Information processing device, authentication program, and authentication method
The graphical password system with multiple tile patterns enhances security by requiring sequential matching of displayed passwords, addressing vulnerabilities in traditional authentication methods.
Patent Information
- Authority / Receiving Office
- JP · JP
- Patent Type
- Applications
- Current Assignee / Owner
- KYOCERA DOCUMENT SOLUTIONS INC
- Filing Date
- 2024-12-18
- Publication Date
- 2026-06-30
AI Technical Summary
Authentication methods using gesture patterns, PIN codes, and passwords are vulnerable to shoulder surfing, requiring repeated input and posing security risks.
An information processing device and method that uses a graphical password system with a display unit showing multiple graphical passwords, including identical and non-identical tile patterns, where successful authentication is confirmed only when all selected passwords match the correct pattern sequence.
Enhances security against shoulder surfing by making it difficult for unauthorized users to steal and replicate the graphical password, improving overall authentication security.
Smart Images

Figure 2026108017000001_ABST
Abstract
Description
Technical Field
[0001] The present invention relates to an information processing apparatus, an authentication program, and an authentication method, and more particularly to an information processing apparatus, an authentication program, and an authentication method using a graphical password.
Background Art
[0002] In order to prevent unauthorized use of an information processing apparatus by a third party, a user is required to input an unlock key such as a gesture pattern, a PIN (Personal Identification Number) code, and a password. When the correct unlock key is input, the lock is released and the user can use the information processing apparatus (see, for example, Patent Document 1).
Prior Art Documents
Patent Documents
[0003]
Patent Document 1
Summary of the Invention
Problems to be Solved by the Invention
[0004] However, in authentication using a gesture pattern, a PIN code, and a password, the user has to input the same gesture pattern, PIN code, and password every time for authentication, so there is a problem of being vulnerable to shoulder surfing (peeking over the shoulder).
[0005] The present invention has been made in view of such circumstances, and an object thereof is to improve security against shoulder surfing.
Means for Solving the Problems
[0006] An information processing device according to one aspect of the present invention comprises a display unit, an operation unit for receiving instructions from a user, a storage unit for storing a plurality of graphical passwords, each consisting of a tile pattern in which a plurality of cells constituting a grid are either a first color or a second color, and an authentication unit for performing authentication based on the graphical passwords stored in the storage unit, wherein the authentication unit stores in the storage unit a predetermined number N of different graphical passwords, each associated in a predetermined order, a correct graphical password group, and displays a plurality of graphical passwords on the display unit, including a graphical password consisting of a tile pattern identical to the tile pattern of the first graphical password in the correct graphical password group, and a graphical password consisting of a tile pattern that does not have the same tile pattern, and when the operation unit receives a selection instruction to select one of the plurality of graphical passwords displayed on the display unit, the authentication unit performs a determination process to determine that the graphical password selected by the selection instruction is correct if it is a graphical password consisting of the identical tile pattern. The determination process is performed sequentially up to the Nth graphical password in the correct graphical password group, and if the determination process determines that all graphical passwords constituting the correct graphical password group are correct, the authentication of the graphical password is determined to be successful.
[0007] An authentication program according to one aspect of the present invention is an authentication program that causes a computer to function as an authentication unit that performs authentication based on graphical passwords stored in a storage unit that stores a plurality of graphical passwords, each of which is composed of a tile pattern in which a plurality of cells constituting a grid are each of either a first color or a second color, wherein the authentication unit stores in the storage unit a set of correct graphical password groups in which a predetermined number N of different graphical passwords are associated in a predetermined order, and the set of graphical passwords that make up the set of correct graphical password groups consist of graphical passwords consisting of tile patterns whose order is identical to the tile pattern of the first graphical password, and tile patterns that do not have the same order Multiple graphical passwords, including a graphical password, are displayed on the display unit. When a selection instruction is received by the operation unit to select one graphical password from the multiple graphical passwords displayed on the display unit, a determination process is performed to determine that the graphical password selected by the selection instruction is correct if it is a graphical password consisting of the identical tile pattern. This determination process is performed sequentially up to the Nth graphical password in the correct graphical password group. If the determination process determines that all graphical passwords constituting the correct graphical password group are correct, the authentication of the graphical password is determined to be successful.
[0008] An authentication method according to one aspect of the present invention comprises an authentication step of performing authentication based on a plurality of graphical passwords stored in a storage unit that stores a plurality of graphical passwords, each of which is composed of a tile pattern in which a plurality of cells constituting a grid are each a first color and a second color, wherein the authentication step causes a predetermined number N of different graphical passwords to be stored in the storage unit as correct graphical password groups in which each is associated in a predetermined order, and the correct graphical password group consists of a graphical password consisting of a tile pattern whose order is identical to the tile pattern of the first graphical password, and a graphical password consisting of a tile pattern which is not identical Multiple graphical passwords, including a dot, are displayed on the display unit, and when a selection instruction is received by the operation unit to select one graphical password from the multiple graphical passwords displayed on the display unit, a determination process is performed to determine that the graphical password selected by the selection instruction is correct if it is a graphical password consisting of the identical tile pattern, and this determination process is performed sequentially up to the Nth graphical password in the correct graphical password group, and if all the graphical passwords constituting the correct graphical password group are determined to be correct in the determination process, the authentication of the graphical password is determined to be successful. [Effects of the Invention]
[0009] According to the present invention, for each of the multiple graphical passwords in a graphical password group, multiple graphical passwords are displayed on the display unit, including graphical passwords consisting of tile patterns identical to the tile pattern of the graphical password and graphical passwords consisting of tile patterns that are not identical. One graphical password is selected from the multiple graphical passwords displayed on the display unit using the operation unit. If a graphical password consisting of a tile pattern identical to the tile pattern of the graphical password is selected for all of the multiple graphical passwords in the graphical password group, the authentication of the graphical password is determined to be successful. Therefore, it is difficult for a third party to steal the graphical password and select a graphical password with an identical tile pattern for all graphical passwords included in the correct graphical password group, thereby improving security against shoulder surfing. [Brief explanation of the drawing]
[0010] [Figure 1] This is a block diagram showing the electrical configuration of an information processing device, which is one embodiment of the present invention. [Figure 2] This figure illustrates the types of tile patterns that constitute the graphical password used for authentication in the information processing device shown in Figure 1. [Figure 3] This figure shows an example of a correct graphical password group containing six graphical passwords that utilize the tile pattern type shown in Figure 2. [Figure 4] This figure shows an example of the graphical password group setting screen displayed on the display unit in Figure 1. [Figure 5](A) is a diagram showing an example of a graphical password for a first tile pattern type, where the authentication unit in Figure 1 generates a graphical password with the same tile pattern as the one said, and a graphical password for a tile pattern that does not have the same tile pattern as the one said, (B) is a diagram showing another example of a graphical password for a first tile pattern type, where the authentication unit in Figure 1 generates a graphical password with the same tile pattern as the one said, and a graphical password for a tile pattern that does not have the same tile pattern as the one said, and (C) is a diagram showing yet another example of a graphical password for a first tile pattern type, where the authentication unit in Figure 1 generates a graphical password with the same tile pattern as the one said, and a graphical password for a tile pattern that does not have the same tile pattern as the one said, [Figure 6] This figure shows examples of graphical passwords for the second type of tile pattern, specifically graphical passwords for tile patterns that are identical to the graphical password generated by the authentication unit in Figure 1, and graphical passwords for tile patterns that are not identical. [Figure 7] This figure shows examples of graphical passwords for tile patterns that are identical to the graphical password generated by the authentication unit in Figure 1, as well as graphical passwords for tile patterns that are not identical, for the third type of tile pattern graphical password. [Figure 8] This figure shows examples of graphical passwords for tile patterns that are identical to the graphical password generated by the authentication unit in Figure 1, as well as graphical passwords for tile patterns that are not identical, for the fourth type of tile pattern graphical password. [Figure 9] This figure shows an example of the transitions in the graphical password group input screen displayed in the display section of Figure 1. [Figure 10]Figure 1 is a flowchart showing the flow of the password creation process by the authentication unit of the information processing device. [Figure 11] Figure 1 is a flowchart showing the flow of the authentication process performed by the authentication unit of the information processing device. [Modes for carrying out the invention]
[0011] The information processing apparatus, authentication program, and authentication method according to the present invention will be described below with reference to the drawings.
[0012] First, an information processing device 1 according to one embodiment of the present invention will be described with reference to Figure 1. Figure 1 is a block diagram showing the electrical configuration of the information processing device 1 according to one embodiment of the present invention. The information processing device 1 is, for example, a personal computer. The information processing device 1 comprises a control unit 10, an operation unit 20, a display unit 30, a communication unit 40, and a storage unit 50. Each of these components is capable of sending and receiving data signals from each other via a communication bus.
[0013] The operation unit 20 consists of a keyboard, mouse, etc., and receives user instructions based on user operations. The display unit 30 consists of an LCD (Liquid Crystal Display), etc., and its operation is controlled by the control unit 11 and authentication unit 12 within the control unit 10.
[0014] The communication unit 40 is a communication interface that transmits and receives various types of data with external devices such as image forming machines and servers within the local area network or on the internet.
[0015] The storage unit 50 is a large-capacity storage device such as a HDD (Hard Disk Drive) or SSD (Solid State Drive), and stores various computer programs such as a control program for realizing the operation of the information processing device 1. In the storage unit 50, as one of the control programs, an authentication program 51 for password creation and password authentication is installed. The storage unit 50 stores a plurality of graphical passwords each constituted by a tile pattern in which each of a plurality of cells constituting a grid is either a first color (in this embodiment, "black") or a second color (in this embodiment, "white"). The storage unit 50 stores a correct graphical password group in which a predetermined number N of mutually different graphical passwords are respectively associated with a predetermined order. N is an integer of 2 or more, and in this embodiment, it is 6. That the first color is black and the second color is white is an example and is not limited thereto.
[0016] The control unit 10 is configured to include a processor, a RAM (Random Access Memory), a ROM (Read Only Memory), and the like. The processor is, for example, a CPU (Central Processing Unit), an ASIC (Application Specific Integrated Circuit), or an MPU (Micro Processing Unit). The control unit 10 includes a control unit 11 and an authentication unit 12.
[0017] The control unit 10 functions as a control unit 11 by the operation of the processor according to the control program stored in the storage unit 50. Further, the control unit 10 functions as an authentication unit 12 by the operation of the processor according to the authentication program 51 for password creation and password authentication stored in the storage unit 50. However, the control unit 11 may be constituted by a hardware circuit without depending on the operation according to the control program by the control unit 10. Further, the authentication unit 12 may be constituted by a hardware circuit without depending on the operation according to the authentication program 51 by the control unit 10. Hereinafter, unless otherwise particularly noted, the same applies to each embodiment.
[0018] The control unit 11 is in charge of the overall operation control of the information processing apparatus 1. The control unit 11 is connected to the operation unit 20, the display unit 30, the communication unit 40, and the storage unit 50, and performs drive control and the like of these units.
[0019] The authentication unit 12 creates a predetermined number N of different graphical passwords each constituted by a tile pattern in which each of a plurality of cells constituting a grid is either a first color or a second color, and causes the storage unit 50 to store a correct graphical password group in which the predetermined number N of different graphical passwords are respectively associated with a predetermined order. N is, for example, an integer of 2 or more, and is 6 in the present embodiment.
[0020] The authentication unit 12, in creating the first graphical password in the correct graphical password group, displays the grid on the display unit 30, and when the operation unit receives a selection instruction to select a cell from among the multiple cells constituting the grid displayed on the display unit 30, it performs a tile pattern creation process to create the tile pattern by changing the color of the cell selected by the selection instruction between the first color and the second color, and performs the tile pattern creation process sequentially until the creation of the Nth graphical password in the correct graphical password group, and stores the correct graphical password group in the storage unit 50 to which each of the graphical passwords created sequentially from the first to the Nth is associated at the nth position (where n is an integer between 1 and N).
[0021] The authentication unit 12 performs authentication based on the graphical password stored in the storage unit 50.
[0022] The authentication unit 12 stores in the storage unit 50 a set of correct graphical password groups in which a predetermined number N of distinct graphical passwords are associated in a predetermined order. The display unit 30 displays a plurality of graphical passwords, including a graphical password consisting of a tile pattern identical to the tile pattern of the first graphical password in the correct graphical password group, and a graphical password consisting of a tile pattern that is not identical. When the operation unit 20 receives a selection instruction to select one of the plurality of graphical passwords displayed on the display unit 30, the operation unit 20 performs a determination process to determine that the graphical password selected by the selection instruction is correct if it is a graphical password consisting of the identical tile pattern. This determination process is performed sequentially up to the Nth graphical password in the correct graphical password group. If the determination process determines that all of the graphical passwords constituting the correct graphical password group are correct, the authentication of the graphical password is determined to be successful.
[0023] The authentication unit 12 uses, as the tile pattern having identity, a tile pattern having the cell of the first color at the same position as the cell of the first color in the tile pattern of the graphical password that constitutes the correct graphical password group.
[0024] The authentication unit 12 uses, as the identity tile pattern, a configuration in which, for each cell in a position different from the position of the first color cell in the tile pattern of the graphical password constituting the correct graphical password group is either the first color or the second color, regardless of whether it is the same as each cell shown in the tile pattern of the graphical password constituting the correct graphical password group.
[0025] In this embodiment, the number of graphical passwords for identical tile patterns is set to 1, but this is not limited to 1, and it may be 2 or more.
[0026] Next, the graphical password used for authentication in the information processing device 1 of Figure 1 will be explained with reference to Figures 2 and 3. Figure 2 is a diagram illustrating the types of tile patterns that constitute the graphical password used for authentication in the information processing device 1 of Figure 1. Figure 3 is a diagram showing an example of a correct graphical password group containing six graphical passwords using the tile pattern types of Figure 2.
[0027] In the following explanation, we will use an example where a graphical password group consists of six graphical passwords, and the tile pattern of the graphical passwords is a tile pattern where each of the nine cells constituting a 3x3 grid (hereinafter referred to as a "3x3 grid") is either black as the primary color or white as the secondary color. Note that the number of graphical passwords constituting a graphical password group is not limited to six; it may be two to five or seven or more. Also, the grid is not limited to a 3x3 grid; any grid with multiple cells is acceptable. Furthermore, the combination of primary and secondary colors may not be black and white.
[0028] In this embodiment, four types of graphical password tile patterns are provided, as shown in Figures 2(A) to (D). However, the types of tile patterns are not limited to these four types shown in Figures 2(A) to (D).
[0029] The first tile pattern type, as exemplified in Figure 2(A), is a type in which one of the nine cells that make up a 3x3 grid is black, and the number of black cells is less than the number of white cells. Hereafter, the first tile pattern type will be referred to as the "first black tile pattern type" as appropriate. In the first black tile pattern type, the user can set any one of the nine cells that make up the 3x3 grid to black.
[0030] The second tile pattern type, as exemplified in Figure 2(B), is a type in which two of the nine cells that make up a 3x3 grid are black, and the number of black cells is less than the number of white cells. Hereafter, the second tile pattern type will be referred to as the "second black tile pattern type" as appropriate. In the second black tile pattern type, the user can set any two of the nine cells that make up the 3x3 grid to black.
[0031] The third tile pattern type, as exemplified in Figure 2(C), is a type in which one of the nine cells that make up a 3x3 grid is white, and the number of black cells is greater than the number of white cells. Hereafter, the third tile pattern type will be referred to as the "first white tile pattern type" as appropriate. In the first white tile pattern type, the user can set any one of the nine cells that make up the 3x3 grid to white.
[0032] The fourth tile pattern type, as exemplified in Figure 2(D), is a type in which two of the nine cells that make up a 3x3 grid are white, and the number of black cells is greater than the number of white cells. Hereafter, the fourth tile pattern type will be referred to as the "second white tile pattern type" as appropriate. In the second white tile pattern type, the user can set any two of the nine cells that make up the 3x3 grid to white.
[0033] A graphical password group consists of six graphical passwords, and the tile pattern of each graphical password belongs to one of the tile pattern types shown in Figures 2(A) to (D), an example of which is shown in Figure 3. In the graphical password group shown as an example in Figure 3, the tile pattern of the graphical password at position 1 is the first black tile pattern type, where the cell in the first row and first column is black, and all other cells are white. The tile pattern of the graphical password at position 2 is the second black tile pattern type, where the cells in the second row and first column and the second row and second column are black, and all other cells are white. The tile pattern of the graphical password at position 3 is the first white tile pattern type, where the cell in the second row and first column is white, and all other cells are black. The tile pattern of the graphical password at position 4 is the second white tile pattern type, where the cells in the second row and first column and the first row and third column are white, and all other cells are black. The tile pattern for the graphical password at position number 5 is the first black tile pattern type, where the cell in the second row and second column is black, and all other cells are white. The tile pattern for the graphical password at position number 6 is the second black tile pattern type, where the cells in the second row and second column and the third row and third column are black, and all other cells are white. In the graphical password group, users can arbitrarily select from the first black tile pattern type, the second black tile pattern type, the first white tile pattern type, and the second white tile pattern type as the tile pattern type for the graphical passwords at each position number from 1 to 6.
[0034] Next, we will explain how users can set up graphical password groups, referring to Figure 4. Figure 4 shows an example of the graphical password group setting screen 100 displayed on the display unit 30 in Figure 1.
[0035] The authentication unit 12 displays a graphical password group setting screen 100, which includes a 3x3 grid (described later), on the display unit 30.
[0036] The graphical password group setting screen 100 displays six dots 101 indicating the number of graphical passwords that have been set. The authentication unit 12, for example, if only the graphical password for position number 1 has been selected, displays only the leftmost dot of the six dots 101 as a black circle and the others as white circles on the display unit 30. If only the graphical passwords for position number 1 and position number 2 have been selected, displays only the first and second dots from the left of the six dots 101 as black circles and the others as white circles on the display unit 30.
[0037] The graphical password group setting screen 100 displays a 3x3 grid 102 used by the user to set the tile pattern for the graphical password. The memory unit 50 stores the tile pattern for the graphical password, with each location number associated with it. When the user moves the cursor on the graphical password group setting screen 100 using the mouse on the operation unit 20, the operation unit 20 outputs signals to the authentication unit 12 corresponding to the amount of mouse movement in the x and y axes by the user's operation. Based on these signals input from the operation unit 20, the authentication unit 12 displays the cursor on the display unit 30 on the graphical password group setting screen 100. When a user places the cursor over a cell whose color they want to change among the nine cells that make up the 3x3 grid 102 on the graphical password setting screen 100, and then performs a left mouse click on the operation unit 20, the operation unit 20 outputs a signal corresponding to the left mouse click to the authentication unit 12. When the authentication unit 12 receives the signal corresponding to the left click from the operation unit 20, it identifies the cell selected by the user using the operation unit 20 from among the nine cells that make up the 3x3 grid 102, and changes the color of the cell corresponding to the cell identified as selected by the user in the graphical password tile pattern stored in the storage unit 50, which is associated with the position number of the graphical password creation target, between black and white. In other words, if the cell corresponding to the cell identified as selected by the user is white, it becomes black, and if the cell corresponding to the cell identified as selected by the user is black, it becomes white. In conjunction with this, the authentication unit 12 displays the color of the cell identified as selected by the user in the 3x3 grid 102 on the graphical password group setting screen 100 using the updated cell color stored in the storage unit 50 on the display unit 30. After a predetermined time has elapsed, the display unit 30 displays the color of the cell identified as selected by the user in the 3x3 grid 102 on the graphical password setting screen 100 using the original color.At this time, the display color of the cells on the graphical password group setting screen 100 will be the original color, but the cell color in the graphical password tile pattern stored in the storage unit 50, which is associated with the position number of the graphical password to be created, is not updated and remains the changed color. The aforementioned operations by the user and the aforementioned processing by the authentication unit 12 are performed for each cell whose color the user wants to change.
[0038] The graphical password group setting screen 100 displays an eye icon 103 for previewing the tile pattern of the graphical password. If the tile pattern preview is not displayed, and the user moves the cursor over the eye icon 103 on the graphical password group setting screen 100 and then performs a left mouse click on the operation unit 20, the operation unit 20 outputs a signal corresponding to the left mouse click to the authentication unit 12. When the authentication unit 12 receives the signal corresponding to the left click from the operation unit 20, it identifies that the eye icon 103 was specified by the user based on the display position of the displayed items on the graphical password group setting screen 100 and the cursor position, and displays a preview of the tile pattern on the display unit 30 based on the graphical password tile pattern stored in the storage unit 50, which is associated with the position number of the graphical password to be created. When a preview of the tile pattern is displayed, if the user moves the cursor over the eye icon on the graphical password group setting screen 100 and then performs a left mouse click on the operation unit 20, the operation unit 20 outputs a signal corresponding to the left mouse click to the authentication unit 12. When the authentication unit 12 receives the signal corresponding to the left click from the operation unit 20, it identifies that the eye icon 103 has been specified by the user based on the display position of the displayed items on the graphical password group setting screen 100 and the cursor position, and causes the display unit 30 to turn off the tile pattern preview.
[0039] A back button 104 is displayed on the graphical password group setting screen 100. When a user places the cursor over the back button 104 on the graphical password group setting screen 100 and then performs a left mouse click on the operation unit 20, the operation unit 20 outputs a signal corresponding to the left mouse click to the authentication unit 12. When the authentication unit 12 receives the signal corresponding to the left click from the operation unit 20, it identifies that the back button 104 has been specified by the user based on the display position of the displayed items on the graphical password group setting screen 100 and the cursor position, etc., and resets the position number for which the graphical password is to be created to the position number one position before the current position number, and updates the display content of the graphical password group setting screen 100 to the display unit 30, such as reducing the number of black dots 101 by one.
[0040] A clear button 105 is displayed on the graphical password group setting screen 100. When a user places the cursor over the clear button 105 on the graphical password group setting screen 100 and then performs a left mouse click on the operation unit 20, the operation unit 20 outputs a signal corresponding to the left mouse click to the authentication unit 12. When the authentication unit 12 receives the signal corresponding to the left click from the operation unit 20, it identifies that the clear button 105 has been specified by the user based on the display position of the displayed objects on the graphical password group setting screen 100 and the cursor position, and clears the graphical password tile pattern stored in the storage unit 50, which is associated with the position number of the graphical password creation target.
[0041] A confirmation button 106 is displayed on the graphical password group setting screen 100. When a user places the cursor over the confirmation button 106 on the graphical password group setting screen 100 and then performs a left mouse click on the operation unit 20, the operation unit 20 outputs a signal corresponding to the left mouse click to the authentication unit 12. When the authentication unit 12 receives the signal corresponding to the left click from the operation unit 20, it identifies that the confirmation button 106 has been selected by the user based on the display position of the displayed objects on the graphical password group setting screen 100 and the cursor position, and confirms the graphical password tile pattern stored in the storage unit 50, which is associated with the position number of the graphical password to be created, as the graphical password for that position number. If graphical passwords have been set for all positions from position number 1 to position number 6, the authentication unit 12 stores each graphical password created sequentially from position number 1 to position number 6 in the storage unit 50 as the correct graphical password group associated with the nth position (where n is any integer from 1 to N).
[0042] Next, the generation of graphical passwords consisting of tile patterns identical to each type of graphical password by the authentication unit 12 in Figure 1, and graphical passwords consisting of tile patterns that are not identical to each type of graphical password, will be explained with reference to the drawing.
[0043] First, the generation of graphical passwords consisting of tile patterns identical to and not identical to the first black tile pattern type graphical password by the authentication unit 12 in Figure 1 will be explained with reference to Figure 5. Figure 5(A) shows an example of graphical passwords consisting of tile patterns identical to and not identical to the tile pattern of the first tile pattern type graphical password generated by the authentication unit in Figure 1. Figure 5(B) shows another example of graphical passwords consisting of tile patterns identical to and not identical to the tile pattern of the first tile pattern type graphical password generated by the authentication unit in Figure 1. Figure 5(C) shows yet another example of graphical passwords consisting of tile patterns identical to and not identical to the tile pattern of the first tile pattern type graphical password generated by the authentication unit in Figure 1.
[0044] In a graphical password consisting of a tile pattern of the first black tile pattern type, the authentication unit 12 uses a tile pattern that has identity, where black cells are located in the same positions as the black cells in the first black tile pattern type, and for each cell located in a different position from the black cells in the first black tile pattern type (the position of the white cells), it uses either black or white, regardless of whether it is identical to each cell shown in the first black tile pattern type. In this way, the authentication unit 12 uses a tile pattern that does not have identity, where white cells are located in the same positions as the black cells in the first black tile pattern type, and for each cell located in a different position from the black cells in the first black tile pattern type (the position of the white cells), it uses either black or white, regardless of whether it is identical to each cell shown in the first black tile pattern type. The authentication unit 12 generates six graphical passwords, including, for example, a graphical password consisting of one identical tile pattern as shown in Figures 5(A), (B), and (C), and a graphical password consisting of five non-identical tile patterns. In this embodiment, the graphical password consisting of one identical tile pattern generated by the authentication unit 12 may differ between authentications, and the graphical passwords consisting of five non-identical tile patterns may also differ between authentications. For example, in an identical tile pattern, the authentication unit 12 sets one cell at the same position as one black cell in the first black tile pattern type tile pattern to black, and generates a pseudorandom number for each of the remaining eight cells. If the pseudorandom number is odd, the cell is set to black; if it is even, it is set to white, thereby generating an identical tile pattern.Furthermore, in the case of tile patterns that do not have identity, the authentication unit 12 sets one cell in the same position as one black cell in the first black tile pattern type to white, and for each of the remaining eight cells, it generates a pseudorandom number for each cell, setting it to black if the pseudorandom number is odd and white if it is even, thereby generating a tile pattern that does not have identity. This method of generation is merely an example and is not limited to this.
[0045] In Figure 5(A), the tile pattern of the graphical password set by the user (the tile pattern of the graphical password that constitutes the correct graphical password group) has black cells in a 1-row, 1-column arrangement. As a result, one graphical password is generated consisting of a tile pattern with identical black cells (top left of Figure 5(A)), and five graphical passwords are generated consisting of tile patterns with no identical black cells in a 1-row, 1-column arrangement.
[0046] In Figure 5(B), the tile pattern of the graphical password set by the user (the tile pattern of the graphical password that constitutes the correct graphical password group) has black cells in a 1-row, 1-column arrangement. As a result, one graphical password is generated consisting of a tile pattern with identical black cells in a 1-row, 1-column arrangement (the bottom center of Figure 5(B)), and five graphical passwords are generated consisting of tile patterns with no identical black cells in a 1-row, 1-column arrangement.
[0047] In Figure 5(C), the tile pattern of the graphical password set by the user (the tile pattern of the graphical password that constitutes the correct graphical password group) has black cells in a 1-row, 1-column arrangement. As a result, one graphical password is generated consisting of a tile pattern with identical black cells in a 1-row, 1-column arrangement (upper right of Figure 5(C)), and five graphical passwords are generated consisting of tile patterns with no identical black cells in a 1-row, 1-column arrangement.
[0048] The authentication unit 12, when the tile pattern of the graphical password set by the user (the tile pattern of the graphical password that constitutes the correct graphical password group) is a tile pattern in which only the cells in a row and column are black, for example, generates the six graphical passwords shown in Figure 5(A) for the first authentication, the six graphical passwords shown in Figure 5(B) for the second authentication, and the six graphical passwords shown in Figure 5(C) for the third authentication. In this way, the graphical password consisting of one identical tile pattern may differ between authentications, and the graphical password consisting of five non-identical tile patterns may also differ between authentications.
[0049] Next, the generation of graphical passwords consisting of tile patterns identical to and not identical to the tile pattern of the second black tile pattern type graphical password by the authentication unit 12 in Figure 1 will be explained with reference to Figure 6. Figure 6 shows an example of graphical passwords consisting of tile patterns identical to and not identical to the tile pattern of the graphical password generated by the authentication unit in Figure 1 for the second tile pattern type (second black tile pattern type).
[0050] In a graphical password consisting of a tile pattern of the second black tile pattern type, the authentication unit 12 uses a tile pattern that has identity, where each black cell is in the same position as each black cell in the second black tile pattern type tile pattern, and for each cell in a different position from the black cell in the second black tile pattern type tile pattern (the position of the white cell), it uses either black or white, regardless of whether it is the same as each cell shown in the second black tile pattern type tile pattern. In this way, the authentication unit 12 uses a tile pattern that does not have identity, where each white cell is in the same position as at least one of the two black cells in the second black tile pattern type tile pattern, and for each cell in a different position from the black cell in the second black tile pattern type tile pattern (the position of the white cell), it uses either black or white, regardless of whether it is the same as each cell shown in the second black tile pattern type tile pattern. The authentication unit 12 generates six graphical passwords, including, for example, a graphical password consisting of one identical tile pattern as shown in Figure 6, and a graphical password consisting of five non-identical tile patterns. In this embodiment, the graphical password consisting of one identical tile pattern generated by the authentication unit 12 may differ between authentications, and the graphical passwords consisting of five non-identical tile patterns may also differ between authentications. For example, in the case of an identical tile pattern, the authentication unit 12 sets the two cells at the same positions as the two black cells in the second black tile pattern type tile pattern to black, and for the remaining seven cells, it generates a pseudo-random number for each cell, setting it to black if the pseudo-random number is odd, and white if it is even, thereby generating an identical tile pattern.Furthermore, in tile patterns that do not share the same characteristics, there are three patterns: (1) a first pattern in which, of the two black cells in the second black tile pattern type, the cell with the smaller row number, or if the row numbers are the same, the cell with the smaller column number, is made black, and the cell in the same position as the other cell is made white; (2) a second pattern in which, of the two black cells in the second black tile pattern type, the cell with the smaller row number, or if the row numbers are the same, the cell with the smaller column number, is made white, and the cell in the same position as the other cell is made black; and (3) a third pattern in which, of the two black cells in the second black tile pattern type, the two cells in the same positions are made white. The authentication unit 12 generates a pseudorandom number for tile patterns that do not have identity. If the remainder of the pseudorandom number is "0", it selects the first pattern; if the remainder is "1", it selects the second pattern; and if the remainder is "2", it selects the third pattern. Based on the selected pattern, it determines the color of each of the two cells in the same position as each of the two black cells in the second black tile pattern type tile pattern to be either black or white. For the remaining seven cells, it generates a pseudorandom number for each cell, setting it to black if the pseudorandom number is odd, and white if it is even, thereby generating a tile pattern that does not have identity. This generation method is merely an example and is not limited to this. For example, in a black tile pattern type tile pattern where the number of black cells is less than the number of white cells, and the number of black cells is three or more, the same generation method can be applied.
[0051] In Figure 6, the tile pattern of the graphical password set by the user (the tile pattern of the graphical password that constitutes the correct graphical password group) is a tile pattern in which the cells in rows 2, column 1 and row 2 are black. Therefore, one graphical password is generated consisting of a tile pattern with identity in which each cell in rows 2, column 1 and row 2 is black (upper right of Figure 6), and five graphical passwords are generated consisting of tile patterns with no identity in which at least one cell in rows 2, column 1 and row 2 is not black.
[0052] Next, the generation of graphical passwords consisting of tile patterns identical to and not identical to the first white tile pattern type graphical password by the authentication unit 12 in Figure 1 will be explained with reference to Figure 7. Figure 7 shows an example of graphical passwords consisting of tile patterns identical to and not identical to the graphical password tile pattern generated by the authentication unit in Figure 1 for the third tile pattern type (first white tile pattern type).
[0053] In a graphical password consisting of a tile pattern of the first white tile pattern type, the authentication unit 12 uses a tile pattern that has identity, where white cells are located in the same positions as the white cells in the first white tile pattern type, and for each cell located in a different position from the white cells in the first white tile pattern type (the position of the black cells), it uses either black or white, regardless of whether it is the same as each cell shown in the first white tile pattern type. In this way, the authentication unit 12 creates multiple graphical passwords, including graphical passwords consisting of tile patterns that have identity with the graphical password consisting of the first white tile pattern type, and graphical passwords consisting of tile patterns that do not have identity. The authentication unit 12 generates six graphical passwords, including, for example, a graphical password consisting of one identical tile pattern as shown in Figure 7, and a graphical password consisting of five non-identical tile patterns. In this embodiment, the graphical password consisting of one identical tile pattern generated by the authentication unit 12 may differ between authentications, and the graphical passwords consisting of five non-identical tile patterns may also differ between authentications. For example, in an identical tile pattern, the authentication unit 12 sets one cell at the same position as one white cell in the first white tile pattern type tile pattern to white, and generates a pseudorandom number for each of the remaining eight cells. If the pseudorandom number is odd, the cell is set to black; if it is even, the cell is set to white, thereby generating an identical tile pattern.Furthermore, in the case of tile patterns that do not have identity, the authentication unit 12 sets one cell in the same position as one white cell in the first white tile pattern to black, and for each of the remaining eight cells, it generates a pseudorandom number for each cell, setting it to black if the pseudorandom number is odd and white if it is even, thereby generating a tile pattern that does not have identity. This method of generation is merely an example and is not limited to this.
[0054] In Figure 7, the tile pattern of the graphical password set by the user (the tile pattern of the graphical password that constitutes the correct graphical password group) has white cells in a 2x1 grid. Therefore, one graphical password is generated consisting of a tile pattern with identical white cells (bottom right of Figure 7), and five graphical passwords are generated consisting of tile patterns with non-identical cells that do not have white cells.
[0055] Next, the generation of graphical passwords consisting of tile patterns identical to and non-identical to the tile pattern of the second white tile pattern type graphical password by the authentication unit 12 in Figure 1 will be explained with reference to Figure 8. Figure 8 shows an example of graphical passwords consisting of tile patterns identical to and non-identical to the tile pattern of the graphical password generated by the authentication unit in Figure 1 for the second tile pattern type (second white tile pattern type).
[0056] In a graphical password consisting of a tile pattern of the second white tile pattern type, the authentication unit 12 uses a tile pattern that has identity, where each white cell is in the same position as each white cell in the second white tile pattern type tile pattern, and for each cell in a different position from the white cell in the second white tile pattern type tile pattern (the position of the black cell), it uses either black or white, regardless of whether it is the same as each cell shown in the second white tile pattern type tile pattern. In this way, the authentication unit 12 uses a tile pattern that does not have identity, where each black cell is in the same position as at least one of the two white cells in the second white tile pattern type tile pattern, and for each cell in a different position from the white cell in the second white tile pattern type tile pattern (the position of the black cell), it uses either black or white, regardless of whether it is the same as each cell shown in the second white tile pattern type tile pattern. The authentication unit 12 generates six graphical passwords, including, for example, a graphical password consisting of one identical tile pattern as shown in Figure 8, and a graphical password consisting of five non-identical tile patterns. In this embodiment, the graphical password consisting of one identical tile pattern generated by the authentication unit 12 may differ between authentications, and the graphical passwords consisting of five non-identical tile patterns may also differ between authentications. For example, in the case of an identical tile pattern, the authentication unit 12 sets the two cells at the same positions as the two white cells in the second white tile pattern type tile pattern to white, and generates a pseudorandom number for each of the remaining seven cells, setting them to black if the pseudorandom number is odd, and white if it is even, thereby generating an identical tile pattern.Furthermore, in tile patterns that do not have identity, there is a first pattern in which (1) of the two white cells in the second white tile pattern type, the cell in the same position as the cell with the smaller row number, or if the row numbers are the same, the cell with the smaller column number, is made black, and the cell in the same position as the other cell is made white; (2) of the two white cells in the second white tile pattern type, the cell in the same position as the cell with the smaller row number, or if the row numbers are the same, the cell with the smaller column number, is made white, and the cell in the same position as the other cell is made black; and (3) the two cells in the same position as the two white cells in the second white tile pattern type are made black. The authentication unit 12 generates a pseudorandom number for tile patterns that do not have identity. If the remainder of the pseudorandom number is "0", it selects the first pattern; if the remainder is "1", it selects the second pattern; and if the remainder is "2", it selects the third pattern. Based on the selected pattern, it determines the color of each of the two cells in the same position as each of the two white cells in the second white tile pattern type tile pattern to be either black or white. For the remaining seven cells, it generates a pseudorandom number for each cell, setting it to black if the pseudorandom number is odd, and white if it is even, thereby generating a tile pattern that does not have identity. This generation method is merely an example and is not limited to this. For example, in a white tile pattern type tile pattern where the number of black cells is greater than the number of white cells, and the number of white cells is three or more, the same generation method can be applied.
[0057] In Figure 8, the tile pattern of the graphical password set by the user (the tile pattern of the graphical password that constitutes the correct graphical password group) has white cells in the 1st row, 3rd column and the 2nd row, 1st column. As a result, one graphical password is generated consisting of a tile pattern with identity where each cell in the 1st row, 3rd column and the 2nd row, 1st column is white (bottom right of Figure 7). Five graphical passwords are generated consisting of tile patterns with no identity where at least one cell in the 1st row, 3rd column and the 2nd row, 1st column is not white.
[0058] The tile pattern set by the user and the tile pattern that is identical to the user-set tile pattern may not be the same because they are decoy patterns.
[0059] Next, the input of a graphical password group by the user will be explained with reference to Figure 9. Figure 9 is a diagram showing an example of the graphical password group input screen 200 displayed on the display unit 30 of Figure 1.
[0060] The authentication unit 12 displays the graphical password group input screen 200 on the display unit 30 for the graphical password tile pattern at position number 1.
[0061] The graphical password input screen 200 displays six dots 201 indicating the position number of the graphical password being entered. When the position number is 1, the authentication unit 12 displays only the leftmost dot of the six dots 201 as a black circle, and the others as white circles on the display unit 30.
[0062] The graphical password input screen 200 displays six graphical passwords 202. The authentication unit 12 generates one graphical password consisting of a tile pattern identical to the tile pattern of the graphical password at position number 1 included in the correct graphical password group (the tile pattern of the graphical password stored in the storage unit 50 corresponding to position number 1), and five graphical passwords consisting of tile patterns that are not identical (see Figure 5(A)), and displays the six generated graphical passwords 202 on the display unit 30. When a user moves the cursor on the graphical password group input screen 200 using the mouse of the operation unit 20, the operation unit 20 outputs signals to the authentication unit 12 corresponding to the amount of mouse movement in the x-axis and y-axis directions by the user's operation, and the authentication unit 12 displays the graphical password group input screen 200 on the display unit 30 while moving the cursor based on the signals input from the operation unit 20. When a user places the cursor over one of the six graphical passwords 202 on the graphical password group input screen 200 and then performs a left mouse click on the operation unit 20, the operation unit 20 outputs a signal corresponding to the left mouse click to the authentication unit 12. Upon receiving the signal corresponding to the left click from the operation unit 20, the authentication unit 12 identifies the one graphical password selected by the user from the six graphical passwords 202 and stores the graphical password identified as selected by the user in the storage unit 50 as the graphical password selected by the user for position number 1.
[0063] Next, the authentication unit 12 displays the graphical password group input screen 200 on the display unit 30 for the graphical password tile pattern at position number 2.
[0064] The graphical password group input screen 200 displays six dots 201 indicating the position number of the graphical password being entered. When the position number is 2, the authentication unit 12 displays only the first and second dots from the left of the six dots 201 as black circles, and the rest as white circles on the display unit 30.
[0065] The graphical password group input screen 200 displays six graphical passwords 202. The authentication unit 12 generates one graphical password consisting of a tile pattern identical to the graphical password at position number 2 included in the correct graphical password group (the graphical password tile pattern stored in the storage unit 50 in association with position number 2), and five graphical passwords consisting of tile patterns that are not identical (see Figure 6), and displays the six generated graphical passwords 202 on the display unit 30. When a user places the cursor over one of the six graphical passwords 202 on the graphical password group input screen 200 and then performs a left mouse click on the operation unit 20, the operation unit 20 outputs a signal corresponding to the left mouse click to the authentication unit 12. Upon receiving the signal corresponding to the left click from the operation unit 20, the authentication unit 12 identifies the one graphical password selected by the user from the six graphical passwords 202 and stores the graphical password identified as selected by the user in the storage unit 50 as the graphical password selected by the user for position number 2.
[0066] The same user operations and processing by the authentication unit 12 are repeated from location number 3 to location number 6.
[0067] The authentication unit 12 sequentially checks the tile patterns of the graphical passwords selected by the user on the graphical password group input screen 200, which are stored in the storage unit 50 associated with position number n (where n is an integer between 1 and 6), in correspondence with position number n. If these patterns are identical to the tile patterns of the graphical passwords that constitute the correct graphical password group (graphical passwords set by the user on the graphical password group setting screen 100), which are stored in the storage unit 50 associated with position number n, the authentication unit 12 determines that the answer is correct. If the answer is determined to be correct for all positions from 1 to 6, the authentication unit 12 determines that the graphical password authentication is successful.
[0068] Next, the password creation process and method by the authentication unit 12 of the information processing device 1 will be explained using Figure 10. Figure 10 is a flowchart showing the flow of the password creation process by the authentication unit 12 of the information processing device 1.
[0069] The authentication unit 12 sets the position number to "0" (step S101).
[0070] The authentication unit 12 increments the position number by 1 and displays or updates a graphical password group setting screen 100 (see Figure 4) on the display unit 30, which includes dots 101, a 3x3 grid, etc., corresponding to the position number after the increment (step S102).
[0071] The authentication unit 12 identifies the cell selected by the user using the operation unit 20 from among the nine cells that make up the 3x3 grid 102 on the graphical password setting screen 100, and changes the color of the cell corresponding to the cell identified as selected by the user in the graphical password tile pattern stored in the storage unit 50, which is associated with the current position number, between black and white. That is, if the cell corresponding to the cell identified as selected by the user is white, it becomes black, and if the cell corresponding to the cell identified as selected by the user is black, it becomes white (step S103). The process in step S103 is performed for each cell in the 3x3 grid whose color the user wants to change, and each time the user selects a cell whose color they want to change, the color of the cell corresponding to the cell identified as selected by the user in the graphical password tile pattern stored in the storage unit 50, which is associated with the current position number, changes between black and white.
[0072] The authentication unit 12 determines which of the following the user selected using the operation unit 20: the back button 104, the clear button 105, or the confirm button 106 (step S104).
[0073] If the authentication unit 12 determines in the determination process of step S104 that the user has selected the back button 104 (S104: Back), the authentication unit 12 determines whether the current position number is "1" or not (step S105). If the authentication unit 12 determines in the determination process of step S105 that the current position number is "1" (S105: YES), the process of step S103 is performed.
[0074] If the authentication unit 12 determines in the determination process of step S105 that the current position number is not "1" (S105: NO), the authentication unit 12 decrements the position number by 1 and updates the display unit 30 with a graphical password group setting screen 100 (see Figure 4) that includes dots 101, a 3x3 grid, etc., corresponding to the position number after the decrement (step S106), and the process of step S103 is performed.
[0075] If the authentication unit 12 determines in the determination process of step S104 that the user has selected the clear button 105 (S104: Clear), the authentication unit 12 clears the graphical password tile pattern stored in the storage unit 50 corresponding to the current position number (step S107), and the process of step S103 is performed.
[0076] If the authentication unit 12 determines in the determination process of step S104 that the user has selected the confirmation button 106 (S104: Confirmation), the authentication unit 12 determines whether the graphical password tile pattern stored in the storage unit 50 in association with the current position number is a valid tile pattern (whether the tile pattern belongs to any of the following types: first black tile pattern type, second black tile pattern type, first white tile pattern type, and second white tile pattern type) (step S108).
[0077] If the authentication unit 12 determines in the determination process of step S108 that the tile pattern is not a valid tile pattern (S108: NO), the authentication unit 12 displays on the display unit 30 that the tile pattern is not a valid tile pattern (step S109), and the process of step S103 is performed.
[0078] If the authentication unit 12 determines in the determination process of step S108 that the tile pattern is a valid tile pattern (S108: YES), the authentication unit 12 determines whether the current position number is "6" or not (step S110). If the authentication unit 12 determines in the determination process of step S110 that the current position number is not "6" (S110: NO), the process of step S102 is performed.
[0079] In the determination process of step S110, if the authentication unit 12 determines that the current position number is "6" (S110: YES), the authentication unit 12 stores the graphical passwords stored in the storage unit 50, which are associated with position numbers 1 through 6 respectively, in the storage unit 50 as a correct graphical password group (step S111). The correct graphical password group is one in which each graphical password created in order from position number 1 to position number 6 is associated with position number n (where n is an integer between 1 and N).
[0080] Next, the authentication process and authentication method by the authentication unit 12 of the information processing device 1 will be explained using Figure 11. Figure 11 is a flowchart showing the flow of the authentication process by the authentication unit 12 of the information processing device 1.
[0081] The authentication unit 12 sets the position number to "0" (step S201).
[0082] The authentication unit 12 increments the position number by 1 (step S202).
[0083] The authentication unit 12 generates six graphical passwords, including one graphical password composed of identical tile patterns and five graphical passwords composed of non-identical tile patterns, based on the tile patterns of graphical passwords stored in the storage unit 50, which are associated with the current position number that constitutes the correct graphical password group (composed of graphical passwords from position number 1 to position number 6 set by the user on the graphical password group setting screen 100) (step S203).
[0084] The authentication unit 12 displays a graphical password group input screen 200, which includes the six generated graphical passwords as display content, on the display unit 30 (step S204).
[0085] The authentication unit 12 identifies the graphical password selected by the user using the operation unit 20 from among the six graphical passwords displayed on the graphical password group input screen 200, and stores the graphical password identified as selected by the user in the storage unit 50, associating it with the current position number (step S205).
[0086] The authentication unit 12 determines whether the current location number is "6" or not (step S206). If the authentication unit 12 determines in the determination process of step S206 that the current location number is not "6" (S206: NO), the process of step S202 is performed.
[0087] In the determination process of step S206, if the authentication unit 12 determines that the current position number is "6" (S206: YES), the authentication unit 12 sequentially checks from position number 1 to position number 6, and determines if the tile pattern of the graphical password selected by the user on the graphical password group input screen 200, which is stored in the storage unit 50 associated with position number n (where n is an integer between 1 and 6), is identical to the tile pattern of the graphical password stored in the storage unit 50 associated with position number n that constitutes the correct graphical password group (the graphical password stored in the storage unit 50 associated with position number n set by the user on the graphical password group setting screen 100). The authentication unit 12 then determines whether it has determined all positions from position number 1 to position number 6 to be correct, that is, it determines whether the user has selected a graphical password consisting of identical tile patterns for all positions from position number 1 to position number 6 (step S207).
[0088] In the determination process of step S207, if the authentication unit 12 determines that the user has selected a graphical password consisting of a tile pattern that is identical at all positions from position number 1 to position number 6 (S207: YES), the authentication unit 12 determines that authentication is successful and grants the user access (step S208).
[0089] In the determination process of step S207, if the authentication unit 12 determines that the user has not selected a graphical password consisting of a tile pattern that is identical at at least one of the position numbers from position number 1 to position number 6 (S207: NO), the authentication unit 12 determines that authentication has failed and rejects the user's access (step S209).
[0090] In the processing flow shown in Figure 11 above, in step S207 after the user selects a graphical password, the authentication unit 12 determines whether the user has selected a graphical password consisting of identical tile patterns at each of the position numbers from position number 1 to position number 6. However, it is not limited to this, and for example, the authentication unit 12 may determine whether the user has selected a graphical password consisting of identical tile patterns at the current position number at the time it identifies the graphical password selected by the user at the current position number in step S205.
[0091] According to the embodiment described above, for each of the multiple graphical passwords in a graphical password group, the display unit 30 displays multiple graphical passwords, including graphical passwords consisting of tile patterns identical to the tile pattern of the graphical password and graphical passwords consisting of tile patterns that are not identical. One graphical password is selected from the multiple graphical passwords displayed on the display unit 30 using the operation unit 20. If a graphical password consisting of a tile pattern identical to the tile pattern of the graphical password is selected for all of the multiple graphical passwords in the graphical password group, the authentication of the graphical password is determined to be successful. Therefore, it is difficult for a third party to steal a graphical password and select a graphical password with an identical tile pattern for all graphical passwords included in the correct graphical password group, thereby improving security against shoulder surfing.
[0092] Furthermore, by using a 3x3 grid and offering user-configurable tile pattern types—a first black tile pattern with one black cell, a second black tile pattern with two black cells, a first white tile pattern with one white cell, and a second white tile pattern with two white cells—users can easily remember the tile pattern they have set, and the hassle of users selecting the correct tile pattern during login can be reduced.
[0093] Furthermore, the present invention is not limited to the configuration of the above embodiments, and various modifications are possible.
[0094] For example, a storage unit 50 may store multiple graphical passwords, and the authentication unit 12 may display the multiple graphical passwords stored in the storage unit 50 on the display unit 30. When the operation unit 20 receives a designation instruction to select one of the displayed graphical passwords and an order designation instruction to select the order of the selected graphical passwords, the authentication unit 12 may execute a password creation process to select the graphical passwords specified by the designation instruction in the order specified by the order designation instruction. When the password creation process for the Nth graphical password is completed, the authentication unit 12 may store the graphical passwords in the order from the 1st to the Nth in the storage unit 50 as the correct graphical password group. For example, the storage unit 50 stores multiple (N or more) graphical passwords, the authentication unit 12 displays the multiple (N or more) graphical passwords stored in the storage unit 50 on the display unit 30, the user uses the operation unit 20 to specify one graphical password from the multiple graphical passwords and the order in which the specified graphical passwords are placed, and the recognition unit 12 executes a password creation process to place the specified graphical passwords in the specified order when the user has specified the graphical passwords and the order in which the specified graphical passwords are placed using the operation unit 20, and when this process has been repeated for N graphical passwords, the first to the Nth graphical passwords are stored in the storage unit 50 as a correct graphical password group.
[0095] Furthermore, the configurations and processes shown in the above embodiments using Figures 1 to 11 are merely one embodiment of the present invention, and the present invention is not intended to be limited to these configurations and processes. [Explanation of Symbols]
[0096] 1. Information Processing Device 10 Control Unit 11 Control Unit 12. Authentication Department 20 Control section 30 Display section 50 Storage section
Claims
1. Display unit and A control unit that receives instructions from the user, A storage unit that stores multiple graphical passwords, each composed of a tile pattern in which multiple cells constituting a grid are either a first color or a second color, The system includes an authentication unit that performs authentication based on the graphical password stored in the storage unit, The authentication unit, The memory unit stores a group of correct graphical passwords in which a predetermined number N of distinct graphical passwords are associated in a predetermined order. The system displays a plurality of graphical passwords on the display unit, including a graphical password consisting of a tile pattern identical to the tile pattern of the first graphical password in the group of correct answers, and a graphical password consisting of a tile pattern that is not identical to the first graphical password in the group of correct answers. When the operation unit receives a selection instruction to select one graphical password from the plurality of graphical passwords displayed on the display unit, the system performs a determination process to determine that the graphical password selected by the selection instruction is correct if it is a graphical password consisting of the identical tile pattern. The determination process is performed sequentially up to the Nth graphical password in the correct graphical password group. An information processing device that determines that authentication of a graphical password is successful if the determination process determines that all of the graphical passwords constituting the group of correct graphical passwords are correct.
2. The information processing apparatus according to claim 1, wherein the authentication unit uses a tile pattern having identity, which has the first color cell at the same position as the first color cell in the tile pattern of the graphical password constituting the correct graphical password group.
3. The information processing apparatus according to claim 2, wherein the authentication unit uses, as the identity tile pattern, for each cell at a position different from the position of the first color cell in the tile pattern of the graphical password constituting the correct graphical password group, either the first color or the second color, regardless of whether it is the same as each cell shown in the tile pattern of the graphical password constituting the correct graphical password group.
4. The information processing apparatus according to claim 1, wherein the authentication unit displays a plurality of graphical passwords stored in the storage unit on the display unit, and when the operation unit receives a designation instruction to select one of the displayed plurality of graphical passwords and a sequence designation instruction to select the order of the selected graphical passwords, the authentication unit executes a password creation process to select the graphical passwords selected by the designation instruction in the order specified by the sequence designation instruction, and when the password creation process for the Nth graphical password is completed, the device stores the graphical passwords selected in the order from the 1st to the Nth in the storage unit as the correct graphical password group.
5. Computers An authentication program that functions as an authentication unit that performs authentication based on a set of graphical passwords stored in a storage unit that stores a set of graphical passwords, each of which is composed of a tile pattern in which each of the multiple cells constituting a grid is either a first color or a second color. The authentication unit, The memory unit stores a group of correct graphical passwords in which a predetermined number N of distinct graphical passwords are associated in a predetermined order. The system displays a plurality of graphical passwords on the display unit, including a graphical password consisting of a tile pattern identical to the tile pattern of the first graphical password in the group of correct answers, and a graphical password consisting of a tile pattern that is not identical. When the operation unit receives a selection instruction to select one of the plurality of graphical passwords displayed on the display unit, the system performs a determination process to determine that the graphical password selected by the selection instruction is correct if it is a graphical password consisting of the identical tile pattern. The determination process is performed sequentially up to the Nth graphical password in the correct graphical password group. An authentication program that determines that authentication of a graphical password is successful if the determination process determines that all of the graphical passwords constituting the group of correct graphical passwords are correct.
6. The system includes an authentication step that performs authentication based on a graphical password stored in a storage unit that stores a plurality of graphical passwords, each of which is composed of a tile pattern in which each of the plurality of cells constituting the grid is either a first color or a second color. The aforementioned authentication step is, The memory unit stores a group of correct graphical passwords in which a predetermined number N of distinct graphical passwords are associated in a predetermined order. The system displays a plurality of graphical passwords on the display unit, including a graphical password consisting of a tile pattern identical to the tile pattern of the first graphical password in the group of correct answers, and a graphical password consisting of a tile pattern that is not identical. When the operation unit receives a selection instruction to select one of the plurality of graphical passwords displayed on the display unit, the system performs a determination process to determine that the graphical password selected by the selection instruction is correct if it is a graphical password consisting of the identical tile pattern. The determination process is performed sequentially up to the Nth graphical password in the correct graphical password group. An authentication method in which, if all of the graphical passwords constituting the group of correct graphical passwords are determined to be correct in the determination process, the authentication of the graphical password is determined to be successful.
7. Display unit and A control unit that receives instructions from the user, Memory unit and, The system includes an authentication unit that creates a predetermined number N distinct graphical passwords, each consisting of a tile pattern in which multiple cells constituting a grid are either a first color or a second color, and stores a group of correct graphical passwords in the storage unit, in which the predetermined number N distinct graphical passwords are associated in a predetermined order. The authentication unit, In creating the first graphical password in the group of correct graphical passwords, when the operation unit receives a selection instruction to display the grid on the display unit and select a cell from among the multiple cells constituting the grid displayed on the display unit, a tile pattern creation process is performed to create the tile pattern by changing the color of the cell selected by the selection instruction between the first color and the second color. The tile pattern creation process is performed sequentially until the creation of the Nth graphical password in the correct graphical password group is complete. An information processing device that stores in the storage unit the correct graphical password group to which each of the graphical passwords created sequentially from the first to the nth is associated at the nth position (where n is any integer between 1 and N).