JP2005190452A - Authentication system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an authentication system capable of authenticating validity of personal information and existence of an individual. <P>SOLUTION: This authentication system of a first embodiment of this application is composed by connecting a system server 10, a user terminal 20 and an employment-side terminal 30 via a communication network 100. An applicant for employment previously registers personal history information to the system server 10. The employment side accesses the system server 10 from the employment-side terminal 30 to inquire for authentication of the validity of the personal history information and its existence. The system server 10 provides, to the employment-side terminal 30 as authentication information, a result determined by referring to the personal information registered in the database for the inquiry from the employment-side terminal 30. Thereby, the system for a third-party organization to authenticate the history information and existence confirmation of the individual by compositively determining them from the history information previously registered by the individual. <P>COPYRIGHT: (C)2005,JPO&NCIPI

Description

  The present invention relates to an authentication system that provides an authentication service for individuals (human resources) using a communication network, and in particular, comprehensively manages personal information such as the individual's educational background (graduation certificate, grade certificate, etc.) and job history in an integrated manner. The present invention relates to an authentication system capable of authenticating that the human resource exists (actually exists) by making a judgment.

  With the recent economic recession, the situation where job seekers are overflowing has become chronic, the recruitment of companies has become severe, and the employment conditions tend to be stricter year by year. In addition, it is said to be an era of employment mobility, the lifetime employment system has collapsed, job changes are becoming commonplace, and the choice of working styles on the part of employees is diversifying. Under such circumstances, it is very important to check the resume that is the first step in recruiting human resources, and the personnel manager specifies the recruitment person from the one resume and recruits them. After checking against the criteria, it was decided to adopt / disapprove.

  Under these circumstances, companies usually do not employ all employees who have passed the recruitment conditions. Considering the satisfaction conditions of the necessary personnel, the personnel conditions, past history, and persons of the successful candidates are taken into consideration. Judgment is made comprehensively based on evaluation, etc., and only the necessary number of people are employed.

For example, Patent Invention 1 that handles resumes electronically is known.
The invention of Patent Document 1 compiles an optimal electronic resume format according to the purpose and application of a user, and provides user orientation and decision-making process information to a job offerer. Specifically, the information terminal on the user side selects items of employment type, type of industry, job type, and resume according to the resume configuration menu screen sent from the server that provides the electronic resume creation support service. The server determines the item structure of the electronic form of the electronic resume based on the selected item. The information terminal responds to each item selected on the resume configuration menu screen according to the navigation screen, and transmits the contents to the server. The server holds request data, points, keywords, and the like for each item in the resume composition information, and records log information such as entry start time, entry end time, item selection priority, and time required for entry. The device on the job offer side can arbitrarily search for an electronic form of an electronic resume recorded in the server.
JP 2002-342468 A

  However, since many of the resumes use commercially available forms, only limited information (minimum required) can be filled in, and the entries are disparate, providing true information required by the employer ( There has been a problem that past history / person evaluation etc. cannot be obtained.

  In addition, since the information on the resume is self-reported, it can be falsely displayed or intentionally displayed intentionally or negligently, so that there is a problem that the reliability when viewed objectively is extremely low. As a specific example, there are many things such as disguising the work history so as to meet the employment standards of the employer, or describing as if the person has acquired a qualification that has not been acquired.

  In the case of the invention of Patent Document 1 in which history information can be handled electronically, confirmation (authentication) of whether or not the content of data (electronic form) registered as an electronic resume is by the person himself / herself Since there is no method for obtaining the information, there is a possibility that the data may be illegally registered by another third party, and there is a problem of authenticity (validity) of information.

  In other words, judgment based on correct information has a certain value, but value judgment made based on wrong information is treated as meaningless, so the accuracy of information depends on the information used. It is concluded that it is very important for However, the process for obtaining the confirmation, that is, the labor related to the so-called support (for example, personal investigation using Koshinsho etc.) naturally takes time and expense, which is not preferable in view of the expenses on the employment side.

  As described above, as in the case of employment etc. described above, conventionally, it has been necessary to spend a great deal of time and money to obtain personal authentication, resulting in delays and complications in procedures requiring personal authentication. It was.

  Therefore, the present invention determines whether or not the content of personal data (resume, graduation certificate, transcript, job history, etc.) declared by an individual such as a job seeker has been duly reported by the principal. Certification is performed by an authentication server managed and operated by a third-party organization, and the content of the declaration is valid for inquiries from the requester of personal authentication such as the employer (employer) and the job seeker The purpose is to construct an authentication system that guarantees the validity of the report information by notifying the proof that the individual exists.

  In order to solve the above-described problems, an authentication system according to the present invention includes a system server having a database for managing personal information, a communication terminal that can be operated by the individual, and an authentication requesting party who desires the presence authentication of the individual. An authentication requesting terminal provided in the communication system, and the individual is registered in advance with the personal information in the system server via the communication terminal, The authentication requesting side requests the system server from the authentication requesting side terminal for the personal presence authentication, and the system server refers to the personal information registered in the database in response to the request. The authentication information is provided to the authentication requesting side terminal as a result of a composite determination of the validity of the personal information and the existence of the individual.

  In the authentication system of the present invention, the system server is managed by a third party other than an individual.

  In the authentication system of the present invention, the disclosure range of personal information can be arbitrarily set and changed by an individual via a communication terminal.

  In the authentication system of the present invention, the system server stores information indicating the registration time of the personal information for each individual in the database.

  In the authentication system of the present invention, the system server stores, in the database, information indicating the matching time as a result of the collation for each individual for each type of personal information.

  In the authentication system of the present invention, the system server edits personal information to create an electronic album.

  In the authentication system of the present invention, the personal information includes personal biometric information and / or image data that the individual desires to register in the database.

  In the authentication system of the present invention, the authentication system further includes a reading device connected to the communication network and reading personal biometric information, and the authentication requesting terminal makes an inquiry about the validity of the personal information. In addition, the read biometric information is transmitted to the system server.

  In the authentication system of the present invention, the system server stores history information of biometric information collation in a database.

  In the authentication system of the present invention, the personal information includes a video recording when the individual performs a predetermined procedure on the authentication requesting side.

  In the authentication system of the present invention, the system server stores in the database information for identifying a person who belongs to the authentication requesting side facing the individual.

  In the authentication system of the present invention, the system server stores personal information held by the authentication requester for backup, and makes an acquisition request for the corresponding personal information among the held personal information in response to the acquisition request. The data is transmitted to the authentication requesting terminal.

  In the authentication system of the present invention, the authentication requesting terminal compares the personal information provided by the individual with the personal information recorded on the recording medium owned by the individual, and the validity of the provided personal information. And authenticating the existence of an individual.

  In the authentication system of the present invention, the system server stores the personal information recorded on the recording medium for backup, and makes an acquisition request for the corresponding personal information among the retained personal information in response to the acquisition request. The data is transmitted to the authentication requesting terminal.

  Further, in the authentication system of the present invention, an individual (job seeker) who wishes to find employment registers personal history information as personal information in advance in the system server via a communication device, and then the employer wishes to find employment. The history information is provided, and the authentication requesting terminal is an information processing apparatus operated by the hiring side, and inquires of the system server about the validity of the history information transmitted from the communication terminal. A database for managing history information is provided, referring to the history information registered in the database in response to the inquiry, and authenticating information for authenticating the personal history information and the existence of the individual to the authentication requesting terminal. It is characterized by transmitting.

  In the authentication system of the present invention, the personal history information includes the contents described in the resume, the contents described in the work history, educational information (graduation certificate, transcript), various qualification information, identity guarantee information, resident card, etc. Among these, it is characterized by comprising at least two or more combinations.

  In the authentication system of the present invention, the authentication requesting terminal periodically transmits the work evaluation information of the individual employed by the employer based on the authentication information to the system server.

  In the authentication system of the present invention, the system server transmits work evaluation information to the communication terminal when an individual requests work evaluation information via the communication terminal.

  In the authentication system of the present invention, the system server sends the history information to the communication terminal for each category selected in time series or by an individual when there is a request for browsing history information from the individual via the communication terminal. It is characterized by transmitting.

  In the authentication system of the present invention, an individual who wishes to acquire or update an identification certificate for identifying the individual registers personal information in the system server via the communication device, and the identification certificate issuing institution side The authentication requesting terminal is an information processing device operated by the ID issuing authority, and inquires the system server about the validity of the personal information transmitted from the communication terminal. The server has a database for managing personal information, refers to the personal information registered in the database in response to the inquiry, and authenticates the authenticity of the personal information and the authentication information for authenticating the existence of the individual on the authentication requesting terminal It is characterized by transmitting to.

  In the authentication system of the present invention, the identification card is provided with a recording medium capable of recording personal information, and the authentication requesting terminal is provided in the personal information provided by the individual and the identification card. The personal information recorded on the recording medium is verified to authenticate the validity of the provided personal information and the existence of the individual.

  In the authentication system of the present invention, the system server stores the personal information recorded on the recording medium provided in the identification card for backup, and corresponds to the corresponding personal information among the personal information held in response to the acquisition request. The information is transmitted to the authentication requesting side terminal that made the acquisition request.

  In the authentication system of the present invention, the authentication system further includes a photographing device that is connected to the communication line network and takes a picture for attaching an identification card. When the authentication requesting terminal receives the authentication information, Information for permitting personal photography is transmitted to the apparatus.

  In the authentication system of the present invention, the identification card is a passport.

  In addition, in the authentication system of the present invention, an individual who wishes to leave or enter the country registers personal information in advance in the system server via a communication device and confirms the validity of the personal information and the confirmation that the individual exists. Providing personal information to the immigration authority that determines whether entry / exit is possible, and the authentication requesting terminal is an information processing device operated by the immigration authority, and the legitimacy of the personal information transmitted from the communication terminal The system server has a database for managing personal information, and refers to the personal information registered in the database in response to the inquiry to confirm the validity of the personal information and that the individual exists. Authentication information to be authenticated is transmitted to a terminal that desires authentication.

  In the authentication system of the present invention, the identification card is a driver's license.

  Further, in the authentication system of the present invention, an individual who wishes to attend driving training registers personal information in the system server via a communication device, based on the validity of the personal information and confirmation that the individual exists. The personal information is provided to the driving school, which determines whether or not the driver's license can be taken, and the terminal that wishes to authenticate is operated by the driving school based on the legitimacy of the personal information and the confirmation that the individual exists. An information processing apparatus that inquires a system server about the validity of personal information transmitted from a communication terminal. The system server includes a database that manages personal information, and is registered in the database in response to an inquiry. The authentication information that authenticates the legitimacy of the personal information and the existence of the individual is sent to the authentication requesting terminal. Characterized in that it.

  In addition, in the authentication system of the present invention, an individual who wishes to take a driver's license registers personal information in the system server in advance through a communication device, and confirms the validity of the personal information and the existence of the individual. Provide personal information to the test site that determines whether or not to take a driver's license for an individual, and the terminal that wishes to be authenticated operates by the test site based on the validity of the personal information and confirmation that the individual exists An information processing apparatus that inquires a system server about the validity of personal information transmitted from a communication terminal. The system server includes a database that manages personal information, and is registered in the database in response to an inquiry. Authentication information that authenticates the legitimacy of the personal information and the existence of the individual is sent to the authentication requesting terminal. And wherein the Rukoto.

  In the authentication system of the present invention, the identification card is a basic resident register card.

  According to the present invention, it is possible to construct a system in which a third-party institution can authenticate by verifying the legitimacy of personal information and confirming the existence of an individual from pre-registered personal information. It is possible to meet the needs of every place.

According to the present invention, historical information of individuals who have been publicly treated on a self-reported basis but have no public confidence has been managed by a third-party organization, and authentication by the third-party organization is performed as necessary. By attaching (certification), it becomes possible to verify the validity of the individual's history information and the proof of the existence of the individual from various angles.
Therefore, by making effective use of the above-mentioned authentication by a third-party organization, the hiring side can easily determine whether or not to hire human resources and secure better human resources, and greatly reduce the hiring risk. It becomes possible.

  Further, according to the present invention, the job evaluation of the employee employed by using the above authentication can be reflected in the database and returned to the job seeker as personal history information.・ Disadvantages can be objectively determined, which can be very useful for self-development.

  Furthermore, according to the present invention, by managing personal history information in an integrated manner, it is not just history information management as a job hunting material, but a life resume compiled by editing the trajectory of one individual's life based on various data. It can be provided in the form of an album or the like.

  In addition, according to the present invention, the validity of the individual's history information and the proof of the existence of the individual are multifaceted, so that the passport issuing institution can trust the personal data that is a material for determining whether or not the passport is issued. Therefore, it is possible to prevent a passport from being issued to a person who misrepresents his / her personal history.

  Further, according to the present invention, the passport issuance institution uses the issuance institution terminal to inform the photographing apparatus of the validity of the history information of the individual and the information permitting the user to take a picture of the person who has been verified. When the transmission device receives the information that the photographing is permitted, the photographing device is turned on and the user is photographed. Therefore, the passport issuing organization confirms the existence of the user himself / herself and confirms the existence of the user. Can be issued, and forgery of the passport can be prevented.

In addition, according to the present invention, only for users whose validity of the personal data of the user and the existence of the individual user is proved by a third party organization, the school side permits driving training attendance,
It is possible to prevent the driver's license from being issued to other persons other than the user who is the subject of the course.

  In addition, according to the present invention, the test site side only takes the driver's license to take this exemption examination for a user whose validity of the user's personal data and the existence of the user's individual are proved by a third party organization. Therefore, it is possible to refuse an examination by a person other than the user to be taken.

  In addition, according to the present invention, the test site transmits to the imaging device using the test site terminal, information indicating that the personal history information of the individual and the user who has been proved to be present are permitted to take a photo. When the photographing device receives the information that the photographing is permitted, the photographing device takes a picture of the user by turning on the power of its own device, so the test site confirms the existence of the user and gives a driver's license. It can be issued and it is possible to prevent forgery of the driver's license.

  In addition, according to the present invention, the municipal office side issues a basic resident register card only to a user who has been verified by a third party organization the validity of the user's personal data and the existence of the user's individual, It becomes possible to prevent the basic resident register card from being erroneously issued to others other than the user to be issued.

  Hereinafter, an authentication system according to the present invention will be described in detail with reference to the accompanying drawings. 1 to 7 show an embodiment of an authentication system according to the present invention.

  FIG. 1 is a block diagram showing a schematic configuration of an authentication system according to the first embodiment of the present invention. In FIG. 1, the authentication system according to the first embodiment of the present invention is configured by connecting a system server 10, a user terminal 20, and an employment side terminal 30 via a communication network 100.

  The system server 10 is a server device managed and operated by a third-party organization. The system server 10 has a function of performing authentication based on personal history information, and a database (DB) 11 for recording and managing the history information of each individual. It has.

  The user terminal 20 is a terminal device that is used by a user who uses the present system, and is used for history information registration and browsing processing. It is preferable that a scanner function used for registering history information is installed.

  The hiring terminal 30 is a terminal device used by a company or the like that uses this system to determine whether or not a job seeker can be hired. The hiring terminal 30 verifies the personal history information provided by the job seeker and the existence proof of the individual. Is received from the system server 10 and authentication information returned from the system server 10 is received. The employer can be used as a material for determining whether or not the job seeker can be employed based on the received authentication information.

FIG. 2 is a sequence chart showing an operation example of the authentication system according to the first embodiment of the present invention.
First, a job seeker accesses a website managed and operated by the system server 10 from the user terminal 20, and applies for registration of history information on the web page (step S1). At this time, certificates and the like as history information are separately mailed to a third party organization (certification organization) on the management side of the system server 10.

In response to the registration application from the user terminal 20, the system server 10 organizes history information provided on the Web page, creates an individual information page (chart) (step S2), and sets the information disclosure range. A confirmation request is transmitted to the user terminal 20 (step S3). At this time, a unique identification number is issued to the job seeker, and regarding subsequent data exchange, information is organized in association with the identification number.
Since the information disclosure range deals with personal information, the registrant (job seeker) himself is responsible for determining the range. Therefore, the contents of registration and disclosure are naturally different in scope.
For example, when registering history information, each input item may be allowed to select whether or not to disclose information.

  In response to the information disclosure range confirmation request transmitted from the system server 10, the user terminal 20 transmits the disclosure range designation information to the system server 10 (step S4).

  Based on the disclosure range designation information from the user terminal 20, the system server 10 inserts a designation flag (disclosure enabled / disabled) for each item in the chart (step S5).

The hiring side terminal 30 concludes a usage contract for this system with the manager of the system server 10 in advance. In order to confirm the validity of the resume (history information) sent by mail or e-mail after posting an advertisement for recruitment of employees under such circumstances, the system server 10 is checked. The authentication request is transmitted together with the resume information (step S6).
Note that the resume information may be sent in a format in which the image data captured by the scanner function is attached to an e-mail if the hiring terminal 30 has the scanner function. Submit to the administrator by fax or mail.

  The system server 10 performs a collation process of the information on the resume sent from the employment terminal 30 while referring to the database 11 (step S7), and if the history information exists, reads the history information from the database 11 Only the information for which the disclosure flag is set is transmitted to the employment side terminal 30 together with the authentication information (proof that the contents of the resume are valid + proof that the job seeker actually exists) (step S8). . Further, if there is no history information in step S7, the system server 10 notifies the hiring terminal 30 of a message indicating that authentication is impossible, and ends the process (step S9).

  The hiring side may confirm the result of the authentication information transmitted in step S8 on the hiring side terminal 30 and determine whether or not the employment can be adopted on the assumption that the contents of the resume sent or submitted by the job seeker are valid. it can.

FIG. 3 is a plan view showing an example of a history information registration screen.
As shown in FIG. 3, the category of history information to be registered is selected from the pull-down menu, information is input in the free description column, and whether or not the information can be disclosed is selected. As a material for proving that the information input by the above input operation is valid information, an input field for an attached material is provided.

For example, the following is registered as history information.
1. <CV data>
Resume data can be registered as inquiry data from the employer (employer). Of course, it is also possible to create the resume data from various data shown below.
2. <Personal data>
Personal data is registered at your own risk. Its main items are personal data such as name, address, phone number, mobile phone number, e-mail address, date of birth, and the like. As sub-items, various optional items such as the nearest station, hobbies, religion, family structure, relatives, friendships, blood types, and profiles are provided.
3. <Educational data>
As educational data, it is possible to register a graduation certificate or grade certificate of kindergarten, nursery school, elementary school, junior high school, high school, university, vocational school, graduate school, etc. Note that graduation certificates and transcripts can be registered using the scanner function.
4). <Qualification data>
As qualification data, it is possible to register data such as a passing year, a passing number, and a registration number from a national qualification to a private qualification.
5). <Work history data>
Employment history data includes working company (location, department, industry, capital, number of employees, etc.), period, employment type, employment conditions, job description (success stories / failure stories, acquired technology / level / position, etc.) As sub-items, it is possible to register detailed items such as corporate culture, personal connections (supervisors, subordinates, business partners, etc.), reasons for employment / retirement / change of job, impressions (company / industry), and things to be useful in the future.

  For example, an authentication point is given in advance to each data item described above, a higher point is set for a photo ID such as a license or a national qualification certificate, etc. Set a lower point. When there is an actual authentication request, refer to the personal history information to be authenticated, add at least one authentication point of historical information registered, and the higher the point, the real rate = authentication It is also possible to operate as a system with high accuracy.

FIG. 4 is a plan view showing an example of a screen when the educational history information is input on the history information registration screen. As shown in FIG. 4, the classification is “educational history”, educational information is described in the free description column, and if information disclosure is possible, the information disclosure column is marked and transmitted. In FIG. 4, “None” is selected in the attachment field, but the validity of educational information is a third-party organization by submitting a graduation certificate or transcript as an attachment. Authentication can be performed on the system server 10 side.
3 and 4 show only an example of the registration screen, and it is natural that the setting change of the format can be arbitrarily performed without being limited by the illustrated format.

  In addition, in order to prove that the person actually exists, the biometric information of the job seeker can be registered as history information. As such biometric information, information unique to individuals such as fingerprints, irises, retina photographs, palm veins, contours, DNA (gene information), voiceprint authentication, and the like can be registered. That is, the registration of these pieces of information is used to prove that the job seeker who is a registrant actually exists.

  The data registered in the database 11 of the system server 10 as described above is arranged in time series based on the registration date and time, and when there is a browsing request from a job seeker, arbitrarily specified history information is stored in the user. It can be provided to the terminal 30.

  The authentication information transmitted from the system server 10 operated by a third-party organization to the hiring terminal 30 is in principle not accompanied by extra comments from the viewpoint of privacy protection, and the registered data is not disclosed. Like that.

  For example, the system server 10 refers to the database 11 on the basis of the contents of the proof matter in response to the authentication request for the proof matter (resume content) requested from the employment side terminal 30 and is registered in the database 11. If it is, the fact that it is “registered”, and if it is not registered, only the fact of “not registered” is provided to the employment terminal 30 as authentication information.

Further, when the proof matter requested for authentication is registered in the database 11 but the content of the data does not match, the system server 10 displays a message such as “does not match the personal data” as the authentication information. As offered.
In addition, as described above, the history information registered in the database 11 is in principle non-public, but there is an authentication request regarding the contents (history information) that the registrant is permitted to disclose. In addition to providing authentication information, history information that is permitted to be disclosed may be provided.

  According to the first embodiment of the present invention, the conventional personal history information based on self-reporting is managed by a third party organization, and the certification by the third party organization is attached as necessary. It is possible to provide the employer with the legitimacy of the individual's history information and proof of the existence of the individual, and the employer can improve the reliability of the personal history information in the admission decision by the above authentication. It can be greatly reduced.

  In the first embodiment of the present invention, the history information is registered on the website. However, for example, an access right to a DB (dedicated folder for history information registration) provided in the system server ( It is also possible to adopt a method in which account information) is given in advance to a person who wants to register and is arbitrarily registered as appropriate.

  FIG. 5 is a sequence chart showing an operation example of the authentication system according to the second embodiment of the present invention. The second embodiment of the present invention employs (employs) human resources using the result of authentication according to the first embodiment described above, and is particularly suitable for registration of evaluation information such as temporary employees. .

  First, the hiring side terminal 30 requests the system server 10 to write evaluation information on the Web page provided by the system server 10 (step S11). This request may be requested based on information of a unique identification number (issued in advance when registering history information in the system server 10) of the actually employed human resource.

The system server 10 refers to the history information registered in the DB 11 based on the identification number in response to the evaluation information write request transmitted from the employment side terminal 30, and if there is matching history information, the evaluation information An information input page is transmitted to the hiring terminal 30 (step S12).
Note that if there is no matching history information, a message to that effect may be transmitted to the hiring terminal 30.

  The hiring side terminal 30 performs the evaluation information input process by the evaluator on the evaluation information input page transmitted from the system server 10 (step S13), and then transmits the input evaluation information to the system server 10. (Step S14).

  The system server 10 registers the evaluation information transmitted from the employment side terminal 30 as history information in the DB 11 (step S15).

  The job seeker (registrant of history information) transmits an inquiry about evaluation information related to his / her work attitude to the system server 10 via the user terminal 20 (step S16).

  In response to the inquiry about the evaluation information transmitted from the user terminal 20, the system server 10 refers to the DB 11 based on the identification number unique to the job seeker and confirms the presence or absence of the evaluation information (step S17). If there is no evaluation information in the DB 11, a message indicating that there is no evaluation information is transmitted to the user terminal 20 (step S 19). .

FIG. 6 is a plan view showing an example of a screen for registering evaluation information of employees who worked as temporary employees. As shown in FIG. 6, on the registration screen of evaluation information, the identification number of the employee (job seeker) (the number issued when registering the history information in the system server 10) and the name are displayed. There are provided an input column for the contents of work and an input column for work status, and an input column for evaluator information.
In addition, as evaluation information (work evaluation information), for example, attendance information, personnel department evaluation information, personnel announcement information, personal information submitted to the employer, etc. can be input. There is no particular limitation.

  In FIG. 6, the work content input field and the work status input field adopt a free description method, but in order to ensure the uniformity of the format, a work status checklist arbitrarily set by the system administrator is displayed. By adopting a method such as three-step evaluation, it becomes possible to adopt a unified evaluation method among other contractors. In order to improve the quality of evaluation information, the above checklist method alone is not sufficient, so the employment side evaluation (such as opinions and requests for human resources) is actually implemented by adopting the free description method. It should be expressed as words.

  According to the second embodiment of the present invention, the work evaluation of the employee who has been employed by using the authentication of the history information shown in the first embodiment is reflected in the database as the evaluation information, and the personal history information The job seeker's confidence can objectively determine his / her own strengths and weaknesses, which can be very useful for self-development.

  Further, as the third embodiment of the present invention, the history information registered in the DB of the system server is not used as mere job-hunting material, but image data of commemorative photos at the milestones of life can be registered as general materials. To. The method for registering data is the same as in the first embodiment.

  According to the third embodiment of the present invention, since the history of his / her life can be registered in the system server as a personal chart, not as history information for employment, it can be used as a personal album. Yes, it can be used not only as a job-hunting material but also as an original self-promotion document.

  Furthermore, as a fourth embodiment of the present invention, the above-described authentication system of the present invention is not limited to use when recruiting human resources, but can be employed simply as a system for authenticating the existence (actual) of an individual. is there.

  FIG. 7 is a block diagram showing a schematic configuration of an authentication system according to the fourth embodiment of the present invention. In the authentication system according to the fourth embodiment of the present invention, a system server 10, a user terminal 20, and an authentication request side terminal 40 are connected via a communication network 100. Note that the same components as those in the first embodiment described above are denoted by the same reference numerals and description thereof is omitted.

  The authentication requesting side terminal 40 is a terminal device provided on the side that requests the existence (existence) proof of an individual. For example, in customs management work, it is very important whether or not the person is a real person, so by using this system, personal authentication can be confirmed on the spot. In addition, past histories, achievements, and areas of expertise of qualified persons such as doctors and lawyers can be confirmed as information authenticated by a third party organization.

<Configuration>
FIG. 8 is a block diagram illustrating a schematic configuration of the authentication system according to the fifth embodiment of the present invention. As shown in the figure, the authentication system according to the fifth embodiment of the present invention includes a system server 10, a user terminal 20, a domestic issuing institution terminal 41, a foreign issuing institution terminal 42, a photographing device 43, and an exit terminal 44. And the immigration terminal 45 are connected via the communication line network 100.
In this embodiment, the domestic issuing institution terminal 41, the foreign issuing institution terminal 42, the departure side terminal 44, and the entry side terminal 45 function as authentication requesting side terminals in the fourth embodiment.

  The system server 10 is a server device managed and operated by a third-party organization, and has a function of performing authentication based on personal data of a user (hereinafter, personal data includes personal data and biometric information). And a database (DB) 11 for recording and managing personal data of each user.

On the other hand, the user registers his / her personal data in the system server 10 described above using the user terminal 20.
The user terminal 20 is a terminal device used by a user who uses the present system, and is used for registration of personal data and browsing processing. It is preferable that a scanner function used when registering personal data is installed. In this embodiment, it is assumed that the user is a passport holder or a person who desires to obtain a passport.

In addition, the user visits a window of an organization that issues a passport (hereinafter referred to as a domestic passport issuing organization) in the user's country of residence, such as the Ministry of Foreign Affairs, and applies for a passport.
The domestic issuing institution terminal 41 is a terminal device used by the domestic passport issuing institution. The domestic authentication requesting side terminal 41 has a function of inquiring the system server 10 about the validity of the personal data provided by the user and the existence certificate of the user, and receiving information indicating the authentication result returned from the system server 10. It has. The domestic passport issuing organization determines whether or not a passport can be issued to the user based on the received information indicating the authentication result.

If the user loses his / her passport in a country other than the user's country (outside of the country), he / she visits an organization (hereinafter referred to as an overseas passport issuing organization) that reissues the passport, such as an embassy. Apply for reissue.
The foreign issuing institution terminal 42 is a terminal device used by the foreign passport issuing institution. The foreign authentication requesting side terminal 42 has a function of inquiring the system server 10 about the validity of the personal data provided by the user and the existence proof of the user and receiving information indicating the authentication result returned from the system server 10. It has. The foreign passport issuing institution determines whether or not a passport can be reissued to a user who requests reissuance due to loss of the passport or the like based on the received information indicating the authentication result.

Further, when issuing a passport, the user takes a photo for attaching a passport at the above-mentioned domestic passport issuing organization.
The photographing device 43 is a device such as a camera that is operated by a staff member of a domestic passport issuing organization, and photographs a certification photograph attached to the passport.

Further, when the user leaves the country, the user undergoes a departure examination at an organization that manages the departure of the user, such as the Immigration Bureau (hereinafter referred to as an immigration authority).
The departure terminal 44 is a terminal device used by the departure control organization. The departure side terminal 44 inquires the system server 10 about the validity of the personal data provided by the user and the validity of the user or the validity of the passport itself, and indicates the authentication result returned from the system server 10 Is provided. Based on the received authentication information, the departure control organization determines whether or not the user who requests the departure can leave the country.

Further, when entering the country, the user undergoes immigration examination at an organization that manages the entry of the user (hereinafter referred to as an immigration authority) such as the Immigration Bureau.
The immigration terminal 45 is a terminal device used by the immigration authority. This immigration terminal 45 inquires the system server 10 about the validity of the personal data provided by the user and the validity of the user, or the validity of the passport itself, and indicates the authentication result returned from the system server 10 Is provided. The immigration authority determines whether or not the user who requests entry can enter the country based on the received information indicating the authentication result.

  The domestic issuing institution terminal 41, the foreign issuing institution terminal 42, the departure side terminal 44, and the entry side terminal 45 may include a scanner and the like, and may have a function of reading biometric information.

<Operation>
Hereinafter, the operation of the authentication system according to the fifth embodiment of the present invention will be described.
(User authentication operation when issuing a passport)
FIG. 9 is a sequence chart showing an example of a user authentication operation when a passport is issued by the authentication system.

  First, the user accesses a Web site managed and operated by the system server 10 from the user terminal 20 and applies for registration of personal data on the Web page (step S101). At this time, certificates and the like as personal data are separately submitted to a third party organization (certification organization) on the management side of the system server 10.

  In response to the registration application from the user terminal 20, the system server 10 organizes personal data provided on the Web page, and creates and stores an information page (chart) for each individual (step S102). At this time, the system server 10 may issue a unique identification number to the user, and regarding subsequent data exchange, information may be organized in association with the identification number.

After the personal data registration, the user visits a domestic passport issuing institution to apply for a passport. At this time, the user fills in the application documents etc. necessary items (name, address, etc.) for issuing the passport and presents it to the domestic passport issuing organization. The application documents include user identification documents (resident card, driver's license, insurance card, etc.). The user also presents biometric information such as fingerprints to domestic passport issuing agencies.
The staff of the domestic passport issuing organization inputs the presented personal data of the user using the domestic issuing organization terminal 41 (step S103).
Here, a specific example of the input operation of the user's biometric information in step S103 will be described.
For example, when a passport application is made, the behavior of the user who visited the window of the domestic passport issuing agency and the correspondence with the staff at the window are recorded with a digital video / image / sound using a camera / microphone, etc., and input to the domestic issuing agency terminal 41. Keep it. In this case, the domestic issuing institution terminal 41 collects the user's face outline, action pattern, voiceprint, and the like from the recorded video / image / sound.

Next, the user uses the user terminal 20 to transmit information indicating that a passport issuance application has been made to the system server 10 (step S104).
In step S104, the user uses the user terminal 20 to send information indicating that the user's personal data stored in the system server 10 is used / externally exchanged to the domestic passport issuing organization. Send to.
When the system server 10 receives information from the user terminal 20 that permits the use / external exchange of personal data, the system server 10 stores the identification information of the domestic passport issuing organization and the identification information of the user in the database 11 in association with each other, for example. As a result, the system server 10 performs authentication when a user authentication is requested from the domestic issuing institution terminal 41 thereafter.

The domestic passport issuing agency verifies the contents of the application documents and confirms the identity of the user, and confirms that the application documents have not been modified, forged, altered or counterfeited.
Further, the domestic passport issuing institution transmits information requesting the presence authentication of the individual user who applied for the passport issuance to the system server 10 using the domestic issuing institution terminal 41 (step S105).
Further, in the authentication request in step S105, the domestic issuing institution terminal 41 transmits to the system server 10 the user's personal data including the application document content information and the input user biometric information.

The system server 10 collates the personal data of the user transmitted from the domestic issuing institution terminal 41 with reference to the database 11 (step S106).
If the transmitted personal data of the user exists in the database 11 (step S106 / match), the system server 10 reads the personal data from the database 11 and stores the personal data permitted to be exchanged externally by the user. It is transmitted to the domestic issuing institution terminal 41 together with the authentication information (the proof that the contents of the application document are valid + the proof that the user actually exists) (step S107).
On the other hand, if there is no personal data (step S106 / mismatch), the system server 10 notifies the domestic issuing institution terminal 41 of a message indicating that authentication is impossible (step S108). The domestic passport issuing institution examines whether or not a passport can be issued to the user in accordance with the content of the transmission information from the system server 10.

For example, the system server 10 performs the following verification process in step S106.
“Identity of application documents”
The system server 10 compares the personal data such as the current address and date of birth of the user entered in the application document with the personal data registered in the database 11 to verify the identity.
"Compatibility with various biometric information"
The system server 10 compares biometric information such as a fingerprint read by a domestic passport issuing organization with information registered in the database 11 and determines whether or not they match.
“Identity of the confirmation document presented by the person”
The system server 10 compares the data of documents (resident's card, driver's license, insurance card, etc.) that the user has brought to the domestic passport issuing organization with the personal data registered in the database 11 to verify the identity. .

  When the domestic issuing institution terminal 41 receives the personal data and the authentication information indicating that the authentication has been obtained from the system server 10, the domestic passport issuing institution creates the passport of the user who has obtained the authentication. After completion of the creation, the domestic passport issuing institution notifies the user terminal 20 that the passport creation has been completed using the domestic issuing institution terminal 41 (step S109). The domestic passport issuing institution may notify the user by postcard that the passport creation is completed.

In addition, the domestic issuing institution terminal 41 registers data relating to passport creation in the system server 10 (step S110).
The data related to the creation of the passport includes, for example, the user's biometric information read in step S103, the name of the staff of the domestic passport issuing institution that confirmed the application documents, and the domestic passport issuing institution that received the application The names of staff members are included.
In this way, by repeating data registration at different times, places, and people, clarification of the user's actual witness is realized. In addition, by registering personal data in the system server 10 having a certain security level, it is possible to prevent a user's personal data from being leaked.
In addition, the personal data registered in the system server 10 can be used by other organizations with the consent of the user.

When the user receives the issued passport, the user transmits information indicating that the passport has been received to the system server 10 (step S111).
Thus, the authentication system ends the process.

FIG. 10 is a diagram illustrating an example of a registration screen according to the fifth embodiment of the present invention. Here, a specific example of the operation in step S101 will be described with reference to FIG.
When the user terminal 20 accesses a Web site managed by the system server 10 and operated by a third party organization, the user terminal 20 displays a screen as shown in the figure. The user uses the user terminal 20 to input items of personal data such as “name”, “date of birth”, “current address”, and “phone number” as shown in the figure. In addition, the user uses the user terminal 20 to specify the type of attached document (resident card, driver's license, insurance card) for certifying the user himself / herself, and explanation of the attached document (number of driver's license, insurance card) Etc.).
The user terminal 20 applies to the system server 10 for registration of the input content as personal data.

Also in the present embodiment, the system server 10 may set a designation flag (use / external exchange possible / impossible) for each item of personal data as in the first embodiment.
In this embodiment, the user brings the documents necessary for the passport application, visits a domestic passport issuing institution, and fills in the application documents. The personal data necessary for the application, the number of the certification document, etc. may be directly transmitted to the domestic issuing institution terminal 41 to perform the passport application procedure.
In addition, the user may not use the user terminal 20 to transmit information indicating that a passport issuance application has been made to the system server 10. In this case, when registering the personal data in the system server 10, information that permits the use / external exchange of the personal data is transmitted to the system server 10 in advance.
Further, after receiving the passport, the user does not have to notify the user terminal 20 of the receipt.

As described above, according to the fifth embodiment of the present invention, when applying for a passport, the conventional personal data based on self-declaration is managed by a third party organization, and the certification by the third party organization is performed as necessary. As a result, it is possible to provide the passport issuer with the validity of the personal data of the user and proof of the existence of the individual.
Also, the passport issuance side improves the reliability of personal data in the passport issuance determination by the above authentication, so it is possible to prevent the passport from being issued to a person who misrepresents his / her personal history.

(User authentication reconfirmation operation)
If the user authentication is not obtained in the above-described user authentication at the time of creating the passport (step S106 / mismatch), the domestic passport issuing institution can obtain the user authentication again for the user who requests the passport issuance. You may make it confirm whether it is no.
FIG. 11 is a sequence chart illustrating an example of a user authentication reconfirmation operation when a passport is created by the authentication system. The user authentication reconfirmation operation in this embodiment will be described below with reference to the drawings.

  First, the domestic passport issuance organization interviews the user and conducts an oral examination related to personal data such as a career to the user. The domestic passport issuing organization uses the domestic issuing organization terminal 41 to input the response content at the time of the interview, and transmits information indicating the input response content to the system server 10 (step S121).

The system server 10 collates the received response content with the personal data in the database 11 (step S122). Since the verification process is the same as the verification process at the time of issuing the passport, the details are omitted.
If user authentication is obtained (step S122 / match), the personal data and authentication information used for verification are transmitted to the domestic issuing institution terminal 41 (step S123). The domestic passport issuing organization starts creating a passport according to the authentication information transmitted from the system server 10.
On the other hand, when the user authentication is not obtained (step S122 / mismatch), a message indicating that the authentication is impossible is notified to the domestic issuing institution terminal 41 (step S124).
The domestic passport issuing institution examines whether or not a passport can be issued to the user in accordance with the content of the transmission information from the system server 10.

Next, the domestic issuing institution terminal 41 registers various data related to passport issuance in the system server 10 (step S125). Since this data registration operation is the same as the data registration operation (step S111) at the time of issuing a passport, detailed description thereof will be omitted.
As described above, the user authentication reconfirmation operation when the passport is issued is terminated.
As described above, when the user authentication is not obtained as a result of the verification at the time of issuing the passport, the validity of the personal data of the user and the proof of the existence of the individual are surely confirmed by reconfirming the user authentication. It becomes possible.

(User authentication operation when issuing a passport)
When the user receives a notification that the passport has been issued from the domestic passport issuing institution by e-mail or postcard, the user visits the domestic passport issuing institution and performs a passport receiving procedure.
At this time, the domestic passport issuing organization uses the domestic issuing organization terminal 41 to input the user's biometric information as the user's personal data, and transmits the input personal data to the system server 10. Further, the domestic passport issuing institution may use the domestic issuing institution terminal 41 to input the content of the passport issuance notification brought by the user as personal data and transmit it to the system server 10.
Subsequent user authentication operations are the same as when a passport is issued, and thus description thereof is omitted. If user authentication is obtained, the user receives the issued passport.

  As described above, according to the first embodiment of the present invention, the domestic passport issuing organization erroneously issues a passport to a third party other than the user in order to confirm the existence of the user even when the passport is issued. This can be prevented.

(Registering passport details after issuing a passport)
After issuing the passport, the domestic passport issuing organization notifies the system server 10 of information indicating that the passport has been issued using the domestic issuing organization terminal 41.
After the passport issuance notification, the user may register the passport contents as shown below.
After issuing the passport, the user notifies the system server 10 of information indicating that the passport has been received from the domestic passport issuing organization.

Next, the user visits a third-party organization that manages the system server 10 and presents the received passport.
The staff of the third-party organization digitally inputs the contents of the passport, etc. using a scanner, camera, copy, etc. Information indicating the contents of the digitally entered passport is stored in the system server 10 in association with the user identification information.

  As described above, according to the present embodiment, by storing the contents of the passport after issuance in the system server 10 as an image, when performing user authentication when using the passport, the user's actual It is possible to further improve the accuracy of confirmation of the property.

(User authentication when reissuing your passport in Japan)
Hereinafter, the user authentication operation when the user needs to reissue the passport in the country issuing the passport after the passport is issued and the user applies to the domestic passport issuing organization for the reissue of the passport will be described.
FIG. 12 is a sequence chart showing an example of a user authentication operation by the authentication system when applying for a reissue of a passport to a domestic passport issuing organization. Hereinafter, description will be made with reference to the drawings.

First, when it becomes necessary to reissue a passport due to loss or the like, the user visits a domestic passport issuing institution and applies for a reissue of the passport.
At this time, the user fills in documents necessary for reissuing, presents a document for user identification, provides biometric information, and the like, similar to when issuing a passport.
The staff of the domestic passport issuing organization inputs the personal data of the user presented / provided using the domestic issuing organization terminal 41 (step S131).
Since the personal data input operation in step S131 is the same as the operation in step S103 when the passport is issued, detailed description thereof is omitted.

  Next, the user uses the user terminal 20 to transmit information to the effect that the passport reissue application has been made to the system server 10 (step S132). The operation in step S132 may be omitted as appropriate.

  The operations in steps S133 to S138 below are the same as those in steps S105 to S110 when the passport is issued, and will be described briefly.

  After confirming the contents of the presented / provided document, the domestic passport issuing institution transmits, to the system server 10, using the domestic issuing institution terminal 41, information requesting the presence authentication of the individual user who applied for the passport issuance. (Step S133).

The system server 10 collates the personal data of the user transmitted from the domestic issuing institution terminal 41 with reference to the database 11 (step S134), and when the transmitted personal data of the user exists in the database 11 (Step S134 / Match), the personal data and authentication information for which external exchange is permitted by the user are transmitted to the domestic issuing institution terminal 41 (Step S135).
If the personal data does not exist (step S134 / mismatch), the system server 10 notifies the domestic issuing institution terminal 41 of a message indicating that the authentication is impossible (step S136).
The domestic passport issuing institution examines whether or not a passport can be issued to the user in accordance with the content of the transmission information from the system server 10.

  When the domestic issuing institution terminal 41 receives the personal data and the authentication information indicating that the authentication has been obtained from the system server 10, the domestic passport issuing institution creates a passport of the user who has obtained the authentication and reissues it. Do. After completion of the creation, the domestic issuing institution terminal 41 notifies the user terminal 20 that the reissue of the passport is completed (step S137). The domestic passport issuing institution may notify the user by postcard that the passport creation is completed.

The domestic issuing institution terminal 41 registers various data used at the time of issuing the passport in the system server 10 (step S138).
Thus, the authentication system ends the process.

In this way, according to this embodiment, when applying for reissue of a passport, the conventional personal data based on self-reporting is managed by a third party organization, and proof by the third party organization is provided as necessary. As a result, it is possible to provide the passport issuer with the validity of the personal data of the user and proof of the existence of the individual.
The passport issuance side improves the reliability of personal data in the determination of passport issuance by the above authentication, so it is possible to prevent the passport from being reissued to a person who misrepresents his / her personal history.

(User authentication when reissuing your passport outside Japan)
In the following, when a passport is issued, it becomes necessary for the passport to be reissued outside of the country where the passport is issued (overseas) due to reasons such as loss, and the user applies to a foreign passport issuance organization (such as an embassy). The user authentication operation will be described.
FIG. 13 is a sequence chart showing an example of a user authentication operation by the authentication system when applying for a reissue of a passport to a foreign passport issuing institution. Hereinafter, description will be made with reference to the drawings.

First, when it becomes necessary to reissue a passport due to loss or the like, the user visits a contact point of an overseas passport issuing institution to apply for a passport reissue.
At this time, the user fills in documents necessary for reissuance, presents documents for user identification, provides biometric information, and the like, similar to domestic passport reissuance.
The staff of the foreign passport issuing organization inputs the personal data of the user presented / provided using the foreign issuing organization terminal 42 (step S141).
Since the personal data input operation in step S141 is the same as the operation in step S131 at the time of domestic passport reissue, detailed description is omitted.

Next, after confirming the contents of the presented / provided document, the foreign passport issuing institution uses the foreign issuing institution terminal 42 for information requesting acquisition of the user's personal data used at the time of past passport issuance. To the domestic issuing institution terminal 41 (step S142).
At this time, the overseas issuing institution terminal 42 also transmits the personal data input in step S114 to the domestic issuing institution terminal 41 together with the data acquisition request.

  Next, the domestic issuing institution terminal 41 transmits the data acquisition request received from the overseas issuing institution terminal 42 to the system server 10 (step S143).

When the system server 10 receives the data acquisition request, the system server 10 performs a collation process of the personal data requested to be acquired from the overseas issuing institution terminal 42 via the domestic issuing institution terminal 41 while referring to the database 11 ( Step S144).
If the transmitted personal data exists in the database 11 (step S144 / match), the personal data used when issuing the past passport is extracted from the personal data in the database 11, and the extracted data is extracted. The personal data is transmitted to the overseas issuing institution terminal 42 (step S145).
In addition, when the personal data transmitted from the foreign issuing institution terminal 42 does not exist in the database 11 (step S144 / mismatch), the system server 10 indicates that there is no personal data used at the time of past passport issuance. The message is notified to the overseas issuing organization terminal 42 (step S146).
The foreign passport issuing institution compares the personal data transmitted from the system server 10 with the personal data presented / provided by the user at the time of applying for a passport reissue.

Here, when the system server 10 has received the user's presence authentication request from the overseas issuing institution terminal 42 via the domestic issuing institution terminal 41 together with the acquisition request of the personal data used at the time of issuing the passport in the past. The following authentication operation is performed.
The system server 10 collates the user's personal data transmitted from the domestic issuing institution terminal 41 with reference to the database 11 (step S147), and if the user's personal data exists in the database 11 (step S147). (S147 / match), authentication information indicating that the presence authentication of the user has been obtained is transmitted to the overseas issuing institution terminal 42 (step S148).
Further, in step S147, when the personal data does not exist (step S147 / mismatch), the system server 10 notifies the foreign issuing agency terminal 42 of a message indicating that the authentication is impossible (step S149).
The foreign passport issuing organization considers whether or not the passport can be reissued to the user based on the result of the personal data verification in addition to the notification contents.

Next, the foreign issuing institution terminal 42 registers various data used when issuing the passport in the system server 10 (step S150).
The various data used at the time of issuing this passport include, for example, the user's biometric information read in step S141, the name of the staff member of the domestic passport issuing institution that confirmed the application documents, and the domestic country that received the application. Includes the names of staff members of the passport issuing organization.
Thus, the authentication system ends the process.

As described above, according to this embodiment, when applying for reissue of a passport outside Japan, the conventional personal data based on self-reporting is managed by a third party, and if necessary, by the third party. By attaching the proof, it is possible to provide the passport issuer with the validity of the personal data of the user and the proof of the existence of the individual.
The passport issuance side improves the reliability of personal data in the determination of passport issuance by the above authentication, so it is possible to prevent the passport from being reissued to a person who misrepresents his / her personal history.

Further, in this embodiment, when the overseas issuing institution terminal 42 requests user authentication and data acquisition, the user authentication request and data acquisition request are not transmitted directly to the system server 10 but via the domestic issuing institution terminal 41. Since it is transmitted to the system server 10, it is possible to prevent impersonation of a foreign passport issuing organization by a third party.
As described above, in this embodiment, the foreign issuing institution terminal 42 requests the system server 10 for user authentication and data acquisition via the domestic issuing institution terminal 41. The request may be made directly to the system server 10 without going through the domestic issuing institution terminal 41.

(User authentication operation when taking a picture)
In general, a photo for identification is attached to the passport, and conventionally, the user has brought this photo for identification when the passport is issued / reissued. In this case, a domestic passport issuing organization such as the Ministry of Foreign Affairs may issue a passport with a photo of a person different from the person to whom the passport is issued.
On the other hand, in this embodiment, it is possible to prevent forgery of a passport by performing user authentication even when taking a photo for identification.

  FIG. 14 is a sequence chart showing an example of a user authentication operation by the authentication system at the time of taking a picture for attaching a passport. Hereinafter, the user authentication operation at the time of taking a picture will be described with reference to the drawings.

First, the domestic issuing institution terminal 41 inputs the user's biometric information using a scanner or the like provided in its own terminal (step S151). Preferably, the domestic issuing institution terminal 41 is installed in the vicinity of the photographing device 43.
After inputting the biometric information, the user moves to the installation location of the imaging device 43 in order to take a passport photo.

Next, the domestic issuing institution terminal 41 transmits the input biometric information to the system server 10 (step S152).
The system server 10 collates the user's biometric information transmitted from the domestic issuing institution terminal 41 with reference to the database 11 (step S153), and when the user's biometric information exists in the database 11 (Step S153 / match), the authentication information is transmitted to the domestic issuing institution terminal 41 (Step S154). Further, the system server 10 may transmit the biometric information of the user stored therein together with the authentication information to the domestic issuing institution terminal 41.
On the other hand, if biometric information does not exist in step S153 (step S153 / mismatch), the system server 10 notifies the domestic issuing institution terminal 41 of a message indicating that authentication is impossible (step S155).
The above-described user authentication operation is the same as that at the time of issuing a passport, and thus detailed description thereof is omitted.

The domestic passport issuing institution examines whether or not the user can take a passport photo based on the notification contents (may include biometric information registered in the system server 10).
As a result of the examination, if the domestic passport issuing institution determines that the input biometric information is not that of the user to whom the passport is issued, information indicating that photography is not permitted is input using the domestic issuing institution terminal 41 (step) S156 / non-permission). In this case, the power of the photographing device 43 remains off, and photography cannot be performed. Thereafter, after a series of data registration is performed in the same manner as when the passport is issued (step S159), the information distribution system ends the operation.
On the other hand, as a result of the examination, if the domestic passport issuing institution determines that the input biometric information is that of the user who is the passport issuance target, the domestic issuing institution terminal 41 is used to input information indicating that photography is permitted ( Step S156 / permission). In this case, the power of the photographing device 43 is turned on (step S157), and the user's passport attached photograph is taken. The photographing device 43 transmits the photographed photograph data to the domestic issuing institution terminal 41 (step S158). The domestic issuing institution terminal 41 transmits a series of data including the photo data transmitted from the photographing device 43 to the system server 10 for registration (step S159).

  In this embodiment, the domestic passport issuing institution sets the photographing permission / non-permission by the photographing device 43 using the domestic issuing institution terminal 41 based on the authentication result from the system server 10. When receiving authentication information from the system server 10, the terminal 41 may automatically transmit control information for turning on the power of the imaging device 43 to the imaging device 43. In this case, it is possible to shorten the time until the start of photographing and reduce the user authentication determination work by the domestic passport issuing organization.

  As described above, according to the present embodiment, the domestic passport issuing organization transmits information to the effect that photography of the user whose authentication is confirmed is permitted to the imaging device 43 using the domestic issuing organization terminal 41, When the photographing device 43 receives the information indicating that the photographing is permitted, the photographing device 43 turns on the power of the own device to photograph the user. Therefore, the domestic passport issuing institution confirms the existence of the user himself / herself and confirms the passport. It can be issued, and it becomes possible to prevent forgery of the passport.

(User authentication when leaving or entering Japan)
FIG. 15 is a sequence chart showing an example of a user authentication operation by the authentication system when the user leaves or leaves the country. Hereinafter, a user authentication operation when a user holding a passport performs immigration by passing through an immigration authority will be described with reference to the drawings.

First, the staff of the departure-side administrative institution conducts an exit examination at the departure-side management counter by comparing the items described in the passport presented by the user with the user himself / herself.
Next, the staff of the departure-side administrative organization uses the departure-side terminal 44 to input the passport description and the user's biometric information presented by the user (step S161), and transmits them to the system server 10 for transmission to the user. Authentication is requested (step S162).

The system server 10 collates the user's personal data transmitted from the departure terminal 44 with reference to the database 11 (step S163). If the user's personal data exists (step S163 / match), Authentication information indicating that the user presence authentication has been obtained is transmitted to the departure terminal 44 (step S164).
Further, when the personal data does not exist (step S163 / mismatch), the system server 10 notifies the departure side terminal 44 of a message indicating that the authentication is impossible (step S165).
Since this user authentication operation is the same as when a passport is issued, a detailed description is omitted.
The staff of the departure-side administrative institution grants the user permission to leave the country if the identity of the user is obtained based on the collation result transmitted from the system server 10.
Next, the staff of the departure-side administrative institution uses the departure-side terminal 44 to transmit and register the user's personal data (passport entry items) used at the time of departure examination to the system server 10 (step S166).

After that, when the user arrives at the immigration office, the immigration official checks the passport information presented by the user against the user himself / herself at the immigration office and conducts immigration screening. .
Next, the staff of the immigration agency uses the immigration terminal 45 to input the passport description and user biometric information presented by the user (step S167), and transmits them to the system server 10 for transmission to the user. Authentication is requested (step S168).

The system server 10 collates the user's personal data transmitted from the immigration terminal 45 with reference to the database 11 (step S169), and if the user's personal data exists (step S169 / match), Authentication information indicating that the presence authentication of the user has been obtained is transmitted to the immigration terminal 45 (step S170).
If the personal data does not exist (step S169 / mismatch), the system server 10 notifies the immigration terminal 45 of a message indicating that authentication is impossible (step S171).
Since this user authentication operation is the same as when a passport is issued, a detailed description is omitted.
The staff of the immigration control institution gives the user permission to enter the country if the identity of the user is obtained based on the result of the collation transmitted from the system server 10.

Next, the staff of the immigration control organization uses the immigration terminal 45 to transmit and register various data at the time of immigration examination to the system server 10 (step S172).
The various data transmitted includes the name of the staff member who conducted the immigration examination and the name of the staff member who interviewed the user during the immigration examination. In this way, by recording the names of staff members involved in immigration, it can be used as a judgment material at the time of immigration procedures for the user's time, and organized crime can be prevented.
This is the end of the operation.

  As described above, in the present embodiment, at the time of immigration, the system server 10 determines whether or not user authentication is possible based on the items described in the passport held by the user and the user's biometric information, and the determination result is determined. The information is sent to the immigration terminal 45, and the staff of the immigration authority conducts immigration examination based on the determination result. Therefore, the immigration authority may manage the immigration after confirming the existence of the user himself / herself. It is possible to prevent illegal entry.

<Features>
Hereinafter, the configuration and operation of the sixth embodiment of the present invention will be described, but unless otherwise specified, the detailed description thereof is omitted as it is the same as the fifth embodiment.

Conventionally, the passport is made of paper, and character information and the like are written in ink and a photograph is attached. On the other hand, a recording medium capable of writing / reading electronic data such as an IC chip is attached to the passport in this embodiment. In the recording medium, a passport number, personal data (user name, current address, etc.), biometric information (user fingerprint, etc.), and passport delivery location / date and time are written.
In the present embodiment, in addition to the functions in the fifth embodiment, the domestic issuing institution terminal 41 has a function of writing the user's personal data on the recording medium.
Further, in this embodiment, the departure side terminal 44 and the entry side terminal 45, in addition to the functions in the fifth embodiment, read data in the recording medium attached to the passport, and read the data in the recording medium. It is also possible to have a function of collating the personal data of the user that has been input.

<Operation>
Hereinafter, the operation in this embodiment will be described.
(Data registration to the recording medium when issuing a passport)
The user transmits his / her personal data to the system server 10 using the user terminal 20 and registers it. As described above, the system server 10 manages various personal data of each user, so that it can be easily used when user authentication is required.
In the present embodiment, the domestic issuing institution terminal 41 sends personal data (including personal data and biometric information) provided by the user at the time of applying for a passport to the system server 10 to request authentication of the user's existence certificate. The system server 10 collates the personal data transmitted from the domestic issuing institution terminal 41 with the personal data in the database 11 and transmits the collation result (match / mismatch) of the data to the domestic issuing institution terminal 41.
When the collation result indicating that the data matches is received, the domestic passport issuing institution uses the domestic issuing institution terminal 41 to write the personal data input at the time of applying for the passport on the recording medium attached to the passport.

  The domestic issuing institution terminal 41 may transmit the personal data input at the time of applying for the passport to the system server 10 for registration. As described above, by storing the personal data in the system server 10 for each acquisition, basic data for subsequent data verification can be constructed.

  As described above, in this embodiment, when user authentication is obtained as a result of the collation, the domestic issuing institution terminal 41 writes the user's personal data transmitted from the system server 10, so that the domestic passport issuing institution is the user It becomes possible to easily issue a passport with a recording medium that can be used for authentication.

(User authentication when leaving or entering Japan)
FIG. 16 is a sequence chart illustrating an example of a user authentication operation by the authentication system when the user leaves or leaves the country. Hereinafter, a user authentication operation when a user who holds a passport with a recording medium passes through the immigration authority and performs immigration will be described with reference to the drawings.

First, the staff of the departure side management organization reads the personal data written on the passport recording medium using the departure side terminal 44 (step S181).
Further, the staff of the departure side management organization inputs the user's personal data (personal data / biometrics information) from the departure side terminal 44 using the user's entry documents or the like (step S182).
The departure terminal 44 collates the personal data read from the recording medium with the personal data input from the document, and as a result, whether both personal data match, that is, whether user authentication is obtained. Is determined (step S183).
The staff of the departure side management organization gives permission for departure to the user based on the result of collation by the departure side terminal 44.
Next, the staff of the departure side management organization transmits and registers the personal data of the user read at the time of departure examination using the departure side terminal 44 to the system server 10 (step S184).

Here, the staff of the departure-side administrative institution examines the judgment result output in step S183, and if it is judged that there is a question about the existence of the user himself / herself, the oral examination is conducted with the user and the answer is sent to the departure side. Input is performed using the terminal 44 (step S185).
The staff of the immigration control organization uses the departure terminal 44 to request the system server 10 to collate the contents of the inputted oral examination answer (step S186).

The system server 10 performs a collation process of the user's response content transmitted from the departure terminal 44 with reference to the database 11 (step S187), and if it matches the user's personal data (step S187 / match), Authentication information indicating that the user's answer matches the personal data is transmitted to the departure terminal 44 (step S188).
When the system server 10 does not match the personal data (step S187 / mismatch), the system server 10 notifies the departure terminal 44 of a message indicating that the user's answer does not match the personal data (step S189).
Since this user authentication operation is the same as that of the fifth embodiment, detailed description thereof is omitted.
The departure side management organization examines whether or not the user can enter the country according to the content of the transmission information from the system server 10.

Next, the staff of the departure side management organization uses the departure side terminal 44 to transmit and register various data at the time of departure examination to the system server 10 (step S190).
The various data transmitted includes the name of the staff who conducted the immigration examination and the name of the staff who interviewed the user during the immigration examination.

After that, when the user arrives at the immigration office, the staff of the immigration institution reads the personal data written on the recording medium of the passport using the immigration terminal 45 (step S191).
Further, the staff of the immigration agency inputs the user's personal data (including personal data / biometrics information) through the immigration terminal 45 using the user's entry documents (step S192).
The immigration terminal 45 collates the personal data read from the recording medium with the personal data input from the document, and as a result, whether or not both personal data match, that is, whether user authentication has been obtained. Is determined (step S193).
Next, the staff of the immigration agency transmits the personal data of the user read at the time of immigration using the immigration terminal 45 to the system server 10 for registration (step S194).

Here, the staff of the immigration control institution examines the judgment result output in step S193, and if it is judged that there is a question about the existence of the user himself / herself, the oral examination is conducted with the user, and the answer is sent to the immigration side. Input is performed using the terminal 45 (step S195).
The staff of the immigration control organization uses the immigration terminal 45 to request the system server 10 to collate the content of the inputted oral examination answer (step S196).

The system server 10 performs collation processing of the user's answer content transmitted from the immigration terminal 45 with reference to the database 11 (step S197), and if it matches the user's personal data (step S197 / match), Authentication information indicating that the user's answer matches the personal data is transmitted to the immigration terminal 45 (step S198).
Further, when the system server 10 does not match the personal data (step S197 / mismatch), the system server 10 notifies the immigration terminal 45 of a message indicating that the user's answer does not match the personal data (step S199).
Since this user authentication operation is the same as that of the fifth embodiment, detailed description thereof is omitted.
The immigration control organization examines whether or not the user can enter the country according to the content of the transmission information from the system server 10.

Next, the staff of the immigration control organization uses the immigration terminal 45 to transmit and register various data at the time of immigration examination to the system server 10 (step S200).
The various data transmitted includes the name of the staff member who conducted the immigration examination and the name of the staff member who interviewed the user during the immigration examination.

  In the embodiment described above, if there is a question about the user's identity at the time of departure / exit, the departure / immigration control organization performs the oral examination and the like, and then confirms the existence of the user's existence on the worker terminal 10. Although the user has been inquired about authentication, it is also possible to make an inquiry about the authenticity of the user to all users who enter and leave the country.

In this embodiment, personal data such as biometric information provided by the user is collated with personal data in the recording medium, and the provided personal data is collated with personal data in the system server 10. However, in addition, the personal data in the recording medium and the personal data in the system server 10 may be collated.
In this case, the departure-side terminal 44 or the entry-side terminal 45 transmits the personal data read from the recording medium to the system server 10, and the system server 10 collates the received personal data with the personal data stored in itself. Since the information indicating the presence authentication of the user is returned to the requesting terminal from the collation result, the use of personal data in the altered recording medium can be prevented.

As described above, in the present embodiment, at the time of immigration, the system server 10 determines whether or not user authentication is possible with respect to the items described in the passport held by the user and the biometric information of the user, and the determination result is obtained. The information is sent to the immigration terminal 45, and the immigration officials conduct immigration screening based on the determination result. The immigration official confirms the existence of the user and manages the immigration. It is possible to prevent illegal entry.
Further, in this embodiment, the system server 10 records the names of staff members who are involved in immigration, and can also use the time at the time of the user's immigration procedures as a judgment material, so it is possible to prevent organized crime. It becomes.

<Configuration>
FIG. 17 is a block diagram illustrating a schematic configuration of the authentication system according to the seventh embodiment of the present invention. As shown in the figure, the authentication system according to the seventh embodiment of the present invention includes a system server 10, a user terminal 20, a school terminal 51, a test site terminal 52, a violation history management institution terminal 53, and photographing devices 54 and 57. The update organization terminal 55 and the reading device 56 are connected via the communication network 100.
In this embodiment, it is assumed that the school terminal 51, the test site terminal 52, the violation history management institution terminal 53, and the update institution terminal 55 function as authentication requesting side terminals in the fourth embodiment.

  The system server 10 is a server device managed and operated by a third-party organization. The system server 10 has a function of performing authentication based on personal data of users and a database (DB) 11 for recording and managing personal data of each user. It has.

On the other hand, the user registers his / her personal data in the system server 10 using the user terminal 20.
The user terminal 20 is a terminal device used by a user who uses the present system, and is used for registration of personal data and browsing processing. It is preferable that a scanner function used when registering personal data is installed. In this embodiment, it is assumed that the user is a driver's license holder or a person who wants to obtain a driver's license.

In addition, the user visits a driving school at which a driving lesson is conducted to obtain a driving license, and performs the attendance procedure.
The driving school terminal 51 is an information processing device that is installed in a driving school that conducts driving training for obtaining a driving license and is used by staff of the driving school. The school terminal 51 has a function of inquiring of the system server 10 about the validity of the personal data provided by the user and the existence proof of the user, and receiving information indicating the authentication result returned from the system server 10. To do. The training school staff can use the information indicating the received authentication result as a material for determining whether or not the user can accept the training application.

In addition, after passing the graduation test at the driving school, the user visits the test center to take the subject examination.
The test site terminal 52 is an information processing apparatus that is installed at a test site that performs a test for obtaining the driver's license and is used by the staff of the test site. The test site terminal 52 has a function of inquiring the system server 10 about the validity of the personal data provided by the user and the existence proof of the user and receiving information indicating the authentication result returned from the system server 10. . The staff of the test site can use the information indicating the received authentication result as a material for determining whether or not the user can take an examination and issue a driver's license.

In addition, the test site investigates the user's violation history and the like when the driver's license is issued to the user.
The violation history management organization terminal 53 is an information processing device used by a staff member of a violation history management organization (for example, Public Safety Commission) that manages the traffic law violation history of each user. The violation history management institution terminal 53 stores the violation history (including no violation history) of each user according to the traffic law, and transmits the violation history data of the corresponding user to the communication network 100 in response to a request from the test site or the like. Send through.

Further, when acquiring the driver's license, the user takes a photograph for attaching the driver's license with the imaging device 54 at the test site.
The photographing device 54 is a device such as a camera operated by a staff at the test site.

The user visits the renewal organization when applying for a driver's license renewal procedure.
The update organization terminal 55 is an information processing apparatus that is installed in an update organization (for example, a police station, a test site, etc.) that performs the update operation of the driver's license and is used by the staff of the update organization.

The staff of the update organization described above acquires the biometric information of the user for the authentication of the user who applied for the update procedure.
The reading device 56 is an information processing device used by the staff of the renewal organization, and reads the user's biometric information using a scanner or the like provided in the own device.

In addition, the renewal agency staff will obtain a photo to be attached to the driver's license when the driver's license is renewed.
The photographing device 57 is a device such as a camera that is operated by the staff of the renewal organization, and takes a certification photo attached to the driver's license during the renewal procedure.

In addition, the above-described school terminal 51, the test site terminal 52, and the update organization terminal 55 include a scanner and the like, and have a function of reading biometric information.
Further, the system server 10 may be configured to have each function of the violation history management organization terminal 53. In this case, the insurance business system may be configured not to include the violation history management institution terminal 53.

(User authentication operation when applying for driving lessons)
FIG. 18 is a sequence chart illustrating an example of a user authentication operation by the authentication system at the time of driving lesson application. Hereinafter, description will be made with reference to the drawings.

  First, the user accesses the Web site managed and operated by the system server 10 from the user terminal 20 and applies for registration of personal data on the Web page (step S301). At this time, certificates and the like as personal data are separately submitted to a third party organization (certification organization) on the management side of the system server 10.

  In response to the registration application from the user terminal 20, the system server 10 organizes personal data provided on the Web page, and creates and stores an information page (chart) for each individual (step S302). At this time, the system server 10 may issue a unique identification number to the user, and regarding subsequent data exchange, information may be organized in association with the identification number.

After the personal data registration, the user visits the school office and applies for driving lessons. At this time, the user fills in the application documents etc. necessary items (name, address, etc.) for application for driving lessons and presents them to the school. This application document includes the user's identification data (resident card, insurance card, etc.). The user also presents biometric information such as fingerprints to the school.
The school staff uses the school terminal 51 to input the personal data of the presented user (step S303).
Since the personal data input operation is the same as that in the fifth embodiment, a detailed description thereof will be omitted.

Next, the user uses the user terminal 20 to transmit information indicating that the application for driving lessons has been made to the system server 10 (step S304).
In step S304, the user transmits to the system server 10 using the user terminal 20 information indicating that the school is allowed to use / externally exchange the user's personal data stored in the system server 10. .
When the system server 10 receives information from the user terminal 20 that permits the use / external exchange of personal data from the user terminal 20, for example, the school school identification information and the user identification information are associated with each other and stored in the database 11. As a result, the system server 10 subsequently performs authentication when a user authentication is requested from the school terminal 51.

The training school verifies the contents of the application documents and confirms the identity of the user, and confirms that the application documents have not been modified, forged, altered or counterfeited.
Furthermore, the training school transmits information indicating that the presence authentication of the user who has applied for driving training is requested using the school terminal 51 (step S305).

The system server 10 collates the personal data of the user transmitted from the training school terminal 51 with reference to the database 11 (step S306), and when the transmitted personal data of the user exists in the database 11 (Step S306 / match), the personal data is read from the database 11 and the personal data permitted to be exchanged externally by the user is obtained from the authentication information (proof that the contents of the application document are valid + the user actually exists) To the school terminal 51 (step S307).
Further, when the personal data does not exist in the database 11 (step S306 / mismatch), the system server 10 notifies the school terminal 51 of a message indicating that authentication is impossible (step S308). The driving school examines whether or not the user can attend driving training according to the content of the transmission information from the system server 10.
Since these series of user authentication operations (steps S305 to S308) are the same as the example of the passport issuance application in the fifth embodiment, detailed description thereof is omitted.

  When the training school terminal 51 receives the personal data and the authentication information from the system server 10, the training school permits the user who has obtained the authentication to attend the driving training.

Next, the training school terminal 51 registers various data of the user used when applying for driving training in the system server 10 (step S309).
The data used when applying for this driving lesson included, for example, the biometric information of the user read in step S303, the name of the staff of the school that confirmed the application documents, and the reception at the time of application Includes names of school staff.
In this way, by repeating data registration at different times, places, and people, evidence of the user's identity and clarification of the witness is realized. In addition, by registering personal data in the system server 10 having a certain security level, it is possible to prevent a user's personal data from being leaked.
In addition, the personal data registered in the system server 10 can be used by other organizations with the consent of the user.
Thus, the authentication system ends the process.

  Further, the personal data registration screen in this embodiment is the same as the screen shown in FIG.

  The system server 10 may set a designation flag (use / external exchange possible / impossible) for each item of personal data as in the first embodiment.

As described above, according to the seventh embodiment of the present invention, when applying for driving lessons, conventional personal data based on self-reporting is managed by a third-party organization and, if necessary, proof by the third-party organization. By attaching the symbol, it becomes possible to provide the legitimacy of the personal data of the user and the proof of the existence of the individual to the driving training issuer.
The school side can improve the reliability of the personal data in the determination of whether or not to attend the driving lesson by the above authentication, so that it becomes possible to refuse the driving lesson for the person who misrepresents his / her personal history.

In this embodiment, the user brought the documents necessary for the driving lesson application, visited the driving school, and filled in the application documents. The personal data necessary for the application for training, the number of the certification document, etc. may be transmitted directly to the school terminal 51 to perform the driving training application procedure. In addition, the user may submit the completed document to the school by mail.
In addition, the user may not use the user terminal 20 to transmit information indicating that the application for the driving lesson has been made to the system server 10. In this case, when registering the personal data in the system server 10, information that permits the use / external exchange of the personal data is transmitted to the system server 10 in advance.

  (Other examples of user authentication operations when applying for driving lessons)

In the example described above, the user has already registered his / her personal data in the system server 10 when applying to the driving school for driving training.
On the other hand, in this example, after applying for driving training, the user registers personal data in the system server 10, and the training school side requests user authentication from the system server 10.
FIG. 19 is a sequence chart showing another example of the user authentication operation by the authentication system at the time of driving lesson application. Hereinafter, description will be made with reference to the drawings.

First, the user visits a school office and applies for driving training. At this time, the user fills in the application documents etc. necessary items (name, address, etc.) for application for driving lessons and presents them to the school. This application document includes the user's identification data (resident card, insurance card, etc.).
The staff of the school confirms the contents of the presented documents, permits the user to attend the course, and creates a class list.

  The training school staff proposes the registration of personal data in the system server 10 after the user's permission to attend. When the user accepts the registration of the personal data to the system server 10, the school staff uses the school terminal 51 to input the document content presented by the user at the time of application and registers it in the system server 10 (step S311). .

  Next, the user accesses the Web site managed and operated by the system server 10 from the user terminal 20, and applies for registration of personal data on the Web page (step S312). At this time, certificates and the like as personal data are separately submitted to a third party organization (certification organization) on the management side of the system server 10. In addition, when applying for registration, the user uses the user terminal 20 to transmit information to the system server 10 that the user's personal data stored in the system server 10 is used and external exchange is permitted to the school. To do.

  In response to the registration application from the user terminal 20, the system server 10 organizes personal data provided on the Web page, and creates and stores an information page (chart) for each individual (step S313). At this time, the system server 10 may issue a unique identification number to the user, and regarding subsequent data exchange, information may be organized in association with the identification number.

After the personal data registration, the system server 10 notifies the school terminal 51 of the completion of data registration (step S314).
Upon receiving the data registration completion notification, the school requests the user to provide various personal information including biometric information, and inputs the information using the school terminal 51 (step S315).

The driving school transmits information indicating that authentication of the user who has applied for driving driving is requested using the driving school terminal 51 (step S315). At this time, the training school terminal 51 transmits the personal data of the input user to the system server 10 together with the authentication request.
Subsequent user authentication operations (steps S316 to S319) are the same as steps S306 to S309, and a description thereof will be omitted.
In this way, in this example, the same effect as in the case of applying for training after personal data registration can be obtained.

(Data registration operation when attending training)
In addition, by registering data related to the user's driving lesson in the system server 10, the accuracy of authentication of the user can be further improved.
For example, the training school staff records images / videos of the user's school attendance and attendance school, subject training scenery, and practical skill training scenery with a camera or the like, and the recorded data as personal data of the user by the school school terminal 51 by the system server 10. Register with.
The school staff also registers the user's evaluation records and user attendance records (including the time card attendance time and instructor attendance testimony) into the system server 10 using the school terminal 51 as user personal data. To do.
The system server 10 registers these data in chronological order for each user, so that the training school can obtain proof that the user has actually attended the training.

(User authentication at the time of applying for this exemption)
FIG. 20 is a sequence chart showing a user authentication operation by the authentication system at the time of applying for the subject exam. The user authentication operation will be described below with reference to the figure when the user applies for the entrance examination for the subject examination after the graduation examination passes.

  When the user passes the graduation examination at the driving school, the driving school issues a graduation certificate to the user. At this time, the school staff uses the school terminal 51 to input the data indicating the delivery status and contents of the graduation certificate, and transmits the data to the system server 10 as the user's personal data for registration (step S321). In addition, the user notifies the system server 10 that the graduation certificate has been received using the user terminal 20 (step S322).

Next, the user visits the test center window and applies for the application for the subject exam. At this time, the user fills in the application documents, etc. necessary items (name, address, etc.) necessary for the examination application and presents them to the examination site. This application document includes the user's identification data (resident card, insurance card, etc.).
The user also provides biometric information such as fingerprints to the test site.
The user notifies the system server 10 using the user terminal 20 of information indicating that the application procedure for the subject exemption examination is performed at the test site in this way, and the personal data of the user himself / herself registered in the system server 10. Is sent to the system server 10 using the user terminal 20 (step S323).

After confirming the content of the document and biometric information presented / provided by the user, the test site staff uses the test site terminal 52 to input the above document content and biometric information as the user's personal data (step S324). .
Next, the test site staff transmits the personal data input using the test site terminal 52 to the system server 10 to request user authentication (step S325).

The system server 10 collates the user's personal data transmitted from the test site terminal 52 with reference to the database 11 (step S326), and if the user's personal data exists in the database 11 (step S326 / Match), the personal data is read from the database 11, and the personal data that is allowed to be exchanged externally by the user, the authentication information (the proof that the contents of the application document are valid + the proof that the user exists) ) Together with the test site terminal 52 (step S327).
Further, when the personal data does not exist in the database 11 (step S326 / mismatch), the system server 10 notifies the test site terminal 52 of a message indicating that the authentication is impossible (step S328). The test site examines whether or not the user can take the test according to the content of the transmission information from the system server 10.
Since these series of user authentication operations (steps S325 to S328) are the same as when applying for driving training (steps S305 to S308), detailed description thereof will be omitted.

Next, the staff of the test site transmits an acquisition request such as the criminal history and violation history of the user to the violation history management institution terminal 53 using the test site terminal 52 (step S329).
In response to the request, the violation history management institution terminal 53 transmits information indicating the criminal history and violation history (including crimes and no violations) of the corresponding person to the test site terminal 52 (step S330).
The staff of the test site examines whether or not the user can take the examination based on the contents of the acquired criminal record / violation record.

Next, the test site terminal 52 registers various data of the user used at the time of application for examination in the system server 10 (step S331).
The data used when applying for this examination includes, for example, the user's biometrics information read in step S324, the name of the test site staff who confirmed the application documents, and the test site staff who accepted the application. Name etc. are included.
In this way, by repeating data registration at different times, places, and people, evidence of the user's identity and clarification of the witness is realized. In addition, by registering personal data in the system server 10 having a certain security level, it is possible to prevent a user's personal data from being leaked.

The staff at the test site uses the test site terminal 52 to notify the user terminal 20 of the user who finally approved the test that the test has been permitted (step S332).
This notification includes the user's examination number for the subject exam.
Thus, the authentication system ends the process.

In this embodiment, the user brought the documents necessary for the examination application, visited the examination center, and filled out the application documents. However, the user terminal 20 was used to apply for the examination. The personal data necessary for the test, the number of the certification document, etc. may be transmitted directly to the test site terminal 52 to perform the examination application procedure. In addition, the user may submit the completed document to the test site by mail.
In addition, the user may not use the user terminal 20 to transmit information indicating that the application for the driving lesson has been made to the system server 10. In this case, when registering the personal data in the system server 10, information that permits the use / external exchange of the personal data is transmitted to the system server 10 in advance.
Further, the above-described process of notifying the system server 10 that the user terminal 20 has received the graduation certificate (step S322) may be omitted.
Similarly, the test site may notify the user verbally at the window or the like without notifying the user terminal 20 that the test site terminal 52 has permitted the examination (step S332).

As explained above, at the time of applying for the Examination Examination, the personal data based on the self-declaration is managed by a third-party organization, and if necessary, proof is given by the third-party organization. It becomes possible to provide the test site with the validity of the personal data of the user and the proof of the existence of the individual.
The test site side can improve the reliability of the personal data in the determination of whether or not to take the examination by the above authentication, so that it is possible to refuse the examination to a person who misrepresents his / her personal history.

(User authentication reconfirmation operation)
When the user authentication is not obtained in the user authentication at the time of applying for the examination of the above-described exemption test (step S326 / mismatch), the staff of the test site can obtain the authentication of the user who applied for the examination. You may make it confirm again.
The user authentication reconfirmation operation is the same as the user authentication reconfirmation operation when the passport is issued in the fifth embodiment, and a detailed description thereof will be omitted.
In response to a request from the test site terminal 52, the system server 10 transmits data such as a landscape image at a driving school to the test site terminal 52 together with the collation result. The staff at the test site can securely verify the personal data of the user himself / herself and prove the existence of the individual by referring to the scenery image and the like.

(User authentication before this exemption test)
The user visits the test center after taking the application for the subject exam and takes the exam.
FIG. 21 is a sequence chart showing a user authentication operation before taking the subject exam. Hereinafter, the user authentication operation immediately before the start of the subject exam will be described with reference to the drawings.

First, the user presents biometric information such as a fingerprint before entering the test room of the test site. The staff at the test site uses the test site terminal 52 to input the biometric information presented by the user (step S341).
The test site terminal 52 transmits the input biometric information to the system server 10 and requests the presence authentication of the user (step S342).

The system server 10 collates the biometric information transmitted from the test site terminal 52 with reference to the database 11 (step S343), and when the transmitted biometric information exists in the database 11 (step S343). (S343 / match), the authentication information is transmitted to the test site terminal 52 (step S344).
When the received biometric information does not match the information in the database 11 (step S343 / mismatch), the system server 10 notifies the test site terminal 52 of a message indicating that authentication is impossible (step S345). ). When the test site receives a message from the system server 10 indicating that the authentication is impossible, the test site stops the user's test.

  In this way, the test site requests the system server 10 to authenticate the user's biometric information acquired before the start of the test, and if the authentication is not obtained, the user's examination is stopped. It is possible to prevent the three parties from taking the test while pretending to be a qualified user.

(User authentication operation when taking a picture before delivery)
The user takes a picture for attaching a driver's license after announcing the results of the exam.
FIG. 22 is a sequence chart showing a user authentication operation at the time of taking a picture before issuing a driver's license. Hereinafter, the user authentication operation at the time of taking a picture from after the test to the delivery will be described with reference to the drawings.

First, the test site terminal 52 inputs the user's biometric information using a scanner or the like provided in the own terminal (step S351). Preferably, the test site terminal 52 is installed in the vicinity of the imaging device 54.
After inputting the biometric information, the user moves to the installation location of the imaging device 54 in order to take a driver's license photograph.

Next, the test site terminal 52 transmits the input biometric information to the system server 10 (step S352).
The system server 10 collates the user's biometric information transmitted from the test site terminal 52 with reference to the database 11 (step S353), and if the user's biometric information exists in the database 11 (step S353). (S353 / match), the authentication information is transmitted to the test site terminal 52 (step S354). Further, the system server 10 may transmit the biometric information of the user stored in the system server 10 together with the authentication information to the test site terminal 52.
Further, when the biometric information does not exist in the database 11 (step S353 / mismatch), the system server 10 notifies the test site terminal 52 of a message indicating that authentication is impossible (step S355).
Since the above user authentication operation is the same as that at the time of application for driving lessons, a detailed description thereof will be omitted.

Based on the notification content from the system server 10, the staff at the test site examines whether or not the driver's license photograph can be taken.
As a result of the examination, if the staff of the test site determines that the input biometrics information is not for the user who is the subject of the driver's license, the test site terminal uses the test site terminal 52 to input information not permitting photography. S356 / not permitted). In this case, the power of the photographing device 54 remains off, and it is impossible to take a picture. Thereafter, after performing a series of data registration in the same manner as when applying for driving lessons (step S359), the information distribution system ends the operation.
On the other hand, as a result of the examination, if it is determined that there is no problem in the biometric information, the staff at the test site inputs information indicating that photography is permitted using the test site terminal 52 (step S356 / permission). In this case, the power source of the photographing device 54 is turned on (step S357), and a photograph for attaching the driver's license is taken. The photographing device 54 transmits the photographed photograph data to the test site terminal 52 (step S358). The test site terminal 52 transmits a series of data including the photographic data transmitted from the imaging device 54 to the system server 10 for registration (step S359).

  In the present embodiment, the test site side sets the photographing permission / non-permission by the photographing device 54 using the test ground terminal 52 based on the authentication result from the system server 10, but the test ground terminal 52 is the system server. Control information for automatically turning on the power of the photographing apparatus 54 may be transmitted to the photographing apparatus 54 when the authentication information is received from 10. In this case, it is possible to shorten the time until the start of imaging and reduce the user authentication determination work on the test site side.

  As described above, according to the present embodiment, the staff of the test site transmits information indicating that the user who has been authenticated is permitted to take a picture to the photographing device 54 using the test place terminal 52, and the photographing device 54. Upon receiving the information that the photographing is permitted, the user shall take a picture of the user by turning on the power of the own device. Therefore, the test site must issue the driver's license after confirming the existence of the user himself / herself. It is possible to prevent forgery of the driver's license.

(User authentication when issuing a driver's license)
The user receives a driver's license after taking a picture for attachment.
FIG. 23 is a sequence chart showing a user authentication operation when a driver's license is issued. The authentication operation by the authentication system when the user receives a driver's license at the test site will be described below with reference to the drawings.

When the user visits the test site window, the test site staff compares the user with the photo of the driver's license that has been created, and if they match, the driver's license is issued to the user.
At this time, the staff at the test site records a driver's license delivery landscape with a camera or the like, and transmits and registers the image / video data of the delivery landscape recorded using the test site terminal 52 (step S371). ).
Moreover, the staff of the test site notifies the system server 10 of information that the driver's license has been issued using the test site terminal 52 (step S372).

In addition, when the user receives the driver's license from the test site side, the user notifies the system server 10 that the driver's license has been received using the user terminal 20 and transmits various data when the driver's license is issued to the system server 10. Then, it may be registered (step S373).
Next, the user visits a third-party organization that manages the system server 10 and presents the received driver's license.
The staff of the third-party organization digitally inputs the description of the driver's license using a scanner, camera, copy, etc. Information indicating the description of the digitally entered driver's license is stored in the system server 10 in association with the user identification information. For example, the system server 10 may create a folder for each location where the driver's license is issued, the date / time of delivery, or the driver's license description number, and manage the stored personal data of each user.
The user's personal data managed by the system server 10 has a range that can be used / externally exchanged by the user himself / herself, and can be used by public agencies such as the National Police Agency and courts within that range.

(User authentication when renewing driver's license)
The user performs a driver's license renewal procedure every predetermined period.
24 and 25 are sequence charts showing the user authentication operation when updating the driver's license. Hereinafter, the user authentication operation when the user performs a driver's license update procedure will be described with reference to the drawings.

  First, the user notifies the system server 10 that the driver's license renewal procedure is to be performed using the user terminal 20, and information indicating that the renewal organization is permitted to use and exchange external personal data. It transmits to the system server 10 (step S381).

Next, the user visits the window of the renewal organization and performs a driver's license renewal procedure. At this time, the user fills in the application documents etc. necessary items (name, address, etc.) for the update application and presents them to the update organization side. This application document includes the user's identification data (resident card, insurance card, etc.).
Further, the user provides biometric information such as a fingerprint to the renewal organization side at the renewal organization window.

After confirming the contents of the document and biometric information presented / provided by the user, the staff of the renewal organization inputs the above document content and biometric information as personal data of the user using the renewal organization terminal 55 (step S382).
In step S382, as in the case of application for issuance of a passport, for example, the behavior of the user who visited the window of the driver's license renewal organization and the correspondence with the staff at the window are digital video / image / Recorded by voice and input to the update organization terminal 55. In this case, the update organization terminal 55 collects the user's face outline, action pattern, voiceprint, and the like from the recorded video / image / sound.
Next, the staff of the update organization transmits the personal data input using the update organization terminal 55 to the system server 10 and requests user authentication (step S383).

The system server 10 collates the user's personal data transmitted from the update authority terminal 55 with reference to the database 11 (step S384). If the user's personal data exists in the database 11 (step S384 / match), the system server 10 reads the personal data from the database 11 and converts the personal data permitted for external exchange by the user into the authentication information. (Proof that the content of the application document is valid + Proof that the user actually exists) is transmitted to the update organization terminal 55 (step S385).
If the personal data does not exist in the database 11 (step S384 / mismatch), the system server 10 notifies the update authority terminal 55 of a message indicating that authentication is impossible (step S386). The renewal agency examines whether or not the driver's license can be renewed for the user according to the content of the transmission information from the system server 10.
Since these series of user authentication operations (steps S383 to S386) are the same as those at the time of applying for driving training (steps S305 to S308), detailed description thereof is omitted.

  When the renewal institution side determines that user authentication has been obtained, the user moves from the renewal institution window to the photo shooting location (where the reading device 56 and the photo shooting device 57 are installed) and takes a photo for the renewal license. I do.

First, the reading device 56 inputs the user's biometric information using a scanner or the like provided in the own device (step S387), and transmits the input biometric information to the system server 10 (step S388).
The system server 10 collates the user's biometric information transmitted from the reading device 56 with reference to the database 11 (step S389), and when the user's biometric information exists in the database 11 (step S389). (S389 / match), the authentication information is transmitted to the update authority terminal 55 (step S390). Further, the system server 10 may transmit the biometric information of the user stored therein together with the authentication information to the update organization terminal 55.
Further, when the biometric information does not exist in the database 11 (step S389 / mismatch), the system server 10 notifies the update authority terminal 55 of a message indicating that authentication is impossible (step S391).
Since the above user authentication operation is the same as that at the time of application for driving lessons, a detailed description thereof will be omitted.

The renewal institution side examines whether or not the driver's license photograph can be taken based on the notification content from the system server 10.
As a result of the examination, if the renewal institution side determines that the input biometrics information is not that of the user whose driver's license is to be renewed, the renewal institution side inputs information not permitting photography using the renewal institution terminal 55 ( Step S392 / not permitted). In this case, the power of the photographing device 57 remains off, and photography is impossible. Thereafter, after performing a series of data registration in the same manner as when applying for driving lessons (step S395), the information distribution system ends the operation.
On the other hand, as a result of the examination, if the renewal institution side determines that the biometric information belongs to the user, the renewal institution terminal 55 uses the renewal institution terminal 55 to input information indicating that photography is permitted (step S392 / permission). In this case, the power of the photographing device 57 is turned on (step S393), and a photograph for attaching the driver's license is taken. The photographing device 57 transmits the photographed photograph data to the update organization terminal 55 (step S394). The update organization terminal 55 transmits a series of data including the photographic data transmitted from the photographing device 57 to the system server 10 for registration (step S395).
The data used in the renewal application includes, for example, the biometric information of the user read in step S387, the name of the staff of the renewal institution that confirmed the application documents, and the renewal institution that accepted the application The names of staff members are included.
In this way, by repeating data registration at different times, places, and people, clarification of the actual witness of the user and accumulation of data is realized. In addition, by registering personal data in the system server 10 having a certain security level, it is possible to prevent a user's personal data from being leaked.
Thus, the authentication system ends the process.

  In this embodiment, the update organization sets the photographing permission / non-permission by the photographing device 57 using the update organization terminal 55 based on the authentication result from the system server 10, but the updating organization terminal 55 When the authentication information is received from the system server 10, control information for automatically turning on the power of the imaging device 57 may be transmitted to the imaging device 57. In this case, it is possible to shorten the time until the start of photographing and reduce the user authentication determination work by the update organization.

In this embodiment, the user brought the documents necessary for renewing the driver's license, visited the renewal institution and filled in the renewal application documents, but using the user terminal 20, The personal data necessary for renewal, the number of the certification document, etc. may be transmitted directly to the renewal institution terminal 55 to perform the renewal procedure of the driver's license. In addition, the user may submit the completed document to the renewal organization by mail.
Further, the user does not have to transmit information indicating that the update is completed to the system server 10 using the user terminal 20. In this case, when registering the personal data in the system server 10, information that permits the use / external exchange of the personal data is transmitted to the system server 10 in advance.
Similarly to the passport example of the sixth embodiment, the driver's license can be attached with a recording medium, and user authentication in that case can be performed in the same manner as in the sixth embodiment.

As explained above, when a driver's license is renewed, the conventional personal data based on self-reporting is managed by a third-party organization, and if necessary, the proof by the third-party organization is attached. It becomes possible to provide the renewal organization with the validity of the personal data of the user and proof of the existence of the individual.
The renewal institution side can improve the reliability of the personal data in the determination of whether or not renewal is possible by the above authentication, so that it is possible to refuse the renewal procedure for a person who misrepresents his / her personal history.
Further, since the renewal institution side reads the biometric information at both the renewal procedure reception desk and the photo shooting place, it is possible to further enhance the elimination of impersonation for the renewal target person.

<Configuration>
FIG. 26 is a block diagram illustrating a schematic configuration of the authentication system according to the eighth embodiment of the present invention. As shown in the figure, the authentication system according to the eighth embodiment of the present invention is configured by connecting a system server 10, a user terminal 20, a city / town / town / village terminal 61, and a photographing device 62 via a communication network 100. Is done.
In this embodiment, the municipal office terminal 61 functions as an authentication request side terminal in the fourth embodiment.

  The system server 10 is a server device managed and operated by a third-party organization. The system server 10 has a function of performing authentication based on personal data of users and a database (DB) 11 for recording and managing personal data of each user. It has.

The user registers his / her personal data in the system server 10 using the user terminal 20.
The user terminal 20 is a terminal device used by a user who uses the present system, and is used for registration of personal data and browsing processing. It is preferable that a scanner function used when registering personal data is installed. In this embodiment, it is assumed that the user is the owner or applicant of the Basic Resident Register card.

In addition, when the user acquires the Basic Resident Register card, the user visits the municipal office of the municipality and performs an acquisition application procedure.
The ward / town / town / village office terminal 61 is an information processing apparatus installed in each ward / town / town / village office and used by the staff of the ward / town hall. The municipal office terminal 61 has a function of inquiring the system server 10 about the validity of the personal data provided by the user and the existence certificate of the user and receiving authentication information returned from the system server 10. The staff of the government office can be used as a material for determining whether or not to accept the application for acquiring the basic resident register card of the user based on the received authentication information. The municipal office 61 has a scanner and the like, and has a function of reading biometric information.

Further, when acquiring the basic resident register card, the user takes a picture for attaching the basic resident register card with the photographing device 62 at the municipal office.
The photographing device 62 is a device such as a camera operated by a staff member of a municipal office.

(User authentication when acquiring Basic Resident Register card)
FIG. 27 is a sequence chart showing an example of a user authentication operation by the authentication system when applying for acquisition of a basic resident register card. Hereinafter, description will be made with reference to the drawings.

  First, the user accesses a Web site managed and operated by the system server 10 from the user terminal 20 and applies for registration of personal data on the Web page (step S401). At this time, certificates and the like as personal data are separately submitted to a third party organization (certification organization) on the management side of the system server 10.

  In response to the registration application from the user terminal 20, the system server 10 organizes personal data provided on the Web page, and creates and stores an information page (chart) for each individual (step S402). At this time, the system server 10 may issue a unique identification number to the user, and regarding subsequent data exchange, information may be organized in association with the identification number.

After registering personal data, the user visits the office counter and applies for the Basic Resident Register card. At this time, the user fills in the application documents and the like (name, address, etc.) necessary for application and presents them to the government office. This application document includes the user's identification data (resident card, insurance card, etc.). The user also presents biometric information such as fingerprints to the government office.
The staff member of the government office inputs the personal data of the presented user using the municipal office terminal 61 (step S403).
Since the personal data input operation is the same as that in the fifth embodiment, a detailed description thereof will be omitted.

Next, the user uses the user terminal 20 to transmit information indicating that the application for acquisition of the basic resident register card has been made to the system server 10 (step S404).
In step S <b> 404, the user uses the user terminal 20 to transmit information to the system server 10 that permits use of the user's personal data stored in the system server 10 and external exchange to the government office side. To do.
When the system server 10 receives information from the user terminal 20 that permits the use / external exchange of personal data, for example, the identification information on the government office side and the identification information of the user are stored in the database 11 in association with each other. As a result, the system server 10 subsequently performs the authentication when a user authentication is requested from the municipal office terminal 61.

The government office verifies the contents of the application documents and confirms the identity of the user, and confirms that the application documents have not been modified, forged, altered or counterfeited.
Further, the government office transmits information indicating that authentication of the user who applied for the basic resident register card acquisition application is requested using the city / town / town / town / village terminal 61 (step S405).

The system server 10 checks the personal data of the user transmitted from the city / town / town / village terminal 61 with reference to the database 11 (step S406), and if the personal data of the user exists (step S406 / match). The personal data is read from the database 11 and the personal data that is allowed to be exchanged externally by the user, together with the authentication information (the proof that the contents of the application document are valid + the proof that the user exists) The information is transmitted to the municipal office terminal 61 (step S407).
If the personal data does not exist (step S406 / mismatch), the system server 10 notifies the municipal office terminal 61 of a message indicating that the authentication is impossible (step S408). The government office examines whether or not a basic resident register card is issued to the user according to the content of the transmission information from the system server 10.
These series of user authentication operations (steps S405 to S408) are also similar to the example of the passport issuance application in the fifth embodiment, and detailed description thereof is omitted.

  When the municipal office 61 receives the personal data and the authentication information from the system server 10, the government office creates a basic resident register card for the user who has been authenticated. After the creation, the staff of the government office notifies the user terminal 20 that the creation of the basic resident register card has been completed using the ward, municipality government office terminal 61 (step S409).

Next, the municipal office terminal 61 registers various user data used in the application for acquisition of the basic resident register card in the system server 10 (step S410).
The data used in the application for acquisition of the Basic Resident Register card includes, for example, the biometric information of the user read in step S403, the name of the staff on the side of the government office who confirmed the application documents, and the reception at the time of application The name of the staff on the side of the government office that went is included.
In this way, by repeating data registration at different times, places, and people, clarification of the actual witness of the user and accumulation of data is realized. In addition, by registering personal data in the system server 10 having a certain security level, it is possible to prevent a user's personal data from being leaked.
In addition, the personal data registered in the system server 10 can be used by other organizations with the consent of the user.
Thus, the authentication system ends the process.

  The system server 10 may set a designation flag (use / external exchange possible / impossible) for each item of personal data as in the first embodiment.

As explained above, when applying for the acquisition of the Basic Resident Register card, the conventional personal data based on self-reporting should be managed by a third-party organization, and if necessary, proof by the third-party organization can be attached. Thus, it is possible to provide the government office with the validity of the personal data of the user and the proof of the existence of the individual.
The government office improves the reliability of personal data in the determination of whether or not to take an examination by the above-mentioned authentication, so that it is possible to prevent the basic resident register card from being erroneously issued to a third party.

Similar to the passport example of the fifth embodiment, by using the authentication system, the validity of the personal data of the user and the personal Proof of existence can be made.
Similarly to the example of the passport of the fifth embodiment and the driver's license of the sixth embodiment, if the user's presence authentication is not obtained, the photographing device 62 is not turned on, thereby allowing a third party to be turned on. Can prevent the issuance of the Basic Resident Register card.
As in the passport example of the sixth embodiment, the basic resident register card can be provided with a recording medium, and user authentication in that case can be performed in the same manner as in the sixth embodiment.

<Summary of Examples>
As described above, each terminal and each device acquires the user's biometric information when registering personal data for the first time or when applying for acquisition of a passport / driver's license, etc., and the acquired biometric information. Is registered in the system server 10. When the system server 10 receives an acquisition request for user authentication from each terminal, the system server 10 collates the biometric information received simultaneously with the acquisition request with the biometric information registered in its own server, and the existence of the user is proved. And the determination result is transmitted to each terminal.
Thus, since the system server 10 accumulates and manages biometric information of each user, a public institution or a private institution can easily confirm the presence of the user.
In this specification, the public organization includes the domestic / overseas passport issuing organization, the departure / immigration control organization, the training school, the test site, the renewal organization, the violation history management organization, the municipal office, etc. in the embodiment of the present invention. Is included.
Further, in this specification, the private organization includes the employer, the credit sales company, and the like in the embodiment of the present invention.
Further, the above-described recording medium may store two or more description contents of a passport, a driver's license, a basic resident register card, an insurance card, a credit card, and the like.

In addition, the system server 10 may record the registration history in the database 11 in time series every time biometric information is newly registered in the database 11 from the terminal or device of each institution. For example, as shown in FIG. 28, this registration history is configured such that the type of biometric information (fingerprint, iris, etc.) and the registration time are associated with each other and managed by the system server 10 for each user. .
Furthermore, as shown in FIG. 29, the registration history may indicate the time when each type of biometric information matches as a result of collation. In this case, the fact that the biometric information matches is accumulated in time series, so that the reliability of the biometric information in the system server 10 can be improved.
Although an example in which the registration / match history of biometric information is managed in the database 11 has been described, other personal data can be managed in the database 11 in the same manner.

Further, the system server 10 may be requested by a public or private organization, accumulate personal data held by each organization, and back up the personal data.
Further, the system server 10 is requested by the user himself / herself and the same person as the personal data written in the recording medium attached to the identification card (passport, driver's license, Basic Resident Register card, insurance card, etc.) Data may be accumulated and the personal data may be backed up.
When the system server 10 is requested by each public institution, each private institution, or the user's terminal to acquire the personal data of the user, the system server 10 transmits the personal data for backup to the requesting terminal or the like.
As described above, since the system server 10 backs up the user's personal data, even if the user's personal data is lost on the public institution side, the private institution side or the recording medium, Will be able to quickly reissue identification and use services.

  In addition, as described above, in each embodiment of the present invention, a user accesses a website operated by a third party using the user terminal 20 and registers personal data. The third party or the other network operator may create a shared folder in the system server 10 and the user may register personal data in the shared folder. In this case, the third party side sets an account for the user and manages the access right.

  The above processing is executed by a computer program included in each device, terminal, or server that constitutes the information distribution system. The above program may be an optical recording medium, a magnetic recording medium, a magneto-optical recording medium, a semiconductor, or the like. It may be recorded on the recording medium and loaded from the above-mentioned recording medium, or may be loaded from an external device connected via a predetermined network.

  The present invention is different from a system that merely authenticates an individual, and is a system that authenticates the presence of an individual based on the history information of the individual, and is highly likely to be used in every scene of daily life. It can also be used as a useful system for preventing crimes caused by impersonation of the person in an information flooded society.

  The above-described embodiment is a preferred embodiment of the present invention, and various modifications can be made without departing from the spirit of the present invention.

It is a block diagram which shows schematic structure of the authentication system which is 1st Example of this invention. It is a sequence chart which shows the operation example of the authentication system which is 1st Example of this invention. It is a top view which shows the example of the 1st registration screen of the history information by a job seeker. It is a top view which shows the 2nd example of a registration screen of the history information by a job seeker. It is a sequence chart which shows the operation example of the authentication system which is the 2nd Example of this invention. It is a top view which shows the example of an input screen of evaluation information by the employment side. It is a block diagram which shows schematic structure of the authentication system which is the 4th Example of this invention. It is a block diagram which shows schematic structure of the authentication system in Example 5 of this invention. It is a sequence chart which shows an example of the user authentication operation | movement at the time of the passport issuing by an authentication system. It is a figure which shows one screen example of the registration screen in Example 5 of this invention. It is a sequence chart which shows an example of the reconfirmation operation | movement of the user authentication at the time of the passport creation by an authentication system. It is a sequence chart which shows an example of the user authentication operation | movement by an authentication system when applying for the reissue of the passport to a domestic passport issuing organization. It is a sequence chart which shows an example of the user authentication operation | movement by an authentication system when applying for reissuance of a passport to a foreign passport issuing organization. It is a sequence chart which shows an example of the user authentication operation | movement by the authentication system at the time of the photography for passport attachment. It is a sequence chart which shows an example of the user authentication operation | movement by the authentication system at the time of a user's immigration. It is a sequence chart which shows an example of the user authentication operation | movement by the authentication system at the time of a user's immigration. It is a block diagram which shows schematic structure of the authentication system in Example 7 of this invention. It is a sequence chart which shows an example of the user authentication operation | movement by the authentication system at the time of driving lesson application. It is a sequence chart which shows the other example of the user authentication operation | movement by the authentication system at the time of driving lesson application. It is a sequence chart which shows the user authentication operation | movement by the authentication system at the time of this graduate school examination application. It is a sequence chart which shows the user authentication operation | movement before taking this exemption subject examination. It is a sequence chart which shows the user authentication operation | movement at the time of the photography before a driver's license is issued. It is a sequence chart which shows user authentication operation at the time of driver's license grant. It is a sequence chart which shows the user authentication operation | movement at the time of the update of a driver's license. It is a sequence chart which shows the user authentication operation | movement at the time of the update of a driver's license. It is a block diagram which shows schematic structure of the authentication system in Example 8 of this invention. It is a sequence chart which shows an example of the user authentication operation | movement by the authentication system at the time of application for acquisition of a Basic Resident Register card. It is a figure which shows an example of the personal data registration log | history in a database. It is a figure which shows the other example of the personal data registration log | history in a database.

Explanation of symbols

10 system server 11 DB (database)
20 User terminal 30 Employment side terminal 40 Authentication requesting side terminal 41 Domestic issuing institution terminal 42 Overseas issuing institution terminal 43, 54, 57, 62 Imaging device 44 Departure side terminal 45 Immigration side terminal 51 School terminal 52 Test site terminal 53 Violation history management terminal 55 Renewal organization terminal 56 Reader 61 Municipal office terminal 100 Communication network

Claims (29)

A system server having a database for managing personal information, a communication terminal that can be operated by the individual, and an authentication requesting side terminal provided on an authentication requesting side that desires the presence authentication of the individual via a communication line network A connected authentication system,
The individual has previously registered the personal information in the system server via the communication terminal,
The authentication requesting side requests the system server from the authentication requesting side terminal for the personal existence authentication,
The system server refers to the personal information registered in the database in response to the request, and uses the authentication information as a result of determining the validity of the personal information and the fact that the individual actually exists. Provide to the desired terminal
An authentication system characterized by that. The system server is
The authentication system according to claim 1, wherein the authentication system is managed by a third party other than the individual. The personal information is
The authentication system according to claim 1 or 2, wherein the disclosure range can be arbitrarily changed by the individual via the communication terminal. The system server is
4. The authentication system according to claim 1, wherein information indicating a registration time of the personal information is stored in the database for each individual. The system server is
The authentication system according to any one of claims 1 to 4, wherein information indicating a matching time as a result of the collation is stored for each individual in the database according to the type of the personal information. The system server is
6. The authentication system according to claim 1, wherein the personal information is edited to create an electronic album. The personal information is
The authentication system according to any one of claims 1 to 6, comprising biometric information of the individual and / or image data that the individual desires to register in the database. The authentication system includes:
A reader that is connected to the communication network and reads the personal biometric information;
The authentication requesting terminal is:
Transmitting the read biometric information to the system server when making an inquiry about the validity of the personal information;
The authentication system according to claim 7. The system server is
9. The authentication system according to claim 7 or 8, wherein history information for collating the biometric information is stored in the database. The personal information is
The authentication system according to any one of claims 1 to 9, further comprising a video recording when the individual performs a predetermined procedure on the authentication requesting side. The system server is
11. The authentication system according to claim 1, wherein information for specifying a person who belongs to the authentication requesting side facing the individual is stored in the database. The system server is
Storing the personal information held by the authentication requesting side for backup, and transmitting the corresponding personal information of the held personal information to the authentication requesting side terminal that made the acquisition request in response to the acquisition request. The authentication system according to any one of claims 1 to 11, wherein the authentication system is characterized in that: The authentication requesting terminal is:
Verifying the validity of the provided personal information and the existence of the individual by comparing the personal information provided by the individual with the personal information recorded on the recording medium held by the individual. The authentication system according to any one of claims 1 to 12, characterized in that: The system server is
The personal information recorded on the recording medium is stored for backup, and in response to the acquisition request, the corresponding personal information among the stored personal information is transmitted to the authentication requesting terminal that has made the acquisition request. The authentication system according to claim 13. The individual (job seeker) who wants to find employment registers the personal history information as the personal information in the system server in advance via the communication device, and then the history information is sent to the employer who wants to find a job. Provide
The authentication requesting terminal is:
An information processing apparatus operated by the employer, inquiring of the system server about the validity of the history information transmitted from the communication terminal,
The system server is
Authentication comprising a database for managing the personal history information, referring to the historical information registered in the database in response to the inquiry, and authenticating the validity of the personal history information and the existence of the individual Transmitting information to the authentication requesting terminal;
The authentication system according to any one of claims 1 to 14, wherein: The personal history information is
It consists of at least two or more combinations of resume description contents, work history description contents, educational background information (graduation certificate, transcript), various qualification information, identity guarantee information, resident card, etc. The authentication system according to claim 15. The authentication requesting terminal is:
The authentication system according to claim 15 or 16, wherein the work evaluation information of the individual employed by the employer based on the authentication information is periodically transmitted to the system server. The system server is
The authentication according to any one of claims 15 to 17, wherein when there is a request for work evaluation information from the individual via the communication terminal, the work evaluation information is transmitted to the communication terminal. system. The system server is
The history information is transmitted to the communication terminal in time series or for each category arbitrarily selected by the individual when there is a request for browsing history information from the individual via the communication terminal. Item 19. The authentication system according to any one of Items 15 to 18. The individual who desires to acquire or update an identification card for identifying the individual registers the personal information in the system server via the communication device, and also sends the personal information to the identification certificate issuing institution side. Provide
The authentication requesting terminal is:
An information processing apparatus operated by the ID issuing authority side, inquiring of the system server about the validity of personal information transmitted from the communication terminal,
The system server is
A database for managing the personal information, referring to the personal information registered in the database in response to the inquiry, and authenticating authentication information for authenticating the validity of the personal information and the existence of the individual. Send to the desired terminal,
The authentication system according to any one of claims 1 to 14, wherein: The identification card is provided with a recording medium capable of recording personal information,
The authentication requesting terminal is:
The personal information provided by the individual and the personal information recorded on the recording medium provided in the identification card are collated to authenticate the provided personal information and authenticate the existence of the individual. 21. The authentication system according to claim 20, wherein: The system server is
The personal information recorded on the recording medium provided in the identification card is stored for backup, and the corresponding personal information among the held personal information is received in response to the acquisition request. The authentication system according to claim 21, wherein the authentication system transmits the request to a terminal on a request side. The authentication system includes:
A photographing device connected to the communication line network for taking a picture for attaching the identification card;
The authentication requesting terminal is:
Upon receipt of the authentication information, the information to permit photography of the individual is transmitted to the photographing device.
23. The authentication system according to any one of claims 20 to 22, wherein: The authentication system according to any one of claims 20 to 23, wherein the identification card is a passport. The individual who wishes to enter and leave the country registers the personal information in the system server via the communication device, and confirms the validity of the personal information and the confirmation that the individual actually exists. Providing the personal information to the immigration authority that determines whether it is possible,
The authentication requesting terminal is:
An information processing apparatus operated by the immigration authority side, inquiring of the system server about the legitimacy of personal information transmitted from the communication terminal,
The system server is
A database for managing the personal information, referring to the personal information registered in the database in response to the inquiry, and authenticating authentication information for authenticating the validity of the personal information and the existence of the individual. Send to the desired terminal,
25. The authentication system according to claim 24. The authentication system according to any one of claims 20 to 23, wherein the identification card is a driver's license. The individual who wishes to attend driving lessons registers the personal information in the system server via the communication device, and based on the validity of the personal information and confirmation that the individual exists. Provide the personal information to the school to determine whether or not to take the driving training for the driver's license
The authentication requesting terminal is:
An information processing apparatus operated by the school side based on the validity of the personal information and confirmation that the individual actually exists, with respect to the system server regarding the validity of the personal information transmitted from the communication terminal Contact us,
The system server is
A database for managing the personal information, referring to the personal information registered in the database in response to the inquiry, and authenticating authentication information for authenticating the validity of the personal information and the existence of the individual. Send to the desired terminal,
27. The authentication system according to claim 26. The individual who wishes to take a driver's license will register the personal information in the system server via the communication device in advance, and based on the validity of the personal information and confirmation that the individual exists. Providing the personal information to the test site that determines whether or not to take the driver's license for the individual,
The authentication requesting terminal is:
An information processing apparatus operated by the test site based on the validity of the personal information and confirmation that the individual actually exists, and the validity of the personal information transmitted from the communication terminal to the system server Contact us,
The system server is
A database for managing the personal information, referring to the personal information registered in the database in response to the inquiry, and authenticating authentication information for authenticating the validity of the personal information and the existence of the individual. Send to the desired terminal,
28. The authentication system according to claim 26 or 27. The authentication system according to any one of claims 20 to 23, wherein the identification card is a basic resident register card.

Images