AUTHENTICATION SYSTEM

US 20120256725A1
Filed: 06/08/2012
Published: 10/11/2012
Est. Priority Date: 03/23/2005
Status: Active Grant

First Claim

Patent Images

1-21. -21. (canceled)

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

[PROBLEMS] To provide an authentication system improving authentication accuracy of existence of a registered person and easily find an unauthorized act to improve the security in a system by performing authentication using coincidence/non-coincidence of biometrics information and temporal/spatial authentication when performing individual authentication via a network by using electronic information which is easily tampered, easily leaks out, and is easily stolen. [MEANS FOR SOLVING PROBLEMS] An authentication server (1) includes a database for managing individual information on a registered person to be authenticated. Moreover, the authentication server (1) is connected to a plurality of management servers (2) via a communication network and correlates the individual information transmitted from an individual information input device (3) via the management server (2) with the individual information in the database, thereby authenticating the existence of the registered person.

41 Citations

View as Search Results

41 Claims

1-21. -21. (canceled)

22. An authentication system configured such that a plurality of units, each unit comprising information input devices, each information input device equipped with a function for inputting individual information for specifying individuals of registered people and storing space information showing a spatial position where own device is installed, and a management server managing a plurality of the information input devices as a network-configuring unit, is provided and an authentication server equipped with a function performing an authentication of the registered people based upon the inputting manages a plurality of the units, whereinindividual information of the registered people is input by the information input devices within the unit, and the authentication server, on receiving the input individual information and the space information via the management server, determines that the registered people exist in a physical space where the unit is disposed, andin a case that movement to outside of the physical space is not confirmed after the determination, if input of individual information of the registered people through the information input devices within another unit is recognized, when the information input devices within the unit are equipped with a function of providing a predetermined service to the registered people, the authentication server stops or limits the function of providing the service in the information input devices.
- View Dependent Claims (24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37)
- - 24. The authentication system according to claim 22, whereinthe information input devices themselves further send the space information and time information showing the time at which the individual information is input to the authentication server via the management server,the authentication server, on receiving the space information and the time information from a plurality of the information input devices, calculates information showing a time required for movement between the information input devices on the basis of the space information, and calculates an input time interval of the individual information on the basis of the time information, andwhen the input time interval is shorter than the time required for movement, the authentication server determines that an unauthorized act has been performed during input of the individual information.
  - 25. The authentication system according to claim 22, whereinthe authentication server is equipped with a database for managing the individual information, and the authentication server, on receiving individual information input into the information input devices by the registered people from the information input devices, collates the received individual information and the individual information in the database provided in the authentication server itself, and at match of the above, performs a specified action.
  - 26. The authentication system according to claim 22, whereinthe information input devices are equipped with a database for managing the individual information, and when individual information is input from the registered people, collate the input individual information and individual information in the database equipped in the own devices, and at match of the above, perform a specified action.
  - 27. The authentication system according to claim 22, whereinthe authentication server, on receiving individual information of the registered people, information showing movement destinations of the registered people, and the space information of the information input device through which the individual information has been input from the information input devices, forecasts the transfer route of the registered people on the basis of the received information, and sends control information for performing an execution preparation of the specified action to information input devices installed on the forecasted transfer route.
  - 28. The authentication system according to claim 27, whereinthe information input devices, on receiving the control information for performing an execution preparation, perform an guiding action up to the destination through sound, character, or image.
  - 29. The authentication system according to claim 26, whereinthe authentication server, on receiving the individual information sent from information input devices installed outside the forecasted transfer route, sends control information for limiting or prohibiting the specified action of the information input devices to the information input device.
  - 30. The authentication system according to claim 22, wherein the management server manages the information input devices collectively in unit of building structure, transfer means, facility, region or organization.
  - 31. The authentication system according to claim 22, whereinthe authentication server or the management server, after recognizing that the registered people exist in a physical space where the unit is disposed, and when does not recognizes that the registered people have moved outside the physical space, and, on receiving the individual information from the information input device installed in the physical space, determines a success of the authentication and sends permission information to permit the execution of financial transaction or settlement transaction, to the information input device.
  - 32. The authentication system according to claim 22, whereinthe authentication server or the management server, after recognizing that the registered people exist in a physical space where the unit is disposed, and when does not recognizes that the registered people have moved outside the physical space, and, on receiving the individual information from the information input device installed in the physical space, determines a success of the authentication and sends information to recognize that a public identification card has been presented, to the information input device.
  - 33. The authentication system according to claim 22, whereinthe authentication server or the management server converts local identification IDs used in a limited organization, and individual identification IDs for specifying the registered people used in the authentication system.
  - 34. The authentication system according to claim 22, whereinin the case of a temporal disconnection of network in the authentication system,the information input devices send a signal to check whether connection is available at present to the authentication server, the management server and other information input devices that have been connectable with own device and establish network with the authentication server, the management server or the other information input devices with which connection is available.
  - 35. The authentication system according to claim 34, whereinthe information input devices store list information showing the authentication server, the management server, or the other information input devices that are connectable with own device, and the list information shows connection priority order, andthe information input devices, in the case of a temporal disconnection of network in the authentication system, send a signal to check in accordance with the priority order and establish network.
  - 36. The authentication system according to claim 22, whereinthe management server and the information input devices have preset order of sending destinations of received or input information, and at failure of sending the received or input information, send the received or input information to the sending destination of the next order of the failed sending destination.
  - 37. The authentication system according to claim 22, whereinthe individual information includes biometrics information.

23. An authentication system configured such that a plurality of units, each unit comprising information input devices, each information input device equipped with a function for inputting individual information for specifying individuals of registered people and storing space information showing a spatial position where own device is installed, and a management server managing a plurality of the information input devices as a network-configuring unit, is provided and an authentication server equipped with a function performing an authentication of the registered people based upon the inputting manages a plurality of the units, whereinindividual information of the registered people is input by the information input devices within the unit, and the authentication server, on receiving the input individual information and the space information via the management server, determines that the registered people have been moved from a physical space where the unit is disposed to another physical space where another unit is disposed, andin a case that input of individual information of the registered people through the information input devices within the unit before the movement, when the information input devices within the unit are equipped with a function of providing a predetermined service to the registered people, the authentication server stops or limits the function of providing the service in the information input devices.
- View Dependent Claims (38, 39, 40, 41)
- - 38. The authentication system according to claim 23, whereinthe information input devices themselves further send the space information and time information showing the time at which the individual information is input to the authentication server via the management server,the authentication server, on receiving the space information and the time information from a plurality of the information input devices, calculates information showing a time required for movement between the information input devices on the basis of the space information, and calculates an input time interval of the individual information on the basis of the time information, andwhen the input time interval is shorter than the time required for movement, the authentication server determines that an unauthorized act has been performed during input of the individual information.
  - 39. The authentication system according to 23, whereinthe authentication server is equipped with a database for managing the individual information, and the authentication server, on receiving individual information input into the information input devices by the registered people from the information input devices, collates the received individual information and the individual information in the database provided in the authentication server itself, and at match of the above, performs a specified action.
  - 40. The authentication system according to claim 23, whereinthe information input devices are equipped with a database for managing the individual information, and when individual information is input from the registered people, collate the input individual information and individual information in the database equipped in the own devices, and at match of the above, perform a specified action.
  - 41. The authentication system according to claim 23, whereinthe authentication server, on receiving individual information of the registered people, information showing movement destinations of the registered people, and the space information of the information input device through which the individual information has been input from the information input devices, forecasts the transfer route of the registered people on the basis of the received information, and sends control information for performing an execution preparation of the specified action to information input devices installed on the forecasted transfer route.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
IHC Corporation
Original Assignee
IHC Corporation
Inventors
Hayashi, Hitoshi

Granted Patent

US 8,866,586 B2
Time in Patent Office

Days
Field of Search
US Class Current

340/5.81
CPC Class Codes

G06F 21/32   using biometric data, e.g. ...

G06F 2221/2111   Location-sensitive, e.g. ge...

G06F 2221/2137   Time limited access, e.g. t...

G06F 2221/2151   Time stamp

G07B 15/00   Arrangements or apparatus f...

G07C 2209/08   With time considerations, e...

G07C 9/257   electronically G07C9/26 tak...

H04L 63/0861   using biometrical features,...

H04L 63/107   wherein the security polici...

AUTHENTICATION SYSTEM

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

41 Citations

41 Claims

Specification

Solutions

Use Cases

Quick Links

AUTHENTICATION SYSTEM

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

41 Citations

41 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links