Apparatus and a method for preventing unauthorized use and a device with a function of preventing unauthorized use

US 7,647,638 B2
Filed: 09/20/2004
Issued: 01/12/2010
Est. Priority Date: 09/25/2003
Status: Expired due to Fees

First Claim

Patent Images

1. An apparatus for preventing unauthorized use, the apparatus comprising:

an authentication unit operable to compare a characteristic obtained from a user'"'"'s input into a device with a registered characteristic of a person, and determine, as an authentication result, a likelihood of the user being the person, the authentication result being determined based on the comparison;

a memory for storing a value that (i) is determined based on an authentication result determined by the authentication unit, and (ii) indicates the likelihood of the user being the person;

a first controller operable to update, as a most recent stored value, a previously determined past value stored in the memory and indicating a prior likelihood of the user being the person, the past value being updated based on (i) a present authentication result determined, by the authentication unit, from the user'"'"'s input including an input other than an input done in response to an input request for authentication, and (ii) the previously determined past value that is stored in the memory and indicates the prior likelihood of the user being the person; and

a second controller operable to, in response to an instruction to begin a process which requires authentication, (i) refer to the most recent stored value indicating the likelihood of the user being the person, and (ii) control whether or not to permit execution of the process depending on whether or not the value referred to is more than a certain threshold,wherein the first controller, based on a certain function, decreases the most recent stored value indicating the likelihood of the user being the person as time passes while an authentication result is not determined by the authentication unit.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An authentication section comparing a characteristic included in a user'"'"'s input into an input section with a characteristic of a person registered in memory, to determine an authentication result. An authentication control section including a function for (i) storing a value indicating a likelihood of being the person, (ii) controlling the value indicating a likelihood of the user being the person, based on (i) the authentication result of the authentication section and (ii) a passage of time. In response to an instruction to begin a process which requires authentication, the authentication control section controls whether or not to permit execution of the process depending on a the stored value Thus, unauthorized use of a device is prevented, while the trouble of asking a user to make a special input for authentication is resolved when a process requiring authentication is executed.

29 Citations

View as Search Results

22 Claims

1. An apparatus for preventing unauthorized use, the apparatus comprising:
- an authentication unit operable to compare a characteristic obtained from a user'"'"'s input into a device with a registered characteristic of a person, and determine, as an authentication result, a likelihood of the user being the person, the authentication result being determined based on the comparison;
  
  a memory for storing a value that (i) is determined based on an authentication result determined by the authentication unit, and (ii) indicates the likelihood of the user being the person;
  
  a first controller operable to update, as a most recent stored value, a previously determined past value stored in the memory and indicating a prior likelihood of the user being the person, the past value being updated based on (i) a present authentication result determined, by the authentication unit, from the user'"'"'s input including an input other than an input done in response to an input request for authentication, and (ii) the previously determined past value that is stored in the memory and indicates the prior likelihood of the user being the person; and
  
  a second controller operable to, in response to an instruction to begin a process which requires authentication, (i) refer to the most recent stored value indicating the likelihood of the user being the person, and (ii) control whether or not to permit execution of the process depending on whether or not the value referred to is more than a certain threshold,wherein the first controller, based on a certain function, decreases the most recent stored value indicating the likelihood of the user being the person as time passes while an authentication result is not determined by the authentication unit.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
- - 2. The apparatus for preventing unauthorized use according to claim 1, wherein the second controller refers to the most recent stored value indicating the likelihood of the user being the person, without requesting the user to input for authentication when instructed to begin the process which requires authentication, and requests the user to input for authentication without permitting execution of the process instructed to begin if the value referred to is lower than the certain threshold.
  - 3. The apparatus for preventing unauthorized use according to claim 1, wherein the first controller controls the authentication unit to determine an authentication result using, as the user'"'"'s input, (i) an input to be used by the device for a purpose other than authentication, or (ii) an input accompanying a user'"'"'s action for a purpose other than authentication.
  - 4. The apparatus for preventing unauthorized use according to claim 1, wherein the first controller decreases the most recent stored value indicating the likelihood of the user being the person as time passes while an authentication result is not determined by the authentication unit, and, if an authentication result is determined by the authentication unit, the first controller increases, maintains, or decreases the most recent stored value indicating the likelihood of the user being the person in accordance with the determined authentication result.
  - 5. The apparatus for preventing unauthorized use according to claim 4, wherein the first controller controls the authentication unit to determine an authentication result every time the user'"'"'s input, with which the authentication unit can authenticate, is obtained.
  - 6. The apparatus for preventing unauthorized use according to claim 4, wherein the first controller controls the authentication unit to determine an authentication result if the user'"'"'s input, with which the authentication unit can authenticate, is obtained when a certain time period has passed after a previous authentication result has been determined by the authentication unit.
  - 7. The apparatus for preventing unauthorized use according to claim 4, wherein the first controller controls the authentication unit to determine an authentication result if the user'"'"'s input, with which the authentication unit can authenticate, is obtained when the most recent stored value indicating the likelihood of the user being the person is lower than a desired threshold.
  - 8. The apparatus for preventing unauthorized use according to claim 1, wherein the second controller compares the most recent stored value indicating the likelihood of the user being the person with, as the certain threshold, a threshold for a service to be conducted by the process instructed to begin, out of thresholds set for every service that the device provides.
  - 9. The apparatus for preventing unauthorized use according to claim 8, wherein the thresholds for every service are determined such that, in relation to the certain function, an amount of time that the most recent stored value takes to decrease to a level, at which execution of a process for each service is refused due to an authentication result not being determined by the authentication unit, is in accordance with safety required for each service.
  - 10. The apparatus for preventing unauthorized use according to claim 8, wherein the certain function is determined such that, in relation to the thresholds for every service, an amount of time that the most recent stored value takes to decrease to a level, at which execution of a process for each service is refused due to an authentication result not being determined by the authentication unit, is in accordance with safety required for each service.
  - 11. The apparatus for preventing unauthorized use according to claim 1, wherein:
    - the authentication unit determines a plurality of authentication results using a plurality of authentication methods, the plurality of authentication methods including a first authentication method that uses a first kind of user'"'"'s input into the device and a second authentication method that uses a second, different from the first, kind of user'"'"'s input into the device and has lower authentication accuracy than the first authentication method; and
      
      the first controller, based on an authentication result determined using the second authentication method, updates the most recent stored value indicating the likelihood of the user being the person, the most recent stored value being updated by the first controller being determined based on an authentication result determined using the first authentication method.
  - 12. The apparatus for preventing unauthorized use according to claim 11, wherein:
    - the first controller controls the authentication unit to determine an authentication result determined using the first authentication method if the user'"'"'s first kind of input is made when a first condition is satisfied, and controls the authentication unit to determine an authentication result determined using the second authentication method if the user'"'"'s second kind of input is made when a second condition is satisfied; and
      
      the first and second conditions are determined such that the first authentication method is used less frequently than the second authentication method.
  - 13. The apparatus for preventing unauthorized use according to claim 1, further comprising a notification unit operable to notify the user of the most recent stored value indicating a likelihood of the user being the person.
  - 14. The apparatus for preventing unauthorized use according to claim 13, wherein the notification unit includes a unit operable to encourage the user to perform an input with which the authentication unit can authenticate when the most recent stored value indicating the likelihood of the user being the person is lower than a desired threshold.
  - 15. The apparatus for preventing unauthorized use according to claim 13, wherein:
    - the second controller compares the most recent stored value indicating the likelihood of the user being the person with, as the certain threshold, a threshold for a service to be conducted by the process instructed to begin, out of thresholds set for every service that the device provides; and
      
      the notification unit provides the user with a notification that allows the user to distinguish a level of the most recent stored value indicating the likelihood of the user being the person, the level determining a process for which the service is permitted to execute.

16. A method for preventing unauthorized use in a device comprising an authentication module that compares a characteristic obtained from a user'"'"'s input into the device with a registered characteristic of a person to determine a likelihood of the user being the person, the method comprising:
- determining, via the authentication module and as an authentication result, the likelihood of the user being the person, the authentication result being determined based on the comparison;
  
  storing in a memory a value that (i) is determined based on the authentication result, and (ii) indicates the likelihood of the user being the person;
  
  updating, via the authentication module, as a most recent stored value, a previously determined past value stored in the memory and indicating a prior likelihood of the user being the person, the past value being updated based on (i) a present authentication result determined, via the authentication module, from the user'"'"'s input other than an input performed in response to an input request for authentication, and (ii) the previously determined past value that is stored in the memory and indicates the prior likelihood of the user being the person;
  
  referring to the most recent stored value indicating the likelihood of the user being the person in response to an instruction to begin a process which requires authentication; and
  
  controlling whether or not to permit execution of the process depending on whether or not the value referred to is more than a certain threshold,wherein the updating includes, based on a certain function, decreasing the most recent stored value indicating the likelihood of the user being the person as time passes while an authentication result is not determined by the authentication module.
- View Dependent Claims (17, 18)
- - 17. The method for preventing unauthorized use according to claim 16, the method further comprising:
    - determining a new authentication result, via the authentication module, using (i) an input which is performed by the user during a passage of time and is to be used by the device for a purpose other than authentication, or (ii) an input accompanying the user'"'"'s action for a purpose other than authentication; and
      
      increasing, maintaining, or decreasing the most recent stored value indicating the likelihood of the user being the person in accordance with the new authentication result.
  - 18. The method for preventing unauthorized use according to claim 16, the method further comprising permitting execution of the process without requesting the user to input for authentication if the most recent stored value indicating the likelihood of the user being the person has not decreased to a level below the certain threshold.

19. A computer-readable storage medium having a computer program stored thereon, the computer program for preventing unauthorized use of a device comprising an authentication module that compares a characteristic obtained from a user'"'"'s input into the device with a registered characteristic of a person to determine a likelihood of the user being the person, the computer program causing a computer to execute a method comprising:
- determining, via the authentication module and as an authentication result, the likelihood of the user being the person, the authentication result being determined based on the comparison;
  
  storing in a memory a value that (i) is determined based on the authentication result, and (ii) indicates the likelihood of the user being the person;
  
  updating, via the authentication module, as a most recent stored value, a previously determined past value stored in the memory and indicating a prior likelihood of the user being the person, the past value being updated based on (i) a present authentication result determined, via the authentication module, from the user'"'"'s input other than an input performed in response to an input request for authentication, and (ii) the previously determined past value that is stored in the memory and indicates the prior likelihood of the user being the person;
  
  referring to the most recent stored value indicating the likelihood of the user being the person in response to an instruction to begin a process which requires authentication; and
  
  controlling whether or not to permit execution of the process depending on whether or not the value referred to is more than a certain threshold,wherein the updating includes, based on a certain function, decreasing the most recent stored value indicating the likelihood of the user being the person as time passes while an authentication result is not determined by the authentication module.

20. A device with a function of preventing unauthorized use, the device comprising:
- an input unit operable to accept a user'"'"'s input;
  
  a process unit operable to execute an instructed process;
  
  an authentication unit operable to compare a characteristic obtained from an input accepted by the input unit with a registered characteristic of a person, and determine, as an authentication result, a likelihood of the user being the person, the authentication result being determined based on the comparison;
  
  a memory for storing a value that (i) is determined based on an authentication result determined by the authentication unit, and (ii) indicates the likelihood of the user being the person;
  
  a first controller operable to update, as a most recent stored value, a previously determined past value stored in the memory and indicating a prior likelihood of the user being the person, the past value being updated based on (i) a present authentication result determined, by the authentication unit, from the user'"'"'s input including an input other than an input done in response to an input request for authentication, and (ii) the previously determined past value that is stored in the memory and indicates the prior likelihood of the user being the person; and
  
  a second controller operable to, in response to an instruction to begin a process which requires authentication, (i) refer to the most recent stored value indicating the likelihood of the user being the person, and (ii) control whether or not the process unit executes the process depending on whether or not the value referred to is more than a certain threshold,wherein the first controller, based on a certain function, decreases the most recent stored value indicating the likelihood of the user being the person as time passes while an authentication result is not determined by the authentication unit.
- View Dependent Claims (21, 22)
- - 21. The device with a function of preventing unauthorized use according to claim 20, wherein (i) a program for realizing the authentication unit and the first and second controller, and (ii) certain data including the registered characteristic of the person, are securely stored in the device, and wherein the most recent stored value indicating the likelihood of the user being the person can only be changed by the first controller.
  - 22. The device with a function of preventing unauthorized use according to claim 20, wherein an input that is accepted by the input unit and can be used for authentication by the authentication unit includes, at least, one of the following:
    - a fingerprint of the user'"'"'s finger that has touched a button of the device;
      
      a sound emitted by the user to a microphone of the device;
      
      an image of a body part of the user that is captured by a camera of the device;
      
      data inputted into a sensor provided at a part of the device that the user touches to hold the device in the user'"'"'s hand;
      
      the user'"'"'s keystroke to keys of the device; and
      
      information obtained by the device through its communication with an external device in response to the user'"'"'s action.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Panasonic Intellectual Property Corporation of America (Panasonic Holdings Corporation)
Original Assignee
Panasonic Corporation (Panasonic Holdings Corporation)
Inventors
Furuyama, Junko
Primary Examiner(s)
Vu, Kimyen
Assistant Examiner(s)
Moran, Randal D

Application Number

US10/943,879
Publication Number

US 20050071635A1
Time in Patent Office

1,940 Days
Field of Search

713/186, 726/26
US Class Current

726/26
CPC Class Codes

G06F 21/32 using biometric data, e.g. ...

H04L 63/0861 using biometrical features,...

Apparatus and a method for preventing unauthorized use and a device with a function of preventing unauthorized use

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

29 Citations

22 Claims

Specification

Solutions

Use Cases

Quick Links

Apparatus and a method for preventing unauthorized use and a device with a function of preventing unauthorized use

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

29 Citations

22 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links