User authentication system and user authentication method
The user authentication system addresses the lack of shared behavioral authorization information by enabling multiple service providers to share usage history and rights based on user consent, improving user convenience and engagement through incentives.
Patent Information
- Authority / Receiving Office
- JP · JP
- Patent Type
- Applications
- Current Assignee / Owner
- PANASONIC INTELLECTUAL PROPERTY MANAGEMENT CO LTD
- Filing Date
- 2026-04-01
- Publication Date
- 2026-06-11
Smart Images

Figure 2026095595000001_ABST
Abstract
Description
Technical Field
[0001] The present disclosure relates to a user authentication system and a user authentication method for authenticating a user who uses a service.
Background Art
[0002] Conventionally, there is known a security management system including a visitor reservation device for registering in advance a designated area visited by a visitor and its receptionist, a plurality of gates and authentication devices arranged in a passage within a facility managed by the visitor reservation device, and an unlocking / locking control device for unlocking the gate when the visitor is recognized by the authentication device and the receptionist is present in the designated area (see Patent Document 1).
[0003] Also conventionally, there is known an authentication system including a mobile terminal and a server device connectable to the mobile terminal via a network, which authenticates the validity and legitimacy of the qualifications of an authenticated person regardless of the location (see Patent Document 2). In this authentication system, information regarding qualifications to be authenticated and face information of a legitimate holder of the qualifications are registered in the server device, and the mobile terminal collates the face information sent from the server device with a face image captured by the own terminal. As a result of the collation process, when it is determined that the face information and the face image match and the information regarding the qualifications is valid, the authenticated person is authenticated as a legitimate holder of the qualifications, and the rights permitted by the qualifications are given to the authenticated person.
Prior Art Documents
Patent Documents
[0004]
Patent Document 1
Patent Document 2
Summary of the Invention
Problems to be Solved by the Invention
[0005] Incidentally, in service businesses that provide various services to users, it is known that service providers (hereinafter referred to as "service providers"), such as individuals, corporations, and organizations providing the services, each manage user authentication information (for example, facial information) in order to perform authentication processing for users using the services, and provide services individually based on the authentication results.
[0006] In such service businesses, if service providers can share behavioral authorization information related to each service provided to the same user, it is expected that the appeal to users and the convenience of users will improve. Such behavioral authorization information may include usage history information for each service (i.e., a history of the services used by the user) and usage permission information (i.e., information indicating the user's permission to use the service).
[0007] On the other hand, the conventional technologies described in Patent Documents 1 and 2 above do not give special consideration to sharing user behavior authorization information among multiple businesses after it has been authorized through authentication processing.
[0008] Therefore, the main purpose of this disclosure is to provide a user authentication system and a user authentication method that enable multiple service providers, each providing services to a user, to share behavioral authorization information related to each service provided to the user, based on the user's consent. [Means for solving the problem]
[0009] The user authentication system of this disclosure is a user authentication system that authenticates users who use multiple services, and comprises: an authentication processing device that performs user authentication processing based on the user's biometric authentication information; and first and second service provider devices, each managed by a first and second service provider, which perform processing to provide each of the services to the user based on the results of the authentication processing, wherein the authentication processing device generates user behavior authorization information relating to the services provided by the first service provider, and the behavior authorization information includes at least one of information relating to the user's usage history of the services provided to the user and information relating to the user's right to use the services that the user is authorized to use, and obtains consent information relating to the behavior authorization information indicating that the user has consented to the sharing of the behavior authorization information by the second service provider, and transmits the behavior authorization information to the second service provider device if consent information relating to the behavior authorization information has been obtained.
[0010] The user authentication method of this disclosure is a user authentication method by a user authentication system that authenticates a user who uses multiple services, the user authentication system comprising: an authentication processing device that performs authentication processing of the user based on the user's biometric authentication information; and first and second service provider devices, each managed by a first and second service provider, which perform processing to provide each of the services to the user based on the results of the authentication processing, wherein the authentication processing device generates service authorization information by the user regarding the services provided by the first service provider, the service authorization information includes at least one of information regarding the user's usage history of the services provided to the user and information regarding the user's right to use the services that the user is authorized to use, and the authentication processing device obtains consent information regarding the service authorization information indicating that the user has consented to the sharing of the service authorization information by the second service provider, and if consent information regarding the service authorization information has been obtained, transmits the service authorization information to the second service provider device. [Effects of the Invention]
[0011] According to the present disclosure, among a plurality of service providers that respectively provide services to a user, it becomes possible to share action authorization information regarding each service provided to the user based on the consent of the user.
Brief Description of the Drawings
[0012] [Figure 1] Overall configuration diagram of the user authentication system according to the embodiment [Figure 2] Functional block diagram of the user authentication system [Figure 3] Explanatory diagram showing an example of user identification information [Figure 4] Explanatory diagram showing an example of face authentication information [Figure 5] Explanatory diagram showing an example of ID linkage information [Figure 6] Explanatory diagram showing an example of action authorization information [Figure 7] Sequence diagram showing the flow of processing related to user registration and service ID linkage [Figure 8] Explanatory diagram showing an example of the consent acquisition screen in the processing shown in FIG. 7 [Figure 9] Sequence diagram showing a modified example of the processing shown in FIG. 7 [Figure 10] Sequence diagram showing the flow of processing when a user applies for service reservation [Figure 11] Sequence diagram showing the flow of processing when a user uses a service [Figure 12] Sequence diagram showing the flow of processing related to the linkage of action authorization information [Figure 13] Explanatory diagram showing an example of the consent acquisition screen in the processing shown in FIG. 12 [Figure 14] Sequence diagram showing a modified example of the processing shown in FIG. 12 [Figure 15] Sequence diagram showing the flow of processing related to the use of action authorization information [Figure 16] Sequence diagram showing a modified example of the processing shown in FIG. 15
Modes for Carrying Out the Invention
[0013] A first invention made to solve the above problems is a user authentication system that authenticates a user who uses a plurality of services, and includes an authentication processing device that performs the authentication process of the user based on biometric authentication information of the user, and a first and a second service provider device that are respectively managed by the first and second service providers and perform processes for providing the respective services to the user based on the result of the authentication process. The authentication processing device generates action authorization information regarding the service provided by the first service provider, and the action authorization information includes at least one of information regarding the usage history of the service provided to the user and information regarding the usage right of the service whose provision to the user is approved. Regarding the action authorization information, consent information regarding the action authorization information indicating that the user has consented to sharing by the second service provider is acquired, and when the consent information regarding the action authorization information is acquired, the action authorization information is transmitted to the second service provider device.
[0014] According to this, a plurality of service providers (that is, the first and second service providers) that respectively provide services to the user can share action authorization information regarding each service provided to the user based on the consent of the user.
[0015] Further, a second invention acquires authentication consent information indicating that the user has consented to use the services respectively provided by the first and second service providers based on the biometric authentication information, and when the authentication consent information is acquired, integrated identification information of the user that can be referred to by the first and second service provider devices is set, the action authorization information is associated with the integrated identification information, and when the biometric authentication information is received from each of the first and second service providers, the provision of the service corresponding to the received biometric authentication information is authorized based on the action authorization information, and a service authorization notification for notifying the authorization is returned.
[0016] According to this, multiple different service providers can share behavioral authorization information related to each service provided to a user, and can also jointly use the user's biometric authentication information used when providing the service, based on the user's consent.
[0017] Furthermore, the third invention is configured such that the authentication consent information includes service provider selection information indicating that at least one of the first and second service providers has been selected from among a plurality of candidate service providers.
[0018] According to this, users can choose to share their biometric information only with the service providers they wish to use.
[0019] Furthermore, the fourth invention is configured such that the first and second service provider devices each individually set user identification information for the user, and the authentication processing device generates user linkage information that associates each user identification information with the integrated identification information.
[0020] According to this, even if multiple service providers (i.e., the first and second service providers) individually set user identification information for the same user, they can easily use the user's biometric authentication information used when providing services based on integrated identification information.
[0021] Furthermore, the fifth invention is configured such that the behavioral authorization information includes information relating to ancillary services associated with the content of services provided by the first service provider.
[0022] According to this, if multiple service providers (i.e., the first and second service providers) share behavioral authorization information related to each service provided to the user, they can provide the user with an incentive (i.e., an ancillary service) for sharing such information.
[0023] Furthermore, the sixth invention is configured such that the ancillary service includes a discount on the fee for the service provided to the user.
[0024] According to this, by providing users with appropriate incentives, it is possible to encourage them to share information about their usage history.
[0025] Furthermore, the seventh invention is configured such that the information relating to the right to use the service includes information relating to unprovided services that have been reserved for provision to the user.
[0026] According to this, the scope of sharing of behavioral authorization information regarding each service provided to the user will be expanded among multiple service providers (i.e., the first and second service providers), improving user convenience.
[0027] Furthermore, the eighth invention is configured such that the biometric authentication information includes information relating to the user's face.
[0028] According to this, user authentication can be performed based on appropriate biometric information.
[0029] Furthermore, the ninth invention further comprises an authentication information generation device that generates biometric authentication information of the user, wherein the authentication information generation device is configured to be a portable terminal carried by the user.
[0030] According to this, it is possible to easily obtain the user's biometric authentication information and streamline the user authentication process.
[0031] Furthermore, the tenth invention is a user authentication method using a user authentication system that authenticates users who use multiple services, wherein the user authentication system comprises an authentication processing device that performs user authentication processing based on the user's biometric authentication information, and first and second service provider devices, each managed by a first and second service provider, which perform processing to provide each of the services to the user based on the results of the authentication processing, wherein the authentication processing device generates service authorization information by the user regarding the services provided by the first service provider, the service authorization information includes at least one of information regarding the user's service usage history and information regarding the user's right to use the services that have been authorized to be provided to the user, and obtains consent information regarding the service authorization information indicating that the user has consented to the sharing of the service authorization information by the second service provider, and transmits the service authorization information to the second service provider device if consent information regarding the service authorization information has been obtained.
[0032] According to this, multiple service providers (i.e., the first and second service providers) that provide services to users can share behavioral authorization information related to each service provided to the user, based on the user's consent.
[0033] The embodiments of this disclosure will be described below with reference to the drawings.
[0034] As shown in Figure 1, the user authentication system 1 comprises an authentication processing server 2 (an example of an authentication processing device) that performs user authentication processing, first and second service provider servers 3 and 4 (examples of service provider devices) that perform processing to provide services to the user, a user terminal 5 (an example of an authentication information generation device) used by the user, and a service reception device 6 (another example of an authentication information generation device) that accepts applications for service use from the user. These authentication processing server 2, first and second service provider servers 3 and 4, user terminal 5 (an example of a mobile terminal), and service reception device 6 are connected to each other so as to be able to communicate with one another via a communication network 7 consisting of the Internet or a LAN (Local Area Network), etc.
[0035] User authentication system 1 authenticates users who use multiple services. These services are provided to users by multiple different service providers. Services provided to users include, for example, the sale of goods and tickets, use of various facilities including transportation, medical examinations and treatments at hospitals, guarantees or provision of credit related to credit sales, and services related to permission to log in to specific websites.
[0036] In this embodiment, the first and second service provider servers 3 and 4 are described primarily as information processing devices that perform processing to provide services to users. These first and second service provider servers 3 and 4 are managed by the first and second service providers, respectively. However, the number of service providers that utilize the user authentication system 1 and the number of service provider servers managed by those service providers can be changed as appropriate.
[0037] Furthermore, although Figure 1 shows only one user terminal, the user authentication system 1 may include more user terminals 5. In other words, the user authentication system 1 can be used by multiple users. Similarly, although Figure 1 shows only one service reception device 6, the user authentication system 1 may include more service reception devices 6.
[0038] As shown in Figure 2, the authentication processing server 2 has a communication unit 11, a control unit 12, and a storage unit 13.
[0039] The communication unit 11 communicates with other devices (i.e., the first and second carrier servers 3 and 4, the user terminal 5, and the service reception device 6, etc.) via wireless or wired lines in accordance with known communication protocols.
[0040] In the control unit 12, the user registration unit 21 executes a user registration process to register each user as a user of the user authentication system 1. Users can perform operations to register with the user authentication system 1 using the user terminal 5 or the service reception device 6. Registered users can then use the user authentication system 1.
[0041] Information obtained from the user during the user registration process is stored in the storage unit 13 as user information 31. User information 31 includes, for example, user identification information set individually by each service provider, such as the user ID, the user's name, address, email address, and information about attributes such as age and gender, as shown in Figure 3. This information is registered for each user.
[0042] Furthermore, user information 31 may include multiple user IDs set by multiple service providers (including the first and second service providers; the same applies hereinafter). Also, if a service provider does not use individual user IDs (i.e., no user IDs are set), the integrated ID described later may be used in place of the user ID in user information 31.
[0043] The facial recognition unit 22 performs facial recognition processing for the person to be recognized (i.e., each user using the service). In this facial recognition processing, data of the face image for authentication (an example of biometric authentication information) of the person to be recognized is acquired, and facial feature data of the person is generated from that face image data. Furthermore, in the facial recognition processing, facial matching is performed by comparing the user's facial feature data with the facial feature data of registered users (i.e., registered users) stored in the device, thereby determining whether the person is a registered user or not.
[0044] In the user registration process described above, user registration facial image data is obtained from the user terminal 5 or the service reception device 6. When the facial recognition unit 22 performs facial recognition processing, it can pre-generate the registrant's facial feature data from the user's registration facial image data. At this time, the facial recognition unit 22 can set integrated user identification information (hereinafter referred to as integrated ID) that can be referenced by the first and second service provider servers 3 and 4.
[0045] The integrated ID is associated with the user's facial information and stored in the storage unit 13 as facial recognition information 32. The user's facial information only needs to include a facial image and at least one of the facial features of that facial image. For example, as shown in Figure 4, in the facial recognition information 32, the integrated ID generated for each user is associated with the facial information of the corresponding user, specifically the facial image and its facial features.
[0046] The service authorization unit 23 receives service reservation requests from users and stores information about the accepted services in the storage unit 13 as part of the behavioral authorization information 33. Furthermore, when a user requests the use of a service from the first and second service provider servers 3 and 4, the service authorization unit 23 executes a service authorization process to authorize the use of the service based on the results of the facial recognition process. Service requests are usually made for services for which a reservation request has been made in advance.
[0047] The ID linking unit 24 performs ID linking processing to link user identification information set by multiple service providers. More specifically, the ID linking unit 24 stores the integrated ID of the target user in the storage unit 13 as ID linking information 34 (an example of user linking information) by associating it with the user IDs set for the same user. In the ID linking information 34 shown in Figure 5, for example, it is shown that "IDa," an integrated ID generated for a certain user, is associated with "IDx1, IDy1, and IDz1," which are user IDs set individually by three service providers X, Y, and Z, respectively.
[0048] When executing the ID linking process, the ID linking unit 24 can obtain information (hereinafter referred to as authentication consent information) indicating that the user has consented to using biometric authentication information, such as facial information registered by the user, to use a service provided by a certain service provider. The authentication processing server 2 can obtain authentication consent information from the user via the user terminal 5 or the service reception device 6. If the user consents to using the biometric authentication information they registered for each of the services provided by multiple service providers, then at least one of the biometric authentication information or the information that identifies that biometric authentication information (in this case, the integrated ID) related to the same user will be shared among the multiple service providers.
[0049] Furthermore, if a service provider does not use individual user IDs (i.e., no user IDs are set), the ID linkage process (i.e., generation of ID linkage information 34) may be omitted. In that case, the user authentication system 1 can identify users using the integrated ID, at least for each service provider that does not use individual user IDs (for example, each of the first and second service provider servers 3 and 4). The authentication processing server 2 can also extract the corresponding integrated ID from each user's facial information by using the facial recognition information 32.
[0050] The behavioral authorization information linkage unit 25 performs behavioral authorization information linkage processing to link services provided to the same user by multiple service providers. For example, in the behavioral authorization information linkage processing, the behavioral authorization information linkage unit 25 can generate information (hereinafter collectively referred to as behavioral authorization information as needed) regarding the user's service usage history and usage rights for services provided by the first service provider (i.e., via the first service provider server 3). This behavioral authorization information is stored in the storage unit 13 as part of the behavioral authorization information 33. The behavioral authorization information only needs to include at least one of the following: information regarding the user's service usage history and information regarding the user's permission to use the services.
[0051] The behavioral authorization information 33 includes information such as the ID of the service provider that provides services to the target user (hereinafter referred to as the service provider ID), the service content, and the service usage status, as shown in Figure 6, for example. This information is associated with the target user's integrated ID. The service usage status, along with the corresponding service content, can be used as information regarding the service usage history and usage rights. More specifically, if the service usage status indicates that at least a part of the service has not been provided, it can be used, along with the corresponding service content, as information regarding the target user's service usage rights. On the other hand, if the service usage status indicates that the service has been used, it can be used, along with the corresponding service content, as information regarding the target user's service usage history.
[0052] Here, information regarding the service content may include, for example, identification information of the target facility or store (including facility ID and store ID), URL information of the online shop (Uniform Resource Locator), service availability hours, number of times the service can be used, the name of the product sold as a service, and the location where the service is provided.
[0053] Furthermore, information regarding service usage status includes, for example, whether the service is not being used (see "Not Provided" in Figure 6), whether the service has been completed (see "Completed" in Figure 6), and the number of times a service that can be used multiple times has been used (for example, see "Used Once" in Figure 6).
[0054] The authentication processing server 2 includes a computer that performs authentication processing for a user based on the user's biometric authentication information. The authentication processing server 2 may be equipped with known hardware such as a processor (CPU, MPU, etc.), memory, display, input devices, network interface, and storage.
[0055] The communication unit 11 may include hardware such as an antenna and communication circuits.
[0056] At least some of the functions of each of the parts 21-25 in the control unit 12 can be realized by the processor executing a predetermined control program.
[0057] The memory unit 13 may include hardware such as storage for storing data and information necessary for processing by the authentication processing server 2.
[0058] Furthermore, in the user authentication system 1, at least a portion of the functions of the authentication processing server 2 described above may be realized through the cooperation of multiple computers.
[0059] The first service provider server 3 (an example of the first service provider device) executes service provision processing to provide each of the first service provider's services to the user. The service provision processing is executed based on the results of the authentication processing of the user (i.e., the person to whom the service is to be provided) by the authentication processing server 2. In addition, the first service provider server 3 acquires information about the user when executing the service provision processing. This information about the user is stored as user information 42 in the storage unit 41 of the first service provider server 3. User information 42 includes, similar to the user information 31 stored by the authentication processing server 2 described above, the user ID for the first service provider, the user's name, address, email address, and information about attributes such as age and gender.
[0060] The first business operator server 3, like the authentication processing server 2, includes a computer equipped with known hardware such as a processor, memory, display, input devices, network interface, and storage. At least a portion of the functions of the first business operator server 3 (i.e., service provision processing) can be realized by the processor executing a predetermined control program. In addition, at least a portion of the functions of the first business operator server 3 may be realized by the cooperation of multiple computers. The storage unit 41 may include hardware such as storage for storing data and information necessary for the processing of the first business operator server 3.
[0061] The second service provider server 4 (an example of a second service provider device) executes service provision processing to provide each of the second service provider's services to the user. The service provision processing by the second service provider server 4 is executed in the same way as the service provision processing by the first service provider server 3. In addition, the second service provider server 4 stores user information 52 in its storage unit 51, which is the same as the user information 42 in the first service provider server 3.
[0062] The second service provider server 4 includes a computer similar to the first service provider server 3. At least a portion of the functions of the second service provider server 4 (i.e., service provision processing) can be realized by a processor executing a predetermined control program. In addition, at least a portion of the functions of the second service provider server 4 may be realized by multiple computers working together.
[0063] User terminal 5 includes information devices with communication capabilities such as smartphones, tablet devices, or PCs carried by each user. Each user can perform procedures such as applying to use the user authentication system 1 by communicating with the authentication processing server 2 via the user terminal 5 they carry. In addition, users can perform procedures to receive services from each service provider (for example, making service reservations or applying for use) by communicating with the first and second service provider servers 3 and 4 via the user terminal 5. Each user can install an application program for using the user authentication system 1 on the user terminal 5.
[0064] The service reception device 6 is an information terminal with the same functions as the user terminal 5 and is installed at the location where the user receives the service (for example, a public facility or a store). Each user can perform procedures such as applying to use the user authentication system 1 by communicating with the authentication processing server 2 via the service reception device 6. In addition, users can perform procedures to receive services from each service provider by communicating with the first and second service provider servers 3 and 4 via the service reception device 6. For example, a well-known KIOSK terminal may be used as the service reception device 6.
[0065] Furthermore, regarding the processing of the user authentication system 1 described below, at least a portion of the processing performed by the user using the user terminal 5 can also be performed by the service reception device 6.
[0066] Next, referring to Figure 7, we will explain the process related to user registration and user ID linking when a user begins using the user authentication system 1.
[0067] First, prior to a user using the user authentication system 1, the first service provider transmits information regarding the service provider registration application from the first service provider server 3 to the authentication processing server 2 (S101). This information regarding the service provider registration application includes contract information regarding system use, service provider information regarding the first service provider, and information about the services provided by the first service provider (hereinafter referred to as service provision information). The service provider information includes, for example, the name, address, and contact information of the first service provider. The service provision information also includes information about the services that the first service provider can provide to the user.
[0068] When the authentication processing server 2 receives information regarding the business registration application, it performs business registration for the first service provider (S102). At this time, the authentication processing server 2 assigns identification information (hereinafter referred to as the business ID) to the first service provider and stores this business ID, along with the corresponding contract information, business information, and service provision information, in the storage unit 13 as business registration information (not shown). Subsequently, the authentication processing server 2 notifies the first business server 3 of the registration permission (S103). This registration permission notification includes information on how to use the user authentication system 1 for users who receive services from the first service provider.
[0069] The user transmits information regarding the user registration application from the user terminal 5 to the first service provider server 3 in order to receive services from the first service provider (S104). This information regarding the user registration application includes user information.
[0070] When the first service provider server 3 receives information regarding a user registration application, it executes the user registration process (S105). At this time, the first service provider server 3 sets a new user ID to identify the user. However, the first service provider server 3 can also identify the user using an integrated ID, in which case the setting of the user ID is omitted.
[0071] Next, the first service provider server 3 executes information regarding ID linking guidance to prompt the user to link user IDs between multiple service providers (S106). This information regarding ID linking guidance includes user guidance information obtained from the authentication processing server 2. For example, the first service provider server 3 can send an image of a two-dimensional code containing the access URL of the authentication processing server 2 to the user terminal 5 as user guidance information.
[0072] Based on the user guidance information received by the user terminal 5, the user installs an application program for using the user authentication system 1 on the user terminal 5 (S107). Subsequently, a consent acquisition screen (hereinafter referred to as the facial recognition linkage application screen 60) is displayed on the touch panel display of the user terminal 5 to obtain the user's consent for the use of their facial information, which is used for user authentication, by multiple service providers (S108).
[0073] The facial recognition linkage application screen 60 includes a service provider selection area 61, as shown in Figure 8, for example. The service provider selection area 61 displays information about multiple service providers and the services they offer, which the user can select. In the service provider selection area 61, the user can select one or more desired service providers (excluding the service provider managing the first service provider server 3 that received the ID linkage notification) and the services they offer.
[0074] Subsequently, when the user presses the consent button 62 on the facial recognition linkage application screen 60, information regarding the ID linkage application is sent from the user terminal 5 to the authentication processing server 2 (S109). This information regarding the ID linkage application includes user information, service provider selection information, the user's facial image, and the user ID. The service provider selection information includes information regarding the user's selection result in the service provider selection area 61 described above (i.e., information about the selected service provider and the services provided by it).
[0075] When the authentication processing server 2 receives information regarding the ID linkage application, it extracts facial features from the acquired user's facial image and sets an integrated ID for the facial image and facial features (S110). As a result, information such as the integrated ID for the target user is registered in the facial authentication information 32 (see Figures 2 and 4).
[0076] Furthermore, the authentication server 2 performs user registration based on the acquired user information (S111). This registers user information 31 (see Figures 2 and 3) for the target user.
[0077] Furthermore, the authentication server 2 performs ID linkage processing based on the acquired user ID (S112). This registers ID linkage information 34 (see Figures 2 and 5) for the target user. If a user ID is not set in S105, the registration of ID linkage information 34 is omitted. In that case, the authentication server 2 can link the integrated ID as a substitute for the user ID among multiple service providers by associating the user with the integrated ID using facial recognition information 32.
[0078] Subsequently, the authentication server 2 sends information to the user terminal 5 indicating that ID linking has been permitted (S113).
[0079] Note that while Figure 7 only shows the processing related to the first service provider server 3, the same applies to the second service provider server 4 (and also to Figures 10 and 11, which will be discussed later).
[0080] Next, with reference to Figure 9, a modified version of the process shown in Figure 7 will be described. Regarding this modified version, unless otherwise specified, it is the same as the process shown in Figure 7.
[0081] First, the user installs an application program on the user terminal 5 to use the user authentication system 1 (S201). Then, information regarding the ID linkage application is sent from the user terminal 5 to the authentication processing server 2 (S202). This information regarding the ID linkage application includes user information, the user's facial image, and the user ID. However, the user ID is only sent if it is set for at least one of the first and second service providers.
[0082] Upon receiving an ID linkage request, the authentication processing server 2 extracts facial features from the acquired user's facial image, similar to S110 in Figure 7, and sets an integrated ID for the facial image and facial features (S203). Furthermore, the authentication processing server 2 performs user registration based on the acquired user information, similar to S111 in Figure 7 (S204).
[0083] Subsequently, the authentication processing server 2 sends an ID linkage request to the user terminal 5 to prompt the user to link their user IDs with multiple service providers (S205). As a result, the touch panel display of the user terminal 5 displays the facial recognition linkage application screen 60 (see Figure 8), similar to S108 in Figure 7 (S206).
[0084] When a user presses the consent button 62 on the facial recognition linkage application screen 60, consent information (an example of authentication consent information) indicating that the user has consented to linking IDs from the authentication processing server 2 is sent to the authentication processing server 2 (S207). This consent information includes the service provider selection information and the user's facial image data.
[0085] The authentication server 2 performs facial recognition processing based on the received facial image and extracts the integrated ID of the registered user corresponding to that facial image (S208). Furthermore, the authentication server 2 performs ID linkage processing based on the extracted integrated ID and the user ID obtained earlier (S209). As a result, ID linkage information 34 (see Figures 2 and 5) related to the target user is registered.
[0086] Subsequently, the authentication processing server 2 sends information regarding the ID linkage processing result to the first service provider server 3, the second service provider server 4, and the user terminal 5, respectively (S210, S211, S212).
[0087] Next, with reference to Figure 10, the processing when a user applies for a service reservation in the user authentication system 1 will be explained.
[0088] First, the user accesses the first service provider server 3 using the user terminal 5 and transmits information regarding a service application to receive services from the first service provider (S301). This service application information includes the user's facial image. The transmitted facial image may be one that has been previously stored in the user terminal 5, or it may be one that has been captured by the camera on the user terminal 5 at the time the service application is executed.
[0089] When the first service provider server 3 receives information regarding the service application, it executes a facial authentication request by sending the acquired user's facial image to the authentication processing server 2 (S302).
[0090] Upon receiving a facial recognition request, the authentication processing server 2 performs facial recognition processing on the acquired facial image (S303). At this time, an integrated ID is extracted from the facial recognition information 32 based on the facial image or facial features obtained from the facial image. Subsequently, the authentication processing server 2 transmits information regarding the facial recognition result to the first service provider server 3 (S304). This information regarding the facial recognition result includes the extracted integrated ID. If the facial recognition processing in S303 is not successfully executed, the processing related to the user's service application is terminated (i.e., rejected).
[0091] Upon receiving the result of successful facial recognition (i.e., the authentication result in which the target user is identified as a legitimate user), the first service provider server 3 further requests the authentication processing server 2 to register behavioral authorization information related to the services to be provided to the user (S305). At this time, the first service provider server 3 transmits the service provider ID of the first service provider, the user's integrated ID, and the service details to the authentication processing server 2.
[0092] Upon receiving a request to register behavioral authorization information, the authentication processing server 2 performs the registration of behavioral authorization information (S306). This registers behavioral authorization information 33 (see Figures 2 and 6) related to the target user.
[0093] Subsequently, the authentication processing server 2 sends a registration completion notification to the first service provider server 3 indicating that the behavioral authorization information has been successfully registered (i.e., that the service reservation application has been completed) (S307). At this time, the authentication processing server 2 sends the service provider ID of the first service provider to the first service provider server 3. In the user authentication system 1, services for which a service application from a user has been successfully accepted are treated as services authorized to be provided to the user.
[0094] Next, with reference to Figure 11, the processing of a user's service usage in the user authentication system 1 will be explained.
[0095] First, the user accesses the first service provider server 3 using the user terminal 5 and sends a service request to receive services from the first service provider (S401). This service request includes the user's facial image.
[0096] When the first service provider server 3 receives a service usage request, it executes a facial authentication request by sending the acquired user's facial image to the authentication processing server 2 (S402).
[0097] Upon receiving a facial recognition request, the authentication processing server 2 performs facial recognition processing on the acquired facial image (S403). At this time, an integrated ID is extracted from the facial recognition information 32 based on the facial image or facial features obtained from the facial image. Subsequently, the authentication processing server 2 transmits information regarding the facial recognition result to the first service provider server 3 (S404). This information regarding the facial recognition result includes the extracted integrated ID. If the facial recognition processing in S403 is not performed successfully, the processing of the user's service usage request is terminated (i.e., rejected).
[0098] Upon receiving the result of successful facial recognition, the first service provider server 3 further sends an authorization request for the service to be provided to the user to the authentication processing server 2 (S405). This authorization request includes the service provider ID of the first service provider, the user's integrated ID, and the details of the service.
[0099] When the authentication server 2 receives an authorization request, it queries the authorization information for the corresponding service based on the acquired service details (S406). At this time, the authentication server 2 determines whether the service for which the authorization request was received is registered in the authorization information (see Figure 6). If the authentication server 2 finds that a service corresponding to the service for which the authorization request was received is registered in the authorization information, it authorizes the use of that service and updates the authorization information. In this update of the authorization information, information indicating that the corresponding service has been used is added to the authorization information. If the authorization information query in S406 is not executed successfully, the processing of the service use request is terminated (i.e., it is rejected).
[0100] Next, the authentication processing server 2 uses the behavioral authorization information 33 to query for the user ID of the user using the service (S407). Furthermore, the authentication processing server 2 sends a behavioral authorization notification (i.e., a reply) to the first service provider server 3 (S408). This behavioral authorization notification includes the user ID obtained in S407 and authorization information indicating that the target service has been authorized.
[0101] When the first service provider server 3 receives a service authorization notification, it sends information to the user terminal 5 to provide the service requested by the user (S409). As a result, the user can receive the service from the first service provider.
[0102] Next, with reference to Figure 12, the process related to the linking of behavioral authorization information in the user authentication system 1 will be explained.
[0103] First, the first service provider server 3 sends a request to the authentication processing server 2 for the sharing of behavioral authorization information in order to coordinate the services provided to the same user with other service providers (S501). This request for sharing behavioral authorization information includes the user ID of the user to whom the service is provided, information about the collaborating parties (i.e., other service providers to which the collaboration is to take place), and information about incentives (an example of ancillary services) given to the user who consents to the collaboration.
[0104] When the authentication processing server 2 receives a request for linking behavioral authorization information, it sends a consent request to the user terminal 5 regarding the linking of services among multiple service providers (S502). This consent request includes incentive information obtained from the first service provider server 3.
[0105] The touch panel display of user terminal 5, which has received the consent request, displays a consent acquisition screen (hereinafter referred to as the behavioral authorization information sharing application screen 70) to obtain the user's consent to the sharing of behavioral authorization information related to the services provided by the first service provider by other service providers (S503).
[0106] The behavior authorization information sharing application screen 70 includes a sharing target display area 71, as shown in Figure 13, for example. The sharing target display area 71 displays information about services provided by the first service provider to be shared. In the example in Figure 13, the sharing target display area 71 shows reservation information for services that have not yet been provided (i.e., unprovided services). By including unprovided services as targets for service sharing among multiple service providers in this way, the scope of sharing of behavior authorization information for each service is expanded, which has the advantage of improving user convenience.
[0107] On the behavioral authorization information linkage application screen 70, when the user presses the consent button 72, consent information (an example of consent information regarding behavioral authorization information) indicating that the user has consented to linking the service is sent to the authentication processing server 2 (S504). This consent information includes the user's facial image data.
[0108] When the authentication processing server 2 receives consent information from the user terminal 5, it performs facial recognition processing on the acquired facial image (S505). Furthermore, the authentication processing server 2 performs linked registration of behavioral authorization information (S506). At this time, the linked information (in this case, the ID of the business operator to be linked) and incentive information (i.e., linked incentive information) acquired in S501 are added to the behavioral authorization information 33 concerning the target user (see Figures 2 and 6).
[0109] Next, the authentication processing server 2 uses the behavioral authorization information 33 to query the user ID of the target user (S507). After that, the authentication processing server 2 sends a linkage completion notification to the first business server 3 indicating that the process related to the linkage of behavioral authorization information has been completed successfully (S508). This linkage completion notification includes the user ID obtained in S507.
[0110] Next, with reference to Figure 14, a modified version of the process shown in Figure 12 will be described. In this modified version, the process related to the sharing of behavioral authorization information is initiated by the authentication processing server 2.
[0111] First, the authentication server 2 sends a consent request to the user terminal 5 regarding the linking of services among multiple service providers, similar to S502 in Figure 12 (S601).
[0112] On the touch panel display of the user terminal 5 that received the consent request, the behavioral authorization information linkage application screen 70 is displayed, similar to S503 in Figure 12 (S602). When the user presses the consent button 72 on the behavioral authorization information linkage application screen 70, the consent information is sent to the authentication processing server 2, similar to S504 in Figure 12 (S603).
[0113] When the authentication processing server 2 receives user consent information from the user terminal 5, it performs facial recognition processing, linked registration of behavioral authorization information, user ID inquiry, and sending of a linkage completion notification, similar to S505-S508 in Figure 12 (S604-S607).
[0114] Next, with reference to Figure 15, the process for using behavioral authorization information in the user authentication system 1 will be explained.
[0115] First, the user sends a service request to the second service provider server 4, similar to S401 in Figure 11 (S701).
[0116] When the second service provider server 4 receives a service usage request, it sends a facial recognition request to the authentication processing server 2, similar to S402 in Figure 11 (S702).
[0117] When the authentication processing server 2 receives the facial recognition request, it performs facial recognition processing on the acquired facial image, similar to S403-S404 in Figure 11, and sends the facial recognition result to the second business server 4 (S703-S704).
[0118] When the second service provider server 4 receives the result of facial recognition, it sends a query for behavioral authorization information to the authentication processing server 2 (S705). At this time, the second service provider server 4 sends the integrated ID for the target user to the authentication processing server 2.
[0119] When the authentication processing server 2 receives a query for behavioral authorization information, it performs a query for behavioral authorization information based on the integrated ID (S706). In this query for behavioral authorization information, the behavioral authorization information 33 (see Figures 2 and 6) is obtained as behavioral authorization information, including the corresponding service content and service usage status, as well as the ID of the collaborating business and information on incentives for collaboration (i.e., collaboration incentive information). Subsequently, the authentication processing server 2 uses the behavioral authorization information 33 to perform a query for the user ID of the target user (S707).
[0120] Subsequently, the authentication processing server 2 sends a response to the second service provider server 4 regarding the query for behavioral authorization information (S708). This response includes the behavioral authorization information obtained in S706 from the second service provider server 4 by the authentication processing server 2. Furthermore, the authentication processing server 2 updates the behavioral authorization information 33 for the target user (S709). This update of behavioral authorization information 33 adds information indicating that the service was used for the corresponding user.
[0121] When the second service provider server 4 receives a response to the query for behavioral authorization information, it executes a process to modify the service based on the acquired behavioral authorization information (S710). This service modification may include, for example, a discount on the service fee or the awarding of points to the user (i.e., points that can be used to partially offset the service fee or exchanged for goods).
[0122] Subsequently, the second service provider server 4 sends information to the user terminal 5 regarding the service modified in S710, in order to provide it to the user (S711).
[0123] According to this processing of behavioral authorization information, for example, if a first service provider provides a service to sell movie tickets, a second service provider can share the history of the user's ticket purchase (i.e., the right to use the service, and consequently, the service usage history). The second service provider, having obtained the ticket purchase history, can, for example, offer discounts on the price of its food and beverage services as an ancillary service (i.e., modify the service).
[0124] Furthermore, if the first and second service providers are transportation operators (railways, buses, etc.), sharing information on service usage rights as behavioral authorization information in advance makes it possible to implement mutual interoperation and discounts during transfers. In other words, when a passenger boards the first service provider's transportation, if they are granted behavioral authorization information as the first service provider (such as the right to use commuter passes, day passes, or section passes), sharing this behavioral authorization information with the second service provider's transportation in advance allows the second service provider to check whether the passenger has the right to use the service when they disembark from the second service provider's transportation.
[0125] Furthermore, if the first service provider is a local government that issues local currency, and the second service provider is a tourism, accommodation, or food service provider that provides services within the jurisdiction of the local government, the local currency purchased in advance by the first service provider (the local government) will be registered as behavioral authorization information (information granting permission to use local currency). By selecting and agreeing to share this behavioral authorization information with the second service provider that wishes to use the local currency with biometric authentication within the jurisdiction of the local government, users will be able to enjoy convenient services using local currency with the same biometric authentication. In this case, the behavioral authorization information will include the usage history of local currency (including the balance) and will be shared among multiple service providers.
[0126] Next, with reference to Figure 16, a modified version of the process shown in Figure 15 will be described. In this modified version, user consent is obtained in the process related to the use of behavioral authorization information.
[0127] First, in the modified example, steps S801-S805, which are the same as steps S701-S705 in Figure 15, are executed.
[0128] Subsequently, when the authentication processing server 2 receives an inquiry about behavioral authorization information, it sends a consent request to the user terminal 5 regarding the linking of services among multiple service providers, similar to S502 in Figure 12 (S806).
[0129] On the touch panel display of the user terminal 5 that received the consent request, the behavioral authorization information linkage application screen 70 is displayed, similar to S602 in Figure 14 (S807). When the user presses the consent button 72 on the behavioral authorization information linkage application screen 70, the consent information is sent to the authentication processing server 2, similar to S603 in Figure 14 (S808).
[0130] Next, the authentication processing server 2 uses the behavioral authorization information 33 to query the user ID of the target user (i.e., the user corresponding to the face image obtained in S808) (S809).
[0131] Subsequently, the authentication processing server 2 sends consent notifications regarding the behavioral authorization information, including the user ID information obtained in S809, to the second service provider server 4 and the first service provider server 3, respectively (S810-S811). This consent notification indicates that consent has been obtained for the behavioral authorization information regarding the target user's services to be shared with other service providers. Furthermore, the authentication processing server 2 updates the behavioral authorization information 33 regarding the target user, similar to S709 in Figure 15 (S812).
[0132] When the second service provider server 4 receives the consent acquisition notification, it executes a process to change the service based on the acquired user ID information, similar to S710 in Figure 15 (S813), and then sends information to the user terminal 5 to provide the user with the changed service (S814).
[0133] As described above, embodiments have been explained as examples of the technology disclosed in this application. However, the technology in this disclosure is not limited to these embodiments and can be applied to embodiments that have been modified, replaced, added, or omitted. Furthermore, it is possible to create new embodiments by combining the components described in the above embodiments. [Industrial applicability]
[0134] The user authentication system and user authentication method described herein have the effect of enabling multiple service providers that provide various services to a user to share behavioral authorization information related to each service provided to the user, based on the user's consent, and are useful as a user authentication system and user authentication method for authenticating users who use services. [Explanation of Symbols]
[0135] 1: User authentication system 2: Authentication Processing Server 3: First service provider server 4: Second carrier server 5: User terminal 6: Service reception device 7: Communication Network 11: Communications Department 12: Control Unit 13: Storage part 21: User Registration Section 22: Facial Recognition Section 23: Service Authorization Department 24: ID Linking Department 25: Department for Information Sharing and Authorization for Behavioral Actions 31: User Information 32: Information for facial recognition 33: Behavioral authorization information 34: ID Linking Information 41: Storage part 42: User Information 51: Storage section 52: User Information 60: Facial Recognition Integration Application Screen 61: Business Operator Selection Area 62: Agree button 70: Application screen for linking behavioral authorization information 71: Linked Target Display Area 72: Agree button
Claims
1. A user authentication system that authenticates users of transportation services provided by multiple transportation operators, An authentication processing device that performs user authentication processing based on the user's biometric authentication information, The system comprises first and second service provider devices, each managed by the first and second service providers, which are the aforementioned transportation operators, and which perform processing to provide the respective transportation services to the user based on the results of the authentication process, The authentication processing device is The system generates user authorization information relating to the transportation services provided by the first service provider, and the user authorization information includes at least one of the user's usage history of the services provided to the user and the user's authorized usage rights for the services. A user authentication system that, if consent information indicating that the user has consented to the sharing of the aforementioned behavioral authorization information by the second service provider is obtained, transmits the aforementioned behavioral authorization information to the second service provider device.
2. The user authentication system according to claim 1, wherein when the user is granted the behavior authorization information relating to the first service provider when registering as a user or boarding the first service provider's transportation, the user transmits the behavior authorization information in advance to the second service provider's transportation, which is the destination.
3. The authentication processing device is Based on the biometric authentication information, authentication consent information is obtained indicating that the user has agreed to use the services provided by the first and second service providers, respectively. If the aforementioned authentication consent information has been obtained, the integrated user identification information that can be referenced by the first and second service provider devices is set. The aforementioned behavior authorization information and the aforementioned integrated identification information are associated with each other. The user authentication system according to claim 1, which, upon receiving biometric authentication information from each of the first and second service providers, authorizes the provision of a service corresponding to the received biometric authentication information based on the behavioral authorization information, and returns a service authorization notice to notify the user of said authorization.
4. The user authentication system according to claim 3, wherein the authentication consent information includes service provider selection information indicating that at least one of the first and second service providers has been selected from a plurality of candidate service providers.
5. The first and second service provider devices each individually set user identification information for the user, The user authentication system according to claim 3 or 4, wherein the authentication processing device generates user linkage information that associates each user identification information with the integrated identification information.
6. The user authentication system according to claim 1, wherein the behavioral authorization information includes information relating to ancillary services associated with the content of services provided by the first service provider.
7. The user authentication system according to claim 6, wherein the ancillary service includes a discount on the fees for the services provided to the user.
8. The user authentication system according to claim 1, wherein the information relating to the right to use the said service includes information relating to unprovided services that have been reserved for provision to the said user.
9. The user authentication system according to any one of claims 1 to 4, wherein the biometric authentication information includes information relating to the user's face.
10. The device further comprises an authentication information generation device that generates biometric authentication information for the user, The user authentication system according to any one of claims 1 to 4, wherein the authentication information generating device is a portable terminal carried by the user.
11. A user authentication method using a user authentication system that authenticates users of transportation services provided by multiple transportation operators, The user authentication system is, An authentication processing device that performs user authentication processing based on the user's biometric authentication information, The system comprises first and second service provider devices, each managed by the first and second service providers, which are the aforementioned transportation operators, and which perform processing to provide the respective transportation services to the user based on the results of the authentication process, The authentication processing device is The system generates user authorization information regarding the transportation services provided by the first service provider, and the user authorization information includes at least one of the user's service usage history and the user's authorized service usage rights. A user authentication method that, if consent information indicating that the user has consented to the sharing of the aforementioned behavioral authorization information by the second service provider is obtained, transmits the aforementioned behavioral authorization information to the second service provider's device.