JP2008266907A - Wireless lock system using biometrics authentication - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a wireless lock system capable of enhancing security in a house, a room, a vehicle, a storage instrument or the like, allowing a plurality of persons to use a key device in common inexpensively, and shortening the communication time between the key device and a lock device to enhance the operation property and convenience property of the key and lock system. <P>SOLUTION: This biometrics authentication wireless lock system 1 is provided with the key device 5 and the lock device 6. The key device 5 obtains the information about fingerprint from a finger, generates the information about peculiarities for checking indicating peculiar points of the fingerprint, enciphers the information about peculiarities for checking, and transmits it to the lock device 6 by a radio communication system. The lock device 6 receives the information about peculiarities for checking transmitted from the key device 5, decodes it, and checks the decoded information about peculiarities for checking against the information about peculiarities for registration memorized in advance to unlock an electric lock 3 when both of the information about peculiarities for checking and the information about peculiarities for registration satisfy the predetermined identity reference. The lock device 6 is divided into a controller 7 and a management device 8. <P>COPYRIGHT: (C)2009,JPO&INPIT

Description

  The present invention is based on biometric authentication and wireless communication between a key device and a lock device, thereby opening and closing a door lock, starting an automobile engine, operating a medical device, starting a computer, logging into a computer system, and factory automation. The present invention relates to a lock system that controls the operation of the system and other devices, devices, or systems.

  In general, keys and locks are used for security of buildings, houses, rooms, vehicles, restriction of use of computer systems, confidentiality, or the like.

  In the case of cylinder locks, which are widely used as door locks, a person who has a key can insert the key into the keyhole of the lock and unlock it only when the key and the lock match. it can. Thereby, security of a building or a house can be secured.

  However, in the case of keys and locks that are unlocked by the geometrical or mechanical coincidence of the key and the lock, anyone who has the key can unlock it. For this reason, residential residents and computer system managers must carefully manage the keys to prevent them from being stolen. It is also necessary to deal with unauthorized unlocking due to picking.

  On the other hand, in recent years, system locks that combine biometric authentication devices and electric locks are becoming popular. In the case of a door system lock using fingerprint authentication, a fingerprint authentication device equipped with a fingerprint sensor is installed in the vicinity of the door, and the fingerprint authentication device and the electric lock are connected using an electric wire such as a lead wire or a cable. A person who desires unlocking has his fingerprint read by a fingerprint sensor. The fingerprint authentication device unlocks only when the fingerprint information read by the fingerprint sensor matches the fingerprint information registered in advance in the fingerprint authentication device. Such a system lock can be unlocked only by a person who has registered a fingerprint. Also, since no key is used, key management becomes unnecessary. Furthermore, unauthorized unlocking due to picking can be prevented.

  However, when the fingerprint authentication device does not have sufficient durability, outdoor installation of the fingerprint authentication device is restricted. For example, a fingerprint authentication device must be installed in a residential entrance. On the other hand, if the fingerprint authentication device has sufficient durability, the manufacturing cost of the fingerprint authentication device increases.

  On the other hand, a wireless lock system that unlocks a door or the like by performing wireless communication between a key device and a lock device is known. In the case of a wireless lock system for an automobile door, an automobile user presses a button provided on a gripping portion of the key device. As a result, radio waves or infrared rays are transmitted from the key device to the lock device provided in the automobile. Radio waves and infrared rays include ID information and an unlock control signal, and the lock device opens an electric lock provided on the door only when the ID information and the unlock control signal are correct. According to such a wireless key lock system, it is not necessary to insert the key into the keyhole, and thus unlocking can be easily performed in the dark. Also, unauthorized unlocking due to picking can be prevented.

  However, since anyone who has a key device can unlock it, the owner of the car must carefully manage the key device.

  On the other hand, a biometric authentication wireless key lock system that combines biometric authentication and wireless communication between a key and a lock is known.

  For example, Japanese Patent Laid-Open No. 2002-81242 (3rd page, 2nd column, 23rd to 29th rows) or Japanese Patent Laid-Open No. 2003-286781 (3rd page, 1st column, 26th to 31st rows). In the biometrics authentication wireless key lock system (hereinafter referred to as “conventional system A”) described in the above), the fingerprint is read with the key device and the fingerprint is collated. The ID number stored in the storage unit in the key device is transmitted from the key device to the lock device. Then, the lock device receives this ID number and unlocks it.

  Japanese Patent Laid-Open No. 11-93478 (3rd page, 1st column, 48th row to the same page, 2nd column, 19th row) or Japanese Patent Laid-Open No. 2001-262887 (3rd page, 2nd column). In the biometrics authentication wireless key lock system (hereinafter referred to as “conventional system B”) described in pp. 24 to 4, page 1, column 1, line 6), a fingerprint is read by a key device. Is transmitted from the key device to the lock device. Then, in the locking device, feature points such as fingerprints are extracted from the received fingerprint image information, the extracted feature points are collated with previously registered feature points, and unlocking is performed when the two match.

  In addition, a biometrics authentication wireless key lock system (hereinafter referred to as “the 4th page, the first column, the 34th line to the same page, the second column, the fourth line”) described in JP-A-5-233896 In the conventional system C ”), the key device reads the feature of the finger from the fingerprint and transmits the feature information to the lock device. Then, in the lock device, the received feature information is compared with the previously stored feature information, and if the received feature information is normal, the door is opened.

  According to such a biometrics authentication wireless key lock system, since fingerprint authentication is used, unauthorized unlocking due to key theft or picking can be prevented. In addition, since it is not necessary to provide a fingerprint sensor in the lock device, a highly durable lock device can be manufactured at low cost, and as a result, the lock device can be installed in various outdoor locations. Become. For example, it is possible to install a lock device even in a place where rain and wind strikes.

JP 2002-81242 A JP 2003-286781 A Japanese Patent Laid-Open No. 11-93478 Japanese Patent Laid-Open No. 2001-262887 JP-A-5-233896

  However, the biometric authentication wireless key lock system described in the above document has the following problems.

  That is, in the conventional system A, the ID number is transmitted from the key device to the lock device. For this reason, the key device is stolen, the ID number stored in the storage unit in the key device is read by an unauthorized method, and a fake key device that transmits this ID number is created. There is a risk of correct unlocking. Therefore, it is difficult to improve security in the conventional system A.

  In the conventional system A, the fingerprint information read by the fingerprint sensor or the like and the fingerprint information registered in advance are collated in the key device. For this reason, fingerprint information is held in the storage unit in the key device. Considering the case where such a key device is used jointly by a plurality of persons, a plurality of fingerprint information must be held in a storage unit in the key device. A large-capacity storage unit must be provided. Therefore, in the conventional system A, the size of the key device is increased, the power consumption is increased, or the manufacturing cost is increased.

  On the other hand, in the conventional system B or the conventional system C, fingerprint image information or feature information is transmitted from the key device to the lock device. For this reason, if the data size of the image information or feature information is large, the transmission process takes time. Therefore, the user of the key lock system cannot quickly unlock the door, and the operability or convenience of the key lock system is poor. Further, when the data size of the image information or feature information is large, the power required for transmitting the image information or feature information is large.

  In the biometrics authentication wireless key lock system or the conventional system C described in JP-A-11-93478, fingerprint image information or feature information is transmitted from the key device to the lock device. Therefore, there is a risk that the image information or characteristic information of the fingerprint being transmitted is illegally intercepted during the use of the key lock system, and the unauthorized unlocking is performed using the intercepted fingerprint image information or characteristic information. . On the other hand, Japanese Patent Laid-Open No. 2001-262887 describes that fingerprint image information is encrypted and transmitted. However, simply encrypting fingerprint image information removes the risk of unauthorized unlocking. I can't. This is because it is possible to intercept the encrypted fingerprint image information during transmission and perform unauthorized unlocking using the encrypted fingerprint image information as it is. That is, fingerprint image information may be encrypted from the viewpoint of personal privacy protection. However, such an encryption cannot eliminate the risk of unauthorized unlocking.

  The present invention has been made in view of the above-described problems, and a first object of the present invention is to perform unauthorized unlocking and controlled devices based on unauthorized reading of information transmitted from a key device to a lock device. An object of the present invention is to provide a key lock system, a key device, a lock device, a control device and a specific operation control method that can prevent unauthorized use of the device.

  The second problem of the present invention is that even when a shared use of a key device by a plurality of persons is realized, the size of the key device can be reduced, the power consumption can be reduced, or the manufacturing cost of the key device can be reduced. A key lock system, a key device, a lock device, a control device, and a specific operation control method are provided.

  The third problem of the present invention is that the time required to transmit information from the key device to the lock device for unlocking or controlling the controlled device can be shortened, or the transmission of this information can be performed with less power. It is to provide a key lock system, a key device, a lock device, a control device, and a specific operation control method that can be performed in the above manner.

  In order to solve the above problems, a first invention is a key lock system including a key device and a lock device, wherein the key device acquires human body information including a human body characteristic element from the human body. A first feature information which is obtained by extracting the human body feature element from the human body information obtained by the obtaining unit and the human body information obtaining unit, and which indicates the extracted human body feature element and has a size smaller than the size of the human body information Characteristic information generating means for generating the first characteristic information generated by the characteristic information generating means by a wireless communication method, and the lock device is a second indicating a human body characteristic element. Feature information storing means for storing feature information, feature information receiving means for receiving first feature information transmitted from the key device, and first feature information received by the feature information receiving means A collation unit that collates second feature information stored in advance in the feature information storage unit, and as a result of collation by the collation unit, the first feature information and the second feature information satisfy a predetermined identity criterion. In some cases, the apparatus includes control signal output means for outputting a control signal for causing the controlled apparatus to perform a specific operation to the controlled apparatus.

  When the human body information is image information indicating a part of the human body, the feature information generation unit extracts the human body feature element from the image information acquired by the human body information acquisition unit, and the extracted human body It is desirable to generate the first feature information indicating the feature elements of the image information and having a size smaller than the size of the image information.

  The size of the first feature information may be 1/100 or less of the size of the human body information or the image information.

  The key device includes an encryption key receiving unit that receives an encryption key transmitted from the lock device, and an encryption that encrypts the first feature information using the encryption key received by the encryption key receiving unit. It is desirable to add a conversion means. In this case, the lock device generates the encryption key, transmits the encryption key by a wireless communication method, and decrypts the first feature information encrypted by the encryption unit. It is desirable that the encryption key is changed at each transmission by the encryption key transmission means.

  In addition, it is desirable to add to the key device identification information transmitting means for transmitting first identification information for identifying the key device by a wireless communication method. In this case, the lock device includes identification information storage means for storing second identification information for identifying the key device, identification information receiving means for receiving the first identification information transmitted from the key device, The identification information judging means for judging whether or not the first identification information received by the identification information receiving means and the second identification information stored in advance by the identification information storage means match; and the identification information judging means If the determination result shows that the first identification information and the second identification information do not match, a rejection control means for preventing the control signal output means from outputting the control signal may be added. desirable.

  On the other hand, the lock device may be divided into a control device and a management device. In this case, the control device includes the feature information receiving unit, the feature information transfer unit, and the control signal output unit, and the management device includes the feature information storage unit, the collating unit, and a control command transfer unit. The feature information transfer means transfers the first feature information received by the feature information reception means from the control device to the management device, and the collation means transfers the first feature information transferred by the feature information transfer means. The feature information and the second feature information stored in advance in the feature information storage unit are collated, and the control command transfer unit is configured to match the first feature information and the second feature information as a result of the collation by the collating unit. Is transferred to the control device, and the control signal output means is transferred by the control command transfer means. Based on the control command, the control signal is output to the controlled device.

  In the key lock system having a configuration in which the lock device is divided into a control device and a management device, identification information for transmitting, to the key device, first identification information for identifying the key device by a wireless communication method. It is desirable to add a transmission means. In this case, the control device includes identification information receiving means for receiving first identification information transmitted from the key device, and identification for transferring the first identification information received by the identification information receiving means to the management device. It is desirable to add an information transfer means, and the management device further includes an identification information storage means for storing second identification information for identifying the key device, and a second information transferred by the identification information transfer means. It is desirable to add identification information judgment means for judging whether or not one identification information and the second identification information stored in advance by the identification information storage means match. Further, when the first identification information and the second identification information do not match as a result of the determination by the identification information determination unit, the control device or the management device receives the control signal output by the control signal output unit. It is desirable to add rejection control means for preventing output.

  In the key lock system having a configuration in which the lock device is divided into a control device and a management device, it is preferable that the control device has third identification information for identifying the control device.

  In order to solve the above-described problem, a second invention is a key device that controls the operation of a controlled device that is a control target of the lock device by transmitting feature information indicating a feature element of the human body to the lock device. The human body information acquisition means for acquiring human body information including the human body characteristic elements from the human body, the human body characteristic elements are extracted from the human body information acquired by the human body information acquisition means, and the extracted human body characteristics Feature information generating means for generating feature information indicating elements and having a size smaller than the size of the human body information, and feature information transmitting means for transmitting the feature information generated by the feature information generating means by a wireless communication method I have.

  In order to solve the above-mentioned problem, a third invention receives first feature information indicating a characteristic element of a human body transmitted from a key device by a wireless communication method, and controls a controlled device based on the reception of the first feature information. A feature information storage means for storing second feature information indicating a feature element of the human body, and feature information receiving means for receiving the first feature information transmitted from the key device. A collation unit that collates the first feature information received by the feature information receiving unit with the second feature information stored in advance in the feature information storage unit; a result of collation by the collation unit; Control signal output means for outputting, to the controlled device, a control signal for causing the controlled device to perform a specific operation when the information and the second feature information satisfy a predetermined identity criterion; Yes.

  In order to solve the above-mentioned problem, a fourth invention is a control device for controlling the operation of a controlled device together with a key device and a management device, and is a first device which shows a human body characteristic element transmitted from the key device. Feature information receiving means for receiving feature information, feature information transferring means for transferring the first feature information received by the feature information receiving means to the management device, and the first feature by collation processing performed in the management device A control signal for causing the controlled device to perform a specific operation based on a control command transferred from the management device when the information and the second feature information satisfy a predetermined identity criterion. And a control signal output means for outputting to the controller.

  In order to solve the above-described problem, a fifth invention uses a key device and a lock device to prevent a person other than a specific person from performing a specific operation of the controlled device. A specific motion control method for controlling a specific motion, the human body information acquisition step for acquiring human body information including the human body characteristic elements from the human body, and the human body characteristic elements from the human body information acquired in the human body information acquisition step A feature information generating step for generating first feature information indicating a feature element of the extracted human body and having a size smaller than the size of the human body information, and the first feature generated in the feature information generating step A feature information transmitting step for transmitting information by a wireless communication method, a feature information receiving step for receiving the first feature information transmitted in the feature information transmitting step, and the feature information receiving step. A collation step of collating the first feature information received in the step with the second feature information stored in advance in the storage means and indicating the feature element of the human body, and as a result of the collation in the collation step, the first feature information and the A control signal output step for outputting to the controlled device a control signal for causing the controlled device to perform a specific operation when the second feature information satisfies a predetermined identity criterion, and the human body information The acquisition step, the feature information generation step, and the feature information transmission step are executed by a key device, and the feature information reception step, the collation step, and the control signal output step are executed by the lock device that includes the storage means.

  In the key lock system according to the first invention described above, the human body information is obtained from the human body, and based on the human body information, the first feature information indicating the feature element of the human body is generated, and the first feature information is used as the key device. To the lock device. Then, the first feature information is collated with the second feature information stored in advance in the lock device. That is, neither the first feature information nor the second feature information is stored in the key device except for a short period in which the key device is used by a true user. As a result, even if the key device is stolen, neither the first feature information nor the second feature information can be read from the key device. Therefore, it is possible to prevent the door from being unlocked illegally or the controlled device from being used illegally, and security can be improved.

  In the key lock system according to the first aspect of the invention, the first feature information and the second feature information are collated on the lock device side. For this reason, the second feature information is stored in the lock device. Therefore, when the key device is used jointly by a plurality of persons, a plurality of second feature information may be stored in the lock device. That is, since it is not necessary to store the second feature information in the key device, it is not necessary to provide a large-capacity storage unit in the key device even when the key device is shared by a plurality of people. Thereby, the size of the key device can be reduced, the power consumption can be reduced, and the manufacturing cost of the key device can be reduced. In addition, a key lock system capable of jointly using a key device by a plurality of persons can be easily realized at a low cost.

  In the key lock system according to the first invention, the key device generates first feature information having a size smaller than the size of the human body information acquired from the human body, and transmits the first feature information to the lock device. . Thereby, the transmission time of 1st characteristic information can be shortened, and the operativity (responsiveness) and convenience of a lock system can be improved. Furthermore, the power required for transmitting the first feature information can be reduced.

  Further, in the key lock system according to the first invention, when the human body information is image information indicating a part of the human body, the first feature information having a size smaller than the size of the image information indicating the part of the human body. Is generated. Thereby, the transmission time of 1st characteristic information can be shortened, and the electric power required for transmission of 1st characteristic information can be made small.

  In the key lock system according to the first invention, the size of the first feature information is set to 1/100 or less of the size of the human body information or the image information. Thereby, the transmission time of 1st characteristic information can be shortened, and the electric power required for transmission of 1st characteristic information can be made small.

  In the key lock system according to the first invention, an encryption key that changes at each transmission is transmitted from the lock device to the key device, and the key device uses the encryption key to encrypt the first feature information, The converted first characteristic information is transmitted from the key device to the lock device. Thus, even if the first feature information being transmitted is intercepted illegally during use of the key lock system, the key lock system cannot be operated normally using the intercepted first feature information. Therefore, unauthorized unlocking can be prevented and the security of the key lock system can be improved.

  In the key lock system according to the first aspect of the invention, the first identification information for identifying the key device is transmitted from the key device to the lock device, and the lock device uses the second identification information stored in advance and the key device. If the received first identification information does not match, unlocking of the door or use of the controlled device is not permitted. Thereby, the combination of the key device and the lock device that can perform the unlocking of the specific door and the operation control of the specific controlled device can be restricted. For example, when there are a plurality of key devices K1, K2, K3 and one lock device L, only the combination of the key device K1 and the lock device L is permitted, and the unlocking of a specific door is permitted. , You can refuse to unlock this particular door. Therefore, it is possible to finely manage the unlocking of the door and the use of the controlled device using the key lock system, and it is possible to improve the security.

  In the key lock system according to the first aspect of the invention, the lock device is divided into a control device and a management device, the second feature information is stored and the first feature information and the second feature information are collated. The management apparatus performs storage of the two identification information and collation between the first identification information and the second identification information. On the other hand, acquisition of the human body information or image information indicating a part of the human body and generation of the first feature information are performed by the key device as described above. As a result, the control device receives the first characteristic information from the key device and transfers it to the management device, receives the first identification information from the key device and transfers it to the management device, And a means for outputting a control signal for controlling the controlled device in accordance with a control command from the device. And all these means which should be provided in a control apparatus can be implement | achieved by a small circuit. Therefore, for example, all the circuits constituting the control device can be arranged together on one small substrate. Alternatively, a single chip in which almost all circuits constituting the control device are integrated can be manufactured. Thereby, for example, the management device can be installed in a large indoor space, and only the control device can be directly attached to the existing electric lock. It is also possible to incorporate only the control device into an existing electric lock. Thus, the control device can be easily provided in various doors, various locks, or various controlled devices, and the range of controlled devices that can be controlled by the key lock system can be expanded. The versatility of can be improved.

  Moreover, according to the structure which divides | segments a locking device into a control apparatus and a management apparatus, the following effects are acquired. That is, when one key device is shared by a plurality of people, or when a plurality of key devices are respectively used by a plurality of people, the number of second feature information or the number of second identification information to be stored in the lock device is Become multiple. For this reason, the capacity of the storage means for storing the second feature information or the second identification information must be increased. However, even in such a case, since the storage means for storing the second feature information or the second identification information is not the control device but the management device, the size of the control device does not increase. Therefore, even when a single key device is used jointly by a plurality of persons, or even when a plurality of key devices are respectively used by a plurality of persons, high versatility of the key lock system can be maintained.

  Further, since the lock device can be divided into a control device and a management device, and the control device can be downsized, a plurality of control devices are provided for one management device, and a plurality of control devices are provided by the plurality of control devices. A key lock system that controls each control target can be easily realized at low cost.

  Further, the lock device is divided into a control device and a management device, and the control device is given third identification information for identifying the control device. Thereby, when there are a plurality of control devices, each control device can be identified based on the third identification information. For example, a plurality of control devices can be provided for one management device, and a plurality of controlled objects can be independently controlled by the plurality of control devices. Therefore, it is possible to construct a large-scale system such as an entrance / exit management system for a large building with many rooms.

  According to the key device of the second invention, similarly to the key device of the lock system of the first invention, it is possible to prevent the door from being unlocked or the controlled device from being used illegally. Can improve security. In addition, the size of the key device can be reduced, power consumption can be reduced, and the manufacturing cost of the key device can be reduced. In addition, the transmission time of the first feature information can be shortened, the operability (responsiveness) and convenience of the key lock system can be improved, and the power required for transmitting the first feature information can be reduced. Can do.

  According to the lock device of the third invention, the same effect as that of the key lock system of the first invention can be obtained by using this with the key device of the second invention.

  According to the control device of the fourth invention, when this is used together with the key device and the management device constituting the key lock system of the first invention, the same effect as the key lock system of the first invention is obtained. Can be obtained. In particular, by dividing the lock device into a control device and a management device, the control device can be realized on a small substrate or as one integrated circuit element. Therefore, the control device can be easily mounted or incorporated in various doors, various locks, or various controlled devices, and the range of controlled devices that can be controlled by the key lock system can be expanded. The versatility of the lock system can be enhanced. In addition, by dividing the lock device into a control device and a management device, even when a single key device is used jointly by a plurality of people or a plurality of key devices are used by a plurality of people, High versatility can be maintained. In addition, since the control device can be reduced in size, a lock system in which a plurality of control devices are provided for one management device and a plurality of controlled devices are respectively controlled by the plurality of control devices can be easily and lowly provided. Can be realized at a cost.

  According to the specific operation control method of the fifth invention, it is possible to prevent the door from being unlocked illegally or the controlled device from being used illegally, thereby improving the security. In addition, the size of the key device can be reduced, power consumption can be reduced, and the manufacturing cost of the key device can be reduced. Moreover, the transmission time of 1st characteristic information can be shortened, and the electric power required for transmission of 1st characteristic information can be made small.

  Hereinafter, embodiments of the present invention will be described with reference to the drawings.

  FIG. 1 shows an embodiment of the biometric authentication wireless key lock system of the present invention. FIG. 2 is a block diagram showing the configuration of the biometrics authentication wireless key lock system 1 in FIG.

  As shown in FIG. 1, the biometrics authentication wireless key lock system 1 controls the unlocking operation of the electric lock 3 provided on the door 2, thereby restricting and managing entry into the room 4.

  As shown in FIG. 2, the biometrics authentication wireless key lock system 1 includes a key device 5 and a lock device 6. The key device 5 acquires fingerprint information from the finger, generates matching feature information indicating a feature point of the fingerprint, and transmits the matching feature information to the lock device 6 by a wireless communication method. The lock device 6 receives the collation feature information transmitted from the key device 5, collates the collation feature information with the registration feature information stored in advance, and the collation feature information and the registration feature information Unlocks the electric lock 3 when the predetermined identity criterion is satisfied. The lock device 6 is divided into a control device 7 and a management device 8, and the control device 7 and the management device 8 are connected to each other by a LAN (local area network) 9.

  FIG. 3 shows the appearance of the key device 5. As shown in FIG. 3, the key device 5 has a small size enough to fit in a palm, for example, and is light enough to allow a person to lift and move it lightly.

  FIG. 4 shows the internal configuration of the key device 5. As shown in FIG. 4, the key device 5 includes a fingerprint information acquisition unit 21, a feature information generation unit 22, an encryption unit 23, a wireless communication unit 24, a storage unit 25, and an internal control unit 26. The fingerprint information acquisition unit 21, the feature information generation unit 22, the encryption unit 23, the wireless communication unit 24, the storage unit 25, and the internal control unit 26 are connected to each other via a bus. The wireless communication unit 24 includes an identification information communication unit 31, an encryption key reception unit 32, and a feature information transmission unit 33.

  The fingerprint information acquisition unit 21 acquires fingerprint information from a finger. The fingerprint information acquisition unit 21 is, for example, a capacitive fingerprint sensor. The fingerprint information acquisition unit 21 is attached to the key device 5 so that the fingerprint detection surface 21A is arranged on the surface of the key device 5 (see FIG. 3). When acquiring the fingerprint information, the user of the key device 5 places the finger on the fingerprint detection surface 21A. The fingerprint information acquisition unit 21 reads the fingerprint of the finger that is in contact with the fingerprint detection surface 21A.

  The fingerprint information acquired by the fingerprint information acquisition unit 21 is fingerprint image information. More specifically, this fingerprint information is bitmap data of a fingerprint image. For example, when the number of pixels on the fingerprint detection surface 21A of the fingerprint information acquisition unit 21 is 48000 and the number of bits in the depth direction of each pixel is 8 bits, the fingerprint information is 48000 bytes of bitmap data.

  In consideration of the area of the fingerprint detection surface 21A and the number of pixels suitable for fingerprint authentication, the size of the fingerprint information is approximately several kilobytes to several hundred kilobytes. For example, when specifically examined against the specifications of some sensors that can be used as the fingerprint information acquisition unit 21, it has been found that the size of the fingerprint information is approximately 9400 to 250,000 bytes.

  In the feature information registration process, the feature information generation unit 22 extracts the feature points of the fingerprint from the fingerprint information acquired by the fingerprint information acquisition unit 21, indicates the extracted feature points of the fingerprint, and is smaller than the size of the fingerprint information Registration feature information (template) having a size is generated. In addition, the feature information generation unit 22 extracts the feature points of the fingerprint from the fingerprint information acquired by the fingerprint information acquisition unit 21 in the unlocking control process, indicates the extracted feature points of the fingerprint, and uses the size of the fingerprint information. The feature information for matching having a small size is generated. The feature information generation unit 22 is configured by, for example, an integrated circuit.

  The feature information generation unit 22 employs a feature point extraction method (maneuver method) as a method for extracting feature points of a fingerprint. The feature information for verification generated by the feature information generation unit 22 is not image information such as bitmap data, but coordinates indicating feature points of fingerprints, distances between adjacent feature points, or distribution patterns of feature points. Is a numerical value (for example, vector data).

  The collation feature information generated by the feature information generation unit 22 has a size smaller than the size of the fingerprint information acquired by the fingerprint information acquisition unit 21. The preferred size of the matching feature information is less than about 1 kilobyte, more preferably less than about 600 bytes. Further, it is desirable that the size of the collation feature information is 1/100 or less of the size of the fingerprint information. For example, the size of the matching feature information in this embodiment is approximately 128 bytes. Since the size of the fingerprint information in this embodiment is 48000 bytes, the size of the feature information for verification in this embodiment is 1 / 375th of the fingerprint information size.

  The format and size of the registration feature information generated by the feature information generation unit 22 are the same as the matching feature information.

  The encryption unit 23 encrypts the collation feature information generated by the feature information generation unit 22 by using the encryption key transmitted from the control device 7 in the unlock control process. The encryption unit 23 is configured by, for example, an integrated circuit.

  The identification information communication unit 31 receives check identification information for identifying the key device 5 from the management device 8 in the identification information registration process. Further, the identification information communication unit 31 transmits the identification information for checking to the control device 7 by the wireless communication method in the unlock control process.

  The encryption key receiving unit 32 receives the encryption key transmitted from the control device 7 in the unlock control process.

  The feature information transmission unit 33 transmits the registration feature information generated by the feature information generation unit 22 to the management device 8 in the feature information registration process. Further, the feature information transmission unit 33 controls the feature information for verification (unlock approval request signal) generated by the feature information generation unit 22 and encrypted by the encryption unit 23 in the unlock control process by the wireless communication method. Transmit to device 7.

  The identification information communication unit 31, the encryption key reception unit 32, and the feature information transmission unit 33 are configured by, for example, a wireless communication circuit.

  The storage unit 25 stores check identification information of the key device 5. In addition, when the electric lock 3 is unlocked by the key device 5, the storage unit 25 acquires the fingerprint information acquired by the fingerprint information acquisition unit 21, the matching feature information generated by the feature information generation unit 22, and the lock device 6. Temporarily store the encryption key sent from. The identification information for checking is held in the storage unit 25 even after the power of the key device 5 is turned off. On the other hand, the fingerprint information, the verification feature information, and the encryption key disappear from the storage unit 25 after the key device 5 is turned off. As the storage unit 25, for example, a rewritable nonvolatile memory such as a flash memory is used. The storage unit 25 includes a rewritable nonvolatile memory and a volatile memory such as a DRAM (Dynamic Random Access Memory) or SRAM (Static Random Access Memory), and the rewritable nonvolatile memory has identification information for checking. The fingerprint information, the verification feature information, and the encryption key may be stored in the volatile memory.

  The internal control unit 26 performs overall control of the key device 5. The internal control unit 26 includes, for example, a CPU (Central Processing Unit), a ROM (Read Only Memory), and a RAM. The ROM stores a program for performing overall control of the key device 5, and the CPU reads this program from the ROM and executes it. A RAM is used as a work area when the CPU executes a program. Further, initial identification information is stored in advance in the ROM of the internal control unit 26. The initial identification information is, for example, an identification number unique to the key device 5 and is given in the manufacturing process of the key device 5.

  FIG. 5 shows a specific embodiment of the key device of the present invention. As shown in FIG. 5, the key device 100 includes a fingerprint sensor 101, a fingerprint authentication circuit 102, a wireless communication circuit 103, a flash memory 104, a CPU 105, a ROM 106, and a RAM 107. The key device 100 corresponds to a specific example of the key device 5 in FIG. That is, the fingerprint sensor 101 is a specific example of the fingerprint information acquisition unit 21, the fingerprint authentication circuit 102 is a specific example of the feature information generation unit 22, the wireless communication circuit 103 is a specific example of the wireless communication unit 24, and a flash memory. Reference numeral 104 denotes a specific example of the storage unit 25, and the CPU 105, ROM 106, and RAM 107 are specific examples of the encryption unit 23 and the internal control unit 26.

  FIG. 6 shows the configuration of the lock device 6. As shown in FIG. 6, the lock device 6 includes a control device 7 and a management device 8, and the control device 7 and the management device 8 are connected by a LAN 9.

  The control device 7 includes a wireless communication unit 41, a wired communication unit 42, a control signal output unit 43, an information processing unit 44, an identification information storage unit 45, and an internal control unit 46. These components 41 to 46 are connected to each other via a bus. Further, the control device 7 is configured by arranging its constituent elements 41 to 46 on a small substrate. The control device 7 may be configured by a one-chip integrated circuit on which the components 41 to 46 and the like are mounted. Further, the control device 7 is attached to the electric lock 3, incorporated in the electric lock 3, or attached in the vicinity of the electric lock 3 (see FIG. 1).

  The wireless communication unit 41 includes an identification information receiving unit 47, an encryption key transmitting unit 48, and a feature information receiving unit 49. The identification information receiving unit 47 receives the identification information for checking the key device 5 transmitted from the key device 5 in the unlocking control process. The encryption key transmission unit 48 transmits the encryption key generated by the information processing unit 44 to the key device 5 by a wireless communication method in the unlock control process. The feature information receiving unit 49 receives the verification feature information (unlock approval request signal) transmitted from the key device 5 in the unlock control process. The wireless communication unit 41 is configured by, for example, a wireless communication circuit.

  In the identification information registration process, the wired communication unit 42 transmits the control device identification information stored in the identification information storage unit 45 to the management device 8 via the LAN 9. The wired communication unit 42 transfers the check identification information received by the identification information receiving unit 47 to the management device 8 via the LAN 9 in the unlock control process. The wired communication unit 42 receives the comparison result signal when the comparison result signal is transferred from the management device 8 in the unlocking control process. In the unlock control process, the wired communication unit 42 transfers the verification feature information (unlock approval request signal) received by the feature information receiving unit 49 to the management device 8 via the LAN 9. Further, the wire communication unit 42 receives the verification result signal when the verification result signal is transferred from the management device 8 in the unlocking control process. The wired communication unit 42 is configured by a LAN communication circuit or the like.

  The control signal output unit 43 sends a control signal for causing the electric lock 3 to perform the unlocking operation based on the collation result signal (control command) received by the wired communication unit 42 in the unlocking control process. Output to. The control signal output unit 43 is connected to the electric lock 3 by an electric wire such as a lead wire, and the control signal is sent from the control signal output unit 43 to the electric lock 3 through the electric wire. The control signal output unit 43 is configured by, for example, an electronic circuit that outputs a control signal based on a control command.

  The information processing unit 44 generates an encryption key and outputs the encryption key to the encryption key transmission unit 48 in the unlock control process. The encryption key will be described later. Further, the information processing unit 44 decrypts the verification feature information (unlock approval request signal) encrypted by the encryption unit 23 of the key device 5 in the unlock control process. The information processing unit 44 is configured by a small microcomputer or the like.

  The identification information storage unit 45 is a storage element such as a ROM or a RAM or a storage medium. The identification information storage unit 45 stores control device identification information for identifying the control device 7. The control device identification information is, for example, an identification number unique to the control device 7, and may be given during the manufacturing process of the control device 7, or may be input and held after shipment.

  The internal control unit 46 controls the control device 7 as a whole. The internal control unit 46 also determines that the check identification information and the registration identification information decrypted by the management device 8 do not match, or the matching feature information and the registration feature information do not satisfy a predetermined identity criterion. In this case, the control (rejection control process) for canceling the unlock control process is performed without unlocking the electric lock 3. The internal control unit 46 is configured by a small microcomputer or the like.

  On the other hand, the management device 8 is constituted by, for example, a personal computer or a server computer and is provided in the room 4 (see FIG. 1). As shown in FIG. 6, the management device 8 includes a storage unit 51, a wired communication unit 52, an identification information determination unit 53, a verification unit 55, a wireless communication unit 56, and an internal control unit 57.

  The storage unit 51 includes an identification information storage unit 58, a feature information storage unit 59, and a history information storage unit 60. The identification information storage unit 58 stores registration identification information of the key device 5 and control device identification information of the control device 7. When a plurality of key devices 5 are provided in the biometrics authentication wireless key lock system 1, a plurality of registration identification information is stored in the identification information storage unit 58 according to the number of key devices 5. When a plurality of control devices 7 are provided in the biometrics authentication wireless key lock system 1, a plurality of control device identification information is stored in the identification information storage unit 58 according to the number of control devices 7. The feature information storage unit 59 stores registration feature information (template) indicating the feature points of the fingerprint. In the biometrics authentication wireless key lock system 1, when the key device 5 is used jointly by a plurality of persons or when the plurality of key apparatuses 5 are respectively used by a plurality of persons, a plurality of registration devices are used depending on the number of users. Feature information is stored in the feature information storage unit 59. The history information storage unit 60 stores unlocking information of the electric lock 3 and the like. A recording medium constituting the storage unit 51 is, for example, a hard disk.

  The wired communication unit 52 receives the control device identification information transmitted from the control device 7 in the identification information registration process. The wired communication unit 52 receives the identification information for checking transferred from the control device 7 in the unlocking control process. In the unlocking control process, the wired communication unit 52 transfers the comparison result signal to the control device 7 when the identification information determination unit 53 determines that the check identification information matches the registration identification information. . The wired communication unit 52 receives the identification information for verification transferred from the control device 7 in the unlock control process. In the unlocking control process, the wired communication unit 52 sends a verification result signal to the control device 7 when the verification feature information and the registration feature information satisfy a predetermined identity criterion as a result of verification by the verification unit 55. Forward to. The wired communication unit 52 is configured by a LAN communication circuit, for example.

  In the unlock control process, the identification information determination unit 53 receives the check identification information of the key device 5 received by the wired communication unit 52 and the registration identification information of the key device 5 stored in advance in the identification information storage unit 58. Determine whether they match.

  The collation unit 55 collates the collation feature information transferred from the control device 7 with the registration feature information stored in advance in the feature information storage unit 59 in the unlock control process.

  The wireless communication unit 56 receives initial identification information transmitted from the key device 5 in the identification information registration process. In addition, the wireless communication unit 56 transmits the check identification information to the key device 5 in the identification information registration process. In addition, the wireless communication unit 56 receives the registration feature information transmitted from the key device 5 in the feature information registration process. The wireless communication unit 56 is configured by a wireless communication circuit, for example.

  The internal control unit 57 performs overall control of the management device 8. Further, in the identification information registration process, the internal control unit 57 encrypts the initial identification information and generates check identification information. Further, the internal control unit 57 decrypts the check identification information in the unlock control process.

  The identification information determination unit 53, the collation unit 55, and the internal control unit 57 are constituted by, for example, a CPU, a ROM, a RAM, and the like. The ROM stores a program for realizing the functions of the identification information determination unit 53, the collation unit 55, and the internal control unit 57, and the CPU reads the program from the ROM and executes it. A RAM is used as a work area when the CPU executes a program.

  FIG. 7 shows a specific embodiment of the control device of the present invention. As shown in FIG. 7, the control device 110 includes a wireless communication circuit 111, a LAN communication circuit 112, an electric lock control circuit 113, a CPU 114, a ROM 115, and a RAM 116. The control device 110 corresponds to a specific example of the control device 7 in FIG. That is, the wireless communication circuit 111 is a specific example of the wireless communication unit 41, the LAN communication circuit 112 is a specific example of the wired communication unit 42, the electric lock control circuit 113 is a specific example of the control signal output unit 43, and the CPU 114. The ROM 115 and the RAM 116 are specific examples of the information processing unit 44 and the internal control unit 46, and the ROM 115 is a specific example of the identification information storage unit 45.

  These circuits or elements constituting the control device 110 are arranged on a single small substrate 117. In addition, connection terminals 118 and 119 are provided on the substrate 117. The connection terminal 118 is a LAN terminal, for example, and is a terminal for connecting the LAN communication circuit 112 and the management apparatus 8. The connection terminal 119 is a terminal for connecting the electric lock control circuit 113 and the electric lock 3.

  8 to 11 show a flow of processing in the biometrics authentication wireless key lock system 1. The biometrics authentication wireless key lock system 1 performs an unlock control process, an identification information registration process, and a feature information registration process. The unlocking control process is a process for actually controlling the unlocking operation of the electric lock 3. The identification information registration process is a process that mainly stores control device identification information and registration identification information used in the unlocking control process in the identification information storage unit 58 of the management device 8. The feature information registration process is a process of storing the registration feature information used in the unlocking control process in the feature information storage unit 59 of the management device 8. The identification information registration process and the feature information registration process are preparation processes for performing the unlock control process. These processes are performed when the biometrics authentication wireless key lock system 1 is introduced or when the key device 5 is added. This is performed when the control device 7 is added.

  FIG. 8 shows the flow of identification information registration processing. As shown in FIG. 8, for example, the administrator of the biometrics authentication wireless key lock system 1 inputs to the management device 8 an instruction to set the management device 8 in the identification information registration mode. In response to this, the management device 8 enters the identification information registration mode (step S1).

  Subsequently, the control device 7 transmits the control device identification information stored in the identification information storage unit 45 to the management device 8 via the wired communication unit 42 (step S2). Subsequently, the wired communication unit 52 of the management device 8 receives the control device identification information transmitted from the control device 7, and stores this control device identification information in the identification information storage unit 58 (step S3).

  Subsequently, when an administrator or a user of the key device 5 inputs an instruction to transmit initial identification information from the key device 5 to the key device 5, the identification information communication unit 31 of the key device 5 stores the initial identification information in the management device. 8 (step S4).

  Subsequently, the wireless communication unit 56 of the management device 8 receives the initial identification information transmitted from the identification information communication unit 31 of the key device 5. The initial identification information is stored in the identification information storage unit 58 of the management device 8 as registration identification information (step S5). At this time, when the key device 5 and the control device 7 are combined (that is, when the electric lock 3 connected to the control device 7 is set to be unlocked by the key device 5), this registration is performed. The association is formed between the identification information for use and the control device identification information stored in the identification information storage unit 58 in step S3 (this process may include a plurality of control devices 7 as shown in FIG. 12). Is assumed).

  Subsequently, the internal control unit 57 of the management device 8 encrypts the registration identification information stored in the identification information storage unit 58 in step S5, thereby generating check identification information (step S6). Subsequently, the wireless communication unit 56 of the management device 8 transmits check identification information to the key device 5 (step S7).

  Subsequently, the identification information communication unit 31 of the key device 5 receives the identification information for checking transmitted from the management device 8. The identification information for checking is stored in the storage unit 25 of the key device 5 (step S8).

  FIG. 9 shows the flow of the feature information registration process. As shown in FIG. 9, for example, the administrator of the biometrics authentication wireless key lock system 1 inputs to the management device 8 an instruction to set the management device 8 to the feature information registration mode. In response to this, the management device 8 enters the feature information registration mode (step S11).

  Subsequently, the user of the key device 5 places his / her finger on the fingerprint detection surface 21 </ b> A of the fingerprint information acquisition unit 21 provided in the key device 5. Subsequently, the fingerprint information acquisition unit 21 reads the fingerprint of the finger that is in contact with the fingerprint detection surface 21A (step S12). Subsequently, the feature information generation unit 22 of the key device 5 extracts the feature points of the fingerprint from the fingerprint information read by the fingerprint information acquisition unit 21, shows the extracted feature points of the fingerprint, and uses the size of the fingerprint information. Registration feature information having a smaller size is generated (step S13). Subsequently, the feature information transmission unit 33 of the key device 5 transmits the registration feature information generated by the feature information generation unit 22 to the management device 8 (step S14).

  Subsequently, the wireless communication unit 56 of the management device 8 receives the registration feature information transmitted from the key device 5. The registration feature information is stored in the feature information storage unit 59 of the management device 8 (step S15).

  10 and 11 show the flow of unlocking control processing. As shown in FIG. 10, for example, the administrator of the biometrics authentication wireless key lock system 1 inputs to the management device 8 an instruction to set the management device 8 to the unlock control mode. In response to this, the management device 8 enters the unlocking control mode (step S21).

  Subsequently, the user of the key device 5 operates the key device 5 and transmits the check identification information to the control device 7 (step S22).

  Subsequently, the identification information receiving unit 47 of the control device 7 receives the check identification information transmitted from the key device 5 (step S23). Subsequently, the internal control unit 46 of the control device 7 reads the control device identification information stored in the identification information storage unit 45. Then, the wired communication unit 42 of the control device 7 transfers the check identification information and the control device identification information received in step S23 to the management device 8 (step S24).

  Subsequently, the wired communication unit 52 of the management device 8 receives the check identification information and the control device identification information transferred from the control device 7 (step S25).

  Subsequently, the internal control unit 57 of the management device 8 decodes the received check identification information. Thereby, the initial identification information transmitted from the key device 5 in the identification information registration process is obtained (step S26).

  Subsequently, the identification information determination unit 53 of the management device 8 specifies the control device identification information stored in the identification information storage unit 58 in the identification information registration process based on the control device identification information received in step S25. Then, the identification information determination unit 53 reads the registration identification information associated with the specified control device identification information from the identification information storage unit 58.

  Subsequently, the identification information determination unit 53 compares the registration identification information with the check identification information (initial identification information) decrypted in step S26, and determines whether or not they match (step S27). ). Subsequently, the internal control unit 57 of the management device 8 generates a comparison result signal indicating whether or not the decoded check identification information and the registration identification information match, and the comparison result signal is transmitted via the wired communication unit 42. To the control device 7 (step S28). At this time, the internal control unit 57 or the wired communication unit 42 of the management device 8 determines the control device 7 to be a transmission destination based on the control device identification information received in step S25.

  Subsequently, the wired communication unit 42 of the control device 7 receives the comparison result signal transferred from the management device 8 (step S29). Then, based on the comparison result signal, the internal control unit 46 of the control device 7 recognizes whether or not the decoded check identification information matches the registration identification information (step S30).

  When the decrypted check identification information and the registration identification information do not match (step S30: NO), the internal control unit 46 of the control device 7 performs a rejection control process (step S31). In the rejection control process, for example, the control device 7 transmits a command to the key device 5 and the management device 8 to end the unlock control process halfway. Thereby, the control signal output unit 43 of the control device 7 does not output the control signal, and as a result, the electric lock 3 is not unlocked.

  On the other hand, when the decrypted identification information for check matches the identification information for registration (step S30: YES), as shown in FIG. 11, the information processing unit 44 of the control device 7 generates an encryption key, The encryption key transmission unit 48 of the control device 7 transmits this encryption key to the key device 5 (step S32). It is desirable that the encryption key be generated by using a random number, a numerical value that changes with each transmission, a numerical value that constantly changes every moment, and the like, and change every time it is transmitted from the control device 7 to the key device 5.

  Subsequently, the encryption key receiving unit 32 of the key device 5 receives the encryption key transmitted from the control device 7 (step S33).

  Subsequently, the user of the key device 5 places his / her finger on the fingerprint detection surface 21 </ b> A of the fingerprint information acquisition unit 21 provided in the key device 5. Subsequently, the fingerprint information acquisition unit 21 reads the fingerprint of the finger that is in contact with the fingerprint detection surface 21A (step S34). Subsequently, the feature information generation unit 22 of the key device 5 extracts the feature points of the fingerprint from the fingerprint information read by the fingerprint information acquisition unit 21, shows the extracted feature points of the fingerprint, and uses the size of the fingerprint information. The feature information for verification having a smaller size is generated (step S35).

  Subsequently, the encryption unit 23 of the key device 5 encrypts the verification feature information using the encryption key received in Step S33 (Step S36). Then, the feature information transmission unit 33 of the key device 5 transmits the encrypted verification feature information to the control device 7 as an unlocking approval request signal (step S37).

  Subsequently, the feature information receiving unit 49 of the control device 7 receives the unlocking approval request signal transmitted from the key device 5 (step S38). Subsequently, the information processing unit 44 of the control device 7 decodes this unlocking approval request signal. Thereby, the characteristic information for collation is obtained (step S39). When decrypting the unlocking approval request signal, the encryption key generated by the information processing unit 44 in step S32 in the unlocking control process is used. Subsequently, the control device 7 transfers the matching feature information obtained by the decoding to the management device 8 via the wired communication unit 42 (step S40).

  Subsequently, the wired communication unit 52 of the management device 8 receives the matching feature information transferred from the control device 7 (step S41). Subsequently, the collation unit 55 of the management device 8 collates the feature information for collation with the registration feature information stored in the feature information storage unit 59, and the collation feature information and the registration feature information are predetermined. It is determined whether or not the identity criterion is satisfied (step S42).

  The identity criterion used for the collation judgment is a criterion for judging whether or not the identity is recognized between the collation feature information and the registration feature information. In addition to the case where the matching feature information and the registration feature information are completely the same, the range where identity is recognized may include cases where the two are not completely the same but can be considered substantially the same. Good.

  Subsequently, the internal control unit 57 of the management device 8 generates a collation result signal indicating whether or not the collation feature information and the registration feature information satisfy a predetermined identity criterion, and the collation result signal is transmitted via wired communication. It transfers to the control apparatus 7 via the part 52 (step S43). The verification result signal generated and transferred when the verification feature information and the registration feature information satisfy a predetermined identity standard corresponds to a control command for causing the electric lock 3 to perform the unlocking operation.

  Subsequently, the wired communication unit 42 of the control device 7 receives the verification result signal transferred from the management device 8 (step S44). Subsequently, the internal control unit 46 of the control device 7 recognizes whether or not the matching feature information and the registration feature information satisfy a predetermined identity criterion based on the matching result signal (step S45). .

  When the matching feature information and the registration feature information do not satisfy the predetermined identity standard (step S45: NO), the internal control unit 46 of the control device 7 performs a rejection control process (step S46). In the rejection control process, for example, the control device 7 transmits a command to the key device 5 and the management device 8 to end the unlock control process halfway. Thereby, the control signal output unit 43 of the control device 7 does not output the control signal, and as a result, the electric lock 3 is not unlocked.

  On the other hand, when the matching feature information and the registration feature information satisfy a predetermined identity criterion (step S45: YES), the control signal output unit 43 of the control device 7 performs the unlocking operation of the electric lock 3. A control signal for generating the signal is output to the electric lock 3 (step S47). Thereby, the electric lock 3 is unlocked.

  Subsequently, the internal control unit 46 of the control device 7 generates an unlock signal, and transfers this unlock signal to the management device 8 via the wired communication unit 42 (step S48). The unlock signal is a signal indicating that the electric lock 3 is actually unlocked.

  Subsequently, the wired communication unit 52 of the management device 8 receives the unlock signal transferred from the control device 7 (step S49). Subsequently, the internal control unit 57 of the management device 8 detects that the electric lock 3 is unlocked, the time when the electric lock 3 is unlocked, and the initial identification information of the key device 5 used for unlocking the electric lock 3. , Control device identification number of the control device that performed the unlock control of the electric lock 3, information for identifying the electric lock 3, registered feature information used for unlocking the electric lock 3 (or corresponding to this registered feature information) Information on the person having the fingerprint to be generated) is generated, and this unlocking information is stored in the history information storage unit 60 (step S50). The unlocking information stored in the history information storage unit 60 can be used for entrance / exit management of the room 4.

  When the electric lock 3 is unlocked, it is desirable to delete the fingerprint information, the characteristic information, and the encryption key from the storage unit 25 of the key device 5.

  As described above, in the biometrics authentication wireless key lock system 1, fingerprint information is acquired from a fingerprint, feature information for verification indicating a feature point of the fingerprint is generated from the fingerprint information, and the feature information for verification is transferred from the key device 5 to the lock device. 6 to send. The matching feature information is checked against registration feature information stored in advance in the lock device 6. That is, except for a short period in which the key device 5 is used by a true user, neither the verification feature information nor the registration feature information is stored in the key device 5. As a result, even if the key device 5 is stolen, neither the verification feature information nor the registration feature information can be read from the key device 5. Therefore, unauthorized unlocking of the electric lock 3 can be prevented, and security can be improved.

  Further, in the biometrics authentication wireless key lock system 1, the collation feature information and the registration feature information are collated on the lock device 6 side. For this reason, the registration feature information is stored in the lock device 6. Therefore, when the key device 5 is shared by a plurality of persons, a plurality of registration feature information may be stored in the lock device 6. That is, since it is not necessary to store the registration feature information in the key device 5, it is not necessary to provide a large-capacity storage unit in the key device 5 even when the key device 5 is shared by multiple people. Thereby, the size of the key device 5 can be reduced, the power consumption can be reduced, and the manufacturing cost of the key device 5 can be reduced. In addition, a key lock system capable of jointly using the key device 5 by a plurality of persons can be easily realized at low cost.

  In the biometrics authentication wireless key lock system 1, the key device 5 generates collation feature information having a size smaller than the size of the fingerprint information (image information), and transmits the collation feature information to the lock device 6. To do. Thereby, the transmission time of the characteristic information for collation can be shortened, and the operativity (responsiveness) and convenience of the biometrics authentication wireless key lock system 1 can be improved. Furthermore, it is possible to reduce the power required for transmitting the verification feature information. Since the size of the verification feature information in this embodiment is 1/100 or less of the size of the fingerprint information, the transmission time of the verification feature information can be significantly shortened, and the operability of the biometrics authentication wireless key lock system 1 is improved. (Responsiveness) and convenience can be greatly improved.

  Further, in the biometrics authentication wireless key lock system 1, an encryption key that changes at each transmission is transmitted from the lock device 6 to the key device 5, and the key device 5 encrypts the verification feature information using this encryption key, This encrypted feature information for verification (unlock approval request signal) is transmitted from the key device 5 to the lock device 6. Thus, even if the verification feature information being transmitted is illegally intercepted while the biometrics authentication wireless key lock system 1 is being used, the biometrics authentication wireless key lock system is subsequently used by using the intercepted feature information. Cannot be operated normally. Therefore, unauthorized unlocking can be prevented and the security of the biometrics authentication wireless key lock system 1 can be improved.

  Further, in the biometrics authentication wireless key lock system 1, identification information for checking for identifying the key device 5 is transmitted from the key device 5 to the control device 7, and this identification information for checking is further transmitted from the control device 7 to the management device 8. When the registration identification information stored in advance and the identification information for check do not match, the management device 8 does not permit the unlocking of the electric lock 3. As a result, combinations of the key device 5 and the control device 7 that can unlock the electric lock 3 can be restricted.

  For example, FIG. 12 shows an application example of the biometrics authentication wireless key lock system 1. The biometrics authentication wireless key lock system 1 shown in FIG. 12 includes a plurality of key devices 5a, 5b, 5c,..., A plurality of control devices 7a, 7b, 7c,. The unlocking control of the plurality of electric locks 3a, 3b, 3c,. Each key device 5 is used by a plurality of users. In this case, the electric lock 3a can be unlocked only in the combination of the key device 5a and the control device 7a, the combination of the key device 5b and the control device 7a, and the combination of the key device 5c and the control device 7a. . Further, the electric lock 3b can be unlocked only in the combination of the key device 5d and the control device 7b and in the combination of the key device 5e and the control device 7b. Moreover, the electric lock 3c can be unlocked only in the combination of the key device 5f and the control device 7c, and in the combination of the key device 5g and the control device 7c. In combinations other than these, any unlocking of the electric locks 3a, 3b, 3c is rejected. Therefore, the unlocking of the electric lock can be finely managed using the biometrics authentication wireless key lock system 1, and the security can be enhanced.

  In the biometrics authentication wireless key lock system 1, the lock device 6 is divided into a control device 7 and a management device 8, and the registration feature information is stored and the comparison feature information is compared with the registration feature information. The management device 8 stores the registration identification information and collates the check identification information with the registration identification information. On the other hand, fingerprint information acquisition and verification feature information generation are performed by the key device 5. As a result, the control device 7 mainly receives the collation feature information from the key device 5 and transfers it to the management device 8, and receives the check identification information from the key device 5 and sends it to the management device 8. A means for transferring and a means for outputting a control signal for unlocking the electric lock 3 in accordance with the verification result signal from the management device 8 may be provided. Any of these means to be provided in the control device 7 can be realized by a small circuit. That is, a storage element and a recording medium for storing feature information and identification information, an integrated circuit for collating feature information, an integrated circuit for determining a match of identification information, a fingerprint sensor for acquiring fingerprint information, Circuits and elements that tend to be relatively large, such as integrated circuits for generating feature information, can be excluded from the controller 7. Therefore, for example, all the circuits constituting the control device 7 can be arranged together on one small substrate. Alternatively, a single chip in which almost all circuits constituting the control device 7 are integrated can be manufactured. Thereby, for example, as shown in FIG. 1, the management device 8 can be installed in a wide space in the room 4, and only the control device 7 can be directly attached to the existing electric lock 3 and other various controlled devices. Further, only the control device 7 can be incorporated into the existing electric lock 3 and other various controlled devices. In this way, the control device 7 can be easily provided in various existing controlled devices, the range of controlled devices that can be controlled by the biometrics authentication wireless lock system 1 can be expanded, and the biometrics authentication wireless The versatility of the key lock system 1 can be improved.

  Moreover, according to the structure which divides | segments a locking device into a control apparatus and a management apparatus, the following effects are acquired. That is, as shown in FIG. 12, when a plurality of key devices 5a, 5b, 5c,... Are used by a plurality of persons, the number of registration feature information and the number of registration identification information to be stored in the lock device 6 are as follows. Become multiple. For this reason, the capacity of the storage unit for storing the plurality of registration feature information and the plurality of registration identification information must be increased. However, even in such a case, the storage unit for storing the registration feature information and the registration identification information is not in each control device 7a, 7b, 7c,. , 7b, 7c,... Therefore, even when a plurality of key devices 5a, 5b, 5c,... Are used by a plurality of persons, the high versatility of the biometrics authentication wireless key lock system 1 can be maintained. Furthermore, as shown in FIG. 12, when the plurality of electric locks 3a, 3b, 3c,... Are controlled by the biometrics authentication wireless key lock system 1, the number of feature information for registration further increases, and a larger capacity can be obtained. A storage means is required. However, even in such a case, the scale of each control device 7a, 7b, 7c,... Does not increase, and the high versatility of the biometrics authentication wireless key lock system 1 can be maintained.

  Further, as described above, the control device can be reduced in size by dividing the lock device into the control device and the management device. Thereby, the number of the control devices 7a, 7b, 7c,... Can be increased, and the control of the plurality of electric locks 3a, 3b, 3c,.

  Furthermore, in the biometrics authentication wireless key lock system 1, the control device identification information is given to the control device, and the management device identification is made by associating the key device to be used in combination with each other, the registration identification information of the control device, and the control device identification information. The information is stored in the information storage unit 58. When the check identification information and the registration identification information are determined to coincide, the registration identification information associated with the control device identification information is read from the identification information storage unit 58, and the registration identification information and the check identification information are read out. Is determined to match. Thus, as shown in FIG. 12, the lock device 6 is provided with a plurality of control devices 7a, 7b, 7c,..., And the plurality of electric locks 3a, 3b, 3c,. Can be controlled independently of each other.

  Further, as described above, according to the biometrics authentication wireless key lock system 1, a large scale in which there are a plurality of key devices, a plurality of control devices, a plurality of controlled devices (electric locks), and a plurality of key device users. It is possible to easily construct a security management system or the like and realize management with high security. For example, according to the biometrics authentication wireless key lock system 1, there are many rooms, and entrance / exit management of a large building that many people use can be easily realized, and high security is ensured. be able to.

  In the above-described embodiment, the case where the lock device 6 is divided into the control device 7 and the management device 8 has been described as an example, but the present invention is not limited to this. Like the lock device 70 shown in FIG. 13, the components of the control device and the components of the management device may be integrated. In this case, the lock device 70 is provided with an internal control unit 71 that performs overall control of the lock device 70. When the electric lock of the door is controlled by the lock device 70, the lock device 70 is attached in the vicinity of the electric lock of the door. Since the lock device 70 is larger than the control device 7 in FIG. 6, the size of the lock device 70 is larger than the size of the control device 7. For this reason, the locking device 70 is less versatile than the control device 7. However, depending on the usage environment, it may be more appropriate to introduce a biometric authentication wireless key lock system including the lock device 70, such as when it is difficult to install the management device 8 indoors.

  In the above-described embodiment, the case where the fingerprint information acquisition unit 21 is configured by a capacitive fingerprint sensor is taken as an example, but the present invention is not limited to this. A pressure-sensitive type, electric field type, electric field detection type, thermal type or other semiconductor type sensor, or an optical sensor may be used as the fingerprint sensor. Further, the fingerprint sensor is not limited to a flat sensor having the fingerprint detection surface 21A as shown in FIG. 3, but may be a line sensor or a sweep sensor. However, it is desirable that the fingerprint sensor is small and lightweight and has low power consumption.

  In the above-described embodiment, the case where the feature point extraction method (maneuver method) is adopted as a method for extracting the features of the fingerprint is taken as an example, but the present invention is not limited to this. Other methods may be used as long as they can generate feature information having a size smaller than the size of fingerprint information (image information). For example, a pattern matching method, a combination of a pattern matching method and a feature point extraction method, or a frequency analysis method may be employed.

  In the above-described embodiment, the case where fingerprint information is acquired from a finger by the key device 5 and the feature points of the fingerprint are extracted is taken as an example, but the present invention is not limited to this. Human body information other than fingerprint information may be acquired by the key device 5 as human body information including human body characteristic elements. Further, feature elements other than the fingerprint feature points may be extracted by the key device 5 as the human body feature elements. For example, facial information may be acquired, facial feature points may be extracted, vein information may be acquired, vein patterns may be extracted, iris information may be acquired, and iris features may be extracted. Alternatively, the voiceprint information may be acquired and the features of the voiceprint may be extracted. However, in any of these cases, when generating feature information from human body information, information processing based on a feature point extraction method or a frequency analysis method is performed to generate feature information having a size smaller than the size of the human body information.

  For example, the key device 130 shown in FIG. 14 includes a camera 131 as human body information acquisition means, and the camera 131 can acquire facial or iris information. In the key device 140 shown in FIG. 15, a camera 141 as human body information acquisition means is separated from the key device 142. The key device 150 shown in FIG. 16 includes a vein detection unit 151 as human body information acquisition means, and can detect a vein pattern of a finger inserted into the insertion port 151A. The key device of the present invention includes such a key device.

  In addition, it is desirable that the wireless communication between the key device 5 and the lock device 6 be performed by directly transmitting and receiving radio waves and infrared rays between the two.

  In the above-described embodiment, in the identification information registration process, transmission of initial identification information from the key device 5 to the management device 8 and transmission of identification information for checking from the management device 8 to the key device 5 are performed by a wireless communication method. Although the case where it carries out was given as an example, the present invention is not limited to this. The key device 5 and the management device 8 are provided with means for connecting the two with an electric wire such as a cable, and the initial identification information and the check identification information between the key device 5 and the management device 8 are transferred via the electric wire such as a cable. You may go.

  In the above-described embodiment, an example has been given in which the feature information for registration is transmitted from the key device 5 to the management device 8 by the wireless communication method in the feature information registration process. However, the present invention is not limited to this. Absent. The key device 5 and the management device 8 may be provided with means for connecting the two with an electric wire such as a cable, and the registration feature information may be transmitted from the key device 5 to the management device 8 via the electric wire such as a cable. Alternatively, a fingerprint sensor device different from the key device 5 may be used to register the registration feature information in the management device 8.

  In the above-described embodiment, the case where the control device 7 and the management device 8 are connected by the LAN 9 is described as an example, but the present invention is not limited to this. For example, the control device 7 and the management device 8 may be connected by PLC (power line carrier communication). Further, the interconnection between the control device 7 and the management device 8 is not limited to a wired connection but may be wireless (for example, a wireless LAN). Further, any communication protocol can be used as a communication protocol between the control device 7 and the management device 8.

  In the above-described embodiment, as shown in FIGS. 10 and 11, after the determination that the check identification information matches the registration identification information (step S22 to step S30), the encryption key is transmitted and received. An example of acquiring fingerprint information, generating verification feature information, encrypting verification feature information, and transmitting encrypted verification feature information (unlock approval request signal) (steps S32 to S37) I gave it to According to this example, when the check identification information and the registration identification information do not match, neither fingerprint information acquisition nor collation feature information generation is performed. For this reason, it is excellent in that privacy information such as fingerprint information can be protected and that labor can be saved without performing useless operations. However, the present invention is not limited to this. For example, the fingerprint information is first obtained and the verification feature information is generated in the key device 5, and then the check identification information is transmitted from the key device 5 to the control device 7, and the check identification information is further transmitted to the control device. 7 to the management device 8, the management device 8 decrypts the check identification information, and determines whether or not the decrypted check identification information matches the registration identification information. The control device 7 transmits an encryption key to the key device 5 based on the above, the key device 5 encrypts the previously generated verification feature information using this encryption key, and the encrypted verification feature information (Unlock approval request signal) may be transmitted from the key device 5 to the control device 7. According to this procedure, triggered by acquisition of fingerprint information in the key device 5, generation of verification feature information, determination of matching between the identification information for check and the identification information for registration, encryption of the verification feature information, and encryption It is possible to automatically and continuously transmit the collated feature information without performing a dialogue with the user of the key device 5 during these processes. Therefore, the operability of the biometrics authentication wireless key lock system 1 at the time of unlocking can be enhanced.

  Moreover, although the case where the unlocking operation | movement of the electric lock 3 of the door 2 was controlled by the biometrics authentication wireless key lock system 1 was mentioned as an example in embodiment mentioned above, it can control by the key lock system of this invention. The operation of the controlled device is not limited to this. The key lock system of the present invention is applied to lock control, start of an automobile engine, operation of a medical device, start of a computer, login to a computer system, operation of a factory automation system, and operation control of other devices, devices or systems. be able to.

  Moreover, in FIG. 2, the electric lock 3 is a specific example of the controlled device. In FIG. 4, the fingerprint information acquisition unit 21 is a specific example of the fingerprint information acquisition unit, the feature information generation unit 22 is a specific example of the feature information generation unit, and the encryption unit 23 is a specific example of the encryption unit. The identification information communication unit 31 is a specific example of the identification information transmission unit, the encryption key reception unit 32 is a specific example of the encryption key reception unit, and the feature information transmission unit 33 is a specific example of the feature information transmission unit.

  In FIG. 6, the wired communication unit 42 is a specific example of the feature information transfer unit, the control signal output unit 43 is a specific example of the control signal output unit, and the identification information receiving unit 47 is a specific example of the identification information receiving unit. The information processing unit 44 and the encryption key transmitting unit 48 are specific examples of the encryption key transmitting unit, the feature information receiving unit 49 is a specific example of the feature information receiving unit, and the information processing unit 44 is a specific example of the decrypting unit. The wired communication unit 52 is a specific example of the control command transfer unit, the identification information determination unit 53 is a specific example of the identification information determination unit, the verification unit 55 is a specific example of the verification unit, and the identification information storage unit 58 is a specific example of the identification information storage unit, the feature information storage unit 59 is a specific example of the feature information storage unit, and the internal control unit 46 is a specific example of the rejection control unit.

  Further, step S34 in FIG. 11 is a specific example of the human body information acquisition process, step S35 is a specific example of the characteristic information generation process, step S37 is a specific example of the characteristic information transmission process, and step S38 is the characteristic information. This is a specific example of the reception process, step S42 is a specific example of the collation process, and step S47 is a specific example of the control signal output process.

  In addition, the present invention can be appropriately changed without departing from the gist or concept of the invention that can be read from the claims and the entire specification, and a biometrics authentication wireless key lock system, a key device, The lock device, the control device, and the specific operation control method are also included in the technical idea of the present invention.

It is explanatory drawing which shows embodiment of the biometrics authentication wireless key lock system of this invention. It is a block diagram which shows the structure of the biometrics authentication wireless key lock system in FIG. It is a perspective view which shows the external appearance of the key apparatus in FIG. It is a block diagram which shows the structure of the key apparatus in FIG. It is a block diagram which shows the specific Example of the key apparatus of this invention. It is a block diagram which shows the structure of the locking device in FIG. It is a block diagram which shows the specific Example of the control apparatus of this invention. It is a flowchart which shows the identification information registration process in embodiment of the biometrics authentication wireless key lock system of this invention. It is a flowchart which shows the characteristic information registration process in embodiment of the biometrics authentication wireless key lock system of this invention. It is a flowchart which shows the unlocking control process in embodiment of the biometrics authentication wireless key lock system of this invention. It is a flowchart following FIG. It is explanatory drawing which shows the utilization example of the biometrics authentication radio | wireless key lock system in case there exist two or more each of a key apparatus, a control apparatus, and an electric lock, and each key apparatus uses together. It is a block diagram which shows other embodiment of the locking device of this invention. It is a perspective view which shows other embodiment of the key apparatus of this invention. It is a perspective view which shows another embodiment of the key apparatus of this invention. It is a perspective view which shows another embodiment of the key apparatus of this invention.

Explanation of symbols

DESCRIPTION OF SYMBOLS 1 Biometrics authentication wireless key lock system 3 Electric lock 5, 130, 140, 150 Key device 6, 70 Lock device 7 Control device 8 Management device 21 Fingerprint information acquisition part 22 Feature information generation part 23 Encryption part 31 Identification information communication part 32 Encryption Key Receiving Unit 33 Feature Information Transmitting Unit 42 Wired Communication Unit 43 Control Signal Output Unit 44 Information Processing Unit 45 Identification Information Storage Unit 47 Identification Information Receiving Unit 48 Encryption Key Transmitting Unit 49 Feature Information Receiving Unit 52 Wired Communication Unit 53 Identification Information Determination unit 55 collation unit 58 identification information storage unit 59 feature information storage unit 131, 141 camera 151 vein detection unit

Claims (12)

A key lock system comprising a key device and a lock device,
The key device is:
Human body information acquisition means for acquiring human body information including characteristic elements of the human body from the human body;
The feature element of the human body is extracted from the human body information acquired by the human body information acquisition means, and the first feature information indicating the extracted human body characteristic element and having a size smaller than the size of the human body information is generated. Information generating means;
Feature information transmitting means for transmitting the first feature information generated by the feature information generating means by a wireless communication method;
The locking device is
Characteristic information storage means for storing second characteristic information indicating characteristic elements of the human body;
Feature information receiving means for receiving first feature information transmitted from the key device;
Collation means for collating the first feature information received by the feature information receiving means with the second feature information stored in advance in the feature information storage means;
When the first feature information and the second feature information satisfy a predetermined identity criterion as a result of the collation by the collating means, a control signal for causing the controlled device to perform a specific operation is sent to the controlled device. And a control signal output means for outputting to the key lock system. The human body information is image information indicating a part of the human body,
The feature information generation unit extracts the feature element of the human body from the image information acquired by the human body information acquisition unit, shows the extracted feature element of the human body, and has a size smaller than the size of the image information. The key lock system according to claim 1, wherein one feature information is generated.   The key lock system according to claim 1, wherein the size of the first feature information is 1/100 or less of the size of the human body information. The key device is:
An encryption key receiving means for receiving the encryption key transmitted from the lock device;
Encryption means for encrypting the first feature information using the encryption key received by the encryption key receiving means,
The locking device is
Encryption key transmitting means for generating the encryption key and transmitting the encryption key by a wireless communication method;
Decryption means for decrypting the first feature information encrypted by the encryption means,
The key lock system according to claim 1, wherein the encryption key transmission unit changes the encryption key for each transmission. The key device is:
An identification information transmitting means for transmitting the first identification information for identifying the key device by a wireless communication method;
The locking device is
Identification information storage means for storing second identification information for identifying the key device;
Identification information receiving means for receiving first identification information transmitted from the key device;
Identification information judging means for judging whether or not the first identification information received by the identification information receiving means matches the second identification information stored in advance by the identification information storage means;
A rejection control means for preventing the control signal output means from outputting the control signal when the first identification information and the second identification information do not match as a result of the determination by the identification information determination means. The key lock system according to claim 1, further comprising: The locking device includes a control device and a management device,
The control device comprises the feature information receiving means, feature information transfer means, and the control signal output means,
The management device includes the feature information storage unit, the collation unit, and a control command transfer unit,
The feature information transfer means transfers the first feature information received by the feature information reception means from the control device to the management device,
The collation unit collates the first feature information transferred by the feature information transfer unit and the second feature information stored in advance in the feature information storage unit,
The control command transfer unit causes the controlled device to perform the specific operation when the first feature information and the second feature information satisfy a predetermined identity criterion as a result of the collation by the collation unit. Is transferred to the control device,
The lock control system according to claim 1, wherein the control signal output means outputs the control signal to the controlled device based on the control command transferred by the control command transfer means. The key device is:
An identification information transmitting means for transmitting the first identification information for identifying the key device by a wireless communication method;
The controller is
Identification information receiving means for receiving first identification information transmitted from the key device;
An identification information transfer means for transferring the first identification information received by the identification information receiving means to the management device;
The management device
Identification information storage means for storing second identification information for identifying the key device;
An identification information judging means for judging whether or not the first identification information transferred by the identification information transferring means matches the second identification information stored in advance by the identification information storage means;
The control device or the management device is
Rejection control means for preventing output of the control signal by the control signal output means when the first identification information and the second identification information do not match as a result of determination by the identification information determination means; The key lock system according to claim 6, further comprising:   The key lock system according to claim 6, wherein the control device has third identification information for identifying the control device. A key device that controls the operation of a controlled device that is a control target of the lock device by transmitting feature information indicating a feature element of the human body to the lock device,
Human body information acquisition means for acquiring human body information including characteristic elements of the human body from the human body;
Feature information generation for extracting feature elements of the human body from the human body information acquired by the human body information acquisition means, and generating feature information indicating the extracted feature elements of the human body and having a size smaller than the size of the human body information Means,
A key device comprising: feature information transmitting means for transmitting the feature information generated by the feature information generating means by a wireless communication method. A lock device that receives first feature information transmitted from a key device by a wireless communication method and indicates a feature element of a human body, and controls the operation of the controlled device based on the reception of the first feature information,
Characteristic information storage means for storing second characteristic information indicating characteristic elements of the human body;
Feature information receiving means for receiving the first feature information transmitted from the key device;
Collation means for collating the first feature information received by the feature information receiving means with the second feature information stored in advance in the feature information storage means;
When the first feature information and the second feature information satisfy a predetermined identity standard as a result of the collation by the collating means, a control signal for causing the controlled device to perform a specific operation is transmitted to the controlled device. A lock device comprising control signal output means for outputting to the device. A control device for controlling the operation of the controlled device together with the key device and the management device,
Characteristic information receiving means for receiving first characteristic information transmitted from the key device and indicating characteristic elements of the human body;
Feature information transfer means for transferring the first feature information received by the feature information receiving means to the management device;
Based on a control command transferred from the management device when the first feature information and the second feature information satisfy a predetermined identity criterion by a matching process performed in the management device, a specific operation is performed on the controlled device. And a control signal output means for outputting a control signal for performing the control to the controlled device. A specific operation control method for controlling a specific operation of the controlled device so as not to allow a person other than the specific person to execute the specific operation of the controlled device by using a key device and a lock device,
Human body information acquisition step of acquiring human body information including the characteristic elements of the human body from the human body;
The feature element of the human body is extracted from the human body information acquired in the human body information acquisition step, and the first feature information indicating the extracted human body feature element and having a size smaller than the size of the human body information is generated. Information generation process;
A feature information transmitting step of transmitting the first feature information generated in the feature information generating step by a wireless communication method;
A feature information receiving step for receiving the first feature information transmitted in the feature information transmitting step;
A collation step of collating the first feature information received in the feature information receiving step with the second feature information stored in advance in the storage means and indicating the feature element of the human body;
As a result of the collation in the collation step, when the first feature information and the second feature information satisfy a predetermined identity criterion, a control signal for causing the controlled device to perform a specific operation is transmitted to the controlled device. A control signal output step for outputting to the device,
The human body information acquisition step, the feature information generation step, and the feature information transmission step are executed by a key device, and the feature information reception step, the collation step, and the control signal output step are performed by the lock device including the storage unit. A specific operation control method characterized by being executed.

Images