JP4845852B2 - Reader / writer - Google Patents

Description

  The present invention relates to a non-contact IC module that transmits and receives information using non-contact wireless communication with a reader / writer, and a reader / writer thereof.

  In recent years, a non-contact IC module (hereinafter referred to as a non-contact IC module. Note that this non-contact IC module is a non-contact IC card type technology mounted on a card-sized non-contact IC card and a portable terminal device. Including a small module used, a non-contact IC tag attached to a load as a tag, and an IC chip and an antenna), and a reader / writer that performs wireless communication with the non-contact IC module. A system including the above is used for various services. In this system, in order to identify whether or not a non-contact IC module that performs wireless communication with the reader / writer can provide a service by the system, the reader / writer can communicate with the non-contact IC module. Authentication processing is performed.

Patent Document 1 discloses a non-contact IC card reader device made to shorten the processing time required for the authentication process.
Japanese Patent Application Laid-Open No. 2004-102885

  In Patent Document 1, a non-contact IC card reader / writer to which a touch-and-go method is applied and a contact-type non-contact IC card (that is, in order to perform wireless communication with a reading unit in the non-contact IC card reader / writer, the reading is performed. And a non-contact IC card that needs to be located at a distance of less than 2 mm. In this system, it is assumed that the non-contact IC card reader / writer has a structure in which two or more non-contact IC cards cannot touch the reading unit at one time, and authentication is performed only with one non-contact IC card. It is a thing. In addition, the non-contact IC card reader / writer is the first to perform the act of touching the non-contact IC card to the reading unit so that the user can locate the non-contact IC card at a distance communicable with the non-contact IC card reader / writer. The authentication with the non-contact IC card is started.

  On the other hand, between a remote-type non-contact IC card (that is, a non-contact IC card that is allowed to be located at a distance of 70 cm or more in order to perform wireless communication with a reading unit in a reader / writer) When the authentication process is performed by the reader / writer, it is considered that the reader / writer performs authentication at the same time as the plurality of non-contact IC cards by positioning a plurality of non-contact IC cards at a distance communicable with the reader / writer. It is done. Also, the reader / writer may start authentication with the non-contact IC card even when the user unintentionally places the non-contact IC card at a distance that allows communication with the non-contact IC card reader / writer.

  As described above, when wireless communication is performed between the reader / writer and the remote contactless IC card, the following points are taken into consideration, unlike wireless communication between the contactless contactless IC card. There is a need. The first point is to reduce the burden on the reader / writer caused by the authentication processing with a plurality of non-contact IC cards. Compared to the case where the reader / writer performs authentication processing with the contactless contactless IC card disclosed in Patent Document 1, there is a risk that the burden associated with the authentication processing is doubled by the number of contactless IC cards. is there. The second point is to specify a non-contact IC card that needs to be authenticated out of a plurality of non-contact IC cards. The reader / writer needs to start the authentication process with the non-contact IC card only when the user intends the non-contact IC card to perform the authentication process.

  The present invention has been made in view of the above circumstances. When wireless communication is performed between a reader / writer and a remote contactless IC card, authentication processing between a plurality of contactless IC cards is performed. The present invention provides a non-contact IC module, a portable terminal device, and a reader / writer that can reduce the burden on the reader / writer that accompanies the user, and that can perform authentication processing only with a non-contact IC card that requires authentication processing. Objective.

  The reader / writer of the present invention includes a wireless unit that transmits and receives radio waves and a control unit that controls wireless communication with the non-contact IC module by the wireless unit, and the control unit is configured to contact the non-contact by the wireless unit. When the reception intensity of the radio wave received from the IC module is less than the first threshold, a first authentication process of authentication processes to be performed with the non-contact IC module is performed, and the non-contact is performed by the wireless unit. The second authentication process excluding the first authentication process among the authentication processes to be performed with the non-contact IC module when the reception intensity of the radio wave received from the contact IC module is equal to or higher than the first threshold; The authentication process is performed.

  With this configuration, when wireless communication is performed between a reader / writer and a remote contactless IC card, the burden on the reader / writer that accompanies authentication processing with a plurality of contactless IC cards is reduced. Can be made.

  In the reader / writer of the present invention, the control unit has a reception intensity of a radio wave received from the non-contact IC module by the wireless unit less than a first threshold value, and a value smaller than the first threshold value. In the case where the threshold value is equal to or greater than 2, the first authentication process among the authentication processes to be performed with the non-contact IC module is included.

  With this configuration, when wireless communication is performed between a reader / writer and a remote contactless IC card, the burden on the reader / writer that accompanies authentication processing with a plurality of contactless IC cards is reduced. In addition, the authentication process can be performed only with the non-contact IC card that needs to perform the authentication process.

  According to the non-contact IC module, the portable terminal device, and the reader / writer of the present invention, when wireless communication is performed between the reader / writer and the remote non-contact IC card, It is possible to reduce the burden on the reader / writer that accompanies the authentication process between them, and to perform the authentication process only with the non-contact IC card that needs to perform the authentication process.

  Hereinafter, a system including a reader / writer according to an embodiment of the present invention and a non-contact IC module will be described with reference to the drawings. FIG. 1 is a configuration diagram of a non-contact IC module according to an embodiment of the present invention, and FIG. 2 is a configuration diagram of a reader / writer according to an embodiment of the present invention. First, the configuration of the non-contact IC module A in FIG. 1 will be described. The non-contact IC module A includes a demodulation processing unit 11, an overall control unit 12, a memory 13, a modulation processing unit 14, and an antenna 15.

  The demodulation processing unit 11 functions to demodulate an FSK (Frequency Shift Keying) modulation signal received from the reader / writer B through the antenna 15 and extract a received signal. Further, the reception intensity of the FSK modulation signal is measured, and the measured numerical value is output to the overall control unit 12. Here, the demodulation processing unit 11 is described so as to demodulate the FSK-modulated signal. However, in the non-contact IC module in the system according to the embodiment of the present invention, the signal received from the reader / writer is ASK (Amplitude Shift Keying). ) If modulated, the ASK modulated signal may be demodulated.

  The overall control unit 12 controls the demodulation processing unit 11 and the modulation processing unit 14 so as to perform transmission / reception of a signal in accordance with a sequence described later with the reader / writer B with reference to a numerical value regarding the reception intensity input from the demodulation processing unit 11. At the same time, it functions to execute read or write access to the memory 13.

  The modulation processing unit 14 performs FSK modulation on the unmodulated carrier wave received via the antenna 15 based on the data read from the memory 13 through the overall control unit 12, and sends it to the reader / writer B via the antenna 15. To work. In addition, although the passive type non-contact IC module was described here, what is applied to the non-contact IC module of the present invention is not limited to the passive type. Here, the modulation processing unit 14 is described as performing FSK modulation on the carrier wave. However, the contactless IC module in the system according to the embodiment of the present invention may perform ASK modulation on the carrier wave.

  Next, the configuration of the reader / writer B in FIG. 2 will be described. The reader / writer B includes an overall control unit 21, a communication control unit 22, a memory 23, a modulation processing unit 24, a carrier wave oscillator 25, a circulator 26, and a demodulation processing unit 27, and an antenna 28 externally. I have.

  The overall control unit 21 refers to the reception intensity of the signal received from the non-contact IC module A, which is input from the demodulation processing unit 27, and communicates with the non-contact IC module A so as to perform transmission / reception of signals in accordance with a sequence described later. In addition to instructing the control unit 22, the communication control unit 22 is instructed to control writing and reading of data with respect to the non-contact IC module A.

  The communication control unit 22 reads the ID of the target non-contact IC module A and data to be written to the non-contact IC module A from the memory 23 under the control of the overall control unit 21, and passes the data to the modulation processing unit 24. Function.

  The modulation processing unit 24 functions to perform FSK modulation processing on an unmodulated carrier wave of 400 MHz, for example, generated by the carrier wave oscillator 25 based on the data read from the memory 23. Here, the modulation processing unit 24 is described as performing FSK modulation on the carrier wave. However, the reader / writer in the system according to the embodiment of the present invention may perform ASK modulation on the carrier wave.

  The circulator 26 is a directional coupler, and transmits the FSK modulation signal modulated by the modulation processing unit 24 as described above to the non-contact IC module A via the antenna 28, and also the non-contact IC module A. The FSK modulation signal received via the antenna 28 is supplied to the demodulation processing unit 27.

  The demodulation processing unit 27 functions to demodulate the FSK modulated data using the unmodulated carrier wave of the carrier wave oscillator 25 and send the demodulated data to the overall control unit 21. Further, the reception intensity of the FSK modulation signal is measured, and the measured numerical value is output to the overall control unit 21. The overall control unit 21 recognizes the content of data received from the non-contact IC module A based on the demodulated data. Here, the demodulation processing unit 27 is described so as to demodulate the FSK-modulated data. However, the reader / writer in the system according to the embodiment of the present invention is such that the signal received from the non-contact IC module is ASK-modulated. For example, the ASK modulation signal may be demodulated.

  Hereinafter, a mobile terminal device and a reader / writer according to an embodiment of the present invention will be described in detail. FIG. 3 is a diagram showing an example of the positional relationship between the portable terminal device and the reader / writer according to the embodiment of the present invention. FIG. 4 is an authentication process between the portable terminal device and the reader / writer according to the embodiment of the present invention. Each sequence is shown.

  As shown in FIG. 3, it is assumed that a plurality of portable terminal devices 1 a to 1 n equipped with a non-contact IC module are located in the vicinity of the reader / writer 2. Among the plurality of mobile terminal devices 1a to 1n, the mobile terminal devices 1j to 1n are out of a communication range in which the non-contact IC module can perform wireless communication with the reader / writer 2 (formed by dotted lines in FIG. 3). The circle C1 is a circle centered on the reader / writer 2 and has a reception intensity threshold (level 1) that is the minimum required for the reader / writer 2 to perform wireless communication with the non-contact IC module. It is drawn accordingly.) Among the plurality of mobile terminal devices 1a to 1n, the mobile terminal devices 1a to 1i are formed within a communication range in which the non-contact IC module can perform wireless communication with the reader / writer (formed with a dotted line in FIG. 3). The mobile terminal device 1a is located within the circle C1 and further within the communication range and closer to the reader / writer (according to a reception intensity threshold value (level 2) larger than the level 1). In the circle C2 drawn).

  Thereafter, when the portable terminal device 1a reaches the point P2 located inside the circle C2 via the point P0 located outside the communication range and the point P1 located inside the circle C1 and outside the circle C2, Processing of the terminal device 1a and the reader / writer 2 will be described with reference to FIG.

  The non-contact IC module mounted on the portable terminal device 1a located at the point P0 cannot receive the radio wave output from the reader / writer 2 even if carrier sensing is performed at the period T, and therefore performs the authentication process. I can't. On the other hand, the mobile terminal devices 1b to 1i located inside the circle C1 execute authentication processing with the reader / writer 2 in a pre-authentication phase described later. The portable terminal devices 1b to 1i measure the reception intensity of the radio wave including the request signal (this request signal corresponds to the pre-authentication request in FIG. 4) received from the reader / writer 2, and the measured reception intensity. Is compared with level 1 which is a threshold value of reception intensity, and it is determined whether or not the mobile terminal devices 1b to 1i are located inside the circle C1. In addition, the reader / writer 2 performs authentication processing in the pre-authentication phase described later with the mobile terminal devices 1b to 1i located inside the circle C1. The reader / writer 2 measures the reception intensity of the radio wave including the response signal (this response signal corresponds to the pre-authentication response 1 or the pre-authentication response 2 in FIG. 4) received from the mobile terminal devices 1b to 1i. Then, the measured reception intensity is compared with level 1 which is a threshold of the reception intensity, and it is determined whether or not the mobile terminal devices 1b to 1i are located inside the circle C1.

  The non-contact IC module mounted on the portable terminal device 1a located at the point P1 or the point P2 has a timing at which the reader / writer 2 periodically outputs a pre-authentication request (a white color described as a pre-authentication request shown in FIG. 4). The width of the open arrow corresponds to the period during which the reader / writer 2 transmits the pre-authentication request.) The timing at which carrier sense is performed in the cycle T (at the time indicated by “◯” in FIG. 4) If the terminal devices 1a to 1i perform carrier sense, the pre-authentication request is received from the reader / writer 2. At the same time, the non-contact IC module measures the reception intensity of the radio wave including the pre-authentication request from the reader / writer 2 and compares the measured reception intensity with level 1 and level 2 that are threshold values of the reception intensity. Here, FIG. 5 is a diagram for explaining the timing for transmitting and receiving the pre-authentication request and the pre-authentication response in the embodiment of the present invention, and FIG. 6 shows the pre-authentication request and the pre-authentication in the embodiment of the present invention. The pre-authentication request and the pre-authentication response that are transmitted and received by the portable terminal devices 1a to 1i and the reader / writer 2 will be described with reference to the diagram for explaining the frame format of the response. The lower diagram in FIG. 5B is an enlarged view of the range surrounded by the dotted line in the upper diagram in FIG.

  As shown in FIG. 5A, the reader / writer 2 periodically transmits a pre-authentication request, while the non-contact IC module mounted on the mobile terminal devices 1a to 1i performs carrier sense at a period T. Do. When the non-contact IC module mounted on the portable terminal devices 1a to 1i is located at the point P0 shown in FIG. 3, as shown in FIG. Cannot be received, and no response is returned to the reader / writer 2.

  When the portable terminal device 1a is located at the point P1 or the point P2, the non-contact IC module mounted on the portable terminal device 1a to 1i sends a pre-authentication request transmitted from the reader / writer 2 when performing carrier sense. Can be received. At this time, the non-contact IC module mounted on the mobile terminal devices 1a to 1i performs carrier sense and detects that the pre-authentication request is transmitted from the reader / writer 2 (time shown in FIG. 5B). From t1), the pre-authentication request is received until the time when the reader / writer 2 finishes transmitting the pre-authentication request (time t2 which is the end of the pre-authentication request frame shown in FIG. 5B). The frame constituting the pre-authentication request is divided into a subframe constituting the simple information and a subframe constituting the complete information, as shown in the lower diagram of FIG. 5B, the pre-authentication request frame includes four subframes constituting the simple information (in FIG. 5B, it corresponds to the simple information No. 1 to the simple information No. 4), and complete. And one subframe constituting information. The reader / writer 2 transmits complete information four times after continuously transmitting simple information having the same data. As shown in FIG. 6A, the frame format of the subframes constituting the simple information includes a bit synchronization signal for the non-contact IC module to achieve bit synchronization, and simple information for the non-contact IC module to obtain frame synchronization. It consists of a frame synchronization signal and simple ID information which is the main data of simple information. The simple ID information includes a header including control information for specifying a subframe type, a data length, and the like, and a service (for example, Suica (registered trademark) or Edy (registered trademark) that the reader / writer 2 can perform payment processing. )) For identifying the service ID. By inserting a bit pattern specific to simple information into the simple information frame synchronization signal, the non-contact IC module that has received a subframe refers to the simple information frame synchronization signal before recognizing the header of the simple ID information. Then, the subframe may be identified as simple information.

  Further, as shown in FIG. 6B, the frame format of the sub-frames constituting the complete information includes a bit synchronization signal for the non-contact IC module to achieve bit synchronization, and a non-contact IC module for frame synchronization. It consists of a complete information frame synchronization signal and complete ID information which is the main data of complete information. The complete ID information includes a header including control information for specifying a subframe type, a data length, and the like, and a service (for example, Suica (registered trademark) or Edy (registered trademark) that the reader / writer 2 can perform payment processing on. )) And a transmission source ID for identifying the reader / writer 2 that transmitted the pre-authentication request. Complete information is different from simple information in that it includes a transmission source ID. By inserting a bit pattern specific to complete information into the complete information frame synchronization signal, the non-contact IC module that received a certain subframe refers to the complete information frame synchronization signal before recognizing the header of the complete ID information. Then, the subframe may be identified as complete information.

  As shown in the lower part of FIG. 5B, the non-contact IC module performs carrier sense at time t1 and performs simplified information No. 3, when the reception of the pre-authentication request is started in the middle of the data constituting the pre-authentication request, the simple information No. 3 is a subframe after the third frame. 4 and complete information is received, and it is permitted to perform settlement processing by its own device (non-contact IC module) with reference to the service ID included in the simple information or the service ID and transmission source ID included in the complete information. If the service ID and the source ID match, the pre-authentication response 1 or the pre-authentication response 2 is transmitted to the reader / writer 2. The non-contact IC module measures the received intensity of the radio wave including the received pre-authentication request, and compares the measured received intensity with the level 1 and level 2 which are thresholds of the received intensity, and the measured received intensity Is equal to or higher than level 1 which is a threshold value of reception strength and is lower than level 2 (that is, when the non-contact IC module is located at point P1), the pre-authentication response 1 is transmitted and the measured reception strength is the threshold value of reception strength. Is equal to or higher than level 2 (that is, when the non-contact IC module is located at the point P2), the pre-authentication response 2 is transmitted.

  Of the sub-modules constituting the pre-authentication request, the non-contact IC module that has received some simple information has the ID inserted in the service ID of the simple information processed by the own device (non-contact IC module). If it does not match the ID of the service that can perform the service, it is determined that the service cannot be processed by the own device (contactless IC module), and it is not necessary to receive complete information. It is also possible to stop reception of simple information and complete information, which are subsequent subframes. Conventionally, at the time of polling processing, the reader / writer transmits a command composed only of information corresponding to the complete information of the embodiment of the present invention to the non-contact IC module. Based on the information corresponding to the complete information including the ID), it has been determined whether the device (non-contact IC module) is a service that can perform the payment process. As in the embodiment of the present invention, when the reader / writer 2 transmits a pre-authentication request including simple information to the non-contact IC module, the non-contact IC module does not include a transmission source ID (ID of the reader / writer). Based on the information corresponding to the simple information, it is possible to reduce the burden associated with the determination process by simply determining whether the device (non-contact IC module) is a service that can perform the payment process.

  Subsequently, a frame constituting the pre-authentication response transmitted by the non-contact IC module will be described. As shown in FIG. 6C, the frame format of the frame constituting the pre-authentication response includes a bit synchronization signal for the reader / writer 2 to perform bit synchronization and a response frame synchronization signal for the reader / writer 2 to perform frame synchronization. , And ID information that is the main data of the pre-authentication response. The ID information includes a header including control information for specifying a frame type, a data length, and the like, and a service (for example, Suica (registered trademark) or Edy (registered trademark) that can be processed by the contactless IC module. ), A transmission destination ID for identifying the reader / writer 2 that should receive the pre-authentication response, and a transmission source ID for identifying the non-contact IC module that transmits the pre-authentication response Composed. The reader / writer 2 identifies the pre-authentication response 1 or the pre-authentication response 2 transmitted by the non-contact IC module by the data inserted in the ID information header in the frame constituting the pre-authentication response. The reader / writer 2 that has received the pre-authentication response by inserting a bit pattern specific to the pre-authentication response 1 or a bit pattern specific to the pre-authentication response 2 into the response frame synchronization signal in the frame constituting the pre-authentication response, Before recognizing the header of the ID information, the response frame synchronization signal may be referred to so that the frame is identified as the pre-authentication response 1 or the pre-authentication response 2.

  When the reader / writer 2 receives either the pre-authentication response 1 or the pre-authentication response 2, the reader / writer 2 executes processing described below. That is, the reader / writer 2 measures the reception intensity of the radio wave including the received pre-authentication response, and compares the measured reception intensity with the level 1 and level 2 that are thresholds of the reception intensity, and performs the measured reception. If the strength is equal to or higher than the reception strength threshold level 1 and lower than level 2, it is determined that the non-contact IC module that transmitted the pre-authentication response is located inside the circle C1 and outside the circle C2 shown in FIG. If the measured reception intensity is equal to or higher than level 2 which is the threshold of reception intensity, it is determined that the non-contact IC module that transmitted the pre-authentication response is located inside the circle C2 shown in FIG. Alternatively, when either the pre-authentication response 1 or the pre-authentication response 2 is received from the non-contact IC module, according to the received response signal, the non-contact IC module (the portable terminal devices 1a to 1i equipped with the non-contact IC module). ) May be determined to be located inside the circle C1 and outside the circle C2 shown in FIG. 4 or located inside the circle C2.

  The former measures the position of the non-contact IC module mainly by the reader / writer 2, and the latter measures the position of the non-contact IC module mainly by the non-contact IC module. The non-contact IC module is often mounted in the casing of the mobile terminal device, and the radio wave environment surrounding the non-contact IC module differs depending on the shape of the casing, that is, the reception intensity of the radio wave received by the non-contact IC module Since the reception intensity of the radio wave received by the reader / writer 2 from the non-contact IC module changes, the reader / writer 2 can more accurately recognize the position of the non-contact IC module by referring to both determination results. it can.

  Next, processing by the reader / writer 2 when the reader / writer 2 receives the pre-authentication response 1 will be described. When the reader / writer 2 receives the pre-authentication response 1, the reader / writer 2 refers to the service ID of the ID information constituting the pre-authentication response 1 and the transmission source ID (ID of the non-contact IC module), and the non-contact IC module performs the service. Whether it is a service target that can be settled using the service specified by the ID, or whether the use of the service specified by the service ID is prohibited (is not registered in the black list), And so on. If the reader / writer 2 holds a list of IDs of non-contact IC modules that can use the service specified by the service ID, the non-contact IC module performs the service only by the process of the own device (reader / writer 2). It is possible to determine whether or not it is a target, but if the list is not retained, the server that is the host device of the reader / writer 2 is inquired as to whether or not the non-contact IC module is a service target, and is acquired from the server Discriminate based on the results. When the reader / writer 2 determines that the non-contact IC module is a service target that can be settled by using the service specified by the service ID, the reader / writer 2 receives the pre-authentication confirmation 1 that is a response signal to the pre-authentication response 1 The pre-authentication response 1 is transmitted to the transmitted non-contact IC module (the reader / writer 2 uses the transmission source ID in the received pre-authentication response frame format of the non-contact IC module that is the transmission destination of the pre-authentication confirmation 1 ID can be specified), and the ID of the non-contact IC module is stored. On the other hand, when the non-contact IC module receives the pre-authentication confirmation 1 from the reader / writer 2, the reader / writer 2 determines that the own device (non-contact IC module) is a service target of the service specified by the service ID. Recognize

  Next, processing by the reader / writer 2 when the reader / writer 2 receives the pre-authentication response 2 will be described. When the reader / writer 2 receives the pre-authentication response 2, the reader / writer 2 refers to the service ID of the ID information constituting the pre-authentication response 2 and the transmission source ID (ID of the non-contact IC module), and the non-contact IC module performs the service. Whether it is a service target that can be settled using the service specified by the ID, or whether the use of the service specified by the service ID is prohibited (is not registered in the black list), And so on. If the reader / writer 2 holds a list of IDs of non-contact IC modules that can use the service specified by the service ID, the non-contact IC module performs the service only by the process of the own device (reader / writer 2). It is possible to determine whether or not it is a target, but if the list is not retained, the server that is the host device of the reader / writer 2 is inquired as to whether or not the non-contact IC module is a service target, and is acquired from the server Discriminate based on the results. When the reader / writer 2 determines that the non-contact IC module is a service target that can be settled using the service specified by the service ID, the reader / writer 2 receives the pre-authentication confirmation 2 that is a response signal to the pre-authentication response 2 The pre-authentication response 2 is transmitted to the transmitted non-contact IC module (the reader / writer 2 uses the transmission source ID in the received pre-authentication response frame format of the non-contact IC module that is the transmission destination of the pre-authentication confirmation 1 ID can be specified), and the ID of the non-contact IC module is stored.

  When the reader / writer 2 receives the pre-authentication response 2, the non-contact IC module that has transmitted the pre-authentication response 2 is located inside the circle C2 shown in FIG. Before being located inside, it may be located inside the circle C1 and outside the circle C2, and the pre-authentication response 1 has already been transmitted to the reader / writer 2. In this case, since the reader / writer 2 stores the ID of the non-contact IC module that transmitted the pre-authentication confirmation 1 in response to the pre-authentication response 1, the stored non-contact IC module ID and the pre-authentication A service in which the non-contact IC module can make a settlement using the service specified by the service ID by comparing the source ID (ID of the non-contact IC module) of the ID information constituting the response 2 It may be determined whether it is a target or whether the use of the service specified by the service ID is prohibited (not registered in the black list). Thereby, it is possible to reduce the burden on the reader / writer 2 that accompanies the process of determining whether or not the module is a non-contact IC module that can provide a service.

  Further, the non-contact IC module which has received the pre-authentication confirmation 1 once responds to the pre-authentication request for a period until the reception intensity of the radio wave including the pre-authentication request received from the reader / writer 2 becomes level 2 or higher. 1 may not be transmitted. As a result, the reader / writer 2 does not need to determine again the non-contact IC module once determined to be a non-contact IC module that can provide a service, thereby reducing the burden on the reader / writer 2 due to the determination process. can do.

  When the reader / writer 2 transmits the pre-authentication confirmation 2 to the non-contact IC module that has transmitted the pre-authentication response 2, the pre-authentication stop request is issued to request the other non-contact IC module to stop the pre-authentication. Send. The frame format of the pre-authentication stop request is the same as the frame format of the pre-authentication request, for example, and the pre-authentication stop request is added to the frame synchronization signal or header area of the simple information and complete information as subframes. A unique bit pattern may be assigned. The non-contact IC module (in FIG. 4, the non-contact IC module mounted on the mobile terminal devices 1b to 1i) that has received the pre-authentication stop request stops carrier sense performed at a period T for a predetermined period. On the other hand, the non-contact IC module that has received the pre-authentication confirmation 2 (in FIG. 4, the non-contact IC module mounted on the mobile terminal device 1a) may also receive a pre-authentication stop request. When 2 is received, it is determined that the carrier sense is continued for the predetermined period from the time when the pre-authentication confirmation 2 is received even if the pre-authentication stop request is subsequently received. In this way, only the non-contact IC module that has received the pre-authentication confirmation 2 waits for this authentication request transmitted from the reader / writer 2. Hereinafter, a period until the non-contact IC module receives a pre-authentication stop request from the reader / writer 2 is referred to as a “pre-authentication phase”. In addition, the non-contact IC module that has received the pre-authentication stop request (in FIG. 4, the non-contact IC module mounted on the mobile terminal devices 1b to 1i) refers to a period during which carrier sense is stopped in the “pre-authentication stop phase”. The period until the non-contact IC module (in FIG. 4, the non-contact IC module mounted on the mobile terminal device 1a) that receives the authentication request, which will be described later, completes the payment process, is referred to as “main authentication phase”. Called.

  The contactless IC module that has received the authentication request inserts information necessary for executing the payment process (hereinafter, referred to as payment information) into the authentication response and transmits it to the reader / writer 2. When the reader / writer 2 receives the payment information from the non-contact IC module, the reader / writer 2 transmits the payment information to the host device of the reader / writer 2 and receives the result of the payment information check process performed by the host device. If the result of the payment information check process is appropriate, the reader / writer 2 performs authentication using the challenge and response method. That is, the reader / writer 2 requests to transmit the key information stored in the non-contact IC module, and upon receiving the key information from the non-contact IC module, transmits the generated random number data to the non-contact IC module, The random number data is calculated using key information received from the non-contact IC module, and the calculation result is stored. On the other hand, the non-contact IC module performs an operation on the received random number data using the key information stored in the own device (non-contact IC module), and transmits the operation result to the reader / writer 2. The reader / writer 2 compares the calculation result previously calculated and stored with the calculation result received from the non-contact IC module, and if they match, the non-contact IC module is appropriate. And authenticate. In this specification, in order to distinguish between authentication using a challenge and response method in the authentication phase and authentication using a pre-authentication request in the pre-authentication phase, the former is referred to as “main authentication”, and the latter is referred to as “pre-authentication”. ".

  After that, the reader / writer 2 performs this authentication and establishes a session, and then transmits a data read request to receive data necessary for settlement processing from the non-contact IC module, and transmits the received data to the host device. Then, according to the calculation result received from the host device that performs a predetermined calculation based on the data, a data write request is transmitted to the non-contact IC module, and the data necessary for the settlement process is written to the non-contact IC module. Make it. The non-contact IC module that has received the data write request from the reader / writer 2 writes data according to the request, and transmits the write completion notification to the reader / writer 2 when the write is completed normally. The main authentication phase ends with a series of processes of main authentication, data reading, and data writing.

  The reader / writer 2 receives the write completion notification from the non-contact IC module (in FIG. 4, the non-contact IC module mounted on the mobile terminal device 1a) or stops pre-authentication before receiving the write completion notification. When a predetermined period elapses after the request is transmitted (that is, when the main authentication or data reading or data writing fails), transmission of the pre-authentication request is started. As a result, the non-contact IC module (in FIG. 4, the non-contact IC module mounted on the mobile terminal devices 1b to 1i) that has received the pre-authentication stop request and transitioned to the pre-authentication stop phase again Transition to the authentication phase. Note that when the reader / writer 2 starts transmitting the pre-authentication request immediately after completing the main authentication phase, the non-contact IC module (in FIG. 4, the non-contact IC mounted on the mobile terminal device 1a) The module) may transition from the pre-authentication phase to the main authentication phase again, resulting in two settlement processes for one service use. In order to prevent this, the reader / writer 2 waits for a predetermined time to elapse after the settlement processing with the non-contact IC module (in FIG. 4, the non-contact IC module mounted on the mobile terminal device 1a) is completed. The transmission of the pre-authentication request may be started. In addition, the non-contact IC module that has completed the payment process does not return a response even if a pre-authentication request is received from the reader / writer 2 until a predetermined time has elapsed after the payment process is completed. It is possible to suppress the occurrence of two payment processes for one use of the service. Furthermore, there is a possibility that the same non-contact IC module continuously transitions to the main authentication phase after a predetermined time has elapsed since the settlement processing is completed, but the same non-contact IC module continues to the main authentication phase. The reader / writer 2 that can determine that the transition has occurred informs the operator of the reader / writer 2 by means of a buzzer, an LED, or the like that two payment processes have occurred for one use of the service. May be.

  As described above, according to the non-contact IC module and the reader / writer of the embodiment of the present invention, the reader / writer simply authenticates the non-contact IC module capable of providing the service by the reader / writer in the pre-authentication phase, and performs the main authentication. Authentication that requires a high level of security only with a non-contact IC module possessed by a user who intends to perform payment processing in the phase, that is, one non-contact IC module located near a predetermined distance from the reader / writer Only the contactless IC module that has succeeded in the authentication in each phase can execute the settlement process.

  For this reason, even in a system implemented by a remote non-contact IC module and a reader / writer, authentication performed with a plurality of non-contact IC modules at the same time is a simple process, but high safety is required. Since the number of non-contact IC modules that perform authentication is limited to one, the burden on the reader / writer that accompanies the authentication process with a plurality of non-contact IC cards can be reduced.

  Further, even in a system implemented by a remote type non-contact IC module and a reader / writer, a plurality of non-contact IC modules can be obtained by appropriately setting the distance between the reader / writer that performs the authentication and the non-contact IC module. Among them, it is possible to identify a contactless IC card that needs to perform a payment process, and prevent a payment process unintended by the user from being performed.

  Conventionally, the pre-authentication and the main authentication described in the embodiment of the present invention have been performed at the time of the settlement process. However, in the embodiment of the present invention, the reader / writer is connected to any non-contact IC module. Regardless of whether or not the non-contact IC module performs the payment process later, pre-authentication is performed before the payment process, and only the main authentication is performed for the non-contact IC module that is the target of the payment process when the payment process is performed. Therefore, the time required for the settlement process can be shortened by the amount that the pre-authentication is not required.

  In addition, since a small amount of data is transmitted and received between the reader / writer and the non-contact IC module in order to perform the pre-authentication described in the embodiment of the present invention, the remote type non-contact IC module and the reader / writer are used. The contactless IC module and reader / writer of the present invention are extremely useful for a specific low-power radio that can be used in a system to be used.

  As described above, according to the non-contact IC module, the portable terminal device, and the reader / writer of the present invention, a plurality of non-contact IC cards are used when wireless communication is performed between the reader / writer and the remote non-contact IC card. This reduces the burden on the reader / writer that accompanies the authentication process between the card and the reader / writer, and can perform the authentication process only with a non-contact IC card that requires the authentication process. Therefore, the present invention is useful in the field related to a non-contact IC module that transmits and receives information using non-contact type wireless communication and its reader / writer.

Configuration diagram of a non-contact IC module according to an embodiment of the present invention Configuration diagram of a reader / writer according to an embodiment of the present invention The figure which shows an example of the positional relationship of the portable terminal device and reader / writer of embodiment of this invention Authentication processing sequence between portable terminal device and reader / writer according to an embodiment of the present invention The figure explaining the timing which transmits / receives the pre-authentication request | requirement and pre-authentication response in embodiment of this invention The figure explaining the frame format of the pre-authentication request and pre-authentication response in the embodiment of the present invention

Explanation of symbols

A, 1a to 1i Non-contact IC module 11 Demodulation processing unit 12 Overall control unit 13 Memory 14 Modulation processing unit 15 Antenna B, 2 Reader / writer 21 Overall control unit 22 Communication control unit 23 Memory 24 Modulation processing unit 25 Carrier wave oscillator 26 Circulator 27 Demodulation processor 28 Antenna

Claims (2)

A wireless unit that transmits and receives radio waves;
A control unit for controlling wireless communication with the non-contact IC module by the wireless unit,
The controller is
When the reception intensity of the radio wave received from the non-contact IC module by the wireless unit is less than a first threshold value, the first authentication process of the authentication processes to be performed with the non-contact IC module is performed. ,
The first authentication of the authentication processes to be performed with the non-contact IC module when the reception intensity of the radio wave received from the non-contact IC module by the wireless unit is equal to or higher than the first threshold. Perform the second authentication process, excluding the process
Reader / writer. The reader / writer according to claim 1 ,
The control unit, when the reception intensity of the radio wave received from the non-contact IC module by the wireless unit is less than a first threshold, and when the value is equal to or greater than a second threshold smaller than the first threshold, Performing a first authentication process of authentication processes to be performed with the non-contact IC module;
Reader / writer.

Images