WO2026048052A1 - Dispositif terminal, procédé de commande de terminal et programme de commande de terminal - Google Patents

Dispositif terminal, procédé de commande de terminal et programme de commande de terminal

Info

Publication number
WO2026048052A1
WO2026048052A1 PCT/JP2024/031461 JP2024031461W WO2026048052A1 WO 2026048052 A1 WO2026048052 A1 WO 2026048052A1 JP 2024031461 W JP2024031461 W JP 2024031461W WO 2026048052 A1 WO2026048052 A1 WO 2026048052A1
Authority
WO
WIPO (PCT)
Prior art keywords
user
determination
information
request
terminal device
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
PCT/JP2024/031461
Other languages
English (en)
Japanese (ja)
Inventor
康治 齋藤
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
NEC Corp
Original Assignee
NEC Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by NEC Corp filed Critical NEC Corp
Priority to PCT/JP2024/031461 priority Critical patent/WO2026048052A1/fr
Publication of WO2026048052A1 publication Critical patent/WO2026048052A1/fr
Pending legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/32User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints

Definitions

  • This disclosure relates to a terminal device, a terminal control method, and a terminal control program.
  • apps application programs
  • Users can use a single mobile device to access a variety of services by using different apps.
  • Patent Document 1 discloses technology related to collaboration between a first app and a second app installed on a user terminal.
  • the first app provides a first service to the user.
  • the second app provides a second service to the user.
  • the first app is a super app
  • the second app is a mini app that can be used from the super app.
  • the services provided by each app installed on a mobile device include services that provide benefits to members and payment services. These services require multiple confirmation processes (or determination processes) related to personal information, such as identity verification (authentication process) and determination of the user's attributes.
  • identity verification authentication process
  • determination process determination of the user's attributes
  • the user in order for each app to perform multiple confirmation processes related to personal information, the user must perform operations and procedures such as registering personal information and performing authentication processes for each app.
  • a terminal device such as a mobile device to use multiple services, each of which requires multiple confirmation processes related to personal information, requires cumbersome user operations and procedures.
  • the technology described in Patent Document 1 above relates to collaboration between apps that are related to super apps and mini apps.
  • the purpose of this disclosure is to provide a terminal device, a terminal control method, and a terminal control program that use an app that operates independently of other apps within the terminal device to support the provision of services that require verification processing (or determination processing) regarding personal information.
  • a terminal device includes: a registration means for registering personal information including biometric information and attribute information of a user; a determination control means that operates within its own device and, when receiving a determination request regarding the user's identity information from a service providing application that provides at least one service to the user, authenticates the user using the registered biometric information, and, if the user is successful in the identity authentication, determines whether or not the user satisfies a determination condition based on the determination request using the registered identity information, and outputs the determination result to the service providing application; Equipped with.
  • the terminal control program includes: On the computer, A process of registering personal information including biometric information and attribute information of the user in a storage device; A process of receiving a determination request regarding the personal information from a service providing application that operates within the computer and provides at least one service to the user; When the determination request is received, a process of authenticating the user using the registered biometric information; If the user has successfully been authenticated, a process of determining whether the registered personal information satisfies the determination condition based on the determination request; a process of outputting a determination result to the service providing application; Execute the following.
  • This disclosure makes it possible to support the provision of services that require verification processing (or determination processing) regarding personal information, using an app that operates independently of other apps within a terminal device.
  • the member service system 220 receives a coupon acquisition request from the member AP 130 via the communications network N.
  • the member service system 220 then issues a discount coupon for products such as alcoholic beverages to the member ID included in the received coupon acquisition request (S118).
  • the member service system 220 may register the coupon issued to the member ID in a database that manages member information, in association with the member ID.
  • the member service system 220 then sends a notification of the acquisition of the discount coupon to the member AP 130 via the communications network N (S119).
  • the member AP 130 displays the received discount coupon on the screen (S120). This allows the user U to use the discount coupon for products such as alcoholic beverages when making a payment.
  • the identity verification service system 210 receives a "20 years or older determination request" from the payment AP 140. Then, similar to step S113 in Figure 6 above, the identity verification service system 210 transfers the "20 years or older determination request" to the destination identity verification AP 120 via communication network N (S155). The identity verification AP 120 then receives the "20 years or older determination request” from the identity verification service system 210 via communication network N. In other words, the identity verification AP 120 is called by a deep link from the payment AP 140. The identity verification AP 120 then executes the determination control process (S156).
  • user U only needs to register personal identification information in personal identification AP 120; there is no need to register personal identification information in other applications, such as member AP 130 or payment AP 140. This reduces the burden on user U of the registration procedure for personal identification information. Furthermore, member AP 130 and payment AP 140 do not register or manage personal information in member AP area 113 and payment AP area 114. This allows personal information to be centrally managed in personal identification AP area 112 using personal identification AP 120.
  • the judgment conditions based on the judgment request for personal information may include information on the age that the user U must satisfy from the attribute information 32. For example, this can be easily achieved by setting "20 years or older" as a parameter for the general-purpose "judgment request" instead of the above-described "20 years or older judgment request.”
  • the judgment conditions based on the judgment request for personal information may include information on the qualifications that the user U must satisfy from the attribute information 43. In other words, the judgment condition is not limited to age. This makes the technology disclosed herein applicable to judgment processes related to various personal information.
  • the judgment request related to personal information may include an age threshold that the user must meet in the judgment condition.
  • Figure 9 is a sequence chart showing the flow of the member service usage process.
  • the member service is the provision of discount coupons with an age limit of 60 years or older.
  • the member AP 130 accepts from the user U an operation to acquire a coupon that requires age verification (60 years or older) (S111a).
  • the member AP 130 sends a "determination request" including terminal information 1132 and the determination condition "60 years or older" to the identity verification service system 210 via the communication network N, addressed to the identity verification AP 120 (S112a).
  • the member AP 130 may send the determination request using a deep link that calls the API for the "determination request.”
  • the parameters of the deep link may include, for example, the mobile phone number of the user terminal 100 and the information "60 years or older.”
  • the identity verification service system 210 then receives a "determination request” from the member AP 130 and transfers the "determination request” including the terminal information 1132 and the determination criterion "60 years old or older" to the destination identity verification AP 120 via communication network N (S113a).
  • the identity verification AP 120 then receives the "determination request” including the terminal information 1132 and the determination criterion "60 years old or older” from the identity verification service system 210 via communication network N.
  • the personal identification AP 120 executes the judgment control process (S114).
  • the personal identification AP 120 references the judgment history 1121 and determines whether it is within a predetermined time since the output of the previous judgment result for the same judgment condition "60 years or older" included in the received "judgment request" (S132).
  • the subsequent process is the same as the judgment control process in Figure 7 above.
  • steps S115 to S120 in Figure 9 are the same as those in Figure 8 above.
  • the coupon acquired and issued is a discount coupon with an age limit of 60 years or older.
  • the determination control unit 122 may generate a password using the seed value and output the generated password to the service providing app together with the determination result. Since the configuration of the service providing system according to this embodiment 4 is the same as that shown in FIG. 3 above, illustration and description thereof will be omitted. However, the description will be given assuming that the user terminal 100 in FIG. 3 has been changed to a user terminal 100b. In the following, description of functions and processes equivalent to those of the above-described embodiments will be omitted as appropriate.
  • Each of the random number generation units 123, 133, and 143 generates a random number using the same random number generation algorithm for the input seed value and outputs the generated random number as a password.
  • the seed value is a numeric string or the like with a predetermined number of digits generated by an arbitrary random number generation algorithm in each of the identity verification AP 120, member AP 130, and payment AP 140.
  • the OTP 1123, etc. is a numeric string or the like with a predetermined number of digits.
  • the output unit 1224b outputs the OTP 1123 generated by the random number generation unit 123 to the requestor along with the determination result.
  • Figure 11 is a sequence chart showing the flow of the member service usage process.
  • the member service is assumed to be the same as that shown in Figure 6 above, but is not limited to this.
  • the member AP 130 accepts from the user U an operation to acquire a coupon that requires age verification (20 years of age or older) (S111).
  • the member AP 130 generates a seed value of a predetermined number of digits using an arbitrary random number generation algorithm (S161).
  • the random number generation unit 133 then generates an OTP 1133 from the seed value generated in step S161 (S162).
  • the random number generation unit 133 then stores the OTP 1133 generated in step S162 in the member AP area 113 (S163).
  • Figure 12 is a flowchart showing the flow of the judgment control process.
  • the reception unit 1221 of the personal verification AP 120 receives a judgment request with an age of 20 or older as a judgment condition (S131b).
  • the judgment request includes a seed value.
  • the random number generation unit 123 generates an OTP 1123 from the seed value included in the received judgment request (S171).
  • the random number generation unit 123 saves the generated OTP 1123 in the personal verification AP area 112 (S172).
  • the identity verification AP 120 reads the previous judgment result under the same judgment conditions from the judgment history 1121 (S141). Then, the output unit 1224b outputs the read judgment result and OTP 1123 to the requestor, as in step S138b (S142b). After step S138b or S142b, the history update unit 1225 updates the judgment result (and output time) under the same judgment conditions in the judgment history 1121 (S143).
  • the identity verification AP 120 transmits the determination result including "true” and OTP 1123 to the identity verification service system 210 via communication network N, with the member AP 130 as the destination (S115b).
  • the identity verification service system 210 receives the determination result from the identity verification AP 120 and transfers the determination result including "true” and OTP 1123 to the destination member AP 130 via communication network N (S116b).
  • the member AP 130 then receives the determination result from the identity verification service system 210 via communication network N.
  • Figure 13 is a block diagram showing the overall configuration of the service providing system 1000c. Compared to Figure 3 above, the service providing system 1000c has the user terminal 100 and identity verification service system 210 replaced by a user terminal 100c and identity verification service system 210c. Note that in the following, descriptions of functions and processes equivalent to those in the above-mentioned embodiment will be omitted where appropriate.
  • the identity verification AP 120c provided on the user terminal 100c requests identity verification processing from the identity verification service system 210c and receives the authentication result.
  • the identity verification service system 210c has the following functions in addition to the functions of the identity verification service system 210 described above.
  • the identity verification service system 210c includes a face information DB 250, a registration unit 211, and an authentication unit 212.
  • the face information DB (DataBase) 250 stores identity information 25 that associates a user ID 251, facial feature information 252, and attribute information 253.
  • the user ID 251 is identification information for the user U.
  • the facial feature information 252 is a feature vector indicating a collection of feature amounts, such as the distance between feature points corresponding to the positions of the eyes, nose, mouth, etc., extracted from the facial image of the user U.
  • the facial feature information 252 is an example of the master biometric information of the user U.
  • the attribute information 253 is attribute information 32 read from the personal identification card 300.
  • Appendix A6 The first service providing application The terminal device according to Appendix A4 or A5, wherein, when the determination result indicates that the user's age satisfies the determination condition, privilege information that has age as a usage condition is made available.
  • Appendix A7 The second service providing app The terminal device according to any one of Supplementary Notes A4 to A6, wherein if the determination result indicates that the user's age satisfies the determination condition, payment for a product for which age is a payment condition is permitted.
  • Appendix A8 The terminal device according to any one of Appendix A1 to Appendix A7, wherein the request for determination regarding the personal information includes a condition of the attribute information that the user must satisfy.
  • (Appendix B1) The computer registering personal information including biometric information and attribute information of the user in a storage device; receiving a request for determination regarding the personal information from a service providing application that operates within the computer and provides at least one service to the user; When the determination request is received, the registered biometric information is used to authenticate the user; If the user has been successfully authenticated, the registered personal information is used to determine whether the user satisfies the determination condition based on the determination request; A terminal control method in which a result of the determination is output to the service providing application.
  • (Appendix C1) On the computer, A process of registering personal information including biometric information and attribute information of the user in a storage device; A process of receiving a determination request regarding the personal information from a service providing application that operates within the computer and provides at least one service to the user; When the determination request is received, a process of authenticating the user using the registered biometric information; If the user has successfully been authenticated, a process of determining whether the registered personal information satisfies the determination condition based on the determination request; a process of outputting a determination result to the service providing application; A terminal control program that executes the
  • Appendix A2 to Appendix A15 which are dependent on Appendix A1 (e.g., apparatus), may also be dependent on Appendix B1 (e.g., method) and Appendix C1 (e.g., program) in the same dependency relationship as Appendix A2 to Appendix A15.
  • Appendix B1 e.g., method
  • Appendix C1 e.g., program

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

L'invention concerne un dispositif terminal qui comprend un moyen d'enregistrement qui enregistre des informations d'identité comprenant des informations biologiques et des informations d'attribut d'un utilisateur, et un moyen de commande de détermination qui fonctionne à l'intérieur du dispositif hôte et qui, si une demande de détermination concernant les informations d'identité a été reçue en provenance d'une application de fourniture de service qui fournit au moins un service à l'utilisateur, effectue une authentification d'identité de l'utilisateur à l'aide des informations biologiques enregistrées, et si l'utilisateur a réussi l'authentification d'identité, détermine si une condition de détermination basée sur la demande de détermination est satisfaite à l'aide des informations d'identité enregistrées, et délivre les résultats de détermination de la détermination à l'application de fourniture de service.
PCT/JP2024/031461 2024-09-02 2024-09-02 Dispositif terminal, procédé de commande de terminal et programme de commande de terminal Pending WO2026048052A1 (fr)

Priority Applications (1)

Application Number Priority Date Filing Date Title
PCT/JP2024/031461 WO2026048052A1 (fr) 2024-09-02 2024-09-02 Dispositif terminal, procédé de commande de terminal et programme de commande de terminal

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/JP2024/031461 WO2026048052A1 (fr) 2024-09-02 2024-09-02 Dispositif terminal, procédé de commande de terminal et programme de commande de terminal

Publications (1)

Publication Number Publication Date
WO2026048052A1 true WO2026048052A1 (fr) 2026-03-05

Family

ID=98929936

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2024/031461 Pending WO2026048052A1 (fr) 2024-09-02 2024-09-02 Dispositif terminal, procédé de commande de terminal et programme de commande de terminal

Country Status (1)

Country Link
WO (1) WO2026048052A1 (fr)

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2013206232A (ja) * 2012-03-29 2013-10-07 Japan Tobacco Inc 自動販売機システム
JP2014092943A (ja) * 2012-11-05 2014-05-19 Hitachi Ltd サービス提供システム
JP2014225186A (ja) * 2013-05-17 2014-12-04 日本電信電話株式会社 ユーザ認証装置、方法及びプログラム
US20180242149A1 (en) * 2017-02-22 2018-08-23 Samsung Electronics Co., Ltd. Method and apparatus for authenticating users in internet of things environment
JP2022143846A (ja) * 2021-03-18 2022-10-03 株式会社東芝 セキュリティデバイスおよび情報管理システム

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2013206232A (ja) * 2012-03-29 2013-10-07 Japan Tobacco Inc 自動販売機システム
JP2014092943A (ja) * 2012-11-05 2014-05-19 Hitachi Ltd サービス提供システム
JP2014225186A (ja) * 2013-05-17 2014-12-04 日本電信電話株式会社 ユーザ認証装置、方法及びプログラム
US20180242149A1 (en) * 2017-02-22 2018-08-23 Samsung Electronics Co., Ltd. Method and apparatus for authenticating users in internet of things environment
JP2022143846A (ja) * 2021-03-18 2022-10-03 株式会社東芝 セキュリティデバイスおよび情報管理システム

Similar Documents

Publication Publication Date Title
US11310230B2 (en) System for electronic authentication with live user determination
US20230129693A1 (en) Transaction authentication and verification using text messages and a distributed ledger
US11418348B1 (en) Distributed ledger system for identity data storage and access control
KR102693434B1 (ko) 전자 결제 기능을 제공하는 전자 장치 및 그의 동작 방법
US10387632B2 (en) System for provisioning and allowing secure access to a virtual credential
KR102216877B1 (ko) 전자장치에서 생체 정보를 이용한 인증 방법 및 장치
US10237269B2 (en) Method of providing information security and electronic device thereof
JP7444219B2 (ja) 生体データ照合システム
US11676118B2 (en) Methods and systems for conducting multi-user interactions on a device using biometric authentication
US11956364B2 (en) Information processing device and information processing method
CN106030598A (zh) 用于移动装置的信任代理认证方法
CN108293054A (zh) 用于使用社交网络的生物测定认证的系统和方法
CN113158154B (zh) 移动装置、验证终端装置及身份验证方法
JP2022171928A (ja) 端末装置、認証サーバ、端末装置の制御方法、認証方法及びプログラム
CN117575593A (zh) 一种第三方支付方法及系统
JP2023126937A (ja) 情報処理装置、情報処理方法、及びプログラム
KR102348401B1 (ko) Did 서명 및 검증을 이용한 임계 서명 시스템과 방법
WO2026048052A1 (fr) Dispositif terminal, procédé de commande de terminal et programme de commande de terminal
KR102319708B1 (ko) 전자 장치의 생체 정보 처리 방법 및 장치
US11989739B2 (en) System and method for identity verification
WO2023084765A1 (fr) Dispositif d'exécution de traitement, terminal utilisateur, système d'authentification, procédé d'exécution de traitement, procédé d'authentification et support lisible par ordinateur
EP4020486B1 (fr) Système et procédé pour fournir un état de santé avec un billet d'événement
US11722317B2 (en) System and method for obtaining a signed certificate
JP2026052256A (ja) 受付端末、端末、受付端末の制御方法及びプログラム
JP2026059682A (ja) システム、方法、サーバ装置、サーバ装置の制御方法及びプログラム

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 24952862

Country of ref document: EP

Kind code of ref document: A1