authentication based on the temporary information transmitted in the temporary information transmission step, and an authentication result transmission step for transmitting the authentication result in the authentication step to the information processing apparatus.

(Embodiment 3)

In this embodiment, authentication of service information and authentication of temporary information are both performed by the information processing apparatus. In that case, the information processing apparatus is in a mode of receiving temporary information from the server apparatus.

The concept of the authentication system according to the present embodiment is configured as shown in FIG. Fig. 10 is a block diagram of the authentication system. The authentication system includes a sound output terminal 61, an information processing device 102, and a server device 103.

The sound output terminal 61 includes an input reception unit 1101, a clock 1102, a temporary information acquisition unit 6103, a service information storage unit 1104, a sound information configuration unit 1105, and a sound output unit 1106.

The information processing apparatus 102 includes a sound acquisition unit 1201, a demodulation unit 1202, a temporary information extraction unit 1203, a service information extraction unit 1204, a temporary information reception unit 10206, an authentication unit 10207, and an operation unit 10208.

The server apparatus 103 includes a temporary information storage unit 6301 and a temporary information transmission unit 10302. The temporary information receiving unit 10206 receives temporary information from the server device 103. Temporary information receiving unit 10206 is usually realized by a wireless or wired communication means, but may be realized by a broadcast receiving means.

The authentication unit 10207 performs authentication based on the service information extracted by the service information extraction unit 1204 and the temporary information received by the temporary information reception unit 10206. The authenticating unit 10207 normally determines whether the stored service information and the service information extracted by the service information extracting unit 1204 have a predetermined relationship (for example, coincidence), the temporary information received by the temporary information receiving unit 10206, and It is determined whether the temporary information extracted by the temporary information extraction unit 1203 has a predetermined relationship (for example, coincidence), and if both are satisfied, it is determined that the authentication is permitted, and one or both are not satisfied. In this case, it is determined that authentication is not permitted. The authentication unit 10207 can usually be implemented with an MPU, memory, etc. The processing procedure of the authentication unit 10207 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, It can be realized with hardware (dedicated circuit).

The operation unit 10208 performs an operation based on the authentication result of the authentication unit 10207. Specifically, when the authentication result of the authentication unit 10207 is “authentication permitted”, the operation unit 1208 performs an operation corresponding to the authentication permission, and when the authentication result is “authentication not permitted”, the authentication is not permitted. The operation corresponding to is performed. The operation here may be anything such as displaying the authentication result or opening a door or gate. Means for realizing the operation unit 1208 differs depending on the operation.

The temporary information transmission unit 10302 transmits the temporary information to the requested device. Normally, the temporary information transmission unit 10302 transmits temporary information to the sound output terminal 11 or the information processing apparatus 102 in response to a request from the sound output terminal 11 or the information processing apparatus 102. Temporary information transmission unit 10302 is usually realized by a wireless or wired communication means, but may be realized by a broadcasting means.

Hereinafter, the operation of the authentication system will be described. First, the operation of the information processing apparatus 102 will be described using the flowchart of FIG. In FIG. 11, only the steps different from the flowchart of FIG. 4 will be described.

(Step S1101) —The hour information receiving unit 10206 requests the server apparatus 103 to transmit temporary information.

(Step S 1102) —The hour information receiving unit 10206 determines whether or not temporary information has been received from the server apparatus 103. If the temporary information is received, the process goes to step S1103. If the temporary information is not received, the process returns to step S1102.

(Step S1103) The authentication unit 10207 authenticates the temporary information. Specifically, authentication unit 10207 determines whether or not the temporary information received in step S1102 and the temporary information extracted by temporary information extraction unit 1203 are in a predetermined relationship (for example, coincidence). If it is, the authentication is permitted. Go to step S409.

Next, the operation of server apparatus 103 will be described. The temporary information transmission unit 10302 of the server apparatus 103 transmits temporary information in response to a request from the apparatus. When transmitting temporary information, the server device 103 generates, for example, a random number and accumulates the random number (an example of temporary information) in the temporary information storage unit 6301. In addition, the server device 103 It is preferable to store a pair with the ID of the device that sent the information.

In the present embodiment, since the apparatus for authenticating service information and temporary information is different from the above-described embodiment, description using specific data is omitted.

As described above, according to the present embodiment, authentication can be performed using sound. In addition, by embedding temporary information (current time, a random number generated temporarily, etc.) that is information that can be temporarily used for the sound, it is possible to take measures against impersonation using an eavesdropping sound. Furthermore, the user of the sound output terminal 61 is not required to input temporary information, and authentication processing is performed fully automatically. Therefore, there is less possibility of service information being stolen and security is further improved.

Further, the software that realizes the information processing apparatus in the present embodiment is the following program. In other words, this program stores a temporary information from a sound acquisition step for acquiring the sound output from the sound output terminal, a demodulation step for demodulating the sound acquired in the sound acquisition step, and information demodulated in the demodulation step. A temporary information extraction step for extracting information, a service information extraction step for extracting service information demodulated in the demodulation step, a temporary information reception step for receiving temporary information from the server device, and the service information extraction step. Based on the extracted service information and the temporary information received in the temporary information receiving step, an authentication step for performing authentication and an operation step for performing an operation based on the authentication result in the authentication step are performed. Program.

(Embodiment 4)

In the present embodiment, both the service information authentication and the temporary information authentication are performed by the server device. In this case, the information processing apparatus is a mode for transmitting the extracted service information and temporary information to the server apparatus.

The concept of the authentication system according to the present embodiment is configured as shown in FIG. FIG. 12 is a block diagram of the authentication system. This authentication system includes a sound output terminal 61, an information processing device 122, and a server device 123.

The sound output terminal 61 includes an input reception unit 1101, a clock 1102, a temporary information acquisition unit 6103, a service A sound information storage unit 1104, a sound information configuration unit 1105, and a sound output unit 1106.

The information processing apparatus 122 includes a sound acquisition unit 1201, a demodulation unit 1202, a temporary information extraction unit 1203, a service information extraction unit 1204, a service information transmission unit 12205, a temporary information transmission unit 1206, and an authentication result reception unit 1207. The operation unit 12208 is provided.

The server apparatus 123 includes a temporary information storage unit 6301, a temporary information transmission unit 6302, a service information reception unit 12301, a temporary information reception unit 1301, an authentication unit 12302, an authentication result transmission unit 1303, and a service information holding unit 12303. To do.

The service information transmission unit 12205 transmits the service information extracted by the service information extraction unit 1204 to the server device 123. The service information transmission unit 12205 is usually realized by the same means as the temporary information transmission unit 1206, and both parts are configured by one physical means.

The operation unit 12208 performs an operation based on the authentication result received by the authentication result receiving unit 1207. The operation unit 12208 performs an operation corresponding to authentication permission when the authentication result received by the authentication result reception unit 1207 is “authentication permitted”, and performs an operation corresponding to authentication disapproval in other cases. The means for realizing the operation unit 12208 differs depending on the operation.

The service information receiving unit 12301 receives service information from the information processing apparatus 122. Service information receiving section 12301 is usually realized by a wireless or wired communication means, but may be realized by a broadcast receiving means.

Authentication unit 12302 performs authentication based on the service information received by service information receiving unit 12301 and the temporary information received by temporary information receiving unit 1301. Specifically, the authentication unit 12302 compares the service information received by the service information receiving unit 12301 with the service information stored in the service information holding unit 12303, and determines whether or not a predetermined relationship (for example, matching) is satisfied. The authentication unit 12302 compares the temporary information received by the temporary information receiving unit 1301 with the temporary information stored in the temporary information storage unit 6301, and determines whether or not a predetermined relationship (for example, coincidence) is satisfied. The authentication unit 12302 permits authentication if both conditions are satisfied, and does not permit authentication if one or both conditions are not satisfied. In general, the authentication unit 12302 can also realize an MPU, a memory and the like. The processing procedure of the authentication unit 12302 is usually realized by software, and the software is recorded on a recording medium such as a ROM. However, It can be realized with a door (dedicated circuit).

[0090] The service information holding unit 12303 stores service information. Such service information is, for example, service information downloaded to the sound output terminal 61 and data used for authentication of the service information. The service information holding unit 12303 is preferably a nonvolatile recording medium, but can also be realized by a volatile recording medium.

Hereinafter, the operation of the authentication system will be described. First, the operation of the information processing apparatus 122 will be described using the flowchart of FIG. In FIG. 13, only the steps different from the flowchart of FIG. 4 will be described.

(Step S1301) The service information transmitting unit 12205 transmits the service information extracted in step S403 to the server device 123. Go to step S406.

Next, the operation of the server device 123 will be described using the flowchart of FIG. In FIG. 14, only steps different from the flowchart of FIG. 9 will be described.

(Step S 1401) It is determined whether or not the service information receiving unit 12301 or the temporary information receiving unit 1301 has received the data. If data is received, the process goes to step S1402, and if data is not received, the process returns to step S901.

(Step S1402) Authentication section 12302 determines whether or not the data received in step S1401 is service information. If the received data is service information, go to step S1403, and if the received data is not service information, go to step S1404.

(Step S1403) The authentication unit 12302 performs authentication based on the received service information! That is, the authentication unit 12302 reads the service information stored in the service information holding unit 12303, and compares the service information with the received service information. Then, authentication is permitted when both pieces of service information are in a predetermined relationship (such as coincidence, similarity “95%” or more), and authentication is not permitted when the relationship is not the predetermined relationship. Go to step S1406.

(Step S1404) Authentication section 12302 determines whether or not the data received in step S1401 is temporary information. If the received data is temporary information, go to Step S1405. If the received data is not temporary information, go to Step S901.

(Step S1405) The authentication unit 12302 performs authentication based on the received temporary information. That is, the authentication unit 12302 reads the temporary information in the temporary information storage unit 6301 and reads the temporary information. The received information is compared with the received temporary information. Authentication is permitted when both pieces of temporary information are in a predetermined relationship (such as coincidence), and authentication is not permitted when they are not in a predetermined relationship.

(Step S 1406) The authentication unit 12302 determines whether authentication of both service information and temporary information has been completed. If both authentications have been completed, go to step S1407. If both authentications have not been completed, go to step S901.

(Step S1407) The authentication unit 12302 configures an authentication result (information) based on the authentication results of both service information and temporary information. Specifically, the authentication unit 12302 substitutes authentication permission (for example, “1”) in the authentication result when the authentication result of both the service information and the temporary information is authentication permission, and otherwise. Substitute authentication disapproval (for example, “0”) into the authentication result.

(Step S 1408) The authentication result transmission unit 1303 transmits the authentication result obtained in step S 1407 to the information processing apparatus 122. Return to step S901.

In the flowchart of FIG. 14, the process ends when the power is turned off or the process is terminated.

Further, in the present embodiment, the apparatus for performing service information authentication and temporary information authentication is only different from the above-described embodiment, and therefore description using specific data is omitted.

[0100] The software that realizes the information processing apparatus in the present embodiment is the following program. In other words, this program stores a temporary information from a sound acquisition step for acquiring the sound output from the sound output terminal, a demodulation step for demodulating the sound acquired in the sound acquisition step, and information demodulated in the demodulation step. A temporary information extraction step for extracting information and a service for extracting information power service information demodulated in the demodulation step An information extraction step, a step of transmitting the extracted service information and the extracted temporary information to the server device, and an authentication result of receiving an authentication result from the server device in response to the transmission of the service information and the temporary information. A program for executing a reception step and an operation step for performing an operation based on the authentication result received in the authentication result reception step.

[0101] Furthermore, the software that implements the server device according to the present embodiment is the following program. In other words, this program receives, in the computer, service information and temporary information from the information processing apparatus, an authentication step for performing authentication based on the received service information and temporary information, and an authentication in the authentication step. A program for executing an authentication result transmission step of transmitting a verification result to the information processing apparatus.

[0102] In each of the above embodiments, each process (each function) may be realized by centralized processing by a single device (system) or may be distributedly processed by a plurality of devices. It will be realized by.

[0103] In the above program, the transmission step for transmitting information and the reception step for receiving information are performed by hardware, for example, a modem or an interface card in the transmission step. Does not include processing (processing that can only be done with software)! /.

[0104] In addition, this program is recorded on a predetermined recording medium (for example, an optical disk such as a CD-ROM, a magnetic disk, a semiconductor memory, etc.) that can be executed by being downloaded by force such as a server. The program may be executed by being read. Further, the computer that executes this program may be a single computer or a plurality of computers. That is, centralized processing or distributed processing may be performed.

In each of the above embodiments, it goes without saying that two or more communication means (such as an information transmission unit) existing in one apparatus may be physically realized by one medium.

The present invention can be variously modified without being limited to the above-described embodiments, and it goes without saying that these are also included in the scope of the present invention.

Industrial applicability [0105] As described above, the authentication system according to the present invention has a V effect if it can be easily authenticated using sound, and is useful as a system for performing ticket authentication for concerts, amusement parks, etc. It is.

Brief Description of Drawings

[FIG. 1] A conceptual diagram of an authentication system according to Embodiment 1.

[Figure 2] Block diagram of the authentication system

FIG. 3 is a flowchart for explaining the operation of the same sound output terminal.

FIG. 4 is a flowchart for explaining the operation of the information processing apparatus.

FIG. 5 is a flowchart illustrating the operation of the server device.

[FIG. 6] Conceptual diagram of an authentication system according to Embodiment 2.

[Figure 7] Block diagram of the authentication system

FIG. 8 is a flowchart for explaining the operation of the sound output terminal.

FIG. 9 is a flowchart illustrating the operation of the server device.

FIG. 10 is a block diagram of an authentication system according to the third embodiment.

FIG. 11 is a flowchart for explaining the operation of the information processing apparatus.

[FIG. 12] A block diagram of an authentication system according to the fourth embodiment.

FIG. 13 is a flowchart for explaining the operation of the information processing apparatus.

FIG. 14 is a flowchart for explaining the operation of the server apparatus.

Claims

The scope of the claims

[1] An authentication system comprising a sound output terminal, an information processing device, and a server device,

The sound output terminal is

Service provider power Service information storage unit that stores service information that is information related to the service received,

A temporary information acquisition unit that acquires temporary information that is temporarily usable information, a sound information configuration unit that configures sound information based on the service information and the temporary information, and a sound output unit that outputs the sound information Equipped,

The information processing apparatus includes:

A sound acquisition unit for acquiring the sound output by the sound output terminal;

A demodulator that demodulates the sound acquired by the sound acquisition unit;

Based on the temporary information extraction unit that extracts temporary information from the information demodulated by the demodulation unit, the service information extraction unit that extracts service information from the information demodulated by the demodulation unit, and the service information extracted by the service information extraction unit A service information authentication unit that performs authentication,

A temporary information transmitting unit for transmitting the temporary information extracted by the temporary information extracting unit to the server device;

In response to the transmission of the temporary information, an authentication result receiving unit that receives an authentication result from the server device;

An operation unit that operates based on an authentication result of the service information authentication unit and an authentication result received by the authentication result receiving unit;

The server device

A temporary information receiving unit for receiving the temporary information from the information processing device;

An authentication system comprising: an authentication unit that performs authentication based on temporary information received by the temporary information reception unit; and an authentication result transmission unit that transmits an authentication result in the authentication unit to the information processing apparatus.

[2] An authentication system comprising a sound output terminal, an information processing device, and a server device,

The sound output terminal is A service information storage unit storing service information;

The information processing apparatus includes:

A temporary information extracting unit that extracts temporary information from the information demodulated by the demodulating unit; a service information extracting unit that extracts service information from the information demodulated by the demodulating unit; and a temporary information receiving unit that receives temporary information from the server device. And

An authentication unit that performs authentication based on the service information extracted by the service information extraction unit and the temporary information received by the temporary information reception unit;

An operation unit that performs an operation based on an authentication result of the authentication unit;

The server device

An authentication system comprising a temporary information transmission unit for transmitting temporary information to the information processing device, an authentication system comprising a sound output terminal, an information processing device, and a server device, wherein the sound output terminal comprises:

A service information storage unit storing service information;

The information processing apparatus includes:

A temporary information extraction unit that extracts temporary information from information demodulated by the demodulation unit, a service information extraction unit that extracts service information from information demodulated by the demodulation unit, and service information extracted by the service information extraction unit. The server to send to the server device Ibis information transmitter,

An authentication result receiving unit for receiving an authentication result from the server device in response to transmission of the service information and temporary information;

An operation unit that performs an operation based on an authentication result received by the authentication result receiving unit, and the server device includes:

A service information receiving unit that receives the service information from the information processing device; a temporary information receiving unit that receives the temporary information from the information processing device;

An authentication unit that performs authentication based on the service information received by the service information receiving unit and the temporary information received by the temporary information receiving unit;

An authentication system comprising: an authentication result transmission unit that transmits an authentication result in the authentication unit to the information processing apparatus.

[4] An authentication system comprising a sound output terminal and a server device,

The sound output terminal is

A service information storage unit storing service information;

The server device

A service information extraction unit that extracts service information from information demodulated by the demodulation unit; a temporary information extraction unit that extracts temporary information from information demodulated by the demodulation unit; and the service information extracted by the service information extraction unit and the An authentication unit that performs authentication based on the temporary information extracted by the temporary information extraction unit;

An authentication system including an operation unit that performs an operation based on an authentication result of the authentication unit.

[5] The temporary information acquisition unit includes: The authentication system according to any one of claims 1 to 4, which receives the input temporary information.

[6] The sound output terminal is:

Further equipped with a watch,

The temporary information acquisition unit

5. The authentication system according to claim 1, wherein temporary information that is current time information that is information indicating the current time is acquired from the clock.

[7] The sound output terminal is:

Further equipped with a watch,

5. The authentication system according to claim 1, wherein the temporary information includes current time information that is input information and information indicating a current time from the clock.

[8] The temporary information acquisition unit includes:

Receiving the temporary information from the server device;

The server device

Temporary information is stored! /, Temporary information storage,

5. The authentication system according to claim 1, further comprising a temporary information transmission unit that transmits temporary information stored in the temporary information storage unit to the sound output terminal.

[9] The sound information component is

5. The authentication system according to claim 1, wherein sound information is configured based on information obtained by combining the service information and the temporary information.

[10] A sound output terminal constituting the authentication system according to any one of claims 1 to 4.

[11] An information processing apparatus constituting the authentication system according to any one of claims 1 to 3.

[12] A server device constituting the authentication system according to any one of claims 1 to 4.

[13] On the computer,

A temporary information acquisition step for acquiring temporary information that is temporarily usable information; a sound information configuration step for storing sound information based on the service information and the temporary information stored;

Program for executing a sound output step for outputting the sound information [14] On the computer,

A sound acquisition step for acquiring the sound output by the sound output terminal;

A demodulation step for demodulating the sound acquired in the sound acquisition step;

Information power demodulated in the demodulation step Temporary information extraction step for extracting temporary information; Service information extraction step for extracting service information from the information demodulated in the demodulation step;

A service information authentication step for performing authentication based on the service information extracted in the service information extraction step;

A temporary information transmitting step for transmitting the temporary information extracted in the temporary information extracting step to a server device;

In response to the transmission of the temporary information, an authentication result receiving step of receiving an authentication result from the server device;

A program for executing an operation step for performing an operation based on an authentication result in the service information authentication step and an authentication result received in the authentication result reception step.

[15] On the computer,

A temporary information receiving step for receiving temporary information from the information processing device;

A temporary information authentication step for performing authentication based on the temporary information received in the temporary information receiving step;

The program for performing the authentication result transmission step which transmits the authentication result in the said temporary information authentication step to the said information processing apparatus.

[16] On the computer,

Information power demodulated in the demodulation step Temporary information extraction step for extracting temporary information; Service information extraction step for extracting service information from the information demodulated in the demodulation step The tape,

A temporary information receiving step of receiving the server device power temporary information;

An authentication step for performing authentication based on the service information extracted in the service information extraction step and the temporary information received in the temporary information reception step;

A program for executing an operation step for performing an operation based on an authentication result in the authentication step.

[17] On the computer,

Transmitting the extracted service information and the extracted temporary information to the server device;

An authentication result receiving step for receiving an authentication result from the server device in response to transmission of service information and temporary information;

A program for executing an operation step of performing an operation based on the authentication result received in the authentication result receiving step.

[18] On the computer,

Receiving service information and temporary information from the information processing apparatus; authentication step for performing authentication based on the received service information and temporary information; and an authentication result in the authentication step to the information processing apparatus A program for executing the authentication result transmission step to be transmitted.

[19] On the computer,

A sound acquisition step of acquiring the sound output by the sound output terminal;

Service information extraction step for extracting service information from the information demodulated in the demodulation step. The tape,

Information power demodulated in the demodulation step Temporary information extraction step for extracting temporary information; Authentication step for performing authentication based on the service information extracted in the service information extraction step and the temporary information extracted in the temporary information extraction step;

[20] a sound output step for outputting sound information in which temporary information is embedded;

A sound acquisition step of acquiring the output sound;

A temporary information authentication step for performing authentication based on the temporary information extracted in the temporary information extraction step;

Only when the authentication result in the service information authentication step and the authentication result in the temporary information authentication step are both permitted for authentication, the authentication result is permitted for authentication, and an operation step for performing an operation based on the authentication result is provided. Authentication method.

[21] a sound acquisition step for acquiring the output sound;

Service information for performing authentication based on the service information extracted in the data extraction step. Information authentication step;