JP7589864B2 - Server device, system, and server device control method and program - Google Patents

Description

The present invention relates to a server device, a system, a control method for a server device, and a storage medium.

Biometric authentication technology exists.

For example, Patent Document 1 describes a method for shortening waiting time for visitors entering an event venue. The mobile terminal of Patent Document 1 includes a first determination unit, a second determination unit, an authentication information acquisition unit, and an authentication processing unit. The first determination unit determines whether the mobile terminal's own location corresponds to the location where the event is being held. The second determination unit determines whether the current time corresponds to the time when the event is being held. When the first determination unit determines that the mobile terminal's own location corresponds to the location where the event is being held and the second determination unit determines that the current time corresponds to the time when the event is being held, the authentication information acquisition unit acquires facial information to be used for authentication. The authentication processing unit performs processing related to authentication based on the facial information acquired by the authentication information acquisition unit.

Patent document 2 states that the system aims to improve the convenience of customers who use tickets. The authentication system of Patent document 2 includes a customer terminal, an authentication device, and an information processing device. The information processing device has a control unit and a memory unit. The memory unit stores personal information and biometric information received from the customer terminal. The control unit receives biometric information and performance information from the customer terminal along with a ticket purchase request. The control unit compares the biometric information stored in the memory unit with the biometric information received along with the ticket purchase request, and if biometric authentication is permitted, sends a ticket purchase permission notice corresponding to the ticket purchase request to the customer terminal. The control unit receives a first authentication request or a second authentication request from the authentication device, compares the biometric information stored in the memory unit with the biometric information included in the first authentication request or the second authentication request, and if biometric authentication is permitted, sends an authentication permission notice to the authentication device.

JP 2018-060354 A JP 2019-057004 A

In recent years, various services using biometric authentication have begun to be provided. Before receiving a service using biometric authentication, a user must register his/her biometric information (e.g., a facial image) on a server. In order to receive services from multiple service providers (e.g., retailers, transportation companies), the user must register his/her biometric information for each service provider.

Here, each service provider differs depending on the type of business they operate, such as whether they have accounts to manage customers and the type of business information they provide to customers. For this reason, a method (registration format) for registering biometric information that is suitable for each type of service provider is required.

The primary objective of the present invention is to provide a server device, a system, a control method for a server device, and a storage medium that contribute to realizing the registration of biometric information appropriate to the type of service provider.

According to a first aspect of the present invention, a server device is provided that includes a service selection control means that enables a user to select a service provider from which the user wishes to receive services from among a plurality of service providers that provide services using biometric authentication, and a user registration control means that controls the acquisition of original biometric information that serves as the original of the authentication information used for biometric authentication by a service provider selected by the user, the service provider having an account for managing customers and using business information necessary for providing services to the customer during biometric authentication.

According to a second aspect of the present invention, there is provided a system including a terminal possessed by a user and a server device, the server device being equipped with a service selection control means that enables the user to select a service provider from among a plurality of service providers that provide services using biometric authentication, and a user registration control means that controls the service provider selected by the user, who has an account for managing customers and uses business information necessary for providing services to the customer when performing biometric authentication, to acquire original biometric information that is the original of authentication information to be used for biometric authentication, the user registration control means transmitting information for logging in to the account of the service provider selected by the user to the user's terminal, and in response to receiving a biometric information provision request from a server that manages the user's account, requesting the terminal to provide original biometric information that is the original of authentication information to be used for biometric authentication, thereby acquiring the original biometric information from the terminal, and transmitting the acquired original biometric information to the server.

According to a third aspect of the present invention, there is provided a method for controlling a server device, which allows a user to select a service provider from among a plurality of service providers that provide services using biometric authentication, and in which the service provider selected by the user, which has an account for managing customers and uses business information necessary for providing services to the customer during biometric authentication, performs control to obtain original biometric information that serves as the source of authentication information to be used for biometric authentication.

According to a fourth aspect of the present invention, a computer-readable storage medium is provided that stores a program for causing a computer mounted on a server device to execute the following processes: a process for enabling a user to select a service provider from among a plurality of service providers that provide services using biometric authentication, and a process for controlling a service provider selected by the user, who has an account for managing customers and uses business information necessary for providing services to the customer during biometric authentication, to acquire original biometric information that serves as the original of the authentication information to be used for biometric authentication.

According to each aspect of the present invention, a server device, a system, a method for controlling a server device, and a storage medium are provided that contribute to realizing the registration of biometric information suitable for the type of service provider. Note that the effects of the present invention are not limited to the above. The present invention may achieve other effects instead of or in addition to the effects.

FIG. 1 is a diagram for explaining an overview of an embodiment. FIG. 2 is a flowchart illustrating an example of the operation of one embodiment. FIG. 3 is a diagram illustrating an example of a schematic configuration of an authentication system according to the first embodiment. FIG. 4 is a diagram for explaining the operation of the authentication system according to the first embodiment. FIG. 5 is a diagram for explaining the operation of the authentication system according to the first embodiment. FIG. 6 is a diagram for explaining the operation of the authentication system according to the first embodiment. FIG. 7 is a diagram illustrating an example of a processing configuration of the control server according to the first embodiment. FIG. 8 is a diagram illustrating an example of an account management database according to the first embodiment. FIG. 9 is a diagram illustrating an example of a display on the terminal according to the first embodiment. FIG. 10 is a diagram illustrating an example of a display on the terminal according to the first embodiment. FIG. 11 is a flowchart illustrating an example of the operation of the control server according to the first embodiment. FIG. 12 is a diagram illustrating an example of a processing configuration of the service server according to the first embodiment. FIG. 13 is a diagram illustrating an example of a user management database according to the first embodiment. FIG. 14 is a diagram illustrating an example of a processing configuration of the authentication terminal according to the first embodiment. FIG. 15 is a diagram illustrating an example of a processing configuration of a terminal according to the first embodiment. FIG. 16 is a diagram illustrating an example of a display on the terminal according to the first embodiment. FIG. 17 is a sequence diagram showing an example of the operation of the authentication system according to the first embodiment. FIG. 18 is a diagram for explaining the operation of the authentication system according to the second embodiment. FIG. 19 is a diagram illustrating an example of a display on a terminal according to the second embodiment. FIG. 20 is a diagram for explaining the operation of the authentication system according to the second embodiment. FIG. 21 is a diagram for explaining the operation of the authentication system according to the third embodiment. FIG. 22 is a diagram for explaining the operation of the authentication system according to the third embodiment. FIG. 23 is a diagram for explaining the operation of the authentication system according to the third embodiment. FIG. 24 is a sequence diagram showing an example of the operation of the authentication system according to the third embodiment. FIG. 25 is a diagram for explaining the operation of the authentication system according to the fourth embodiment. FIG. 26 is a diagram illustrating an example of a display on a terminal according to the fourth embodiment. FIG. 27 is a diagram illustrating an example of a hardware configuration of a control server according to the present disclosure. FIG. 28 is a diagram showing an example of a display of a terminal according to a modification of the present disclosure. FIG. 29 is a diagram showing an example of a schematic configuration of an authentication system according to a modification of the present disclosure. FIG. 30 is a diagram showing an example of a schematic configuration of an authentication system according to a modification of the present disclosure.

First, an overview of one embodiment will be described. The reference numbers in the drawings are added to each element for convenience as an example to aid in understanding, and the description of this overview is not intended to be limiting. Furthermore, unless otherwise specified, the blocks shown in each drawing represent functional units rather than hardware units. The connection lines between blocks in each drawing include both bidirectional and unidirectional. The unidirectional arrows are used to show the main signal (data) flow diagrammatically, and do not exclude bidirectionality. In this specification and drawings, elements that can be described in the same way may be given the same reference numbers to avoid duplicated explanations.

A server device 100 according to one embodiment includes a service selection control means 101 and a user registration control means 102 (see FIG. 1). The service selection control means 101 enables a user to select a service provider from among a plurality of service providers that provide services using biometric authentication (service provider selection control; step S1 in FIG. 2). The user registration control means 102 controls the service provider selected by the user, who has an account for managing customers, and who uses business information necessary for providing services to customers during biometric authentication, to acquire original biometric information that is the original of the authentication information used for biometric authentication (execution of user registration control; step S2).

As described above, there are various types of service providers that provide users with services using biometric authentication. For example, the types of service providers can be classified according to the presence or absence of an account (a portal site where the customer logs in) for managing customers and the way in which business information is used when providing services using biometric authentication. In addition, due to changes in users' awareness of personal information protection, there are authentication systems in which original biometric information (e.g., a face image) that serves as the original authentication information for biometric authentication is stored in a terminal such as a smartphone, and the user himself manages the original biometric information. In such an authentication system, when a service provider that has an account for managing customers and uses business information required for providing services to customers during biometric authentication is selected by the user, the server device 100 executes user registration control for the service provider to acquire and register the original biometric information of the user. For example, an event company or the like that uses ticket information for entering facilities such as a concert venue or an amusement park as business information is assumed as the above-mentioned service provider. For example, the server device 100 transmits a redirect URL (Uniform Resource Locator) for accessing the user's account to the user's terminal. When the server device 100 is requested to provide original biometric information from a server where a user has logged in to an account (portal site), the server device 100 acquires the original biometric information from the user's terminal and transmits it to the server. That is, the server device 100 is provided, which realizes registration of biometric information suitable for the type of service provider.

Specific embodiments are described in further detail below with reference to the drawings.

[First embodiment]
The first embodiment will be described in more detail with reference to the drawings.

[System Configuration]
Fig. 3 is a diagram showing an example of a schematic configuration of an authentication system (information processing system) according to the first embodiment. As shown in Fig. 3, the authentication system includes a plurality of service providers A to C and an authentication center.

A service provider is a business entity that provides services to users using biometric authentication. The authentication system disclosed in this application is premised on service providers belonging to various business types and industries providing services using biometric authentication. Note that services provided by service providers may be either paid or free of charge.

For example, examples of service providers include businesses that provide rental housing services such as condominiums, businesses where employees work (the user's workplace), businesses that provide events such as concerts, businesses that operate means of transportation such as airplanes, etc. Alternatively, service providers disclosed in this application also include businesses that provide accommodation services, businesses such as retail stores, businesses that provide financial services, educational businesses, etc. In addition, service providers are not limited to private businesses. Public institutions such as local governments may also be service providers.

The authentication center is the entity that controls and manages the biometric authentication of multiple service providers. Businesses (service providers) that wish to provide services using biometric authentication to users (general consumers) must enter into a contract with the authentication center.

The authentication center includes a control server 10. The control server 10 performs the main functions of the authentication center. The control server 10 may be installed in the building of the authentication center, or may be a server installed on a network (cloud).

As described above, service providers offer users services that use biometric authentication. For example, biometric authentication is performed when a user goes to the office or returns to their apartment, and only users (employees, residents) with the proper qualifications can enter the office, etc. Alternatively, biometric authentication is performed when checking tickets at an event venue, etc., checking in at a hotel, going through immigration procedures at an airport, etc. In these types of services (procedures), services are provided to users with the proper qualifications. Alternatively, payment procedures at retail stores, etc. are performed using biometric authentication.

As shown in Fig. 3, each service provider has a service server 20 and at least one authentication terminal 30. The devices (service server 20, authentication terminal 30) of the service provider are connected so as to be able to communicate with each other. Specifically, the service server 20 and the authentication terminal 30 are connected by a wired or wireless communication means.

The service server 20 is connected to the control server 10 via a network. The service server 20 may be installed in the service provider's premises or on the cloud.

The service server 20 stores information required when providing services to users. Specifically, the service server 20 stores business information required when each service provider provides a service using biometric authentication, and information required for biometric authentication. The service server 20 uses a user management database to store business information and information required for biometric authentication. Details of the user management database will be described later.

For example, the service server 20 of the company where the user works stores information such as the user's (employee's) name, date of birth, employee number, department, place of work, etc. as business information. The service server 20 of an event company hosting an event stores information regarding tickets purchased by event participants as business information. A service server 20 of a retail store or the like stores credit card information required for payment as business information.

Details of the information required for biometric authentication stored by the service server 20 will be provided later.

The authentication terminal 30 is a device that serves as an interface for users who receive services. The authentication terminal 30 is installed at the service providing location of each service provider. More specifically, the authentication terminal 30 is installed in a store or the like that the user actually visits.

The authentication terminal 30 has functions and forms according to the type of business of the service provider. For example, an authentication terminal 30 installed in a workplace or event venue can be a gate device equipped with a gate that restricts the passage of users (persons to be authenticated). Also, an authentication terminal 30 installed in a retail store can be a tablet-type terminal.

Note that FIG. 3 is an example and is not intended to limit the configuration of the authentication system disclosed herein. For example, the authentication center may include two or more control servers 10. Also, it is sufficient that at least one or more service providers participate in the authentication system. Furthermore, it is sufficient that each service provider has at least one or more service servers 20 and at least one or more authentication terminals 30.

[Outline of operation]
Next, the general operation of the authentication system according to the first embodiment will be described.

<Create an account>
A user who wishes to receive a service from a service provider needs to create an account in the system. Specifically, the user operates a terminal 40 owned by the user to access the control server 10 (see FIG. 4).

A user inputs login information (e.g., login ID, password), name, date of birth, etc., on a WEB page provided by the control server 10. When the control server 10 acquires the login information, etc., it generates an ID for identifying the user. In the following explanation, the ID generated by the control server 10 is referred to as the "system ID." The control server 10 associates the generated system ID, login information, etc., and stores them in an account management database. Details of the account management database will be described later.

<Biometric information registration>
A user who wishes to receive services using biometric authentication needs to register his/her own biometric information in the terminal 40 .

Here, in order to provide a service using biometric authentication, authentication information generated from biometric information must be registered in advance with the service provider. For example, when a service is provided using face authentication, features (feature vectors) generated from a face image must be registered in advance as authentication information. Alternatively, when a service is provided using fingerprint authentication, features generated from a fingerprint image must be registered in advance as authentication information.

In the following explanation, the original (basis) information used to generate authentication information, such as a face image or fingerprint image, will be referred to as "original biometric information." Additionally, the features generated from the original biometric information and registered in advance will be referred to as "registered authentication information."

Once a user has completed creating an account, they must register the original biometric information (e.g., a facial image) on the terminal 40 they possess. The terminal 40 acquires the original biometric information using a GUI (Graphical User Interface) or the like. The terminal 40 stores the acquired original biometric information (e.g., a facial image) internally. In this way, the terminal 40 stores the original biometric information that serves as the original of the authentication information used for biometric authentication.

<Select a service>
After registering in the system (creating an account) and registering their original biometric information, the user selects the service provider from which they would like to receive biometric authentication services. The user selects the service provider from which they would like to receive services from among the multiple service providers participating in the authentication system (service providers under contract with the authentication center).

The control server 10 stores information about the service providers participating in the authentication system. For example, the control server 10 stores the name, industry, location, etc. of the service provider. The control server 10 holds information about each of multiple service providers and allows the user to select a service provider.

When a user operates the terminal 40 to perform a specified operation on the portal site, the control server 10 displays a GUI or the like on the terminal 40 that enables the user to select a desired service (service provider). The control server 10 uses the GUI to obtain the service (biometric authentication service) desired by the user.

<User registration>
When the control server 10 acquires the service provider selected by the user, the control server 10 executes control related to "user registration" that enables the selected service provider to provide the user with a service using biometric authentication.

Specifically, the control server 10 controls the above-mentioned selected service provider to acquire the original biometric information stored in the user's terminal 40. The service provider generates registered authentication information from the acquired original biometric information and associates the generated registered authentication information with business information, thereby becoming ready to provide the service to the user.

As mentioned above, there are various types of service providers depending on their industry and business form. In this disclosure, the service providers participating in the authentication system are classified into four types.

The first type of service provider is a business entity that does not have an account (portal site) for managing the users to whom it provides services, and that repeatedly uses the same business information. For example, service providers such as small businesses (companies where users work) and apartment management companies belong to the first type.

Service providers that belong to the second type are businesses that do not have accounts (portal sites) for managing users who provide services, and that, in principle, use the business information required for authentication only once. For example, businesses that operate amusement parks and theme parks by outsourcing ticket sales to other companies (such as ticket sales companies), and event companies that hold events such as concerts belong to the second type.

The third type of service provider is a business that has an account (portal site) for managing the users (customers) to whom it provides services, and that repeatedly uses the same business information. For example, a service provider such as a retail business that sells products belongs to the third type.

Service providers belonging to the fourth type are businesses that have accounts (portal sites) for managing users who provide services, and that, in principle, use the business information required for authentication only once. For example, businesses that sell tickets and operate amusement parks and theme parks, and event companies that hold events such as concerts, belong to the fourth type.

The control server 10 executes user registration control according to the type of service provider selected by the user. In the first embodiment, the "user registration" relating to the above-mentioned first type is described.

<First type of user registration>
A user operates a terminal 40 to access the control server 10 and logs in to the user's portal site. When the user performs a predetermined operation on the portal site (e.g., pressing a service provider selection button), the control server 10 displays a GUI including a list of service providers on the terminal 40.

When a user selects one service provider from the list of service providers displayed on terminal 40, control server 10 acquires information specifying the service provider to be registered as the user, if necessary. For example, control server 10 acquires from the user, using a GUI or the like, a "management code" that specifies the management company for the company where the user works or the apartment building where the user lives. That is, the user operates terminal 40 to input the management code.

When the service provider to be registered as a user is identified by the management code, the control server 10 determines the type of the identified service provider. In the first embodiment, the control server 10 determines that a first type of service provider has been selected.

Once the service provider is identified, the control server 10 requests the user to provide the original biometric information. Specifically, the control server 10 sends an "original provision request" to the user's terminal 40 (see step S01 in FIG. 5).

Upon receiving the request to provide the original, the terminal 40 transmits the user's original biometric information (e.g., a facial image) to the control server 10 (step S02).

The control server 10 notifies the service provider selected by the user (first type service provider) of the user's system ID, the acquired original biometric information, personal identification information, etc. The personal identification information is information for identifying the user. Examples of personal identification information include the user's name, or a combination of the user's name and date of birth. Alternatively, an employee number, an apartment room number, etc. may be used as personal identification information.

The control server 10 sends a "user registration request" including the system ID, original biometric information, personal identification information, etc. to the service server 20 of the service provider selected by the user (step S03).

Upon receiving the user registration request, the service server 20 searches the user management database using the acquired personal identification information to identify the user who wishes to register (to receive services using biometric authentication). The service server 20 stores the system ID and registration authentication information (e.g., features) obtained from the original biometric information in the entry for the identified user.

The service server 20 sends a response including the result of the user registration (user registration successful or unsuccessful) to the control server 10 (step S04).

In this way, the user provides the original biometric information (master data of the biometric information) stored in the terminal 40 such as a smartphone to the service provider via the control server 10 of the authentication center. At that time, the terminal 40 continues to hold the original biometric information (master data) of the user internally.

The control server 10 deletes the original biometric information (e.g., a facial image) acquired from the user when the control server 10 transmits a user registration request to the service server 20 or when the control server 10 receives a response to the request. The service server 20 also deletes the original biometric information acquired from the control server 10 when it generates registration authentication information (e.g., features).

<Provision of services>
After completing the selection of the service, the user visits the service provider to receive the service. For example, the user visits the facility or store of the service provider, such as an office, an amusement park, an event venue, or a retail store, where the user receives the service selected by the user.

The authentication terminal 30 acquires biometric information of the user (person to be authenticated) receiving the service. For example, the authentication terminal 30 photographs the person to be authenticated and acquires biometric information (e.g., a facial image) corresponding to the original biometric information. The authentication terminal 30 transmits an authentication request including the acquired facial image to the service server 20 (see FIG. 6). If necessary, the authentication terminal 30 transmits other information (e.g., payment information such as the price of a purchased item) together with the biometric information to the service server 20. Alternatively, the authentication terminal 30 may transmit information used in the authentication process (e.g., credit card information) together with the biometric information (information for identifying an individual, ID) to the service server 20.

The service server 20 generates authentication information for matching from the acquired facial image. For example, the service server 20 generates features from the facial image for matching. The service server 20 executes a matching process (1:N matching; N is a positive integer, the same below) using the generated authentication information for matching (hereinafter referred to as matching authentication information) and the registered authentication information registered in the user management database.

The service server 20 identifies the user (person to be authenticated) registered in the user management database through a matching process.

The service server 20 authenticates the identified user using the business information of the user. For example, the service server 20 of the employee's employer determines that the authentication has been successful if the person to be authenticated is an employee of the company and has the qualifications to enter the office. Alternatively, a service server 20 installed at an event venue determines that the authentication has been successful if the ticket purchased by the person to be authenticated is valid. Alternatively, a service server 20 installed at a retail store determines that the authentication has been successful if the payment for the goods, etc. purchased by the person to be authenticated is successful.

The service server 20 sends the authentication result (authentication successful, authentication failed) to the authentication terminal 30.

The authentication terminal 30 executes processing according to the authentication result. For example, when successful authentication is received, the authentication terminal 30 installed in an office opens the gate and allows the authenticated person to pass through. Alternatively, when successful authentication is received, the authentication terminal 30 installed at an event venue allows the authenticated person to pass through the gate. Alternatively, when successful authentication is received, the authentication terminal 30 installed at a retail store notifies the authenticated person that payment for the product has been completed.

Next, we will explain in detail each device included in the authentication system related to the first embodiment.

[Control Server]
Fig. 7 is a diagram showing an example of a processing configuration (processing module) of the control server 10 according to the first embodiment. Referring to Fig. 7, the control server 10 includes a communication control unit 201, an account management unit 202, a business operator management unit 203, a service selection control unit 204, a user registration control unit 205, and a storage unit 206.

The communication control unit 201 is a means for controlling communication with other devices. For example, the communication control unit 201 receives data (packets) from the service server 20. The communication control unit 201 also transmits data to the service server 20. The communication control unit 201 passes the data received from the other devices to the other processing modules. The communication control unit 201 transmits data acquired from the other processing modules to the other devices. In this way, the other processing modules transmit and receive data with the other devices via the communication control unit 201. The communication control unit 201 has a function as a receiving unit that receives data from other devices and a function as a transmitting unit that transmits data to the other devices.

The account management unit 202 is a means for managing a user's account. When a user operates the terminal 40 to access a specific homepage, etc., the account management unit 202 obtains the information necessary to generate an account for the user.

Specifically, the account management unit 202 acquires personal information such as login information, name, and date of birth. Upon acquiring the login information, the account management unit 202 generates a system ID for identifying the user. The system ID may be any information that can uniquely identify the user. For example, the account management unit 202 may assign a unique value each time an account is generated, and use this as the system ID.

The account management unit 202 associates the generated system ID, login information, name, etc. and stores them in the account management database (see FIG. 8). Note that the account management database shown in FIG. 8 is an example and is not intended to limit the items to be stored. For example, the account creation date and time, etc. may be stored in the account management database.

The account management unit 202 also acquires login information for logging in to the portal site from the user's terminal 40. The account management unit 202 performs authentication using the login information.

The business management unit 203 is a means for managing the service providers (service businesses) participating in the authentication system. The business management unit 203 acquires business information (service provider name, business type, location, management code, address of service server 20, etc.) to be registered in the system from staff of each service provider. The business information may include the type of each service provider (the first to fourth service provider types described above).

For example, the business management unit 203 may provide each service provider with an interface for inputting business information, etc. Alternatively, each service provider may send a USB (Universal Serial Bus) memory or the like on which the business information, etc. is stored to the authentication center. The business management unit 203 may acquire the business information, etc. from staff, etc. of the authentication center.

The business management unit 203 generates an ID (business ID) for the service provider that has acquired the business information, etc. The business management unit 203 stores the generated business ID and the acquired business information, etc. in association with each other.

The service selection control unit 204 is a means for controlling the selection of a biometric authentication service (service provider) by the user. The service selection control unit 204 enables the user to select the service provider from which the user wishes to receive services from among multiple service providers that offer services using biometric authentication.

When a user operates terminal 40 to log in to a portal site and performs a specified operation on the portal site, the service selection control unit 204 displays, for example, a GUI such as that shown in Figure 9 on terminal 40.

When displaying the above GUI, the service selection control unit 204 displays the service providers so that the user can distinguish between service providers that have already been selected and those that have not been selected. In the example of Figure 9, a service provider with a check mark in the upper right corner of the icon representing the service business indicates a service provider that has already been selected, and a service provider with no check mark indicates an unselected service provider.

The service selection control unit 204 uses the business information and information registered in the account management database to display a GUI such as that shown in FIG. 9. Specifically, the service selection control unit 204 references the business information and generates a list of service providers that have contracts with the authentication center. The service selection control unit 204 also references the selected service field in the account management database and obtains the service provider (the service provider's business ID) that has been selected by the user.

In addition, when displaying a list of service providers, the service selection control unit 204 may also provide the user with more detailed information about each service provider (e.g., business type, services offered, store location, etc.).

Here, there are many companies and condominium management companies where users work, and it is not realistic to display a list of these companies and management companies. Therefore, the service selection control unit 204 may display icons that represent multiple service providers. In the example of Figure 9, multiple companies (places of work) are displayed as "offices," and multiple condominium management companies are displayed as "condominiums."

When an icon representing multiple service providers is selected (in the example of Figure 9, when the "Office" or "Apartment" icon is pressed), the service selection control unit 204 acquires the management code of the service provider for which the user is to be registered. Specifically, the service selection control unit 204 acquires the management code using a GUI such as that shown in Figure 10. Note that the user acquires the management code of their company or home apartment from their employer, management company, etc.

The service selection control unit 204 identifies the service provider selected by the user from the management code. In this way, the service selection control unit 204 identifies the service provider selected (specified) by the user by obtaining, as necessary, from the terminal 40, the management code corresponding to the service provider from which the user wishes to receive a service.

In addition, when an icon that does not represent multiple service providers (an icon that directly indicates a service provider; in the example of Figure 9, the icons of retailers A to C) is pressed, the service selection control unit 204 can identify the service provider selected by the user without using the management code.

The service selection control unit 204 passes on information about the service provider selected by the user (e.g., the business ID of the service provider for which the user wishes to register) to the user registration control unit 205.

The service selection control unit 204 also enables the user to cancel a service provider that has already been selected (to terminate receiving services from that service provider). Specifically, when the user performs a specified operation on the portal site, the service selection control unit 204 displays a GUI such as that shown in FIG. 9.

When a service provider for which a user has already registered is selected in Fig. 9 (a service provider with a check mark in the upper right corner in the example of Fig. 9), the service selection control unit 204 controls the cancellation of the user registration of the selected service provider. If necessary, the service selection control unit 204 acquires the management code of the service provider for which the user registration is to be cancelled.

The service selection control unit 204 passes on information about the service provider selected by the user (the service provider for which the user wishes to cancel his/her registration) to the user registration control unit 205.

The user registration control unit 205 is a means for controlling "user registration" by the control server 10. For example, the user registration control unit 205 performs control so that a service provider selected by a user using a predetermined code (management code) can acquire original biometric information that serves as the source of authentication information to be used for biometric authentication.

The user registration control unit 205 controls "user registration" that enables a service provider selected by a user to provide the user with a service using biometric authentication. Alternatively, the user registration control unit 205 controls the cancellation of user registration.

The user registration control unit 205 executes user registration control according to the type of service provider for which user registration is desired. The user registration control unit 205 acquires the type of selected service provider from the business information. In the first embodiment, a case where a first type of service provider is selected is described. That is, the user registration control unit 205 performs user registration control for a service provider selected by a user who does not have an account for managing customers to acquire original biometric information that serves as the original of authentication information used for biometric authentication.

When the information of the service provider selected by the user is obtained from the service selection control unit 204, the user registration control unit 205 transmits an "original provision request" to the terminal 40 held by the user. The user registration control unit 205 receives the original biometric information of the user (e.g., a facial image) from the terminal 40.

The user registration control unit 205 sends a user registration request including the user's system ID, original biometric information, personal identification information, etc. to the service server 20 of the service provider corresponding to the service selected by the user.

In addition, the user registration control unit 205 obtains the system ID and personal identification information (e.g., name or a combination of name and date of birth) from the account management database.

The user registration control unit 205 receives a response (positive response, negative response) to the user registration request.

If a positive response (user registration successful) is received, the user registration control unit 205 registers the business ID of the service provider selected by the user in the account management database. Also, if a positive response is received, the user registration control unit 205 notifies the user that user registration for the selected service provider was successful.

If a negative response (user registration failed) is received, the user registration control unit 205 notifies the user of this.

When a user wishes to cancel his/her registration, the user registration control unit 205 sends a "cancellation request" including the user's system ID to the service server 20 of the service provider for which cancellation is desired.

The user registration control unit 205 receives a response (positive response, negative response) to the deregistration request. The user registration control unit 205 notifies the user of the result of the deregistration request.

Specifically, if a positive response (deregistration successful) is received, the user registration control unit 205 notifies the user accordingly. For example, the user registration control unit 205 notifies the user that the user registration with the service provider selected by the user has been deregistered by unchecking the icon shown in FIG. 9. Alternatively, if deregistration is successful, the user registration control unit 205 may display a message indicating that the registered authentication information (e.g., features) has been deleted from the service provider (service server 20). That is, the terminal 40 may report to the user that the features registered in the service server 20 have been deleted by deregistration. If a negative response (deregistration failed) is received, the user registration control unit 205 notifies the user accordingly.

The memory unit 206 is a means for storing information necessary for the operation of the control server 10.

Regarding user registration, the operation of the control server 10 described above can be summarized as shown in the flowchart in Figure 11.

The control server 10 acquires the biometric authentication service (service provider) desired by the user (acquire selected service; step S101). At that time, the control server 10 acquires the management code of the service provider, if necessary.

The control server 10 obtains the original biometric information by sending an "original provision request" to the terminal 40 held by the user (step S102).

The control server 10 sends a user registration request including the system ID, the acquired original biometric information (e.g., facial image) and personal identification information (e.g., name) to the service server 20 (step S103).

The control server 10 receives a response to the user registration request from the service server 20 (step S104).

The control server 10 notifies the user whether the user registration was successful or not (step S105).

In this way, the control server 10 acquires the original biometric information by requesting the provision of the original biometric information from the terminal 40 held by the user, and transmits the acquired original biometric information to the service server 20 of the service provider selected by the user. At that time, the control server 10 transmits at least a system ID for managing the user on its own device and the acquired original biometric information to the service server 20.

[Service Server]
Fig. 12 is a diagram showing an example of a processing configuration (processing module) of the service server 20 according to the first embodiment. Referring to Fig. 12, the service server 20 includes a communication control unit 301, a business information management unit 302, a user registration control unit 303, an authentication unit 304, and a storage unit 305.

The communication control unit 301 is a means for controlling communication with other devices. For example, the communication control unit 301 receives data (packets) from the control server 10. The communication control unit 301 also transmits data to the control server 10. The communication control unit 301 passes the data received from the other devices to the other processing modules. The communication control unit 301 transmits data acquired from the other processing modules to the other devices. In this way, the other processing modules transmit and receive data to and from the other devices via the communication control unit 301. The communication control unit 301 has a function as a receiving unit that receives data from other devices and a function as a transmitting unit that transmits data to the other devices.

The business information management unit 302 is a means for the service provider to manage and control business information necessary for providing services.

The business information management unit 302 acquires business information necessary for the provision of the company's services using any means. For example, the business information management unit 302 of the user's employer company acquires information such as the employee's name, date of birth, employee number, department, and place of work as business information.

The business information management unit 302 may acquire the above business information from staff of the service provider, etc., or may acquire the business information directly from the user using a means such as a homepage.

The business information management unit 302 manages business information using a user management database.

A more detailed explanation of the business information management unit 302 will be omitted because the details of the business information for each service and the method of acquiring the information are different from the purpose of this disclosure.

The user registration control unit 303 is a means for controlling user registration by the service provider. The user registration control unit 303 processes a user registration request received from the control server 10.

Upon receiving a user registration request, the user registration control unit 303 searches the user management database using the personal identification information (e.g., name) contained in the user registration request as a key, and identifies the corresponding user (entry).

If the corresponding user is registered in the user management database, the user registration control unit 303 generates registration authentication information from the acquired original biometric information (e.g., a facial image). For example, when a facial image is acquired, the user registration control unit 303 generates a feature amount (feature vector) corresponding to the facial recognition algorithm adopted by the company as the registration authentication information.

Existing technology can be used for the process of generating features, so a detailed description thereof will be omitted. For example, the user registration control unit 303 extracts the eyes, nose, mouth, etc. as feature points from the face image. The user registration control unit 303 then calculates the position of each feature point and the distance between each feature point as feature amounts, and generates a feature vector (vector information that characterizes the face image) consisting of multiple feature amounts.

Upon generating the registration authentication information (e.g., features), the user registration control unit 303 associates the system ID, the generated registration authentication information (features), and business information and stores them in the user management database (see Figure 13).

Note that the user management database shown in FIG. 13 is an example and is not intended to limit the items to be stored. For example, the date and time of user registration may be registered in the user management database.

When user registration is completed normally, the user registration control unit 303 sends an affirmative response to the control server 10 indicating that user registration was successful. The user registration control unit 303 generates registration authentication information (e.g., features), registers the generated registration authentication information in the user management database, and then deletes the original biometric information obtained from the control server 10.

If user registration is not completed successfully, the user registration control unit 303 sends a negative response to the control server 10 indicating that user registration has failed. For example, a negative response is sent to the control server 10 when the personal identification information (e.g., name) received from the control server 10 is not registered in the user management database or when valid registration authentication information cannot be generated from the original biometric information.

Furthermore, the user registration control unit 303 processes a deregistration request received from the control server 10.

Upon receiving a deregistration request, the user registration control unit 303 searches the user management database using the system ID included in the deregistration request as a key to identify the corresponding user. The user registration control unit 303 deletes at least the system ID and registered authentication information (e.g., features) of the identified user. Alternatively, the user registration control unit 303 deletes the entry of the identified user (entry in the user management database) as necessary.

If the system ID, etc. is successfully deleted, the user registration control unit 303 sends a positive response to the control server 10 indicating that the user registration was successfully cancelled. If the user registration was unsuccessful because the system ID obtained from the control server 10 does not exist in the user management database, for example, the user registration control unit 303 sends a negative response to that effect to the control server 10.

The authentication unit 304 is a means for performing biometric authentication of the person to be authenticated. The authentication unit 304 receives an authentication request from the authentication terminal 30. The authentication unit 304 extracts biometric information (e.g., a facial image) from the authentication request.

The authentication unit 304 generates matching authentication information from the acquired biometric information. For example, when a facial image is acquired, the authentication unit 304 generates features corresponding to the facial recognition algorithm adopted by the company. The authentication unit 304 executes a matching process using the generated matching authentication information (features) and registered authentication information (features) registered in the user management database.

Specifically, the authentication unit 304 calculates the similarity between the feature (feature vector) to be matched and each of the multiple feature on the registration side. The similarity can be calculated using chi-square distance, Euclidean distance, or the like. Note that the greater the distance, the lower the similarity, and the closer the distance, the higher the similarity.

If there are no features whose similarity is greater than or equal to a predetermined value, the authentication unit 304 sets the authentication result to "authentication failed."

If there is a feature whose similarity is equal to or greater than a predetermined value, the authentication unit 304 identifies the entry (user) having the most similar feature (registered authentication information) among the multiple entries registered in the user management database. The authentication unit 304 authenticates the person to be authenticated using the business information of the identified user.

For example, the authentication unit 304 of the user's workplace determines that the authentication was successful if the user identified by the matching process is an employee of the company and has the right to enter the office. Alternatively, the authentication unit 304 determines that the authentication was unsuccessful if the identified user is an employee of the company but is not qualified to enter the location where the authentication terminal 30 is installed.

Note that we will not provide a detailed explanation of the authentication process using business information at each service provider, as the processes specific to each service provider are outside the scope of the present disclosure.

The authentication unit 304 transmits the authentication result (authentication successful, authentication failed) to the authentication terminal 30.

The memory unit 305 is a means for storing information necessary for the operation of the service server 20.

In principle, service providers belonging to the first type continue to store the business information used to authenticate users. For example, the service server 20 continues to store the business information until an employee resigns or a resident moves out. In other words, the service server 20 may delete the business information when an employee resigns or the like.

[Authentication device]
Fig. 14 is a diagram showing an example of a processing configuration (processing module) of the authentication terminal 30 according to the first embodiment. Referring to Fig. 14, the authentication terminal 30 includes a communication control unit 401, a biometric information acquisition unit 402, an authentication request unit 403, a function realization unit 404, and a storage unit 405.

The communication control unit 401 is a means for controlling communication with other devices. For example, the communication control unit 401 receives data (packets) from the service server 20. The communication control unit 401 also transmits data to the service server 20. The communication control unit 401 passes the data received from the other devices to the other processing modules. The communication control unit 401 transmits data acquired from the other processing modules to the other devices. In this way, the other processing modules transmit and receive data with the other devices via the communication control unit 401. The communication control unit 401 has a function as a receiving unit that receives data from other devices and a function as a transmitting unit that transmits data to the other devices.

The biometric information acquisition unit 402 is a means for controlling the camera and acquiring biometric information (e.g., a facial image) of the person to be authenticated. The biometric information acquisition unit 402 captures an image of the area in front of the device periodically or at a predetermined timing. The biometric information acquisition unit 402 determines whether the acquired image contains a human facial image, and if a facial image is included, extracts the facial image from the acquired image data.

Note that the facial image detection process and facial image extraction process performed by the biometric information acquisition unit 402 can use existing technology, so detailed explanations will be omitted. For example, the biometric information acquisition unit 402 may extract a facial image (face area) from image data using a learning model trained by a CNN (Convolutional Neural Network). Alternatively, the biometric information acquisition unit 402 may extract a facial image using a method such as template matching.

The biometric information acquisition unit 402 passes the extracted facial image to the authentication request unit 403.

The authentication request unit 403 is a means for requesting authentication of the person to be authenticated from the service server 20. When authentication of the person to be authenticated becomes necessary, the authentication request unit 403 transmits an authentication request including biometric information of the person to be authenticated (the user in front of the authentication terminal 30) to the service server 20.

The authentication request unit 403 receives an authentication result (authentication successful, authentication failed) from the service server 20. The authentication request unit 403 passes the received authentication result to the function realization unit 404.

The function realization unit 404 is a means for realizing the functions assigned to the authentication terminal 30. For example, when the function realization unit 404 of the authentication terminal 30 installed at the user's workplace receives a successful authentication, it opens the gate and permits the authenticated person to enter.

Note that a detailed description of the function realization unit 404 included in the authentication terminal 30 of each service provider will be omitted because the realization of the functions of the authentication terminal 30 by the function realization unit 404 is different from the purpose of the present disclosure.

The memory unit 405 is a means for storing information necessary for the operation of the authentication terminal 30.

[Device]
Fig. 15 is a diagram showing an example of a processing configuration (processing module) of the terminal 40 according to the first embodiment. Referring to Fig. 15, the terminal 40 includes a communication control unit 501, an account creation control unit 502, an original information acquisition unit 503, a service selection unit 504, and a storage unit 505.

The communication control unit 501 is a means for controlling communication with other devices. For example, the communication control unit 501 receives data (packets) from the control server 10. The communication control unit 501 also transmits data to the control server 10. The communication control unit 501 passes data received from other devices to other processing modules. The communication control unit 501 transmits data acquired from other processing modules to other devices. In this way, the other processing modules transmit and receive data to and from other devices via the communication control unit 501. The communication control unit 501 has a function as a receiving unit that receives data from other devices and a function as a transmitting unit that transmits data to other devices.

The account generation control unit 502 is a means for controlling the creation of an account by a user. The account generation control unit 502 accesses a specified web page, etc. provided by the control server 10 in response to a user's operation.

The account generation control unit 502 inputs login information, name, date of birth, etc. into the web page in response to user operation.

The original information acquisition unit 503 is a means for acquiring the user's biometric information (original biometric information). The original information acquisition unit 503 displays a GUI or the like for acquiring the original biometric information (e.g., a facial image) in response to the user's operation. For example, the original information acquisition unit 503 acquires the original biometric information using a GUI such as that shown in FIG. 16.

The original information acquisition unit 503 stores the acquired original biometric information (e.g., a facial image) in the storage unit 505. At that time, the original information acquisition unit 503 may encrypt, code, etc. the acquired original biometric information and store the encrypted original biometric information in the storage unit 505. That is, the terminal 40 held by the user may hold the encrypted original biometric information. The encrypted original biometric information may be decrypted when the original biometric information is transmitted to the control server 10. Alternatively, information for decrypting the encrypted original biometric information (e.g., a common key) may be shared between the terminal 40 and the control server 10, and the control server 10 may decrypt the encrypted original biometric information.

In addition, as a general rule, the terminal 40 does not delete the original biometric information (e.g., a facial image) of the user. In other words, the terminal 40 does not delete the original biometric information stored in the storage unit 505 unless there is a clear instruction from the user.

The service selection unit 504 is a means for enabling the user to select a biometric authentication service. The service selection unit 504 logs in to a portal site provided by the control server 10 in response to the user's operation. The service selection unit 504 transmits to the control server 10 information on the service provider selected by the user using a GUI provided by the control server 10.

The service selection unit 504 receives a request to provide the original from the control server 10. Upon receiving the request, the service selection unit 504 transmits the original biometric information stored in the memory unit 505 to the control server 10.

The memory unit 505 is a means for storing information necessary for the operation of the terminal 40.

[System Operation]
Next, the operation of the authentication system according to the first embodiment will be described. Note that a description of the operation related to account creation, etc. will be omitted. Fig. 17 is a sequence diagram showing an example of the operation of the authentication system according to the first embodiment.

The terminal 40 transmits information about the service selected by the user (information about the service provider from which the user wants to receive biometric authentication services) to the control server 10 (transmitting service information; step S10).

When the user selects the service he or she wishes to receive, the control server 10 sends a request for provision of the original to the user's terminal 40 (step S11).

In response to receiving the request to provide the original, the terminal 40 transmits the original biometric information (e.g., a facial image) to the control server 10 (step S12).

The control server 10 sends a user registration request including the system ID, the acquired original biometric information, and personal identification information, etc. to the service server 20 of the service provider selected by the user (step S13).

The service server 20 generates authentication information for registration (registered authentication information) from the acquired original biometric information (step S14). The generated registered authentication information is registered in the user management database.

<Modification of the First Embodiment>
In the above embodiment, the management code input by the user is used to identify a service provider selected by the user from among a plurality of service providers. However, the management code may be used as information on whether the user is qualified to select a service provider. Specifically, the management code may be used as proof that the user is qualified to register a service provider (such as an employer or an apartment management company).

For example, when a user selects a workplace, condominium management company, etc. as a service provider, the control server 10 displays a list of workplaces, etc. that have contracts with the authentication center on the terminal 40. When the user selects a workplace, condominium management company, etc. from the displayed list, the control server 10 prompts the user to enter the management code of the workplace, etc.

If the management code of the service provider selected by the user matches the management code entered by the user, the control server 10 determines that the user is eligible to receive services from the service provider. On the other hand, if the management code of the service provider selected by the user does not match the management code entered by the user, the control server 10 determines that the user is not eligible to receive services from the service provider. If the user is eligible to receive services from the service provider, the control server 10 accepts the user registration (selection of a service provider) for the user. In this way, when the user selects a service provider from which the user wants to receive services, the service selection control unit 204 requests the user to input a first management code. If the first management code entered by the user matches a predetermined second management code corresponding to the service provider selected by the user, the service selection control unit 204 accepts the selection of a service provider by the user.

For example, when a user selects workplace A and enters the correct management code for workplace A, control server 10 determines that the user is qualified to register as a user for workplace A. In this way, control server 10 can also use the management code as a password. By using the management code as a password, control server 10 can prevent users unrelated to the service provider from registering as users.

As described above, the control server 10 according to the first embodiment performs control for a service provider belonging to the first type to acquire original biometric information that is the original of authentication information used for biometric authentication. A service provider belonging to the first type is a service provider that does not have an account for managing customers and repeatedly uses business information for providing services to customers. In order to enable such a service provider to acquire the original biometric information of a user (customer), the control server 10 transmits personal identification information (e.g., name) along with the original biometric information of the user to the service server 20 of the service provider. The service server 20 identifies the user using the personal identification information, and stores the registered authentication information of the identified user in association with the business information. Completion of the association enables the service provider to provide the user with a service using biometric authentication.

In addition, in the authentication system according to the first embodiment, the original biometric information (e.g., a facial image) required for biometric authentication is stored in the user's terminal 40. When a user wishes to receive a biometric authentication service, the user selects a service provider, and then the original biometric information stored in the terminal 40 is provided to the selected service provider (the service provider that requires the registered authentication information). Once the user registers his/her own biometric information (e.g., a facial image) in the terminal 40, the user can receive each service without registering biometric information in each service (various service providing locations). In other words, once the user photographs his/her face, the user can use the facial authentication service in various locations (services) using the facial image without registering the face again. In other words, once the biometric information is registered, the biometric information can be applied to various solutions using biometric authentication.

In addition, the above configuration solves various problems that arise when a service provider provides a biometric authentication service. In existing systems, the service provider had to have the user register a face image for each service provision location (service). However, in the system according to the first embodiment, the user only needs to register the face once, and the burden on the service provider in inducing face registration is significantly reduced. In addition, the service provider does not need to hold the original biometric information (face image), and the burden on the service provider against information leakage, etc. is reduced. In particular, when the same service provider employs multiple face recognition algorithms, it is no longer necessary to possess face images corresponding to each face recognition algorithm, and the business risk of the service provider is reduced. In addition, with the consent of the user, the authentication center stores the original biometric information, and the service provider can change the face recognition engine employed in the company or newly adopt a face recognition engine suitable for the service provided. In other words, the service provider is not limited to a face recognition engine of a specific vendor, but can adopt face recognition engines of various vendors suitable for the purpose. As a result, the service provider can avoid the business risk of being overly dependent on one vendor (one face recognition engine). In other words, service providers who participate in the authentication system disclosed in this application can easily support multiple vendors.

Furthermore, from the user's perspective, there is no need to register a facial image multiple times even for the same service (same service provider), improving user convenience. Furthermore, the original biometric information (facial image) is kept on the user's own terminal 40, and the user's facial image is not held by an external company, etc., reducing concerns about information leaks, etc. In other words, the user can enjoy the biometric authentication service with peace of mind.

Second Embodiment
Next, the second embodiment will be described in detail with reference to the drawings.

In the second embodiment, user registration for a second type of service provider is described.

Note that the configuration of the authentication system according to the second embodiment can be the same as that of the first embodiment, and therefore the explanation corresponding to FIG. 3 will be omitted. Also, the processing configuration of the control server 10 and the like according to the second embodiment can be the same as that of the first embodiment, and therefore the explanation thereof will be omitted.

Below, we will mainly explain the differences between the first and second embodiments.

As described above, service providers belonging to the second type (e.g., amusement park management companies, concert and other event companies) do not provide portal sites to users. The event companies store information about tickets purchased by users on ticket sales sites and the like as business information, and use the business information to authenticate users.

A user operates terminal 40 to access a ticket sales site and purchases the desired ticket on the ticket sales site. Specifically, as shown in FIG. 18, a user operates terminal 40 to access ticket management server 50 and purchases a ticket. Terminal 40 acquires information about the purchased ticket. For example, terminal 40 acquires an ID (ticket ID) for uniquely identifying the purchased ticket from ticket management server 50.

Note that detailed explanations regarding the configuration of the ticket management server 50, purchasing tickets, obtaining ticket IDs, etc. will be omitted. Purchasing tickets, etc. is outside the scope of the present disclosure and would be obvious to a person skilled in the art.

In a GUI such as that shown in Figure 9, the user selects a service provider belonging to the second type. For example, the user selects an event company that operates amusement parks, theme parks, etc. That is, the user operates the terminal 40 to access the control server 10 and selects the service provider for which the user is to be registered. The control server 10 acquires an administration code from the user that specifies the service provider as necessary.

The control server 10 determines the type of the selected service provider based on the business ID of the selected service provider. Here, a service provider belonging to the second type is selected. The business information of a service provider belonging to the second type includes information regarding the business information required by the service provider. In the above example, the business information includes information that ticket information (ticket ID) is required.

When a second type of service provider is selected, the user registration control unit 205 of the control server 10 acquires the business information required by the service provider. For example, the user registration control unit 205 acquires the ticket ID by displaying a GUI such as that shown in FIG. 19 on the terminal 40.

Upon obtaining the ticket ID, the user registration control unit 205 obtains the original biometric information from the user's terminal 40 by sending an original provision request to the terminal 40, as in the first embodiment (steps S21 and S22 in Figure 18).

Once the original biometric information has been acquired, the user registration control unit 205 sends a user registration request including the system ID, the acquired ticket ID (business information) and the original biometric information to the service server 20 of the service provider selected by the user (step S23).

The user registration control unit 303 of the service server 20 generates registration authentication information from the acquired biometric information. The user registration control unit 303 also adds a new entry to the user management database, and stores the system ID, registration authentication information, and business information (ticket ID) in the added entry.

The service server 20 processes the authentication request received from the authentication terminal 30. Specifically, the authentication unit 304 of the service server 20 transmits the ticket ID of the person to be authenticated identified by the matching process to the ticket management server 50 of the ticket sales site (see FIG. 20).

The ticket management server 50 determines the validity of the acquired ticket ID. Specifically, the ticket management server 50 determines the validity of the ticket based on the event location, date and time of the event, etc., specified by the ticket ID. The ticket management server 50 transmits the determination result to the service server 20. The authentication unit 304 determines that the authentication is successful if the ticket is valid. The authentication unit 304 determines that the authentication is unsuccessful if the ticket is invalid.

As a general rule, service providers belonging to the second type delete the business information used to authenticate the user. This is because the business information used by service providers belonging to the second type (business information necessary for the service provider to provide a service to the customer; for example, a ticket ID) is information that is essentially used once during biometric authentication. For example, once a ticket purchaser enters an event venue, the ticket purchaser will not be judged as having been successfully authenticated again, and so the corresponding business information is deleted. Alternatively, if re-entry to the event venue is permitted, the service server 20 may delete the corresponding business information after the event ends (a predetermined time after the scheduled end time of the event).

In the above explanation, tickets for amusement parks, concerts, etc. have been used as examples, but it goes without saying that this is not intended to limit the type of ticket. For example, tickets such as boarding passes and passenger tickets for public transport can also be processed in the same way. Furthermore, the tickets covered by this disclosure include not only tickets that are limited to one-time use, but also tickets that are used multiple times. For example, tickets with a validity period, such as round-trip tickets (for example, tickets that allow unlimited use of public transport for a specified period of time) and commuter passes, are also covered by this disclosure.

As described above, the control server 10 of the second embodiment transmits to the service server 20, in addition to the system ID and the original biometric information, business information (such as a ticket ID) required for a service provider selected by a user to provide the user with a service using biometric authentication. As a result, a service provider belonging to the second type can obtain business information (e.g., a ticket ID) required to authenticate the user.

[Third embodiment]
Next, a third embodiment will be described in detail with reference to the drawings.

In the third embodiment, user registration for a third type of service provider is described.

Note that the configuration of the authentication system according to the third embodiment can be the same as that of the first embodiment, and therefore the explanation corresponding to FIG. 3 will be omitted. Also, the processing configuration of the control server 10 and the like according to the third embodiment can be the same as that of the first embodiment, and therefore the explanation thereof will be omitted.

The following will focus on the differences between the first to third embodiments.

In a GUI such as that shown in Figure 9, the user selects a service provider belonging to the third type. For example, the user selects a retail store such as a convenience store.

A user who selects a service provider belonging to the third type already has an account with the selected service provider. For example, a user who wishes to use biometric authentication payment at a convenience store is a member of the convenience store and already has an account. In addition, payment information for payment is stored as business information in the convenience store's account. The payment information includes information on any payment method, such as information on a credit card, information on the amount charged to a transportation IC (Integrated Circuit) card, and information for code payment using a two-dimensional barcode.

The control server 10 enables users to use biometric authentication payment by executing control over user registration for retail stores such as convenience stores. The control server 10 links the account of the service provider selected by the user with the account of the authentication system.

The user operates the terminal 40 to access the control server 10 and select the service provider for which user registration (account linkage) is to be performed (step S31 in Figure 21).

The control server 10 determines the type of the selected service provider based on the business ID of the selected service provider. Here, a service provider belonging to the third type is selected.

When a third type of service provider is selected, the user registration control unit 205 of the control server 10 sends a URL (Uniform Resource Locator) for logging in to the account of the selected service provider to the terminal 40 (step S32).

The URL sent to the terminal 40 is a redirect URL for connecting the terminal 40 to the service provider's login page, and the user's system ID is embedded in the redirect URL. The redirect URL has been provided to the control server 10 in advance as business information. The user registration control unit 205 embeds the system ID (an ID used by the control server 10 to manage users) in the redirect URL stored as business information, and sends the redirect URL to the terminal 40.

When the terminal 40 receives the redirect URL, it accesses the service provider's login page according to the URL. At that time, since the redirect URL contains the system ID, the user registration control unit 303 of the service server 20 can obtain the system ID of the user.

The user operates terminal 40 to input login information (login information for logging in to the service provider's account) on the service provider's login page (step S33).

The user registration control unit 303 of the service server 20 searches the user management database using the acquired login information (user ID) as a key to identify the corresponding user. The user registration control unit 303 stores the system ID acquired from the redirect URL in the entry for the identified user. In other words, the user registration control unit 303 stores the user ID managed by the company (service provider) in association with the system ID used by the authentication system to manage the user.

In the following explanation, the ID issued by each service provider to manage users (customers, members, etc.) will be referred to as an "individual ID." The user registration control unit 303 associates the individual ID of the user who logs in to the portal site according to the redirect URL with the system ID and stores them (links the IDs).

Once the correspondence between the individual ID and the system ID is complete, the user registration control unit 303 may notify the control server 10 of the user's system ID. For example, the user registration control unit 303 may send a "user registration completion notification" including the system ID to the control server 10 (step S34). Having received the user registration completion notification, the user registration control unit 205 of the control server 10 may notify the user that user registration is complete.

For example, the control server 10 may notify the completion of user registration by checking the icon of a service provider for which user registration has been completed on a screen such as that shown in FIG. 9.

Once the correspondence between the individual ID and the system ID has been completed, the user registration control unit 303 of the service server 20 sends a "biometric information provision request" including the user's system ID to the control server 10 (step S35 in Figure 22).

Upon receiving the biometric information provision request, the user registration control unit 205 of the control server 10 searches the account management database using the system ID included in the biometric information provision request as a key to identify the corresponding user. The user registration control unit 205 then transmits a "request to provide original" to the terminal 40 of the identified user (step S36).

In response to receiving the request to provide the original, the terminal 40 transmits the user's original biometric information (e.g., a facial image) to the control server 10 (step S37).

Upon acquiring the original biometric information, the user registration control unit 205 transmits the acquired original biometric information (e.g., a facial image) to the service server 20. Specifically, when the original biometric information is acquired from the terminal 40, the user registration control unit 205 transmits a positive response including the acquired original biometric information to the service server 20 (step S38). Note that, when the original biometric information cannot be acquired from the terminal 40, the user registration control unit 205 transmits a negative response to the service server 20 in response to the biometric information provision request.

The user registration control unit 303 of the service server 20 generates registration authentication information from the acquired original biometric information and stores it in the user management database. The user registration control unit 303 associates the system ID, individual ID (login information), registration authentication information, and business information (e.g., credit card information) and stores them in the user management database.

When a user purchases a product at a retail store, the authentication terminal 30 sends an authentication request including the biometric information of the product purchaser and payment information (purchase price) to the service server 20 (see FIG. 23). The service server 20 identifies the person to be authenticated (product purchaser) through a matching process using the acquired biometric information.

The service server 20 performs payment processing using the credit card information and payment information of the identified authenticated person. Specifically, the service server 20 requests the payment server 60 of the credit card company to settle the product price by sending the credit card information and payment information to the payment server 60. The payment server 60 notifies the service server 20 of the result of the payment processing. Note that the configuration and operation of the payment server 60 are different from the spirit of the disclosure of this application and are clear to those skilled in the art, so detailed explanation is omitted.

If the service server 20 is notified that the payment is successful, it determines that the authentication is successful. If the service server 20 is notified that the payment is unsuccessful, it determines that the authentication is unsuccessful. The service server 20 notifies the authentication terminal 30 of the authentication result.

In addition, service providers belonging to the third type repeatedly use business information (e.g., credit card information) necessary to authenticate a user. Therefore, even if the service server 20 successfully authenticates a user, it continues to store the business information without deleting it.

[System Operation]
Fig. 24 is a sequence diagram showing an example of the operation of the authentication system according to the third embodiment. The operation of the authentication system according to the third embodiment will be described with reference to Fig. 24 .

The terminal 40 selects a service provider in response to the user's operation (step S41).

When a service provider belonging to the third type is selected, the control server 10 sends a redirect URL to the terminal 40 (step S42).

In response to a user's operation, the terminal 40 accesses the login page indicated by the redirect URL and logs in to the portal site (step S43). At that time, the service server 20 obtains the system ID embedded in the redirect URL.

The service server 20 identifies the user using the login information (an individual ID used by the service provider to manage the user) and sends a request for biometric information regarding the identified user to the control server 10 (step S44).

The control server 10 sends a request for providing the original to the user's terminal 40 (step S45).

The terminal 40 transmits the original biometric information (e.g., a facial image) to the control server 10 (step S46).

The control server 10 transmits the acquired original biometric information to the service server 20 (step S47).

The service server 20 generates registered authentication information (e.g., features) from the acquired original biometric information (e.g., a facial image) and stores the registered authentication information in the user management database (step S48).

<Modification of the third embodiment>
In the third embodiment, it has been described that the service server 20 may transmit a "user registration completion notification" to the control server 10 after the account linking (association of an individual ID with a system ID) is completed. However, the service server 20 may transmit the user registration completion notification to the control server 10 after registering the user's registration authentication information in the user management database.

As described above, the control server 10 according to the third embodiment performs control for a service provider belonging to the third type to acquire original biometric information that is the original of authentication information used for biometric authentication. A service provider belonging to the third type is a service provider selected by a user, has an account for managing customers, and repeatedly uses business information required for providing services to customers during biometric authentication. The control server 10 transmits information for logging in to the account of the service provider selected by the user to the terminal 40 of the user. In response to receiving a biometric information provision request from the service server 20 that manages the user's account, the control server 10 requests the terminal 40 to provide original biometric information that is the original of authentication information used for biometric authentication, thereby acquiring original biometric information from the terminal 40. The control server 10 transmits the acquired original biometric information to the service server 20.

A service provider belonging to the third type has an account (portal site) for managing users, and uses an individual ID to manage the user. When registering a user (account linkage, ID linkage), the user logs into the portal site according to a redirect URL in which a system ID is embedded, and the service server 20 can obtain the user's system ID and individual ID at the same time. In other words, unlike the first embodiment, the service server 20 can identify the user using the individual ID without using personal identification information, so that more reliable user registration can be realized. That is, although the possibility of duplication of personal identification information (e.g., name) cannot be eliminated, the individual ID is an ID issued by the service server 20 to each user, so there is no possibility of duplication (the possibility of duplication is extremely low). The service server 20 can realize reliable account linkage (ID linkage) by identifying the user using the individual ID. Thus, in the information processing system according to the third embodiment, the information transmitted to the service server 20 via the control server 10 is limited to the original biometric information, and personal identification information is not transmitted to the service server 20 via the control server 10. In the third embodiment, information for identifying an individual (personal identification information) is transmitted from the terminal 40 that has acquired the redirect URL to the service server 20. In this manner, personal information identification information is not transmitted from the control server 10 to the service server 20, and therefore the security strength of the system is improved.

[Fourth embodiment]
Next, the fourth embodiment will be described in detail with reference to the drawings.

In the fourth embodiment, user registration for a fourth type of service provider is described.

Note that the configuration of the authentication system according to the fourth embodiment can be the same as that of the first embodiment, and therefore the explanation corresponding to FIG. 3 will be omitted. Also, the processing configuration of the control server 10 and the like according to the fourth embodiment can be the same as that of the first embodiment, and therefore the explanation thereof will be omitted.

The following will focus on the differences between the first to fourth embodiments.

The basic operation of the system according to the fourth embodiment can be the same as that of the system according to the third embodiment. Specifically, when a service provider belonging to the fourth type is selected, each device included in the authentication system performs the operation shown in FIG. 21.

Once the service provider's ID and the authentication system's system ID have been linked, the user provides the service provider with the business information required to receive the service (step S51 in FIG. 25). For example, the user purchases tickets for movies, concerts, amusement parks, airline tickets, boarding passes, etc., on the portal site of the service provider to which the user has logged in.

The provision of business information (purchase of tickets) may be performed as part of the process of logging in to the service provider's portal site when registering as a user. Alternatively, the user may log out of the portal site after completing user registration. The user may log in to the portal site again at a later date to purchase tickets. In this case, the user can operate terminal 40 to directly access (log in to) the portal site.

The service server 20 stores information about tickets purchased by users. The business information management unit 302 of the service server 20 stores the business information (ticket information) provided by users in a user management database.

The user registration control unit 303 of the service server 20 periodically or at a predetermined timing accesses the user management database and references the business information (ticket information) of each user. The user registration control unit 303 requests the control server 10 to provide biometric information a predetermined time before the referenced business information (ticket information) becomes valid (a predetermined time before the referenced business information is used in authentication processing).

Specifically, the user registration control unit 303 sends a "biometric information provision request" including the system ID of the user (a user who may use the ticket after a specified time) to the control server 10 (step S52).

The control server 10 that has received the biometric information provision request transmits an original provision request to the terminal 40 to acquire the original biometric information (e.g., a facial image) (steps S53 and S54). The control server 10 transmits the acquired original biometric information to the service server 20 (step S55).

In the fourth embodiment, the timing when the user selects a service provider and the timing when the original biometric information (facial image) is provided to the service provider often differ. Therefore, the terminal 40 may notify the user of the fact that the original biometric information has been sent to the control server 10 by using a pop-up notification or the like (see FIG. 26).

When the authentication unit 304 of the service server 20 according to the fourth embodiment receives an authentication request from an authentication terminal 30 installed at an event venue or the like, it determines an authentication result depending on whether the ticket of the user identified by the matching process is valid or not. The authentication terminal 30 allows users who are determined to have been successfully authenticated (users who possess a valid ticket) to pass through the gate. The authentication terminal 30 denies users who are determined to have failed authentication (users who do not possess a valid ticket) from passing through the gate.

As with the second embodiment, a service provider belonging to the fourth type will, in principle, delete the business information used to authenticate the user. However, the service server 20 according to the fourth embodiment will leave the user's account (system ID, individual ID, registered authentication information) rather than deleting it. By leaving the user's account, there will be no need to register the user with that service provider (ID linkage, account linkage) even if the user purchases tickets for another concert or the like from the same service provider.

As described above, the control server 10 according to the fourth embodiment performs control for the service provider belonging to the fourth type to acquire original biometric information that is the original of the authentication information used for biometric authentication. The service provider belonging to the fourth type is a service provider selected by a user, has an account for managing customers, and is a service provider that uses business information required to provide a service to a customer substantially once during biometric authentication. The control server 10 transmits information for logging into the account of the service provider selected by the user to the terminal 40 of the user. In response to receiving a biometric information provision request from the service server 20 that manages the user's account, the control server 10 requests the terminal 40 to provide original biometric information that is the original of the authentication information used for biometric authentication, thereby acquiring the original biometric information from the terminal 40. The control server 10 transmits the acquired original biometric information to the service server 20. As a result, reliable user registration (account linkage, ID linkage) is realized even for the service provider belonging to the fourth type. That is, in the fourth embodiment, similarly to the third embodiment, the information transmitted to the service server 20 via the control server 10 is limited to the original biometric information, and personal identification information is not transmitted to the service server 20 via the control server 10. In the fourth embodiment, information for identifying an individual (personal identification information) is transmitted to the service server 20 from the terminal 40 that has acquired the redirect URL. In this way, personal information identification information is not transmitted from the control server 10 to the service server 20, and therefore the security strength of the system is improved.

Next, we will explain the hardware of each device that makes up the authentication system. Figure 27 is a diagram showing an example of the hardware configuration of the control server 10.

The control server 10 can be configured by an information processing device (so-called a computer) and has the configuration shown in Fig. 27. For example, the control server 10 has a processor 311, a memory 312, an input/output interface 313, a communication interface 314, etc. The components such as the processor 311 are connected by an internal bus or the like and are configured to be able to communicate with each other.

However, the configuration shown in FIG. 27 is not intended to limit the hardware configuration of the control server 10. The control server 10 may include hardware not shown, and may not include an input/output interface 313 as necessary. Furthermore, the number of processors 311, etc. included in the control server 10 is not intended to be limited to the example shown in FIG. 27, and for example, the control server 10 may include multiple processors 311.

The processor 311 is, for example, a programmable device such as a CPU (Central Processing Unit), an MPU (Micro Processing Unit), or a DSP (Digital Signal Processor). Alternatively, the processor 311 may be a device such as an FPGA (Field Programmable Gate Array) or an ASIC (Application Specific Integrated Circuit). The processor 311 executes various programs including an operating system (OS).

Memory 312 is a RAM (Random Access Memory), a ROM (Read Only Memory), a HDD (Hard Disk Drive), a SSD (Solid State Drive), etc. Memory 312 stores an OS program, application programs, and various data.

The input/output interface 313 is an interface for a display device and an input device (not shown). The display device is, for example, a liquid crystal display. The input device is, for example, a device that accepts user operations such as a keyboard or a mouse.

The communication interface 314 is a circuit, module, etc. that communicates with other devices. For example, the communication interface 314 includes a NIC (Network Interface Card), etc.

The functions of the control server 10 are realized by various processing modules. The processing modules are realized, for example, by the processor 311 executing a program stored in the memory 312. The program can be recorded on a computer-readable storage medium. The storage medium can be a non-transitory medium such as a semiconductor memory, a hard disk, a magnetic recording medium, or an optical recording medium. That is, the present invention can also be embodied as a computer program product. The program can be downloaded via a network or updated using a storage medium storing the program. The processing modules may also be realized by a semiconductor chip.

In addition, the service server 20, authentication terminal 30, terminal 40, etc. can also be configured with information processing devices like the control server 10, and their basic hardware configurations are no different from those of the control server 10, so a description thereof will be omitted. For example, the authentication terminal 30 may be equipped with a camera device for photographing the person to be authenticated.

The control server 10, which is an information processing device, is equipped with a computer, and the functions of the control server 10 can be realized by having the computer execute a program. The control server 10 also executes the control method of the control server 10 by the program. Similarly, the terminal 40, which is an information processing device, is equipped with a computer, and the functions of the terminal 40 can be realized by having the computer execute a program. The terminal 40 also executes the control method of the terminal 40 by the program.

[Modification]
The configuration, operation, and the like of the authentication system described in the above embodiment are merely examples, and are not intended to limit the system configuration, and the like.

In the above embodiment, the operation of the authentication system has been described using a person's "face" as an example of biometric information. However, the authentication system disclosed in the present application can also use other types of biometric information. For example, data comprising physical characteristics unique to an individual, such as a fingerprint, voiceprint, veins, retina, or iris pattern, may be used. In other words, the user's biometric information may be any information that includes the user's physical characteristics.

The user's terminal 40 may obtain consent from the user to send the original biometric information (e.g., a facial image) to the service provider each time it receives a request to provide the original from the control server 10. Specifically, upon receiving a request to provide the original, the service selection unit 504 of the terminal 40 obtains whether or not the original biometric information (e.g., a facial image) can be provided using a GUI such as that shown in FIG. 28. Upon obtaining consent from the user to provide the original biometric information, the service selection unit 504 transmits the original biometric information stored internally to the control server 10.

In the above embodiment, a case has been described in which the service server 20 generates authentication information (feature amounts) corresponding to an authentication engine adopted by the service provider. However, the generation of the authentication information (feature amounts) may also be performed by the control server 10. Specifically, the control server 10 stores information on the authentication engine adopted by the service provider as part of the business information. The control server 10 may generate registration authentication information (feature amounts) that matches the above authentication engine from the original biometric information acquired from the terminal 40, and transmit a user registration request including the generated registration authentication information to the control server 10.

Alternatively, the service server 20 or the control server 10 may transmit the original biometric information to a server (feature generation server 70) specialized in generating features as shown in FIG. 29 or FIG. 30, and obtain the registered authentication information from the server. When the control server 10 or the service server 20 transmits the original biometric information (e.g., a face image) to the feature generation server 70, information on the authentication engine adopted by the service provider may also be transmitted to the feature generation server 70. The feature generation server 70 may generate registered authentication information (e.g., features) that conform to the authentication engine (authentication algorithm) specified by the control server 10 or the service server 20, and return it to the control server 10 or the service server 20. In this way, the registered authentication information (feature) may be generated on either the cloud side (control server 10 side) or the edge side (service server 20 side). The configuration and operation of the feature generation server 70 are clear from the above description, so detailed description will be omitted.

In the above embodiment, the control server 10 has been described as identifying a service provider for user registration using a management code of the user's workplace, etc. However, the control server 10 may identify a service provider for user registration using other methods. For example, the control server 10 may provide an interface for selecting a service provider for user registration from a search result using company name, etc., or may display a list of service providers in alphabetical order on the terminal 40.

In the first embodiment, a user (employee) may register information about visitors (guests) to the office in the system. In this case, the employee operates the terminal 40 to access the control server 10 and performs the guest registration procedure. The control server 10 acquires the guest's name, affiliation, contact information, etc. from the employee. The control server 10 sends a facial image registration request to the acquired contact information (guest's terminal). For example, the control server 10 sends a facial image registration request including a URL. When the guest clicks on the URL, the guest's terminal accesses the control server 10. The control server 10 acquires the guest's facial image and sends it to the office service server 20.

Furthermore, the service server 20 in the office may control the behavior of the guest through biometric authentication. For example, when a guest enters a conference room, the service server 20 may use biometric authentication to determine whether or not the guest may enter. Alternatively, the service server 20 may control the guest's use of drinks, etc. through biometric authentication. For example, the service server 20 may perform control such that a vending machine in the office provides the guest with a free drink only once.

If the user does not have an account with a service provider belonging to the selected third or fourth type, the user may create an account on a login page accessed by a redirect URL. In other words, the service server 20 may display account creation instructions for new customers on the login page.

The control server 10 may verify the identity of the user when creating an account. Specifically, the control server 10 acquires the user's login information, etc., along with an identification document (e.g., a passport, driver's license, etc.) bearing biometric information and the biometric information. The control server 10 performs a one-to-one match using the biometric information on the identification document and the biometric information acquired from the user. If the match is successful, the control server 10 may perform user registration (system registration) of the user whose identity has been successfully verified.

In the above embodiment, a case has been described in which an account management database is configured within the control server 10, but the database may also be constructed in an external database server, etc. In other words, some of the functions of the control server 10 may be implemented in another server. More specifically, the above-described "service selection control unit (service selection control means)" etc. may be implemented in any of the devices included in the system.

The form of data transmission and reception between each device (control server 10, service server 20, authentication terminal 30) is not particularly limited, but data transmitted and received between these devices may be encrypted. Biometric information and the like is transmitted and received between these devices, and in order to appropriately protect this information, it is desirable to transmit and receive encrypted data.

In the flow diagrams (flowcharts, sequence diagrams) used in the above explanation, multiple steps (processes) are described in order, but the order of execution of the steps performed in the embodiments is not limited to the order described. In the embodiments, the order of the steps shown in the diagrams can be changed to the extent that does not interfere with the content, such as by executing each process in parallel.

The above embodiments have been described in detail to facilitate understanding of the present disclosure, and it is not intended that all of the configurations described above are required. Furthermore, when multiple embodiments are described, each embodiment may be used alone or in combination. For example, it is possible to replace part of the configuration of an embodiment with the configuration of another embodiment, or to add the configuration of another embodiment to the configuration of an embodiment. Furthermore, it is possible to add, delete, or replace part of the configuration of an embodiment with other configurations.

The above explanation makes clear the industrial applicability of the present invention, and the present invention is particularly applicable to information processing systems that provide biometric authentication services.

A part or all of the above-described embodiments can be described as, but is not limited to, the following supplementary notes.
[Appendix 1]
a service selection control means for enabling a user to select a service provider from which the user wishes to receive a service from among a plurality of service providers that provide services using biometric authentication;
a user registration control means for controlling the service provider selected by the user, the service provider having an account for managing customers and using business information required for providing a service to the customer when performing biometric authentication, to acquire original biometric information that is an original of authentication information used for biometric authentication;
A server device comprising:
[Appendix 2]
The user registration control means
Transmitting to the user's terminal information for logging in to an account of a service provider selected by the user;
In response to receiving a biometric information provision request from a server that manages an account of the user, the device is requested to provide original biometric information that serves as an original of authentication information used for biometric authentication, thereby acquiring the original biometric information from the device;
2. The server device according to claim 1, further comprising: a server device configured to transmit the acquired original biometric information to the server.
[Appendix 3]
The server device described in Appendix 2, wherein the user registration control means sends a redirect Uniform Resource Locator (URL) embedded with a system ID for managing the user on the device to the terminal as information for the user to log in to an account.
[Appendix 4]
4. The server device according to claim 3, wherein the user registration control means receives the biometric information provision request from the server after the server acquires the business information from the user.
[Appendix 5]
The server device according to claim 4, wherein the business information is information related to a ticket.
[Appendix 6]
6. The server device according to claim 5, wherein the ticket is a one-time use ticket or a multiple-use ticket.
[Appendix 7]
The server device according to claim 6, wherein the ticket that can be used multiple times is either a round-trip ticket or a commuter pass.
[Appendix 8]
8. The server device according to claim 1, wherein the original biometric information is a face image.
[Appendix 9]
A terminal owned by a user;
A server device;
Including,
The server device includes:
a service selection control means for enabling a user to select a service provider from which the user wishes to receive a service from among a plurality of service providers that provide services using biometric authentication;
a user registration control means for controlling the service provider selected by the user, the service provider having an account for managing customers and using business information required for providing a service to the customer when performing biometric authentication, to acquire original biometric information that is an original of authentication information used for biometric authentication;
Equipped with
The user registration control means
Transmitting to the user's terminal information for logging in to an account of a service provider selected by the user;
In response to receiving a biometric information provision request from a server that manages an account of the user, the device is requested to provide original biometric information that serves as an original of authentication information used for biometric authentication, thereby acquiring the original biometric information from the device;
The system transmits the acquired original biometric information to the server.
[Appendix 10]
In the server device,
A system is provided that enables a user to select a service provider from among a plurality of service providers that provide services using biometric authentication,
A control method for a server device, in which a service provider selected by the user, which has an account for managing customers and uses business information necessary for providing services to the customer during biometric authentication, performs control to obtain original biometric information that is the original of authentication information to be used for biometric authentication.
[Appendix 11]
A computer installed in the server device
A process for enabling a user to select a service provider from which the user wishes to receive a service from among a plurality of service providers that provide services using biometric authentication;
a process of controlling a service provider selected by the user, the service provider having an account for managing customers and using business information required for providing a service to the customer when performing biometric authentication, to acquire original biometric information that is an original of authentication information to be used for biometric authentication;
A computer-readable storage medium that stores a program for executing the above.

The disclosures of the above cited prior art documents are incorporated herein by reference. Although the embodiments of the present invention have been described above, the present invention is not limited to these embodiments. Those skilled in the art will understand that these embodiments are merely illustrative and that various modifications are possible without departing from the scope and spirit of the present invention. In other words, the present invention naturally includes various modifications and amendments that a person skilled in the art can make in accordance with the entire disclosure, including the scope of the claims, and the technical ideas.

10 Control server 20 Service server 30 Authentication terminal 40 Terminal 50 Ticket management server 60 Payment server 70 Feature quantity generation server 100 Server device 101 Service selection control means 102 User registration control means 201 Communication control unit 202 Account management unit 203 Business management unit 204 Service selection control unit 205 User registration control unit 206 Storage unit 301 Communication control unit 302 Business information management unit 303 User registration control unit 304 Authentication unit 305 Storage unit 311 Processor 312 Memory 313 Input/output interface 314 Communication interface 401 Communication control unit 402 Biometric information acquisition unit 403 Authentication request unit 404 Function realization unit 405 Storage unit 501 Communication control unit 502 Account generation control unit 503 Original information acquisition unit 504 Service selection unit 505 Storage unit

Claims (4)

A storage means for storing a system ID and login information of each of a plurality of users;
an account management means for authenticating a user who logs in to a first account of the device by using the login information;
a service selection control means for displaying a GUI (Graphical User Interface) on a terminal carried by the user, the GUI including a list of icons corresponding to a plurality of service providers providing services using biometric authentication, the GUI allowing the user to select one icon from a plurality of icons corresponding to the plurality of service providers displayed in the list, and for specifying a service provider from which the user wishes to receive a service using the GUI ;
In the case where the specified service provider has a second account for managing a customer and performs the biometric authentication using authentication information for identifying an authenticatee and business information whose validity is determined when providing a service to the customer, the specified service provider may store a Uniform Resource Locator (URL) including the system ID corresponding to the user who has logged in to the first account in a terminal carried by the user. a user registration control means for controlling the second account of the user, the user registration control means being a service server (service server Locator) that transmits a redirect URL for the user to log in to a second account of the specified service provider, and a server of the service provider that manages the second account of the user, the service server receiving the second account of the specified service provider according to the redirect URL, the service server requesting a terminal held by the user corresponding to the system ID included in the biometric information provision request to transmit original biometric information that is an original when the specified service provider generates the authentication information, the original biometric information of the user that is stored in advance in the terminal held by the user, and the service server transmitting the received original biometric information to the service server of the specified service provider;
A server device comprising: A terminal owned by a user;
A server device;
A plurality of service servers managed by a plurality of service providers, respectively;
Including,
The server device includes:
Store the system ID and login information of each of multiple users,
authenticating a user who logs into a first account of the device using the login information;
displaying, on a terminal carried by the user, a GUI (Graphical User Interface) including a list of icons corresponding to a plurality of service providers providing services using biometric authentication, the GUI allowing the user to select one icon from a plurality of icons corresponding to the plurality of service providers displayed in the list, and specifying a service provider from which the user wishes to receive a service using the GUI ;
In the case where the specified service provider has a second account for managing customers and performs the biometric authentication using authentication information for identifying an authenticatee and business information whose validity is determined when providing a service to the customer , a URL (Uniform Resource Locator) including the system ID corresponding to the user who has logged in to the first account is transmitted to a terminal carried by the user, the URL being a redirect URL for the user to log in to the second account of the specified service provider;
The terminal carried by the user accesses the service server corresponding to the specified service provider according to the received redirect URL;
the service server corresponding to the specified service provider acquires the system ID from a terminal carried by the user who has logged in to the second account, and transmits a biometric information provision request including the acquired system ID to the server device;
the server device requests a terminal carried by the user corresponding to the system ID included in the received biometric information provision request to transmit original biometric information that will be used as an original when the specified service provider generates the authentication information ;
a terminal carried by the user transmits the original biometric information of the user stored in advance to the server device;
The server device transmits the received original biometric information to the service server corresponding to the specified service provider . In the server device,
Store the system ID and login information of each of multiple users,
authenticating a user who logs into a first account of the device using the login information;
displaying, on a terminal carried by the user, a GUI (Graphical User Interface) including a list of icons corresponding to a plurality of service providers providing services using biometric authentication, the GUI allowing the user to select one icon from a plurality of icons corresponding to the plurality of service providers displayed in the list, and specifying a service provider from which the user wishes to receive a service using the GUI;
In the case where the specified service provider has a second account for managing a customer and performs the biometric authentication using authentication information for identifying an authenticatee and business information whose validity is determined when providing a service to the customer, the specified service provider may store a Uniform Resource Locator (URL) including the system ID corresponding to the user who has logged in to the first account in a terminal carried by the user. a server device control method for a server device, the server device comprising: a service server (service server Locator) that transmits a redirect URL for the user to log in to a second account of the specified service provider; and a server of the service provider that manages the second account of the user, the server device, in response to receiving a biometric information provision request from a service server to which the user has logged in to the second account of the specified service provider according to the redirect URL, the server device requests a terminal held by the user that corresponds to the system ID included in the biometric information provision request to transmit original biometric information that will be an original when the specified service provider generates the authentication information , thereby receiving the original biometric information of the user that is pre-stored in the terminal held by the user from the terminal held by the user, and transmitting the received original biometric information to the service server of the specified service provider . A computer installed in the server device
A process of storing the system ID and login information of each of a plurality of users;
a process of authenticating a user who logs in to a first account of the device using the login information;
a process of displaying a GUI (Graphical User Interface) on a terminal carried by the user, the GUI including a list of icons corresponding to a plurality of service providers providing services using biometric authentication, the GUI allowing the user to select one icon from a plurality of icons corresponding to the plurality of service providers displayed in the list, and specifying a service provider from which the user wishes to receive a service using the GUI;
In the case where the specified service provider has a second account for managing a customer and performs the biometric authentication using authentication information for identifying an authenticatee and business information whose validity is determined when providing a service to the customer, the specified service provider may store a Uniform Resource Locator (URL) including the system ID corresponding to the user who has logged in to the first account in a terminal carried by the user. a service provider server (service server Locator) for transmitting a redirect URL for the user to log in to a second account of the specified service provider, and a server of the service provider managing the second account of the user, which, in response to receiving a biometric information provision request including the system ID included in the redirect URL from a service server to which the user has logged in to the second account of the specified service provider according to the redirect URL, requests a terminal held by the user corresponding to the system ID included in the biometric information provision request to transmit original biometric information that is an original when the specified service provider generates the authentication information, thereby receiving the original biometric information of the user that is pre-stored in the terminal held by the user from the terminal held by the user, and transmitting the received original biometric information to the service server of the specified service provider ;
A program for executing.

Images