Person authentication system, person authentication method and program providing medium6990684
Abstract
An entity which executes person authentication such as a service provider (SP) and a user device (UC) receives a request for person authentication from an entity which requests person authentication. The entity which requests person authentication can vary in form. The entity which executes person authentication decrypts the template by using a person identification certificate that can be owned by the entity which executes person authentication or provided from the outside, compares the template with sampling information input by a user and notifies the entity which requests person authentication of the result of comparison. The data for person identification is provided as encrypted information that can be decrypted only by the entity which executes person authentication, thereby performing safe authentication in various locations or devices, while preventing the template information from leaking out.
Claims
What is claimed is:
1. A person authentication system for executing person authentication through comparing a template serving as user identification data which has already been acquired with sampling information input by a user, said person authentication system comprising:
a person identification authority for creating a person identification certificate storing the template;
an entity which executes person authentication for comparing the template with the sampling information input by a user as person authentication on the basis of the person identification certificate; and
an entity which requests person authentication for requesting to said entity which executes person authentication for person authentication,
wherein said entity which requests person authentication is a user device, and said entity which executes person authentication is a service provider for providing service to said user device, and
said service provider verifies a signature of said person identification authority written in the person identification certificate provided by said user device and transmits the result of verification to said user device, and
said user device decrypts, by using a private key of said user device, a key for encrypting and decrypting the template, the key that has been encrypted by using a public key of said user device and stored in the person identification certificate and provides the decrypted key to said service provider, with the sampling information input by a user, on condition that the signature is verified to have never been tampered with,
whereby said service provider that is said entity which executes person authentication decrypts, by using the key for encrypting and decrypting the template, the template in the person identification certificate received from said user device, thereby performing person authentication.
2. A person authentication method for executing person authentication through comparing a template serving as user identification data which has already been acquired with sampling information input by a user, said person authentication method comprising the steps of:
creating a person identification certificate storing the template by said person identification authority:
reading out a request for person authentication from said entity which executes person authentication; and
comparing the template with the sampling information input by a user as person authentication on the basis of the person identification certificate in said entity which executes person authenticatio;
wherein said entity which requests person authentication is a user device, and said entity which executes person authentication is a service provider for providing service to said user device, and
said service provider verifies a signature of said person identification authority written in the person identification certificate provided by said user device and transmits the result of verification to said user device, and said user device decrypts, by using a private key of said user device, a key for encrypting and decrypting the template, the key that has been encrypted by using a public key of said user device and stored in the person identification certificate, and provides the decrypted key with the sampling information input by a user to said service provider, on condition that the signature is verified to have never been tampered with,
whereby said service provider that is said entity which executes person authentication decrypts, by using the key for encrypting and decrypting the template, the template in the person identification certificate received from said user device, thereby performing person authentication.
Description
BACKGROUND OF THE INVENTION
1. Field of the Invention
The present invention relates to a person authentication system, a person authentication method, and a program providing medium. More particularly, the present invention relates to a person authentication system, a person authentication method, and a program providing medium, which can be advantageously employed, in a communication network such as the Internet or in data communication performed via a medium, to identify a person at a receiving end or to authenticate a person who uses a particular information apparatus such as a personal computer.
2. Description of the Related Art
A data processing apparatus such as a personal computer (PC) is widely used in a company or by a person. In some cases, secret data is stored in such an apparatus. To prevent such secret data from being accessed by an unauthorized user, techniques of preventing information stored in a PC from being leaked have been developed. One known technique for this purpose is to identify a user on the basis of a password input by the user or on the basis of biometric information of the user.
Now, it is popular to distribute various kinds of software data such as a game program, audio data, image data, and a document generating program (hereinafter, such software data will be referred to as a content) via a network such as the Internet or a storage medium such as a DVD or a CD which can be distributed. In such a situation, it is highly desired to quickly identify a user in a highly reliable fashion in various processes such as distribution of a content or reception of a fee for usage of a content. Furthermore, in the user identification process, it is very important to prevent personal information from being leaked.
One widely-used user identification method is to compare input data with preassigned data such as a user ID or a password. However, in this method, there is always a possibility that a registered user ID or password is leaked. Once a user ID or password has been leaked, the same user ID or password becomes unusable. One known method to avoid the above problem is to identify a user using biometric information.
An example of a conventional process of identifying a person using biometric information is described below. A representative example of biometric information for the above purpose is a fingerprint. A person authentication apparatus which reads a fingerprint and verifies it is described below with reference to FIG. 1. In FIG. 1, a user of a PC 20 registers his/her fingerprint information in a person authentication apparatus 10 including a reading apparatus, and data indicating the fingerprint is stored in a secure memory 14. The fingerprint information stored therein is called a template. When the user uses data on the personal computer 20, his/her fingerprint is read and compared with the template by the person authentication apparatus 10 serving as a fingerprint reading apparatus.
More particularly, reading of fingerprint information of a user is performed by a personal information acquisition unit 11 formed of a CCD camera or the like. After being read, the fingerprint information is subjected to a feature extraction process performed by an information conversion unit 12, and resultant data is compared, by a comparator 13, with the template stored in the secure memory 14.
The comparator 13 determines whether or not the data is identical to the template on the basis of a threshold value preset in the comparator. If the data and the template match with each other to a degree higher than the threshold value, the comparator 13 outputs an OK signal, while a NG signal is output when the matching degree is lower than the threshold value. The fingerprint information is stored in the form of fingerprint image data, and the data indicating the feature extracted by the information converter 12 is compared with the image data to check the matching degree relative to the threshold value.
In the case where the comparator 13 determines that the input information and the registered information match with each other, an authentication success message is transmitted to the personal computer 20 via a communication unit 16, and the user is permitted to access the personal computer 20. If it is determined that the input data does not match with the registered information, an authentication failure message is transmitted, and accessing to the personal computer 20 is refused. The person authentication apparatus 10 may include fingerprint information templates of a plurality of users (user ID=ID1 to IDn) stored in the secure memory as shown in FIG. 1, and a user may be permitted to access the PC if the person authentication apparatus 10 determines that a fingerprint of the user matches with some stored template. This makes it possible for a single person authentication apparatus to deal with a plurality of users.
[Problems to be Solved by the Invention]
However, the above-described person authentication apparatus has the following problems arising from the construction in which templates are stored in a memory of the fingerprint reading/comparing apparatus.
(a) To use the comparison result, it is required that a template be included in the fingerprint reading/comparing apparatus.
(b) In the case where a fingerprint is compared at a plurality of different locations, it is required to register, beforehand, the fingerprint in a plurality of fingerprint read/comparison apparatuses.
(c) Because templates are stored in the fingerprint reading/comparing apparatus, there is a risk that data representing templates may be tampered with or may be read by an unauthorized person.
(d) When the comparison result is transmitted to a PC or the like, the comparison result can be easily attacked.
As described above, the conventional person authentication system is coupled in an inseparable fashion to a particular data processing apparatus such as a personal computer which deals with secret information, in which the person authentication system is assumed to authenticate only users who deal with that personal computer, and thus the person authentication system cannot be used to authenticate a user who uses another device in which no template is stored. Furthermore, because templates are stored in the fingerprint reading/comparing apparatus itself, there is a problem in terms of security and reliability of templates.
Furthermore, in data transmission in which encrypted data is transmitted via a network or in data distribution via a medium, data is generally encrypted using a public key, and a public key certificate is widely used to guarantee the reliability of the public key. However, although a public key certificate certifies a public key itself, the public key certificate cannot guarantee the relationship between the public key and a person who owns that public key. That is,
(e) No technique is known to guarantee the relationship between a public key used in transmission of encrypted data or the like and an owner of that public key, and a good enough means for identifying the owner of the public key is not known.
As described above, the conventional person authentication system has various problems to be solved. In particular, in a recent social situation in which advanced communication systems via networks such as the Internet have become very popular, a large amount of secret information and personal information are frequently dealt with using various communication devices and data processing devices at various locations and at various times. Furthermore, in pay contents distribution systems/services in which contents are distributed to specific users such as registered members, it is required to identify users when contents are distributed or services are provided. Thus, it is highly desired to realize a person authentication system which is usable without having limitations in terms of locations, times, and devices used.
SUMMARY OF THE INVENTION
In view of the above, it is an object of the present invention to provide a person authentication system and a person authentication method, which allow person authentication to be performed in various situations and environments in a highly reliable fashion, and which allow template information to be stored and used in a highly secure manner, and furthermore, which can be used in conjunction with a public key certificate, thereby allowing person authentication to be used in various fields.
Particularly, the present invention provides a person authentication system and a person authentication method, which allow various types of entities which request or execute person authentication such as service providers or user devices to compare, by using the person identification certificate issued by a person identification authority, the template that has been accepted as person identification data with the sampling information input by a user, whereby person authentication is performed.
In accordance with a first aspect of the present invention, there is provided a person authentication system for executing person authentication through comparing a template serving as user identification data which has already been acquired with sampling information input by a user. The person authentication system comprises: a person identification authority for creating a person identification certificate storing the template; an entity which executes person authentication for comparing the template with the sampling information input by a user as person authentication on the basis of the person identification certificate; and an entity which requests person authentication for requesting to the entity which executes person authentication for person authentication.
Preferably, in the person authentication system, the entity which requests person authentication and the entity which executes person authentication are included in a user device serving as a data processing apparatus having the comparison/verification capability, and the person identification authority provides the person identification certificate storing the template that has been encrypted by a public key of said user device. The user device decrypts the encrypted template in the received person identification certificate by using a private key of the user device, and compares the decrypted template with the sampling information input by a user, thereby performing person authentication.
Preferably, in the person authentication system, the entity which requests person authentication is a user device, and the entity which executes person authentication is a service provider for providing service to the user device, and the person identification authority provides the person identification certificate storing the template that has been encrypted by a public key of said service provider to said service provider. The user device provides the sampling information input by a user to the service provider, and the service provider decrypts the encrypted template in the person identification certificate received from the person identification authority by using a private key of the service provider, and compares the decrypted template with the sampling information input by a user provided from the user device, thereby performing person authentication.
Preferably, in the person authentication system, the entity which requests person authentication is a user device or a service provider, and the entity which executes person authentication is the person identification authority, and the user device or the service provider provides the sampling information input by a user to said person identification authority. The person identification authority decrypts the template that has been encrypted in the person identification certificate by using a private key of the person identification authority and compares the decrypted template with the sampling information input by a user provided from the user device or the service provider, thereby performing person authentication.
Preferably, in the person authentication system, the person identification authority decrypts the template that has been encrypted in the person identification certificate by using a private key of the person identification authority and re-encrypts the decrypted template by using a public key of the entity which executes person authentication and stores the re-encrypted template in the person identification certificate, thereby transmitting the stored template to the entity which executes person authentication.
Preferably, in the person authentication system, the person identification authority receives a public key certificate from said entity which executes person authentication and reads a public key after verifying the public key certificate and decrypts the template that has been encrypted in the person identification certificate by using a private key of the person identification authority and re-encrypts the decrypted template by using the public key of the entity which executes person authentication read from the public key certificate and stores the re-encrypted template in the person identification certificate, thereby transmitting the stored template to the entity which executes person authentication.
Preferably, the person authentication system comprises a mobile terminal storing the person identification certificate, and the entity which executes person authentication receives, from said mobile terminal, the person identification certificate and a key for encrypting and decrypting the template of the person identification certificate, the key that has been decrypted by using a private key of the mobile terminal, and decrypts the template in the received person identification certificate by using the key for encrypting and decrypting the template, thereby performing person authentication.
Preferably, the person authentication system comprises a mobile terminal storing the person identification certificate, and the entity which executes person authentication receives, from said mobile terminal, the template in the person identification certificate, the template that has been decrypted by using a private key of said mobile terminal, thereby performing person authentication on the basis of the received template.
Preferably, the person authentication system comprises a mobile terminal storing the person identification certificate, and the entity which executes person authentication is the mobile terminal that decrypts, by using a private key of the mobile terminal, the template that has been encrypted in the person identification certificate stored in the mobile terminal and compares the decrypted template with the sampling information input by a user, thereby performing person authentication.
Preferably, in the person authentication system, the entity which requests person authentication is a user device, and the entity which executes person authentication is a service provider for providing service to the user device, and the user device provides the sampling information input by a user and the person identification certificate storing the template that has been encrypted by using a public key of the service provider to the service provider, and the service provider decrypts, by using a private key of the service provider, the template that has been encrypted in the person identification certificate received from the user device and compares the decrypted template with the sampling information input by a user provided from the user device, thereby performing person authentication.
Preferably, in the person authentication system, the entity which requests person authentication is a user device, and the entity which executes person authentication is a service provider for providing service to the user device, and the service provider verifies a signature of the person identification authority written in the person identification certificate provided by the user device and transmits the result of verification to the user device, and the user device decrypts, by using a private key of the user device, a key for encrypting and decrypting the template, the key that has been encrypted by using a public key of the user device and stored in the person identification certificate and provides the decrypted key to the service provider, with the sampling information input by a user, on condition that the signature is verified to have never been tampered with, whereby the service provider that is the entity which executes person authentication decrypts, by using the key for encrypting and decrypting the template, the template in the person identification certificate received from the user device, thereby performing person authentication.
Preferably, in the person authentication system, the entity which requests person authentication is a user device, and the entity which executes person authentication is a service provider for providing service to the user device, and the service provider receives the template in the person identification certificate from the user device, the template that has been decrypted by using a private key of the user device, thereby performing person authentication on the basis of the received template.
Preferably, in the person authentication system, the entity which executes person authentication is a user device, and the entity which requests person authentication is a service provider for providing service to the user device. The user device decrypts, by using a private key of the user device, the template that has been encrypted in the person identification certificate received from the person identification authority and compares the decrypted template with the sampling information input by a user, thereby performing person authentication and notifying the service provider of the result of comparison.
Preferably, in the person authentication system, mutual authentication is performed between data transmission devices, and data is transmitted together with a digital signature that is verified, so as to check whether the data has been tampered with or not, in mutual data communication performed by the person identification authority, the entity which executes person authentication and the entity which requests person authentication.
In accordance with a second aspect of the present invention, the person authentication method for executing person authentication through comparing a template serving as user identification data which has already been acquired with sampling information input by a user, the person authentication method comprises the steps of: creating a person identification certificate storing the template by said person identification authority; reading out a request for person authentication from the entity which requests person authentication to the entity which executes person authentication; and comparing the template with the sampling information input by a user as person authentication on the basis of the person identification certificate, in the entity which executes person authentication.
Preferably, according to the person authentication method, the entity which requests person authentication and said entity which executes person authentication are included in a user device serving as a data processing apparatus having the comparison/verification capability, and the person identification authority provides the person identification certificate storing the template that has been encrypted by a public key of the user device to the user device. The user device decrypts the encrypted template in the received person identification certificate by using a private key of the user device, and compares the decrypted template with the sampling information input by a user, thereby performing person authentication.
Preferably, according to the person authentication method, the entity which requests person authentication is a user device, and the entity which executes person authentication is a service provider for providing service to the user device, and the person identification authority provides the person identification certificate storing the template that has been encrypted by a public key of the service provider to the service provider, and the user device provides the sampling information input by a user to the service provider. The service provider decrypts the encrypted template in the person identification certificate received from the person identification authority by using a private key of the service provider, and compares the decrypted template with the sampling information input by a user provided from said user device, thereby performing person authentication.
Preferably, according to the person authentication method, the entity which requests person authentication is a user device or a service provider, and the entity which executes person authentication is the person identification authority, and the user device or the service provider provides the sampling information input by a user to said person identification authority. The person identification authority decrypts the template that has been encrypted in the person identification certificate by using a private key of the person identification authority and compares the decrypted template with the sampling information input by a user provided from the user device or the service provider, thereby performing person authentication.
Preferably, according to the person authentication method, the person identification authority decrypts the template that has been encrypted in the person identification certificate by using a private key of the person identification authority and re-encrypts the decrypted template by using a public key of the entity which executes person authentication and stores the re-encrypted template in the person identification certificate, thereby transmitting the stored template to the entity which executes person authentication.
Preferably, according to the person authentication method, the person identification authority receives a public key certificate from the entity which executes person authentication and reads a public key after verifying the public key certificate and decrypts the template that has been encrypted in the person identification certificate by using a private key of the person identification authority and re-encrypts the decrypted template by using the public key of the entity which executes person authentication read from the public key certificate and stores the re-encrypted template in the person identification certificate, thereby transmitting the stored template to the entity which executes person authentication.
Preferably, according to the person authentication method, the person identification certificate is stored in a mobile terminal, and the entity which executes person authentication receives, from the mobile terminal, the person identification certificate and a key for encrypting and decrypting the template of the person identification certificate, the key that has been decrypted by using a private key of said mobile terminal, and decrypts the template in the received person identification certificate by using the key for encrypting and decrypting the template, thereby performing person authentication.
Preferably, according to the person authentication method, the person identification certificate is stored in a mobile terminal, and the entity which executes person authentication receives, from the mobile terminal, the template stored in the person identification certificate, the template that has been decrypted by using a private key of the mobile terminal, thereby performing person authentication on the basis of the received template.
Preferably, according to the person authentication method, the person identification certificate is stored in a mobile terminal, and the entity which executes person authentication is the mobile terminal that decrypts, by using a private key of the mobile terminal, the template that has been encrypted in the person identification certificate stored in the mobile terminal and compares the decrypted template with the sampling information input by a user, thereby performing person authentication.
Preferably, according to the person authentication method, the entity which requests person authentication is a user device, and the entity which executes person authentication is a service provider for providing service to the user device, and the user device provides, to the service provider, the sampling information input by a user and the person identification certificate storing the template that has been encrypted by using a public key of the service provider, and the service provider decrypts, by using a private key of the service provider, the template that has been encrypted in the person identification certificate received from the user device and compares the decrypted template with the sampling information input by a user provided from the user device, thereby performing person authentication.
Preferably, according to the person authentication method, the entity which requests person authentication is a user device, and the entity which executes person authentication is a service provider for providing service to the user device, and the service provider verifies a signature of the person identification authority written in the person identification certificate provided by the user device and transmits the result of verification to the user device. The user device decrypts, by using a private key of the user device, a key for encrypting and decrypting the template, the key that has been encrypted by using a public key of the user device and stored in the person identification certificate and provides the decrypted key to the service provider, with the sampling information input by a user, on condition that the signature is verified to have never been tampered with. The service provider that is the entity which executes person authentication decrypts, by using the key for encrypting and decrypting the template, the template in the person identification certificate received from the user device, thereby performing person authentication.
Preferably, according to the person authentication method, the entity which requests person authentication is a user device, and the entity which executes person authentication is a service provider for providing service to the user device. The service provider receives the template in the person identification certificate from the user device, the template that has been decrypted by using a private key of the user device and performs person authentication on the basis of the received template.
Preferably, according to the person authentication method, the entity which executes person authentication is a user device, and the entity which requests person authentication is a service provider for providing service to the user device. The user device decrypts, by using a private key of said user device, the template that has been encrypted in the person identification certificate received from the person identification authority and compares the decrypted template with the sampling information input by a user, thereby performing person authentication and notifying the service provider of the result of comparison.
Preferably, according to the person authentication method, mutual authentication is performed between data transmission devices, and data is transmitted together with a digital signature that is verified, so as to check whether the data has been tampered with or not, in mutual data communication performed by the person identification authority, the entity which executes person authentication and the entity which requests person authentication.
As described above, the person authentication system and the person authentication according to the present invention allow person authentication to be performed in an easy fashion in various devices by comparing the template serving as person identification data with the sampling information input by a user. For example, a service provider (SP) or a user device (UD) can execute person authentication by acquiring the template from a person identification certificate (IDC) created by a third-party agency serving as a person identification certificate authority (IDA). The person identification certificate (IDC) is issued by the person identification certificate authority (IDA), in response to a request from a person, on the basis of the template serving as identification data which is acquired from the person after verifying the identification of the person, and, when the person identification certificate (IDC) is distributed to a service provider (SP) or a user device (UD), the distribution is performed after adding a signature of the IDA thereto, thereby ensuring that the validity of the data is guaranteed and high-reliability person authentication can be performed.
Furthermore, the present invention provides the person authentication system and the person authentication method which can correspond to the entity which requests person authentication and the entity which executes person authentication, such as a service provider or a user device. Both the entities can vary in form. The entity which executes person authentication decrypts the template using the person identification certificate (IDC) owned by the entity or provided from the outside, compares the decrypted template with the sampling information input by a user, and notifies the entity which requests person authentication of the comparison result. Information for person authentication is provided as encrypted information which can be decrypted only by the entity which executes person authentication, thereby performing safe authentication. The person identification authority (IDA) creates and provides the person identification certificate (IDC) to the entity which executes person authentication. The person identification authority (IDA) encrypts the template of the person identification certificate in such a manner that the template is decrypted only by the entity which executes person authentication. Thus, the present invention allows person authentication in various locations and devices, while preventing the template information from leaking out.
In accordance with a third aspect of the present invention, there is provided a program providing medium for providing a computer program which is capable of performing, on a computer system, person authentication through comparing a template serving as user identification data which has already been acquired with sampling information input by a user. The computer program comprises the steps of: reading out a request for person authentication from an entity which requests person authentication to an entity which executes person authentication; and comparing the template with the sampling information input by a user as person authentication on the basis of a person identification certificate that has been issued by a person identification authority in accordance with the request for person authentication, in the entity which executes person authentication.
The program providing medium according to the third aspect of the present invention is used to provide a computer program in a computer-readable format to a computer system capable of executing various program codes. There is no particular limitation in the form of the medium, and various types of media can be used. Specific examples include a storage medium such as a CD, FD, MO, and DVD and a transmission medium such as a network.
Such a program providing medium defines a cooperative relationship in structure or function between the computer program and the providing medium so that the computer program functions on a computer system. In other words, the program providing medium operates in a cooperative fashion on a computer system when the computer program is installed on the computer system via the program providing medium, thereby achieving functions similar to those which can be achieved according to the other aspects of the present invention. Other objects, aspects, and advantages of the present invention will become apparent from the following description of embodiments with reference to the accompanying drawings.
BRIEF DESCRIPTION OF THE DRAWINGS
FIG. 1 is a diagram illustrating a conventional person authentication apparatus which reads and verifies a fingerprint;
FIG. 2 is a diagram illustrating encrypted data communication performed, using a public key certificate, by a personal authentication system according to the present invention;
FIG. 3 is a diagram illustrating a data format of a public key certificate;
FIG. 4 is a diagram illustrating the data format of the public key certificate;
FIG. 5 is a diagram illustrating an example of a format of a person identification certificate;
FIGS. 6A to 6C are diagrams illustrating manners of encrypting a template of a person identification certificate;
FIG. 7 is a table illustrating the types of keys used to encrypt a template of a person identification certificate and also illustrating processing manners;
FIGS. 8A and 8B are diagrams illustrating manners of encrypting a template of a person identification certificate;
FIG. 9 is a diagram illustrating a processing flow and a data flow in registration of a template and generation of an IDC;
FIG. 10 is a diagram illustrating a processing flow and a data flow in a process of deleting a template;
FIG. 11 is a diagram illustrating a processing flow and a data flow in a process of changing a template;
FIG. 12 is a diagram illustrating a processing flow and a data flow in a process of adding a template;
FIG. 13 is a diagram illustrating a processing flow and a data flow in a process of suspending a template;
FIG. 14 is a diagram illustrating a processing flow and a data flow in a process of canceling suspension of a template;
FIG. 15 is a diagram illustrating a processing flow and a data flow in a process of distributing an IDC;
FIG. 16 is a diagram illustrating a processing flow and a data flow in a process of updating an IDC;
FIG. 17 is a diagram illustrating a processing flow and a data flow in a process of deleting an IDC;
FIG. 18 is a diagram illustrating a processing flow and a data flow in a process of inquiring about an IDC;
FIG. 19 is a diagram illustrating examples of configurations of a certificate authority (CA) which issues a public key certificate (PKC), a person identification certificate authority (IDA) which issues a person identification certificate (IDC), and a device which uses a certificate;
FIG. 20 is a diagram illustrating examples of configurations of a certificate authority (CA) which issues a public key certificate (PKC), a person identification certificate authority (IDA) which issues a person identification certificate (IDC), and a device which uses a certificate;
FIGS. 21A to 21C are diagrams illustrating manners of performing verification by a user device, a service provider (SP), or a person identification certificate authority (IDA) in a system;
FIG. 22 is a diagram illustrating a system in which verification is performed by a user device;
FIG. 23 is a diagram illustrating a system in which verification is performed by a service provider (SP);
FIG. 24 is a diagram illustrating a verification process performed by a user device storing an IDC and a PKC;
FIG. 25 is a diagram illustrating a system in which verification is performed by transmitting a person identification certificate (IDC) stored in a personal terminal such as an IC card to a shared user device;
FIG. 26 is a diagram illustrating a system in which verification is performed by decrypting a person identification certificate (IDC) stored in a personal terminal such as an IC card and then transmitting the decrypted IDC to a shared user device;
FIG. 27 is a diagram illustrating a system in which verification is performed by a personal terminal such as an IC card using a person identification certificate (IDC) stored in the personal terminal and only the result of the verification is transmitted to a shared user device;
FIG. 28 is a diagram illustrating a process performed when template information of a person identification certificate (IDC) is encrypted using a public key of a service provider (SP);
FIG. 29 is a diagram illustrating a system in which verification is performed by transmitting a person identification certificate (IDC) stored in a user device to a service provider (SP);
FIG. 30 is a diagram illustrating a system in which verification is performed by decrypting a person identification certificate (IDC) stored in a user device and then transmitting the decrypted IDC to a service provider (SP);
FIG. 31 is a diagram illustrating a system in which verification is performed by a user device using a person identification certificate (IDC) stored in the user device and only the result of the verification is transmitted to a service provider (SP);
FIG. 32 is a diagram illustrating a configuration of a secure container containing a content to be distributed via content transaction;
FIG. 33 is a diagram illustrating a form of a list of person identification certificates (IDCs);
FIG. 34 is a diagram illustrating a specific example of a form of sales restriction (UCP) information;
FIG. 35 is a diagram illustrating an example of a format of a permitted usage data;
FIG. 36 is a diagram illustrating an example of a data format of price information included in a secure container;
FIG. 37 is a diagram illustrating a manner of distributing a content using a secure container;
FIG. 38 is a diagram illustrating an example of a data format of usage control status (UCS) information;
FIG. 39 is a diagram illustrating a manner of using a person identification certificate (IDC) when a secure container containing a content is distributed from a service provider to a user device;
FIG. 40 is a flow chart of a process in which a secure container is received from a service provider and a person authentication is performed by a user device so that the content can be used only by authorized users;
FIG. 41 is a flow chart of a process in which a person authentication is performed by a service provider and a secure container is distributed only to authorized users;
FIG. 42 is a diagram illustrating a manner of distributing a content among users using a secure container;
FIG. 43 illustrates another manner in which a content is distributed using a secure container among users and a manner in which user authentication is performed;
FIG. 44 is a flow chart of a process in which a secure container is received from a user device A and person authentication is performed by a user device B so that only authorized users can use the content;
FIG. 45 is a flow chart of a process in which person authentication is performed by a content distributor before distributing a content and a secure container is distributed only to authorized users;
FIG. 46 is a block diagram mainly illustrating configurations of user devices which transmit a secure container to each other;
FIGS. 47A and 47B are diagrams illustrating various manners of linking a personal identification certificate (IDC) and a public key certificate (PKC) to each other;
FIGS. 48A and 48B are diagrams illustrating various manners of linking personal identification certificates (IDCs) and public key certificates (PKC) to one another;
FIGS. 49A and 49B are diagrams illustrating manners of storing a public key certificate (PKC) linked to a person identification certificate (IDC) into the person identification certificate (IDC);
FIGS. 50A and 50B illustrate manners of storing an identification number of a certificate into another certificate;
FIGS. 51A and 51B are diagrams illustrating examples of manners of management using link management data;
FIGS. 52A and 52B are diagrams illustrating another examples of manners of management using link management data;
FIG. 53 is a diagram illustrating a configuration of a user device capable of performing person authentication and reproducing a content;
FIG. 54 is a diagram illustrating a data flow in a process of downloading a content;
FIG. 55 is a diagram illustrating the details of the data flow in the process of downloading a content;
FIG. 56 is a diagram illustrating the details of the data flow in the process of downloading a content;
FIG. 57 is a diagram illustrating the details of the data flow in the process of downloading a content;
FIG. 58 is a diagram illustrating a data flow in processes of user registration, erasure of user registration, and making a service contract;
FIG. 59 is a diagram illustrating the details of the data flow in the processes of user registration, erasure of user registration, and making a service contract;
FIG. 60 is a diagram illustrating the details of the data flow in the processes of user registration, erasure of user registration, and making a service contract;
FIG. 61 is a diagram illustrating the details of the data flow in the processes of user registration, erasure of user registration, and making a service contract;
FIG. 62 is a diagram illustrating a flow of data in the process of requesting a person identification certificate (IDC), which is to be stored in a device, to be issued;
FIG. 63 is a diagram illustrating the details of the flow of data in the process of requesting the person identification certificate (IDC), which is to be stored in the device, to be issued;
FIG. 64 is a diagram illustrating the details of the flow of data in the process of requesting the person identification certificate (IDC), which is to be stored in the device, to be issued;
FIG. 65 is a diagram illustrating the details of the flow of data in the process of requesting the person identification certificate (IDC), which is to be stored in the device, to be issued;
FIG. 66 is a diagram illustrating a procedure of issuing a one-time PKC;
FIG. 67 is a flow chart of the procedure of issuing a one-time PKC;
FIG. 68 is a diagram illustrating a first manner of using a verification certificate;
FIG. 69 is a flow chart of a process of using a verification certificate;
FIG. 70 is a diagram illustrating a second manner of using a verification certificate;
FIG. 71 is a diagram illustrating an example of a format of a verification certificate;
FIG. 72 is a diagram illustrating a process in which person authentication is performed using a person identification certificate (IDC) which has already been registered in a person identification certificate authority (IDA), and a content is distributed in accordance with the person authentication;
FIG. 73 is a flow chart of a process in which a content is distributed after performing person authentication using an IDC and performing mutual authentication using a PKC;
FIG. 74 is a flow chart of a process in which a content is distributed after performing person authentication using an IDC and performing mutual authentication using a PKC;
FIG. 75 is a flow chart of a process in which a content is distributed after performing person authentication using an IDC and performing mutual authentication using a PKC;
FIG. 76 is a diagram illustrating a process in which person authentication is performed using a user IDC and a device PKC and also using an IDC which has already been registered in a person identification certificate authority (IDA), and then a content is distributed to a user using the device PKC;
FIG. 77 is a flow chart illustrating a process in which person authentication is performed using a user IDC and a device PKC and also using an IDC which has already been registered in a person identification certificate authority (IDA), and then a content is distributed to a user using the device PKC;
FIG. 78 is a flow chart illustrating a process in which person authentication is performed using a user IDC and a device PKC and also using an IDC which has already been registered in a person identification certificate authority (IDA), and then a content is distributed to a user using the device PKC;
FIG. 79 is a diagram illustrating a person identification certificate (IDC) in which validity information (expiration date and the number of times the IDC is allowed to be used) of the person identification certificate (IDC) and also the expiration date of template information stored in the IDC are set;
FIGS. 80A and 80B are diagrams illustrating manners of managing the "expiration date or the number of times the IDC is allowed to be used" and the "expiration date of template" of the template information stored in a person identification certificate (IDC);
FIG. 81 is a diagram illustrating a manner of managing the expiration date of the IDC and the expiration date of the template;
FIG. 82 is a diagram illustrating a manner of managing the number of times the IDC is allowed to be used and the template expiration date;
FIG. 83 is a flow chart illustrating a process of controlling the usage of an IDC in accordance with the "expiration date or number of times the IDC is allowed to be used" and "expiration date of template" described in a person identification certificate (IDC);
FIG. 84 is a diagram illustrating a process in which when a person identification certificate (IDC) is used, if it turns out that the "IDC expiration date" has been reached, the person identification certificate (IDC) is updated;
FIG. 85 is a diagram illustrating a process in which the expiration date of a person identification certificate (IDC) is checked at scheduled intervals, and if it turns out that the "IDC expiration date" has been reached, the IDC is updated;
FIG. 86 is a diagram illustrating a process in which the expiration date of template information which has already been registered in a person identification certificate authority (IDA) is checked by the IDA and updated if the expiration date has been reached, after informing a user that the expiration date has been reached; and
FIG. 87 is a diagram illustrating a process in which template information which has already been registered in a person identification certificate authority (IDA) is updated in response to an updating request from an user.
DESCRIPTION OF THE PREFERRED EMBODIMENT
The present invention is described in further detail below with reference to preferred embodiments in conjunction with the accompanying drawings.
The present invention is described below in terms of items listed below.
1. Concepts of the Present Invention and the Outline of Certificates
2. Encryption of Template
3. Registration and Change of Template and Person Identification Certificate (IDC)
4. Basic Manners of Using Person Identification Certificate (IDC)
5. Authentication Using Person Identification Certificate (IDC)
6. Control of Permission of Usage of Content According to User Authentication on the Basis of Person Identification Certificate
7. Link between Person Identification Certificates (IDCs) and Public Key Certificates (PKCs)
8. Using a Content on the Basis of Person Identification Certificate (IDC) and Public Key Certificate (PKC)
9. One-Time Public Key Certificate (One-Time PKC)
10. Verification Certificate
11. Downloading of Person Identification Certificate (IDC) and Usage of a Content
12. Setting the Validity Period of Person Identification Certificate (IDC)
[1. Concepts of the Invention and Outline of Certificates]
(1.1 Basic Concepts of the System According to the Invention)
First, basic concepts of the person authentication system according to the present invention are described. In the present invention, authentication of a person is realized using a person identification certificate (IDC). A person identification certificate (IDC) is issued for each person who wants to be certified by an identification authority (IDA), which is a reliable third-party agency, after verifying the identification of the person.
Each person identification certificate (IDC) includes information (template information) which identifies a corresponding person. Specific examples usable as personal identification information include fingerprint information, retina pattern information, iris pattern information, voice print information, and handwriting information. Personal identification information other than biometric information such as a seal, a passport, a driver's license, or a card can also be used. Any combination of the personal identification information described above can also be used. Furthermore, a combination of a password and any personal identification described above may also be used. That is, information that only a person himself/herself can possess is used as the person identification information and is stored as template information wherein the template information is generally encrypted.
A person identification certificate (IDC) issued by an identification authority (IDA) is used by a registered user himself/herself, a service provider (SP) which provides a content to the registered user, or an agency or an organization (such as a settling financial institution) which needs to authenticate an user. A person identification certificate (IDC) is also issued by the person identification certificate authority (IDA) in response to a request from a user device which needs the person identification certificate (IDC) for authentication of an user. Specific examples of manners of using person identification certificates will be described in detail later.
Furthermore, in embodiments according to the present invention, a person identification certificate (IDC) is effectively used in conjunction with a public key certificate (PKC). For example, when a service provider (SP) distributes an encrypted content to an user, the service provider (SP) authenticates the user on the basis of a person identification certificate (IDC), and the service provider (SP) transmits the encrypted content to the user only when the user is verified as an authorized user, wherein the content is encrypted using a public key described in a public key certificate so that only the authorized user can decrypt the content.
FIG. 2 is a diagram illustrating encrypted data communication performed by a person authentication system, using a public key certificate, according to the present invention. A person identification certificate (IDC) and a public key certificate (PKC) are issued by an identification authority (IDA) 201 and a certificate authority (CA) 202, respectively, in accordance with predetermined procedures.
Encrypted data communication is performed, for example, between a user device A205 and a service provider (SP) 203 which distributes a content. In the encrypted data communication, the service provider (SP) 203 first confirms that the user device A is used by a user A and then transmits a content after converting the content into encrypted data which can be decrypted by the user A.
The user A registers his/her personal information in the person identification certificate authority (IDA) 201, and the person identification certificate authority (IDA) 201 issues a person identification certificate (IDC) to the user A. The service provider (SP) 203 verifies the authenticity of the user A on the basis of the person identification certificate (IDC). In this case, the service provider (SP) 203 is an entity which executes person authentication on the basis of the person identification certificate (IDC). The authentication may be performed in various manners on the basis of an identification certificate, as will be described in detail later.
The user A presents his/her public key to the certificate authority 202 and receives a public key certificate including a digital signature written by the certificate authority. After the service provider (SP) 203 authenticates the user A on the basis of the person identification certificate (IDC), the service provider (SP) 203 extracts the public key from the public key certificate of the user A and transmits a content to the user A after encrypting the content using the extracted public key. When the user A of the user device A205 receives the encrypted content, the encrypted data is decrypted using a private key corresponding to the public key, and the decrypted data is used by the user A.
Authentication and transmission of encrypted data are also performed in a similar manner between a service provider (SP) 204 serving as a settling institution and a user device B206. That is, the service provider (SP) 204 authenticates the user B on the basis of an identification certificate of the user B and transmits data (such as a content or electronic settlement data) after encrypting the data using a public key certificate of the user B. In this case, the user device is an entity which executes personal authentication on the basis of the person identification certificate (IDC).
Furthermore, in data communication between the user device A205 and the user device B206, authentication of users A and B is performed on the basis of the person identification certificates of users A and B, and data is transmitted by means of encryption using the public key certificate of the use A or B.
As described above, identification certificates and public key certificates can be used in various situations in which data is transmitted. A person identification certificate can also be used singly. For example, when a user accesses secret information stored in a PC, the authenticity of the user is verified on the basis of a person identification certificate. A wide variety of entities, such as a service provider (SP), a user device, and a person identification certificate authority (IDA), execute person authentication on the basis of a person identification certificate.
In an embodiment of a system according to the present invention, as shown in FIG. 2, a person identification certificate (IDC) issued by a person identification certificate authority (IDA) 201 is linked with a public key certificate (PKC) issued by a certificate authority 202. The link may be achieved by incorporating a public key certificate (PKC) into a person identification certificate or by creating group information indicating link information. Manners of forming links will be described in detail later.
In the public key cryptography described above, different keys are used by a sender and a receiver, wherein one of the keys is used as a public key which are opened for use by any unspecified user, while the other key is used as a private key which is kept secret. In the public key cryptography, unlike the symmetric key cryptography in which encryption and decryption are performed using a symmetric key, only a particular one person has a private key which should be kept secret, and thus it is easy to manage keys. An representative example of a public key encryption algorithm is the RSA (Rivest-Shamir-Adleman) encryption algorithm. In this technique, a product of two very large prime numbers (for example, 150-digit prime numbers) is used because it is difficult to factorize the product of two very large prime numbers (such as 150-digit prime numbers) into prime numbers.
In the public key cryptography, a large number of unspecified users are allowed to use the same public key, and the validity of a distributed public key is generally certified by a certificate called a public key certificate. For example, a user A creates a pair of a public key and a private key and sends the created public key to a certificate authority to acquire a public key certificate from the certificate authority. The user A opens the public key certificate to the public. An unspecified user acquires the public key from the public key certificate via a predetermined procedure and transmits, to the user A, a document or the like after encrypting it using the public key. Upon reception of the document, the user A decrypts the received document using the private key. The user A may also attach his/her signature encrypted with the private key to a document or the like, and unspecified user may verify the signature using the public key extracted from the public key certificate via the predetermined procedure. Before describing the person authentication system according to the present invention in further detail, the data structures of the public key certificate (PKC) and the person identification certificate (IDC) used in the system of the present invention are described.
(1.2 Public Key Certificate)
Public key certificates are described with reference to FIGS. 3 and 4. In the public key cryptography, a public key certificate is issued by a certificate authority (CA) which is also called an issuer authority (IA), wherein in response to receiving an ID and a public key from an user, the certificate authority issues a certificate after adding information such as an ID of the certificate authority and a validity period and also adding a signature of the certificate authority.
An example of a format of a public key certificate is described. In this specific example, the format is according to the public key certificate format X.509 V3.
Version indicates the version of the certificate format.
Serial Number indicates a serial number assigned by a public key issuer authority (IA) to a public key certificate.
Signature algorithm Identifier and algorithm parameters are fields in which the signature algorithm of the public key certificate and parameters thereof are described. Either the elliptic curve cryptography or the RSA can be used as the signature algorithm, wherein in the case where the elliptic curve cryptography is employed, parameters and the key length are described, while the key length is described in the case where the RSA is employed.
Issuer is a field in which the issuer of the public key certificate, that is, the name of the public key certificate issuer (IA) is described in the form of a distinguished name.
Validity is a field to describe a period during which the certificate is valid, wherein a start date and an expiration date are described.
Subject is a field in which the name of a subject or a user is described. More specifically, for example, the ID of a user device or the ID of a subject which supplies services is described.
In subject Public Key Info, algorithm and subject Public key, information about the public key of the user including the key algorithm is described.
The fields described above are defined in the public key certificate format X.509 V1, and fields described below are fields added thereto according to the public key certificate format X.509 V3.
In authority Key Identifier, key Identifier, authority Cert Issuer, authority Cert Serial Number, information which identifies the key of the public key certificate issuer (IA) is described, wherein, more specifically, a key identification number (octal number), the name of the public key issuer authority (IA), and a certificate number are described.
In subject key Identifier, identifiers are described in the case where a plurality of keys are certified in the public key certificate.
Key usage is a field to specify the purpose of the key, wherein a purpose is selected from the group consisting of (0) digital signature, (1) prevention of repudiation, (2) encryption of the key, (3) encryption of a message, (4) distribution of a symmetric key, (5) verification of the signature of the certificate, and (6) verification of the signature of a revocation list.
In private Key Usage Period, a period is described during which the private key of the user is valid.
In certificate Polices, certificate policies of certificate authorities, that is, the public key certificate issuer authority (IA) and the registration authority (RA), are described. For example, a policy ID or a certification criterion according to the ISO/IEC9384-1 is described.
Policy Mapping is described only when a CA (public key certificate issuer (IA)) is certified, wherein mapping is described in terms of the policy of the public key certificate issuer (IA) which issues the certificate and the policy of the certificate authority which is certified.
In supported Algorithms, attributes of a directory (X.500) are defined. This field is used, in communication, to inform a receiving party of the attribute of the directory.
Subject Alt Name is a field to describe an alternative name of the subject.
Issuer Alt Name is a field to describe an alternative name of the certificate issuer.
Subject Direction Attribute is a field in which an arbitrary attribute of the user is described.
Basic Constraint is a field to describe whether the public key to be certified is used for signature of the certificate authority (public key certificate issuer authority (IA)) or is used by the user.
Name Constraints permitted Subtrees is a field to describe the area where the certificate is effective, wherein this field is used only when a certificate authority (public key certificate authority (CA) is certified.
In policy Constraints, constrains are described in terms of requirements of explicit policy ID or inhibit policy mapping for the remaining certification path.
CRL (Certificate Revocation List) Distribution Points is a filed to describe a reference point in the revocation list (FIG. 9) at which data is present which indicates whether the certificate of a user is revoked, wherein this field is used to confirm, when the user uses the certificate, that the certificate is not revoked.
Signature is a field in which a signature of the public key certificate issuer (public key certificate authority (IA) is written. The signature is data which is created by generating a hash value by applying a hash function to the whole of a certificate and then encrypting the resultant hash value using a public key of a certificate authority.
A certificate authority issues a public key certificate in the format shown in FIGS. 3 and 4 and also updates a public key certificate which has expired. Furthermore, the certificate authority generates, manages, and distributes an illegal user list (revocation list) to shut out users who have made an illegal act. The certificate authority also generates a public key and a private key, as required.
When a user uses the public key certificate, the user verifies the digital signature of the public key certificate using the public key of the certificate authority the user has. If the verification of the digital signature is successfully passed, the user extracts the public key from the public key certificate. Therefore, all users, who want to use the public key certificate, need to have the common public key of the certificate authority.
(1.3 Person Identification Certificate)
Each person identification certificate (IDC) used in the person authentication system according to the present invention includes information which identifies a person (hereinafter, this person identification information included in the IDC is referred to as template information). An example of template information is biometric information of a person such as fingerprint information, retina pattern information, iris pattern information, voice print information, and handwriting information. Personal identification information other than biometric information is also usable. Specific examples of such personal identification information includes a seal, a passport, a driver's license, and a card. Any combination of the personal identification information described above can also be used. Furthermore, a combination of a password and any personal identification described above may also be used. That is, information that only a person himself/herself can possess is used as the person identification information. It is desirable that the template information be stored in the IDC after being encrypted so as to prevent the template information from being leaked to an unauthorized third party. However, encryption of the template is not necessarily required if the distribution of the person identification certificate is very limited and if the template is thus prevented from being leaked.
A digital signature of a person identification authority (IDA) is written in a person identification certificate (IDC) so that the person identification certificate is prevented from being tampered with.
FIG. 5 illustrates an example of a person identification certificate format. The person identification certificate format shown in FIG. 5 includes indispensable item fields, extended item fields, and a signature field. The respective items are described below.
First, the respective fields of the indispensable items are described.
Version indicates the version of the certificate format.
Serial Number indicates a serial number assigned by a person identification authority (IDA) to a person identification certificate (IDC).
In Signature algorithm Identifier algorithm parameter, the signature algorithm of the person identification certificate and parameters thereof are described.
Either the elliptic curve cryptography or the RSA can be used as the signature algorithm, wherein in the case where the elliptic curve cryptography is employed, parameters and the key length are described, while the key length is described in the case where the RSA is employed.
Issuer is a field in which the issuer of the person identification certificate, that is, the name of the person identification certificate authority (IDA) is described in the form of a distinguished name.
Validity is a field to describe a period during which the certificate is valid, wherein a start date and an expiration date are described.
Subject is a field in which the name of a subject or a user is described. In this field, more specifically, the ID or the name of the user is described.
Subject Template Info is a field to describe identification information of an user, wherein data representing biometric information such as a fingerprint of the user is stored after being encrypted. More specifically, the encryption algorithm used to encrypt the template, the unique identifier (ID) or the certificate number of the public key certificate used in encryption, an encryption algorithm, a parameter, a start date and an expiration date indicating the validity period of the template, the type of the template, and the template (encrypted) are described.
The fields described above are set as the indispensable item fields.
Now, extended fields of the person identification certificate (IDC) are described.
Subject PKC info is a field to describe the public key certificate information of the subject to be certified, including the certificate number of the public key certificate of the subject and the subject unique ID of the public key certificate of the subject.
In Issuer Unique ID, the unique ID of the person identification certificate authority (IDA) is described.
In Subject Unique ID, the unique ID of the subject to be certified is described.
In Public Key Certificate, the public key certificate described above is stored.
In Issuer Alt Name, an alternative name of the person identification certificate authority is described.
In Subject Directory Attribute, an arbitrary attribute of an user, such as an age, sex, address, telephone number, is encrypted as required to identify the user.
Valid Count is a field to describe the maximum number of times the person identification certificate is allowed to be used. More specifically, after a certificate is issued, the certificate is allowed to be used as many times as described in this field.
In Control Table link Infor, group information indicating the link between the person identification certificate (IDC) and the public key certificate (PKC) is described. For example, information is described which indicates a link to a public key certificate used in data communication or data processing which is executed only when a user is successfully authenticated on the basis of the person identification certificate. The link information and the group information will be described in detail later.
The extended fields of the person identification certificate (IDC) have been described above.
The digital signature is data which is created by generating a hash value by applying a hash function to all fields of the certificate and then encrypting the resultant hash value using the public key of the person identification certificate authority (IDA).
Other information may also be described in the extended fields of the person identification certificate (IDC). For example, when the template information is encrypted using not the public key but a common private key, and the common key used in the encryption is encrypted using the public key of the user device, the service provider, or the person identification certificate authority (IDA), the encrypted public key is described in an extended field. The process performed in this case will be described later.
[2. Encryption of Template]
The person identification certificate (IDC) described above includes information (template information) used to identify a person. An example of template information is biometric information of a person such as fingerprint information, retina pattern information, iris pattern information, voice print information, and handwriting information. Personal identification information other than biometric information is also usable. Specific examples of such personal identification information includes a seal, a passport, a driver's license, and a card. Any combination of the personal identification information described above can also be used. Furthermore, a combination of a password and any personal identification described above may also be used. That is, information that only a person himself/herself can possess is used as the person identification information.
It is desirable that the template be stored after being encrypted to prevent the template from being leaked to a third party, unless the distribution of the certificate is limited so as to keep a secret. The manners of encrypting and storing a template are described below.
A template may be stored and encrypted in various manners as described below.
1) The template is stored without being encrypted.
2) The template is encrypted using the public key of the user (identified by the person identification certificate).
3) The template is encrypted using the symmetric key Kt, and the symmetric key Kt is encrypted using the public key of the user.
4) The template is encrypted using a public key of a service provider (SP) (which identifies a user to which a service is to be provided, by means of using a person identification certificate).
5) The template is encrypted using the symmetric key Kt and the symmetric key Kt is encrypted using the public key of the service provider (SP).
6) The template is encrypted using the public key of the person identification certificate authority (IDA).
7) The template is encrypted using the symmetric key Kt, and the symmetric key Kt is encrypted using the public key of the person identification certificate authority (IDA).
The template may be stored after being encrypted or without being encrypted in one of the above manners, each of which will be described in further detail below with reference to FIGS. 6, 7, and 8. FIG. 6A illustrates an example in which a template is not encrypted, and data representing biometric information such as a fingerprint acquired via a person identifying apparatus is directly stored as template information in a person identification certificate (IDC).
FIG. 6B illustrate an example in which encryption and decryption are performed using only a public key, wherein in encryption shown in FIG. 6B, a template of a user acquired as identification information via a person identifying apparatus is encrypted using a public key of the user or a user device, a public key of a service provider (SP) (which identifies a user to which a service is to be provided, by means of using a person identification certificate), or a public key of a person identification certificate authority (IDA). Encryption may be performed in accordance with, for example, the elliptic curve cryptography (ECC) or the RSA (Rivest-Shamir-Adleman) cryptography. The encrypted template is stored in the person identification certificate (IDC), together with the identifier (unique ID) of the public key and data indicating the encryption algorithm employed in the encryption of the template.
The public key used herein is a public key which can be identified by the unique ID of the public key. The unique ID of the public key is information which can identify a public key certificate, wherein specific examples include a user ID and a user name stored in a public key certificate. The public key used herein is selected, depending upon the manner in which the person identification certificate (IDC) is used, from the group consisting of the public key of the user, the public key of the service provider (SP) (which identifies a user to which a service is to be provided, by means of using a person identification certificate), and the public key of the person identification certificate authority (IDA).
FIG. 7 shows various manners of using a public key to encrypt a template. In the case of a person identification certificate (IDC) in which a public key of a user or a user device is used to encrypt a template, an example of usage of the person identification certificate (IDC) is to identify a particular user who is authorized to use a user device (such as a PC). When a user wants to use a PC, the template stored in the person identification certificate (IDC) is decrypted using the private key of the user and is compared with an input template to verify the authenticity of the user.
An example of usage of a person identification certificate (IDC) in which a template is encrypted using a public key of a service provider is to identify a particular user to whom a service is to be provided by the service provider. The service provider extracts the encrypted template information from a person identification certificate (IDC) of an user, which is stored in the service provider or transmitted from the user or the person identification certificate authority (IDA), and the service provider decrypts the encrypted template information using the private key of the service provider. The service provider then compares the decrypted template with sampling information (such as fingerprint data) presented by a person to be verified.
A person identification certificate (IDC) in which a template is encrypted using a public key of the person identification certificate (IDC) is used, for example, in data transmission between terminals, to identify transmitting and receiving users on the basis of the person identification certificate (IDC) issued by the person identification certificate authority (IDA). As described above, the template information is encrypted in a different manner depending upon the usage of the person identification certificate (IDC).
FIG. 6C shows a process of decrypting a template encrypted with a public key. An encrypted template is extracted from a person identification certificate (IDC), and then data indicating the encryption algorithm and the unique ID of a public key are extracted. Furthermore, a private key corresponding to the public key specified by the public key unique ID is extracted, and the encrypted template is decrypted using the extracted private key thereby extracting the template. Each entity which executes the person verification, such as a user device or a service provider which verifies an user, includes an encryption unit for decrypting and encrypting data.
FIGS. 8A and 8B are diagrams each illustrating a manner of encrypting and decrypting a template of a person identification certificate, using a symmetric key and a public key. FIG. 8A illustrates an encrypting process. First, for example, in a person identification certificate authority (IDA) which wants to generate encrypted template information, a symmetric key is generated using a random number, and a template input via a person identifying apparatus is encrypted using the symmetric key. Furthermore, a public key employed, that is, one of a public key of the user or of a user device, a public key of a service provider (SP), and a public key of the person identification certificate authority (IDA) is encrypted using the symmetric key. The public key is selected depending upon the usage manner described above with reference to FIG. 7.
The resultant encrypted template and encrypted symmetric key are stored in the person identification certificate (IDC) together with the identifier (unique ID) of the public key and the data indicating the encryption algorithm applied to the encryption of the template and the encryption of the symmetric key.
FIG. 8B illustrates a decrypting process using the symmetric key and the private key. The encrypted template is extracted from the encrypted template information of the person identification certificate (IDC). Furthermore, the encrypted symmetric key, the data indicating the encryption algorithm, and the public key unique ID are extracted. The encrypted symmetric key is decrypted using the private key specified by the public key specified by the public key unique ID, and the encrypted template is decrypted using the symmetric key obtained via the above decryption process, thereby extracting the template.
[3. Registration and Change of Template and Person Identification Certificate (IDC)]
Processes of registering, deleting, changing, adding, suspending, and canceling of suspension of a person identification certificate (IDC) in which data is described in the above-described manner are described below. Herein, the suspending of an IDC is a process of temporarily invalidating the IDC, and the canceling of suspension is a process of re-validating the temporarily suspended IDC.
(3.1 Registration of Template)
To effectively register a person identification certificate (IDC), a person to be certified with a person identification certificate (IDC) first presents sampling information to register his/her template. As described earlier, an example of template information is biometric information of a person such as fingerprint information, retina pattern information, iris pattern information, voice print information, and handwriting information. Personal identification information other than biometric information is also usable. Specific examples of such personal identification information includes a seal, a passport, a driver's license, and a card. Any combination of the personal identification information described above can also be used. Furthermore, a combination of a password and any personal identification described above may also be used. That is, information that only a person himself/herself can possess is used as the person identification information.
FIG. 9 illustrates a flow in terms of registration of a template and creation of an IDC. Registration of a template is performed on the basis of information (sampling information) acquired using an apparatus capable of acquiring personal information in one of the various forms described earlier. For example, in the case where fingerprint information is used as a template, a fingerprint reading apparatus is used, while a voice print acquisition apparatus is used in the case where voice print information is used as a template (S11). The acquired data is transmitted online or offline to a person identification certificate authority (IDA) (S12). A user transmits his/her personal information (PIN) identifying the user to the person identification certificate authority (IDA) (S13).
In the case where the data described above are transmitted online, mutual authentication is performed between the device of the user and the person identification certificate authority (IDA), wherein data is transmitted together with a digital signature, and the signature is verified at a receiving end. The person identification certificate authority (IDA) checks the data to confirm that the data has not been tempered with, identifies the user, and verifies the data (S14). If it is determined that the data is not valid, error handling is performed (S17) without performing registration.
In the registration of the template, the person identification certificate authority (IDA) verifies the identification of the user on the basis of user identification data which identifies the user. The person identification certificate authority (IDA) also acquires personal information such as an address or a telephone number, as required. After verifying the identification of the user and the verifying other necessary data, the person identification certificate authority (IDA) assigns a person identifier to the template and stores it in a database (S15). The person identification certificate authority (IDA) encrypts the template using the public key of the person identification certificate authority (IDA) and creates a person identification certificate (IDC) in which the encrypted template is stored (S16). The key used to encrypt the template stored in the IDC may be different depending upon the location where the IDC is used, that is, depending upon the entity which executes authentication of a person. For example, a public key of a service provider or a user device is used depending upon the situation.
(3.2 Deleting of Template)
A template registered in a person identification certificate authority (IDA) may be deleted by performing a template deleting process. The deleting process is performed in response to a deleting request issued by an user. FIG. 10 shows a flow of the template deleting process. When a user requests deletion of a template (S21), the user submits his/her identification data which identifies the user to a person identification certificate authority (IDA) (S22). Furthermore, the user transmits his/her personal information (PIN) used for identification to the person identification certificate authority (IDA) (S23).
In the case where the data described above are transmitted online, mutual authentication is performed between the device of the user and the person identification certificate authority (IDA), wherein data is transmitted together with a digital signature, and the signature is verified at a receiving end. The person identification certificate authority (IDA) checks the data to confirm that the data has not been tempered with, identifies the user, and verifies the data (S24). If it is determined that the data is not valid, error handling is performed (S27) without performing the deleting process.
After identifying the user on the basis of the person identification data to confirm that the request has been issued by the user himself/herself (S24), the person identification certificate authority (IDA) deletes the requested template and the associated person identification data and other additional information (S25). Furthermore, the person identification certification authority (IDA) deletes the person identification certificate (IDC) in which the template was present, and registers the deleted IDC in a revocation list (S26). More specifically, the IDC identifier corresponding to the deleted IDC is registered in the revocation list.
(3.3 Changing of Template)
A template registered in a person identification certificate authority (IDA) may be changed by performing a template changing process. FIG. 11 illustrates a flow of the template changing process. A user submits a template changing request to a person identification certificate authority (IDA) (S31), creates sampling information or the like used to create a new template (S32), and transmits identification data identifying the user and additional information (PIN) as required to the person identification certificate authority (IDA) (S33, S34). The person identification certificate authority (IDA) identifies the user on the basis of the identification data (S35), deletes the person identification certificate (IDC) based on the current template (S36), and registers the deleted IDC in the revocation list (S37). Furthermore, the person identification certificate authority (IDA) assigns an identification number to the new template and stores it in the database (S38), encrypts the template using the public key of the person identification certificate authority (IDA), and creates a person identification certificate (IDC) in which the encrypted template is stored (S39). In on-line data communication between the user device and the person identification certificate authority (IDA), mutual authentication, addition of a signature to data to be transmitted, and verification of the signature are performed in a similar manner to the processes described above.
(3.4 Addition of Template)
A user may add another identification data as an additional template to the template which has been already registered in a person identification certificate authority (IDA). FIG. 12 illustrates the template addition process. A user issues a template addition request to a person identification certificate authority (IDA) (S41), creates a new template using a template acquisition apparatus (S42), and transmits it together with identification data to the person identification certificate authority (IDA) (S43, S44). The person identification certificate authority (IDA) verify the received identification data (S45) to authenticate the user, assigns a person identifier (number) to the template to be added and stores it in the database (S46), encrypts the template to be added using the public key of the person identification certificate authority (IDA), and creates a person identification certificate (IDC) in which the encrypted template is stored (S47). In on-line data communication between the user device and the person identification certificate authority (IDA), mutual authentication, addition of a signature to data to be transmitted, and verification of the signature are performed in a similar manner to the processes described above.
(3.5 Suspension of Template)
A template registered in a person identification certificate authority (IDA) may be suspended temporarily in response to a suspension request issued from an user. FIG. 13 illustrates a flow of a template suspension process. If a user issues a template suspension request to a person identification certificate authority (IDA) (S51) and submits identification data and addition data to the person identification certification authority (IDA) (S52, S53), the person identification certificate authority (IDA) identifies the user on the basis of the identification data (S54) and suspends the validity of the requested template of the user and the associated identification data and additional information (S55). In this suspension process, the person identification certificate authority (IDA) also revokes the person identification certificate (IDC) of that user and registers it in the revocation list (S56). More specifically, the IDC identifier corresponding to the deleted IDC is registered in the revocation list. In on-line data communication between the user device and the person identification certificate authority (IDA), mutual authentication, addition of a signature to data to be transmitted, and verification of the signature are performed in a similar manner to the processes described above.
(3.6 Cancellation of Suspension of Template)
A template whose validity was suspended via the suspension process may be re-validated in response to a suspension cancel request issued by an user. FIG. 14 illustrates a template suspension canceling process. A user issues a template suspension cancel request to a person identification certificate authority (IDA) (S61) and submits identification data and additional information to the person identification certificate authority (IDA) (S62, S63). After verifying identification of the user on the basis of the identification data (S64), the person identification certificate authority (IDA) cancels the suspension of validity of the requested template of the user and the associated identification data and additional information (S65). Furthermore, the person identification certificate authority (IDA) removes the person identification certificate (IDC) of that user from the revocation list (S66). More particularly, the corresponding IDC identifier is removed from the revocation list. In on-line data communication between the user device and the person identification certificate authority (IDA), mutual authentication, addition of a signature to data to be transmitted, and verification of the signature are performed in a similar manner to the processes described above.
(3.7 Distribution of Person Identification Certificate (IDC))
Distribution of a person identification certificate (IDC) created on the basis of a template registered after being supplied from a user is described below.
FIG. 15 illustrates a flow of a process of distributing a person identification certificate (IDC) to service providers (SPs). A service provider who wants to use a person identification certificate (IDC) makes, in advance, a contract including a rule of using IDCs with a person identification certificate authority (IDA) (S71). Thereafter, mutual authentication is performed between the person identification certificate authority (IDA) and the service provider (SP) (S72). The mutual authentication may be performed, for example, via a process using symmetric key encryption or public key encryption.
If a success is achieved in mutual authentication, the service provider (SP) transmits to the person identification certificate authority (IDA) a request for issuing person identification certificate (IDC) together with user identification data or data indicating the name of a user to whom a service is to be provided and also data indicating the desired policy of the person identification certificate (IDC) (S73). The person identification certificate authority (IDA) verifies the person identification certificate issuing request (S74), sets the policy of the person identification certificate (IDC) in accordance with the usage rule (S75), extracts the requested person identification certificate (IDC) of the user from the database, decrypts the user template encrypted with the public key of the person identification certificate authority (IDA), encrypts the user template using the public key of the service provider (S76), creates a person identification certificate (IDC) according to the policy (S77), and supplies the created IDC to the service provider (SP) (S78). In the case where the template stored in the database is not encrypted, or in the case where encryption is not required, the encryption of the template is not necessary.
(3.8 Updating of Person Identification Certificate (IDC))
Now, a process of updating a person identification certificate (IDC) created on the basis of a registered template of a user is described below. In most cases, updating is performed to reset the validity period of a person identification certificate (IDC) being used.
FIG. 16 illustrates a flow performed in response to a person identification certificate (IDC) updating request issued from a service provider (SP). A service provider who wants to use a person identification certificate (IDC) makes, in advance, a contract including a rule of using IDCs with a person identification certificate authority (IDA) (S81). Thereafter, mutual authentication is performed between the person identification certificate authority (IDA) and the service provider (SP) (S82). The mutual authentication may be performed, for example, via a process using symmetric key encryption or public key encryption.
If a success is achieved in the mutual authentication, the service provider (SP) transmits to the person identification certificate authority (IDA) a request for updating a desired person identification certificate (IDC) (S83). The person identification certificate authority (IDA) verifies the updating request (S84), sets the policy of the person identification certificate (IDC) in accordance with the usage rule (S85), extracts the requested person identification certificate (IDC) of the user from the database, decrypts the user template encrypted with the public key of the person identification certificate authority (IDA), encrypts the user template using the public key of the service provider, creates a person identification certificate (IDC) according to the policy (S86), sets the validity period, and supplies the created IDC to the service provider (SP) (S87). In the case where the template stored in the database is not encrypted, or in the case where encryption is not required, the encryption of the template is not necessary.
(3.9 Deleting of Person Identification Certificate (IDC))
Deleting of a person identification certificate (IDC) created on the basis of a template registered after being supplied from a user is described below.
FIG. 17 illustrates a process performed in response to a person identification certificate (IDC) deleting request issued by an user. When a user wants to delete a person identification certificate (IDC), the user transmits to a person identification certificate authority (IDA) a request for deleting a particular person identification certificate (IDC) (S91). The person identification certificate authority (IDA) verifies the deleting request (S92) and deletes the specified person identification certificate (IDC) (S93).
(3.10 Inquiring about Person Identification Certificate (IDC))
Inquiring about a person identification certificate (IDC) created on the basis of a template registered after being supplied from a user is described below. Inquiring is performed, for example, when a service provider (SP), who does not have a person identification certificate (IDC), transmits sampling data received from a user to a person identification certificate authority (IDA) to inquire about the authenticity of the user. In response to the inquiry, the person identification certificate authority (IDA) verifies the authenticity of the user on the basis of the person identification certificate (IDC) stored in the person identification certificate authority (IDA), and the person identification certificate authority (IDA) returns only the authentication result to the service provider.
FIG. 18 illustrates a flow of a process performed in response to a person identification certificate (IDC) inquiry request issued by a service provider (SP). A service provider, who wants to make an inquiry in terms of a person identification certificate (IDC), makes a contract including an usage rule of person identification certificates (IDCs) with a person identification certificate authority (IDA) (S01). Thereafter, mutual authentication is performed between the person identification certificate authority (IDA) and the service provider (SP) (S02). The mutual authentication may be performed, for example, via a process using symmetric key encryption or public key encryption.
If a success is achieved in the mutual authentication, the service provider (SP) transmits to the person identification certificate authority (IDA) a request for inquiry about a person identification certificate (IDC) of a particular user together with sampling data or the like of that user (S03, S04). The person identification certificate authority (IDA) verifies the inquiry request (S05), verifies the received sampling data on the basis of the corresponding person identification certificate (IDC) (S06), and transmits a verification result (OK or NG) to the service provider (SP) (S07).
[4. Basic Manners of Using Person Identification Certificate (IDC)]
Basic manners of using a person identification certificate (IDC) are described below. In particular, relationships between a certificate authority (CA) which issues a public key certificate (PKC), a person identification certificate authority (IDA) which issues a person identification certificate (IDC), and a device which uses those certificates are described.
FIGS. 19 and 20 illustrate two examples of systems including a certificate authority (CA) which issues a public key certificate (PKC), a person identification certificate authority (IDA) which issues a person identification certificate (IDC), and a device which uses those certificates. In the example shown in FIG. 19, a comparison between sampling information and a template of a person identification certificate (IDC) is made by a person identification certificate authority (IDA), while a comparison between sampling information and a template of a person identification certificate (IDC) is made by a service provider (SP) or a user device (UD) in the example shown in FIG. 20.
In FIG. 19, the user device (UD) or the service provider (SP) 300 includes a sampling information processing unit 310 for acquiring personal information such as fingerprint data of various users and processing the acquired personal information, wherein the sampling information processing unit 310 includes a personal information acquisition unit 314 for acquiring sampling information, an information converter 313 for converting fingerprint data or the like into a code, and a communication unit 312 for transmitting the converted code to a person identification certificate authority 320, and wherein the sampling information processing unit 310 stores a public key certificate for use in encryption/decryption of data in various communication processes. A controller 311 controls the operations of the personal information acquisition unit 314, the information converter 313, and the communication unit 312.
The person identification certificate authority (IDA) 320 includes a comparator 321 and storage means 322, wherein the comparator compares sampling data received from the user device (UD) or the service provider (SP) 300 with a template, stored in the storage means, of a user to be certified (preferably, the template is encrypted and stored in the person identification certificate). The storage means stores, in addition to templates, data indicating the history of issuing person identification certificates and data indicating the history of comparison.
A certificate authority (CA) 330 is an agency which issues a public key certificate (PKC) of a user in response to a request from the user, wherein the public key certificate includes a signature of the certificate authority. The certificate authority stores and manages data indicating the history of issuing public key certificates and the verification history.
If the person identification certificate authority (IDA) 320 receives sampling information from the user device (UD) or the service provider (SP) 300, the person identification certificate authority (IDA) 320 compares the received sampling information with a stored template, wherein an OK or NG message is transmitted as a comparison result to the user device (UD) or the service provider (SP) 300 depending upon whether the received sampling information matches with the stored template. Herein, a verification certificate in a predetermined format may be issued, as will be described later. In the case where a verification certificate is issued, the person identification certificate authority describes the history of issuing verification certificates.
Communication among the certificate authority (CA), the person identification certificate authority (IDA) 320, and the user device (UD) or the service provider (SP) 300 is performed only when a success is achieved in mutual authentication, wherein it is desirable that secret data be encrypted using a session key created via the mutual authentication or using public keys of two parties.
In the case of the system shown in FIG. 20, a comparison between sampling information and a template of a person identification certificate (IDC) is made by a service provider (SP) or a user device (UD).
The user device (UD) or the service provider (SP) 400 shown in FIG. 20 includes a verification system 410 for acquiring personal information such as fingerprint of various users and performing verification, wherein the verification system 410 includes a general memory 413 for storing person identification certificates, a person identification certificate verification unit 414 for checking whether a person identification verification has been tempered with, a template decryption unit 415 for decrypting an encrypted template described in a person identification certificate, a personal information acquisition unit 418 for acquiring sampling information such as fingerprint data, an information converter 417 for converting fingerprint data or the like into a code, a comparator 416 for comparing the decrypted template with the coded sampling information, a communication unit 411 for communication with a person identification certificate authority 420, and an encryption/decryption unit 419 including a signature generator and storing public key certificates and a public key for use in encryption/decryption of data in various communication processes. A controller 412 controls the operation of the respective units.
The person identification certificate authority (IDA) 420 includes a person identification certificate issuing unit 421 and a storage means 422, and the person identification certificate authority (IDA) 420 issues a person identification certificate in which a template of a person to be certified is stored, in response to a request from the user device (UD) or the service provider (SP) 400. The storage means 422 stores templates, person identification certificates, data representing the history of issuing person identification certificates, and data representing the history of verification.
A certificate authority (CA) 430 is an agency which issues a public key certificate (PKC) of a user in response to a request from the user, wherein the public key certificate includes a signature of the certificate authority. The certificate authority stores and manages data indicating the history of issuing public key certificates and the verification history.
As in the system shown in FIG. 19, communication among the certificate authority (CA), the person identification certificate authority (IDA) 320, and the user device (UD) or the service provider (SP) 300 is performed only when a success is achieved in mutual authentication, wherein it is desirable that secret data be encrypted using a session key created via the mutual authentication or using public keys of two parties.
[5. Authentication Using Person Identification Certificate (IDC)]
Various manners of authentication using a person identification certificate (IDC) are described below. The authentication using a person identification certificate (IDC) can be classified into two modes described below.
(5.1 On-line Mode)
Static IDC Verification
A template of a person identification certificate (IDC) is encrypted using a public key of a site at which verification is performed, such as a person identification certificate authority (IDA), a service provider (SP), or a user device (PC), and is registered and stored in a person identification certification authority (IDA). In response to a request from the service provider (SP) or the user device (PC), the person identification certificate authority (IDA) supplies the IDC for verification.
Dynamic IDC Verification
A template of a person identification certificate (IDC) is encrypted using a public key of a person identification certificate authority (IDA) and registered in the IDA. In response to a request from a service provider (SP) or a user device (PC), the template is re-encrypted using a public key of a site such as the SP or the PC at which verification is performed, that is, using a public key of an entity which performs person verification, and the person identification certificate (IDC) is dynamically distributed for verification.
(5.2 Off-Line Mode)
Static IDC Verification
A template of a person identification certificate (IDC) is encrypted using a public key of a site at which verification is performed, such as a person identification certificate authority (IDA), a service provider (SP), or a user device (PC), that is, using a public key of an entity which performs person verification, or a template is encrypted using a symmetric key and this symmetric key is encrypted using a public key of a person identification certificate authority (IDA), a service provider (SP) or a user device (PC) and is registered in a person identification certificate authority (IDA) and distributed to each user. When person verification is performed, an IDC and sampling information are transmitted to a site at which verification is performed. The verification processes in the respective modes are described below.
(5.1.1 On-Line Mode Static Verification)
In on-line mode static verification, when sampling data input by a person is compared, for verification, with a template of a person identification certificate (IDC), the person identification certificate (IDC) is dynamically issued by a person identification certificate authority (IDA), and comparison for verification is performed in a system, that is, by a user device (PC), a service provider (SP), or a person identification certificate authority (IDA). That is, a comparison between sampling data input by a person and a template of a person identification certificate (IDC) is made by an entity which executes a person verification process. The person identification certificate authority (IDA) retrieves, from a database, template information encrypted with a public key of a system which performs comparison and transmits the retrieved template information to the system, at which input sampling data is compared with the template obtained by decrypting the received IDC thereby identifying the person.
FIGS. 21A to 21C are diagrams illustrating manners of performing verification by a system such as a user device (such as a PC), a service provider (SP), or a person identification certificate authority (IDA). Data transfer among the respective systems including the user device, the service provider (SP), and the person identification certificate authority (IDA) shown in FIGS. 21A to 21C is performed, basically, only when a success is achieved in mutual authentication between a transmitting system and a receiving device, wherein the data is transmitted after being encrypted using a session key created via the authentication process.
FIG. 21A shows an example in which comparison for verification is performed by a user device. A person identification certificate authority (IDA) stores a person identification certificate (IDC) including a template encrypted using a public key of the user device, wherein when the user device performs verification, the user device acquires a person identification certificate (IDC) of a person to be authenticated by requesting the person identification certificate authority (IDA) to provide the person identification certificate (IDC) of that person.
The acquisition of the person identification is performed, for example, such that the user device transmits to the person identification certificate authority (IDA) the unique ID of the public key certificate (PKC) of the user to be authenticated or the user device, and the person identification certificate authority (IDA) extracts the corresponding IDC of the person from the stored IDCs in accordance with the received unique ID and transmits the extracted IDC to the user device. Public key certificates (PKC) and person identification certificates (IDCs) may be linked in various manners. IDC identification data depending upon the manner of forming the link is transmitted from a user device to a person identification certificate authority (IDA), and the person identification certificate authority (IDA) retrieves a person identification certificate (IDC) using the received data as a key. The manners of linking public key certificates (PKC) and person identification certificates (IDCs) will be described in further detail later.
The user device acquires a template by decrypting, using a private key of the user device, an encrypted template in a person identification certificate (IDC) received from the person identification certificate authority (IDA) and performs verification by comparing the acquired template with personal data, for example, sampling data such as fingerprint data acquired via a sampling data extracting apparatus. Depending upon whether they match with each other, verification is concluded as OK or NG. It is required that the sampling data and the template stored in the IDC should be of the same type. For example, when one of them is fingerprint data, the other one should also be fingerprint data. When one is iris data, the other should be iris data. A plurality of different identification data may be stored as templates in a person identification certificate (IDC), and input sampling data may be regarded as valid when the input sampling data matches with one of the plurality of identification data.
Only when verification is successfully passed, for example, a particular application program installed on the user device is allowed to be executed to perform data processing such as accessing to a database, updating of data, or inputting of data. If verification fails, execution of data processing is not allowed. In this case, the user device serving as a data processing apparatus having the comparison/verification capability is the entity which requests person authentication and executes person authentication.
In the system shown in FIG. 21B, comparison for verification is performed by a service provider (SP). A person identification certificate authority (IDA) stores a person identification certificate (IDC) including a template encrypted using a public key of the service provider (SP), wherein when the service provider performs verification, sampling information of a person to be verified and a public key certificate (PKC) of that person are transmitted to the service provider (SP) from a user device. In the case where the service provider (SP) already has the PKC, identification data identifying the PKC may be transmitted. It is desirable that sampling data be transmitted to the service provider (SP) after encrypting the sampling data using a session key created via mutual authentication or using the public key of the service provider (SP), so that the sampling data can be decrypted by only the service provider (SP). In this system, the entity which requests verification of a person is the user device, and the entity which executes the verification of the person is a service provider which provides a service to the user device.
The service provider (SP) transmits the unique ID of a public key certificate (PKC) of a person or a user device to the person identification certificate authority (IDA) to request the person identification certificate authority (IDA) to provide a person identification certificate (IDC) of the person to be verified. In accordance with the received unique ID, the person identification certificate authority (IDA) retrieves the IDC of the person from the stored IDCs and transmits the retrieved IDC to the service provider (SP). Herein, the IDC includes a template encrypted using a public key of the service provider (SP).
The service provider (SP) acquires the template by decrypting, using the private key of the service provider (SP), the encrypted template included in the person identification certificate (IDC) received from the person identification certificate authority (IDA), and the service provider (SP) performs verification by comparing the template with data which is obtained by decrypting encrypted sampling data such as fingerprint data which is acquired via a sampling data extracting apparatus and transmitted from the user device. Depending upon whether they match with each other, verification is concluded as OK or NG. The verification result (OK or NG) is transmitted to the user device, and, depending upon the verification result, it is determined whether or not the following process such as requesting the service provider (SP) to transmit a content or requesting for viewing of data should be allowed.
In the system shown in FIG. 21C, comparison for verification is performed by a person identification certificate authority (IDA). The person identification certificate authority (IDA) stores a person identification certificate (IDC) including a template encrypted using a public key of the person identification certificate authority (IDA). When the person identification certificate authority (IDA) performs verification, sampling information of a person to be verified and a public key certificate (PKC) of that person or of a user device are transmitted to the person identification certificate authority (IDA) via a service provider (SP). In the case where the person identification certificate authority (IDA) already has the PKC, identification data identifying the PKC may be transmitted. It is desirable that the sampling data be transmitted to the person identification certificate authority (IDA) after being encrypted using a public key of the person identification certificate authority (IDA) so that the sampling data can be decrypted only by the person identification certificate authority (IDA). In this system, the entity which requests verification of a person is the user device or the service provider, and the entity which executes the verification of the person is the person identification certificate authority (IDA).
The person identification certificate authority (IDA) retrieves the IDC of the person of interest from the stored IDCs on the basis of the unique ID of the public key certificate (PKC) and acquires the template by decrypting the encrypted template included in the person identification certificate (IDC) using the private key of the person identification certificate authority (IDA), and furthermore, the person identification certificate authority (IDA) performs verification by comparing the template with data which is obtained by decrypting encrypted sampling data such as fingerprint data which is acquired via a sampling data extracting apparatus and transmitted from the user device via the service provider (SP). Depending upon whether they match with each other, verification is concluded as OK or NG. The verification result (OK or NG) is transmitted to the service provider (SP) and the user device, and, depending upon the verification result, it is determined whether or not the following process such as requesting by the user device the service provider (SP) to transmit a content or requesting for viewing of data should be allowed.
(5.1.2 On-Line Mode Dynamic Verification)
In on-line mode dynamic verification, when sampling data input by a person is compared, for verification, with a template of a person identification certificate (IDC), the person identification certificate (IDC) is dynamically issued by a person identification certificate authority (IDA), and comparison for verification is performed in a system, that is, by a user device (PC), a service provider (SP), or a person identification certificate authority (IDA). The template information encrypted with the public key of the person identification certificate authority (IDA) is decrypted by the person identification certificate authority (IDA) and the IDC is transmitted, after being re-encrypted using a public key of a system at which verification is to be performed, to the system, at which the template is decrypted and compared with input sampling data thereby identifying a person.
FIG. 22 shows a system in which comparison for verification is performed by a user device. A person identification certificate authority (IDA) stores a person identification certificate (IDC) including a template encrypted using a public key of the person identification certificate authority (IDA), wherein when the user device performs verification, the user device acquires a person identification certificate (IDC) of a person to be authenticated by requesting the person identification certificate authority (IDA) to provide the person identification certificate (IDC) of that person.
In the process of acquiring the person identification certificate (IDC), a public key certificate (PKC) of a person to be certificated or of a user device, or the unique ID of the public key certificate (PKC) if the person identification certificate authority (IDA) already has the public key certificate (PKC) of that user or the user device, is transmitted to the person identification certificate authority (IDA) from the user device, and the person identification certificate authority (IDA) retrieves the IDC of the person from the stored IDCs on the basis of the received unique ID or the unique ID extracted from the PKC.
The person identification certificate authority (IDA) decrypts the encrypted template extracted from the retrieved IDC using the private key of the person identification certificate authority (IDA), re-encrypts the template using the public key of the user device, re-issues the person identification certificate (IDC), and transmits the re-issued IDC to the user device.
The user device acquires the template by decrypting, using the private key of the user device, the encrypted template included in the person identification certificate (IDC) received from the person identification certificate authority (IDA), and the user device performs verification by comparing the acquired template with personal data, for example, sampling data such as fingerprint data acquired via a sampling data extracting apparatus. Depending upon whether they match with each other, verification is concluded as OK or NG. Only when verification is successfully passed, for example, a particular application program installed on the user device is allowed to be executed to perform data processing such as accessing to a database, updating of data, or inputting of data. If verification fails, execution of data processing is not allowed.
FIG. 23 shows a system in which comparison for verification is performed by a service provider (SP). A person identification certificate authority (IDA) stores a person identification certificate (IDC) including a template encrypted using a public key of the person identification certificate authority (IDA). When verification is performed in the service provider (SP), the service provider (SP) transmits a public key certificate (PKC) of the service provider (SP) to the person identification certificate authority (IDA). In the case where the person identification certificate authority (IDA) already has the PKC of the service provider (SP), identification data identifying the PKC may be transmitted.
Thereafter, a public key certificate (PKC) of a person to be verified or of a user device is transmitted from the user device to the person identification certificate authority (IDA) via the service provider (SP). In the case where the person identification certificate authority (IDA) already has the PKC of the user device, identification data identifying the PKC may be transmitted.
The person identification certificate authority (IDA) retrieves the IDC of the person from the stored IDCs on the basis of the received unique ID and decrypts the encrypted template included in the retrieved IDC, using the private key of the person identification certificate authority (IDA), re-encrypts the template using the public key of the service provider (SP), re-issues the person identification certificate (IDC), and transmits the re-issued IDC to the service provider (SP).
The service provider (SP) acquires the template by decrypting, using the private key of the service provider (SP), the en |
