US20040053654A1 - Secret information record medium, secret information protection method, secret information protective storing method, and system for reporting emergency such as theft or confinement when secret information is accessed - Google Patents

Secret information record medium, secret information protection method, secret information protective storing method, and system for reporting emergency such as theft or confinement when secret information is accessed Download PDF

Info

Publication number
US20040053654A1
US20040053654A1 US10/333,868 US33386803A US2004053654A1 US 20040053654 A1 US20040053654 A1 US 20040053654A1 US 33386803 A US33386803 A US 33386803A US 2004053654 A1 US2004053654 A1 US 2004053654A1
Authority
US
United States
Prior art keywords
data
items
true
user
false
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Abandoned
Application number
US10/333,868
Inventor
Hitoshi Kokumai
Ryuhei Masuno
Masayuki Kuriyama
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Mnemonic Security Ltd
Original Assignee
Mnemonic Security Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from JP2000223940A external-priority patent/JP2002041472A/en
Priority claimed from JP2000284811A external-priority patent/JP2002092564A/en
Priority claimed from JP2000396990A external-priority patent/JP4868643B2/en
Application filed by Mnemonic Security Ltd filed Critical Mnemonic Security Ltd
Assigned to MNEMONIC SECURITY LIMITED reassignment MNEMONIC SECURITY LIMITED ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: MASUNO, RYUHEI, KURIYAMA, MASAYUKI, KOKUMAI, HITOSHI
Publication of US20040053654A1 publication Critical patent/US20040053654A1/en
Priority to US11/731,610 priority Critical patent/US8577807B2/en
Abandoned legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/554Detecting local intrusion or implementing counter-measures involving event detection and direct action
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/36User authentication by graphic or iconic representation
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2127Bluffing

Definitions

  • the present invention relates to security of secret information including cryptographic keys.
  • the present invention relates to a protection system (for example, emergency conditions informing system) for use of secret information including cryptographic keys (for example, use of user authentication passwords).
  • the present invention relates to security of secret information including cryptographic keys (such as personal identification information for user authentication, information indicating a particular authorized user to enter an information control room or to identify an operator, individual identification information for a customer, sensitive personal information (assets, value of securities, and storage data such as storage space), sensitive corporate information [sales activity materials (such as customer data and merchandise data) and research activity materials (such as mathematical expressions, chemical formulas, and other numeric data in research result lists and details in research reports)].
  • cryptographic keys such as personal identification information for user authentication, information indicating a particular authorized user to enter an information control room or to identify an operator, individual identification information for a customer, sensitive personal information (assets, value of securities, and storage data such as storage space), sensitive corporate information [sales activity materials (such as customer data and merchandise data) and research activity materials (such as mathematical expressions, chemical formulas, and other numeric data in research result lists and details in research reports)].
  • cryptographic keys used for user authentication in electronic commerce as well as those used to protect secret information stored in a personal computer or mobile telephone against loss and theft and those used as entrant-limited control or operator-limited control cryptographic keys to inhibit an unauthorized person's access to a storage medium of a server.
  • the present invention is not limited to online applications such as user authentication in electronic commerce but is finding offline applications such as recording on a recording medium, transporting printout or image outputs through facsimile or by mail, and transporting and storing in movable or storable form such as printed matter or floppy disks as well as other wide applications such as storing on a recording medium of a computer.
  • passwords of plural digits and/or characters and/or IC cards have been commonly used.
  • user authentication means for authenticating a user by means of fingerprints or other physical features.
  • Such an IC card maybe used by someone other than the owner or authorized user of the IC card if it is lost or thieved.
  • first and second embodiments of the present invention provide means of concealing and storing secret information as well as a method of protecting secret information, wherein these means and method have functions as user authentication means but do not need fingerprint recognition or other physical feature user authentication means. It is also an object of these embodiments to provide means of concealing, recording, and storing secret information such as corporate information and technical information.
  • the first invention (claims 1 through 4) provides a Secret Information Record Medium for secret information, wherein a single or plural items of true data are interspersed among numerous items of false data and the false and true data are composed of two-dimensional code data in plural groups having different areas, and wherein the location(s) and/or storing order of the item(s) of true data interspersed among the numerous items of false data are determined and presented to a user.
  • the second invention (claims 5 through 7) provide a Secret Information Protective storing Method, wherein a single or plural items of true data encrypted by applying two-dimensional codes to secret information are interspersed among numerous items of false data, and wherein the location(s) and/or storing order of the item(s) of true data with respect to the numerous items of false data are held in a user's memory for memory authentication (brain authentication) to prevent any unauthorized person from decrypting the secret information.
  • the third invention (claim 8) provides a Secret Information Protective storing Method wherein items of true data indicating decryption keys for encrypted secret information are interspersed among numerous items of false data for concealment and the locations and reading order of the items of true data interspersed among the numerous items of false data are held in a user's memory.
  • the fourth invention provides a Secret Information Protective storing method of concealing, recording, and storing secret information interspersed with true information and false information, wherein the true information is divided into plural items and interspersed among numerous items of the false information to conceal the true information, wherein numerous items of true data indicating the locations of the items of true information and numerous items of false data indicating the locations of the items of false information are provided, and wherein the locations and storing order of the items of true data interspersed among the numerous items of false data are determined from a user's memory.
  • the invention of claim 10 is achieved, in the invention of claim 9 by referring to a graphic sheet which includes coloring, illustrations, graphics, and landscapes, when the locations and order of the items of true data interspersed among the numerous items of false data are determined from a user's memory.
  • the fifth invention provides a System for Reporting Emergency such as Theft or conferment when Secret Information is accessed, wherein during the input of a password upon user authentication in an internet transaction, a user adds an alarm signal that is set in advance for informing that he or she is placed under the control of an unauthorized person, and the system detects that the user is under an abnormal condition by detecting the alarm signal, whereupon the system performs a protection/preservation measure.
  • a System for Reporting Emergency such as Theft or conferment when Secret Information is accessed, wherein during the input of a password upon user authentication in an internet transaction, a user adds an alarm signal that is set in advance for informing that he or she is placed under the control of an unauthorized person, and the system detects that the user is under an abnormal condition by detecting the alarm signal, whereupon the system performs a protection/preservation measure.
  • the sixth invention provides a System for Reporting Emergency such as Theft or conferment hen Secret Information is accessed, wherein during the input of a password upon user authentication in an internet transaction, a user adds an alarm signal that is set in advance for informing that he or she is placed under the control of an unauthorized person, and the system detects that the user is under an abnormal condition by detecting the alarm signal, whereupon the system performs a normal user authentication procedure as well as performs a protection/preservation measure.
  • a System for Reporting Emergency such as Theft or conferment hen Secret Information
  • the seventh invention provides a system for informing theft, confinement, and other emergency conditions occurring during operations on secret information, wherein during the input of a password upon user authentication in an internet transaction, a user deletes an alarm signal that is set in advance in a password for informing that he or she is placed under the control of an unauthorized person, and the system detects that the user is under an abnormal condition by detecting the alarm signal, whereupon the system performs a protection/preservation
  • the eighth invention provides a and System for Reporting Emergency such as Theft or conferment when Secret Information is accessed, wherein the number of items of matching data to be recorded on a recording medium is selected to include a single item of true data and plural items of false data to provide a user authentication data recording medium which has the matching data interspersed with the single item of true data and the plural items of false data, wherein in recording secret information with cryptographic keys on the user authentication data recording medium, one of the numerous items of matching data is determined to be the true data and the remaining items of matching data are determined to be the false data, wherein information indicated by the single item of true data is determined to be authentication data indicating the secret information with the cryptographic keys on the user authentication data recording medium, wherein in using the user authentication data recording medium to enter the authentication data, the single item of true data is selected from the user authentication data recording medium, thereby determining that the true authentication data is selected and validating the user authentication, and wherein in selecting the single item of true data from the user authentication data recording medium during the input
  • the ninth invention is achieved, in the invention of claim 8, by including plural items of true data in the user authentication data recording medium. More specifically, several ones of the numerous items of matching data are determined to be the true data by specifying the locations and order of them, the remaining items of matching data are determined to be the false data, and information indicated by the plural items of true data is determined to be authentication data on the user authentication data recording medium. Thus, the plural items of true data are selected from the user authentication data recording medium in a correct order during the input operation by means of the user authentication data recording medium, thereby determining that the true matching data is selected and validating the user authentication.
  • the tenth invention (claim 16) is achieved, in the claim 8 and claim 9, by determining some of the false data as confinement informing data and adding it to the true data to include at least one item of confinement informing data, thereby determining that the user is placed under the control of an unauthorized person and validating the user authentication with a confinement informing alarm generated.
  • one or several ones of the numerous items of matching data are determined to be the true data with a reading order determined, the remaining items of matching data are determined to be the false data, information indicated by the single or plural items of true data in the correct reading order is determined to be authentication data indicating the secret information with the cryptographic keys on the user authentication data recording medium, and some of the false data is determined to be confinement informing data.
  • the single or plural items of true data from the matching data and the reading order are selected and the confinement informing data is added, thereby determining that the true authentication data is selected and validating the user authentication.
  • at least one item of confinement informing data is included in addition to the true data, it is determined that the user is placed under the control of an unauthorized person and a control center validates the user authentication with a confinement informing alarm generated.
  • FIG. 1 is an explanatory drawing for showing a first embodiment of a recording and storage card which includes secret information composed of two-dimensional code data.
  • FIG. 2 is an explanatory drawing for showing a second embodiment of the card.
  • FIG. 3 is an explanatory drawing for showing a third embodiment of the card.
  • FIG. 4 is an explanatory drawing for showing a fourth embodiment of the card.
  • FIG. 5 is an explanatory drawing of two-dimensional codes, which are composed of small squares in FIG. 5 a , large squares in FIG. 5 b , and rectangles in FIG. 5 c , respectively.
  • FIG. 6 is an explanatory drawing for showing a fifth embodiment of the recording and storage card which includes secret information composed of two-dimensional code data.
  • FIG. 7 is a schematic drawing for showing recording and reading operations on a card 1 .
  • FIG. 8 is a block diagram for showing the same operations as shown in FIG. 7.
  • FIG. 9 is an explanatory drawing of encrypted information.
  • FIG. 10 is an explanatory drawing of address cards.
  • FIG. 11 is an explanatory drawing of address cards including illustrations.
  • FIG. 12 is a flowchart of the fifth invention.
  • FIG. 13 is a flowchart of the sixth invention.
  • FIG. 14 is a flowchart of the seventh invention.
  • FIG. 15 is an explanatory drawing of a user authentication data recording card.
  • FIG. 16 is an explanatory drawing of a user authentication data recording card for an embodiment which uses matching data of different shapes.
  • FIG. 17 is an explanatory drawing of user authentication data recording cards for showing an embodiment in which two-dimensionally coded data is recorded.
  • FIG. 18 is an explanatory drawing of user authentication data recording cards for showing an embodiment in which marks and symbols are used as matching data.
  • FIG. 19 is an explanatory drawing of reading means for matching data in the second embodiment and also shows the functions of a control computer.
  • FIG. 20 is an explanatory drawing for showing the system operation of an emergency conditions informing system according to the eighth through tenth embodiments.
  • FIG. 21 is a flowchart for showing the same system operation as shown in FIG. 21.
  • FIG. 22 is an explanatory drawing for showing the embodiment of the tenth invention in a similar manner to FIG. 19.
  • FIG. 23 is a flowchart for showing the seventh embodiment of the tenth invention.
  • a user who holds a recording and storage card including secret information of two-dimensional code data composed of a single or plural items of true data interspersed among numerous items of false data determines and selects the location(s) and the reading order of the item(s) of true data among the numerous items of false data from the user's own memory, so that the secret information of two-dimensional data is reproduced and provided to a computer directly or through a communication line.
  • the user refers to illustrations or graphics composed of the numerous items of false data and true data as auxiliary means, in determining and selecting the locations and the reading order of the items of true data among the numerous items of false data from the user's own memory.
  • the user also refers to illustrations or graphics which exist in the background to the numerous items of false data and true data, in determining and selecting the locations and the reading order of the items of true data among the numerous items of false data from the user's own memory.
  • the location(s) and the storing order of the single or plural items of true data with respect to the numerous items of false data are determined from the user memory authentication (brain authentication) to select the single or plural items of true data interspersed among the numerous items of false data, so that the secret information with cryptographic keys is decrypted for reproduction.
  • the user determines and selects the locations and the reading order of the items of true data which indicate decryption keys, from among the numerous items of false data from the user's own memory in decrypting the encrypted secret information.
  • the locations and the order of the items of true data for true information interspersed among the numerous items of false data are determined from the user's memory, and according to the embodiment of claim 8, the determination from the user's memory is accomplished by using, as auxiliary means, a graphic sheet which includes coloring, illustrations, graphics, and landscapes.
  • the reference numeral 1 designates a recording and storage card including secret information, on which a single or plural items of true data A are interspersed among numerous items of false data B and the false data B and the true data A are encrypted by applying two-dimensional codes thereto.
  • the single or plural items of true data A and the numerous items of false data B are arranged in groups of different sizes. Therefore, all the items of false data B and true data A cannot be identified visually.
  • Recorded data items of two-dimensional codes may be different from each other or some of the recorded data items may be in a group of numerous identical data items.
  • the items of false data B and true data A may be in identical shape (for example, a square) or in different shapes such as a square, a rectangle, and a circle and such different shapes may allow the user to hold the locations of the items of true data A in the user's memory more easily.
  • any difference in size or shape is irrelevant to whether the data is true or false and thus, the data cannot be authenticated based on any difference in size or shape.
  • FIG. 1 shows that a single item of true data A and numerous other items of data are in identical shape (for example, a square) but of two different sizes, that is, larger squares and smaller squares.
  • first unit records 10 and second unit records 12 represent an apartment house
  • the second unit records 12 represent collectively a staircase and/or elevator
  • the first unit records 10 represent dwellings in the apartment house.
  • FIG. 2 shows that plural items of true data A and other items of data are represented by squares and rectangles as three types of unit records, that is, first unit records 10 , second unit records 12 , and third unit records 13 .
  • the first unit records 10 in smaller square shape represent dwellings
  • the second unit records 12 in larger square shape represent collectively a staircase and/or elevator in a similar manner to FIG. 1
  • the third unit records 13 in rectangular shape represent collectively an anti-disaster floor in order to facilitate holding in a user's memory where the items of true data A are located.
  • FIG. 3 shows the embodiment and that a “robot” is represented as an illustration or graphic formed of numerous items of false data and true data.
  • Such auxiliary means as the robot's “eye”, “belly”, and “leg” can be used to facilitate determination of the locations of the items of true data and the order of selecting them from the numerous items of false data.
  • FIG. 4 shows the embodiment that a landscape is represented as a background to the numerous items of false data and true data.
  • the landscape is placed over the graphics formed of a collection of the numerous items of false data and the items of true data interspersed among them. It should be noted that a landscape sheet with the landscape printed on a transparent sheet can be placed over a data sheet with the collection of the numerous items of false data and true data displayed thereon to overlay or superimpose the landscape.
  • Such auxiliary means as the “trees on a mountain”, “on-river ship”, and “stones near the bridge” can facilitate determination of the locations of the items of true data and the order of selecting them from the numerous items of false data.
  • the two-dimensional codes include grid-arranged (matrixed) squares or rectangles, concentrically-arranged circles, and multilevel bar codes and it has the advantages that, as compared with one-dimensional bar codes of data units, the amount of information can be increased in a series manner because of its two-dimensional arrangement, that numerous different items of data can be visually approximated by making a change to a data unit to vary the data to be displayed, and that numerous items of data with different sizes and shapes can be also considered as identical items of data.
  • the first embodiment of the present invention makes use of these advantages.
  • the two-dimensional codes are composed of grid-arranged (matrixed) squares or rectangles, that is, smaller squares in FIG. 5 a , larger squares in FIG. 5 b , and rectangles in FIG. 5 c , and the respective recorded items of two-dimensional data indicate an identical numerical value or mark throughout the three figures.
  • the reference numeral 14 designates a border of data range and 15 designates two-dimensional code data.
  • coloring can facilitate determination of the locations of the items of true data and the order of selecting them from the numerous items of false data in recording the data on a recording medium or in printed form.
  • some items of true data encrypted by applying two-dimensional codes to secret information with cryptographic keys are interspersed among numerous items of false data, and the locations of the item of true data with respect to the numerous items of false data are held in a user's memory for memory authentication (brain authentication) to prevent any unauthorized person from decrypting the secret information.
  • the second through fourth embodiments can be implemented by using a recording and storage card for secret information with cryptographic keys encrypted by two-dimensional data according to the first embodiment and another recording and storage card for secret information with cryptographic keys encrypted by two-dimensional data as shown in FIG. 6 can be also used.
  • two-dimensional data for each item of data is in identical shape, that is, a square of the same size.
  • a sequence of alphanumeric characters are added for assisting in holding the locations and reading order of the items of true data in a user's memory.
  • alphanumeric characters for example, B2, B1, F1, F2, F3, . . .
  • alphanumeric characters may be added to the cards shown in FIGS. 1 and 2 as memory assistance for the locations and reading order of the items of true data.
  • An authorized user who knows this order uses a handheld or pen-type scanner 2 to sequentially read out the lower fifth location # 1 , the upper ninth location # 2 , the upper second location # 3 , and the lower sixth location # 4 as shown in FIG. 7 while ignoring the other code locations.
  • An accessed system receives a restored password of hundreds through thousands of digits and/or characters to identify the authorized user.
  • the reference numeral 3 designates a terminal unit
  • 4 designates a keyboard
  • 5 designates a communication network such as Internet
  • 6 designates a central control computer
  • 7 designates data.
  • Encrypted information 20 in FIG. 9 is divided into three items of true information P 1 , P 2 , P 3 , which are interspersed among items of false information Q 1 , Q 2 , . . . to conceal the true information.
  • the false information Q and the true information P cannot be discriminated from their appearances.
  • the items of true information P 1 , P 2 , P 3 are assigned 5 , A, and (a katakana character) as items of address information p (true data) and the other items of false information Q 1 , Q 2 , • • • • are assigned numbers other than 5, alphabetic characters other than A, and katakana characters other than as items of address information q (false data).
  • both the items of true data P and the items of false data Q are placed on address cards 21 A, 21 B, and 21 C.
  • the user selects the items of true data 5 , A, and from among the items of false data through memory authentication (brain authentication).
  • these items of data can be colored in red, yellow, and blue.
  • FIGS. 1 through 4 and FIG. 6 can be used.
  • marks and symbols other than alphanumeric characters can be also used.
  • the third and fourth embodiments are not limited to optical/printed two-dimensional codes but they are applicable to non-optical/non-printed indexed data blocks and optical/non-optical symbols.
  • the algorithm used for these embodiments is also applicable not only to some items of data printed as two-dimensional codes but to those printed as symbols or to data blocks or symbols which are not printed but indexed and recorded on a storage medium.
  • the above-described first through fourth embodiments can facilitate input operations of authentication data used for user authentication as well as selection of true authentication data from numerous items of false data, thereby holding it in one's memory more easily.
  • these embodiments can prevent any unauthorized person from decrypting authentication symbols for greater safety.
  • a recording medium storing corporate information and/or personal information can be concealed more securely.
  • cryptographic keys for user authentication and secret information such as corporate information and/or personal information can be treated in a more secret manner for online applications and offline applications as well as in recording and storing on a recording medium in a computer itself.
  • the alarm signal may be set irrelevant to the password.
  • a system detects that the user is under an abnormal condition by detecting the alarm signal, and it is to perform a protection/preservation measure.
  • the user authentication is completed ignoring the existence of the alarm signal.
  • the system leads the access to a false web page that is prepared beforehand for transmitting information that is similar to but not the same as the true information and does not give great damage to its organization, facility or corporation even if it is leaked.
  • the system can promptly set about a user rescue, detection of an invader or complementary activity if it grasps the abnormal condition on real time.
  • this software algorithm can be applied not only to the password but also to the other authentication method.
  • fingerprint authentication the fingerprint on the third finger of the right hand is, for example, determined as a signal that completes the authentication but alarms the occurrence of the abnormal condition.
  • signature recognition a second signature maybe registered for this purpose.
  • symbols are used for authentication without using characters or numerals, one or plural symbols may be assigned to each user for this purpose.
  • a user inputs a password by adding an alarm signal set in advance in user authentication in an internet transaction. For example, the user adds [#] to [A1234], i.e., inputs [A1234#]. The user deletes [#] at the end and inputs [A1234] for informing that he or she is placed under the control of unauthorized person.
  • the preservation measure after this is the same as that shown in the fifth embodiment (claim 11) and the sixth embodiment (claim 12).
  • the fifth through seventh embodiments detects an access from a user placed under the control of an unauthorized person in bad faith in user authentication in an internet transaction, thereby being capable of protecting and preserving both the user and the system.
  • Providing the alarm signal continued from the original password assuredly specify a sender of the alarm signal and further reduces “prank sending” or “miss-sending” of the alarm signal.
  • specifying an alarm signal every user can reduce “prank sending” or “miss-sending” of the alarm signal.
  • FIG. 15 shows a user authentication data recording card A 1 as a user authentication data recording medium used with the present invention and numerous items of matching data a such as kanji character strings, alphanumeric character strings, image and/or audio data are two-dimensionally coded and recorded on the data recording card through recording means which is capable of optically and/or magnetically reading data.
  • matching data a such as kanji character strings, alphanumeric character strings, image and/or audio data are two-dimensionally coded and recorded on the data recording card through recording means which is capable of optically and/or magnetically reading data.
  • FIG. 16 shows matching data in different shapes a 1 , a 2 , a 3 .
  • FIG. 17 shows matching data printed by a computer-controlled printer or magnetically recorded and the two-dimensional coding as shown in the figure can allow for recording identical data irrespective of data shapes.
  • the two-dimensional coding can make it difficult to discriminate visibly recorded data items because they are printed in substantially identical appearances.
  • matching data may include character strings and image and/or audio data which can be manipulated by a computer for matching operations.
  • a recording medium of the user authentication data recording card A 1 may be a portion of an optically readable printing card or a magnetically recording area formed on a portion of a card such as a credit card.
  • the data recording card may be an electrically recording medium such as an IC card.
  • FIG. 18 shows an embodiment of the user authentication data recording medium (user authentication data recording card A) which includes marks and symbols as matching data a 4 , a 5 , a 6 .
  • a single or plural items of true data P are determined from numerous items of matching data a and all the remaining items of matching data are determined to be plural items of false data Q, and then the matching data consisting of the single or plural items of true data and the plural items of false data are recorded on the user authentication data recording medium.
  • the location of an item of true data or the locations and the reading order of plural items of true data in the user authentication data recording medium 1 are determined and recorded in a recording unit of a CPU or central control computer 6 to allow the computer to perform a matching operation for authentication data recorded on the user authentication data recording medium 1 (user authentication data recording card A 1 ) presented by a holder thereof.
  • the authentication data on the user authentication data recording medium 1 (user authentication data recording card A 1 ) as shown in FIG. 15 is entered into a terminal unit 3 through a pen-type scanner 2 and then transmitted directly or through a communication line (Internet) to a CPU connected to the terminal unit.
  • the CPU or central control computer 6 includes a true data discriminator, a false data discriminator, a confinement informing data discriminator, a true data counter, a false data counter, a user authentication signal generator, a theft alarm (unauthorized access alarm) generator, and a confinement informing message generator.
  • a user authentication recording medium with numerous items of matching data a may be given to a user to allow the user to select some items of true data from among them with the remaining items to be assumed as those of false data. Namely, the user may be given a temporary right to select items of true and false data and also items of confinement informing data.
  • a user authentication data recording medium 1 (user authentication data recording card A 1 ) can be read by a card reader and then items of authentication data selected by selective input means such as a keyboard can be transmitted to a CPU or central control computer 6 via a terminal unit 3 .
  • a computer included in an electronic device terminal unit may be used to electronically record the content of a user authentication data recording medium (user authentication data recording card A) as well as to record it in a control center (authentication data registration computer) online or offline, so that matching data strings entered as authentication data based on the user-transmitted record can be entered in a control center (authentication computer) online or offline for matching the authentication data.
  • control center authentication data registration computer
  • alphanumeric characters, binary comparison, image comparison, and other data comparison techniques may be used for matching.
  • a CPU or central control computer 6 A in a control center has an input data storage in addition to the functional means as shown in FIG. 5 for the first embodiment [the true data discriminator, the false data discriminator, the confinement informing data discriminator, the true data counter, the false data counter, the user authentication signal generator, the theft alarm (unauthorized access alarm) generator, and the confinement informing message generator].
  • the authentication data in the recording unit does not match the authentication data in the input data storage (any item of true data is entered in an incorrect order or any item of false data is entered or any item of data which does not exist in the user authentication data (noise data) is entered), this is considered as an authentication error, resulting in a user authentication failure.
  • the false data count is less than a predetermined value, for example, it is one or less, another authentication access may be permitted.
  • the false data count is equal to or more than the predetermined value, for example, it is two or more, this is considered as an “unauthorized access” to generate a theft alarm.
  • recording means in a portable electronic device can be used to allow the control center to issue a user authentication data recording medium by recording similar information to that in a user authentication data recording card, that is, numerous items of matching data a, in the recording means of the portable electronic device, determining items of true data P from the items of matching data a, and determining and recording authentication data for a holder of the portable electronic device in the recording means of the portable electronic device and a computer in the control center.
  • the numerous items of matching data a are provided on a display of the portable electronic device to allow the user to specify the locations of the items of true data P from the user's memory for transmitting them to the control center (authentication data registration computer). If any item of false data Q is transmitted, it will be informed or alarmed that the portable electronic device (such as a mobile telephone or an entrant authentication device) may be lost or thieved. If any item of “confinement informing data” is detected, a user authentication and confinement informing message will be generated and transmitted.
  • a keyboard including a ten key pad or a dial
  • a touch screen or other computer input means
  • a single device may include all functions to be performed by the computer in the authentication data registration center as well as the authentication computer shown in FIG. 19.
  • an entrant controller can unlock a door to permit someone to enter the room only through user authentication without any communication to an external computer.
  • such a controller can be set to generate and transmit a theft alarm or confinement informing message through communication means for online communication to security.
  • a communication to security in addition to permission to enter the room and operate an electronic device may be effective for both user rescue and security of the electronic device and the electronic device control room.
  • the eighth invention uses a single item of true data P. As soon as an item of false data Q is detected, a loss or theft is informed or alarmed.
  • the ninth invention uses plural items of true data P and generates an alarm upon detection of plural items of false data Q, thereby reducing erroneous alarms due to input mistakes.
  • the invention can generate and transmit a confinement informing message upon detection of any item of “confinement informing data”. Therefore, when the fifth or sixth embodiment is implemented, the additional feature to generate and transmit a confinement informing message upon detection of any item of “confinement informing data” as shown in FIG. 23 can be omitted.
  • the eighth through tenth inventions can use a user authentication data recording medium 1 on which numerous similar items of matching data are recorded, and these embodiments can also select items of true data from among the numerous similar items of matching data from a user's memory to securely prevent an unauthorized person from making a user authentication request based on authentication data. If the authentication data to be transmitted includes an item of false data, generation of a theft alarm can enhance the feature to prevent an unauthorized access through a lost or thieved user authentication data recording medium.
  • the present invention provides means for concealing, recording, and storing secret information such as corporate information and technical information.
  • the present invention also establishes an alarm system as a safety measure to be taken when secret information with cryptographic keys, a recording medium including such secret information, or an electronic and/or communication device having such a recording medium is thieved or lost, or fraudulently used by means of leaked authentication data.
  • the present invention further establishes a system for informing that there occurs an unauthorized access to a restricted area or electronic device.
  • the present invention can detect access from an authorized user placed under the control of an unauthorized person in bad faith to allow for protection and preservation of both the user and the system. Therefore, the present invention is very useful in industrial fields where a secret information recording medium which has secret information with cryptographic keys recorded thereon, such as an authentication card, is used.

Abstract

Disclosed are protection of secret information including an encryption key and a system for reporting an emergency such as theft or confinement when secret information is accessed. Secret information includes a large quantity of decoy data and a piece/pieces of true and correct data mixed into the decoy data. The secret data including the decoy data and the true and correct data is two-dimensional code data the code of which is composed of groups of cells having different areas. The positions and order of storage of the true and correct data dispersedly mixed in the decoy data are determined and reported to the user. The user adds a predetermined alerting signal when inputting the password to tell that the user is under control of a third party. The system can detect the alerting signal and know that the user is in an abnormal state, performs normal identification procedures, and takes protection/preservation measures. Part of decoy data is specified as confinement report data and added to the true and correct data. Consequently at least a piece of confinement report data is included and therefore the user himself is judged to be under control of the third party. Then the user is identified and a confinement report alert is issued.

Description

    TECHNICAL FIELD
  • The present invention relates to security of secret information including cryptographic keys. In addition, the present invention relates to a protection system (for example, emergency conditions informing system) for use of secret information including cryptographic keys (for example, use of user authentication passwords). [0001]
  • More particularly, the present invention relates to security of secret information including cryptographic keys (such as personal identification information for user authentication, information indicating a particular authorized user to enter an information control room or to identify an operator, individual identification information for a customer, sensitive personal information (assets, value of securities, and storage data such as storage space), sensitive corporate information [sales activity materials (such as customer data and merchandise data) and research activity materials (such as mathematical expressions, chemical formulas, and other numeric data in research result lists and details in research reports)]. [0002]
  • For example, it relates to cryptographic keys used for user authentication in electronic commerce as well as those used to protect secret information stored in a personal computer or mobile telephone against loss and theft and those used as entrant-limited control or operator-limited control cryptographic keys to inhibit an unauthorized person's access to a storage medium of a server. [0003]
  • In addition, the present invention is not limited to online applications such as user authentication in electronic commerce but is finding offline applications such as recording on a recording medium, transporting printout or image outputs through facsimile or by mail, and transporting and storing in movable or storable form such as printed matter or floppy disks as well as other wide applications such as storing on a recording medium of a computer. [0004]
  • BACKGROUND ART
  • To protect these kinds of secret information, passwords of plural digits and/or characters and/or IC cards have been commonly used. In addition to or in place of such prior passwords, there exists user authentication means for authenticating a user by means of fingerprints or other physical features. Such an IC card maybe used by someone other than the owner or authorized user of the IC card if it is lost or thieved. [0005]
  • In addition, as a prior safety measure against loss and theft of an authentication card which has secret information with cryptographic keys recorded thereon, an authentication request from an unauthorized person may be denied to reject an online connection made by that person, resulting in a transaction failure. However, there is no system to actively invalidate an electronic key (authentication card) used for an unauthorized access or inform that there occurs an unauthorized access to a restricted area or electronic device. [0006]
  • Therefore, if an authentication card which has secret information with cryptographic keys recorded thereon is lost, replicated, and/or thieved, there is no safety measure to be taken when the card is used fraudulently by an unauthorized person in bad faith, when a deceitful user authentication request is made by an unauthorized person in bad faith, or when an authorized user placed under the control of an unauthorized person in bad faith makes a user authentication request (authentication data entry). [0007]
  • It is an object of first and second embodiments of the present invention to provide means of concealing and storing secret information as well as a method of protecting secret information, wherein these means and method have functions as user authentication means but do not need fingerprint recognition or other physical feature user authentication means. It is also an object of these embodiments to provide means of concealing, recording, and storing secret information such as corporate information and technical information. [0008]
  • It is an object of a third present invention to detect access from an authorized user placed under the control of an unauthorized person in bad faith to allow for protection and preservation of both the user and the system. [0009]
  • It is an object of fourth through ninth invention to establish an alarm system and a system for informing that there occurs an unauthorized access to a restricted area or electronic device as a safety measure to be taken when secret information with cryptographic keys, a recording medium including such secret information, or an electronic and/or communication device having such a recording medium is thieved or lost, or fraudulently used by means of an invalid authentication card or leaked authentication data. [0010]
  • DISCLOSURE OF INVENTION
  • The first invention (claims 1 through 4) provides a Secret Information Record Medium for secret information, wherein a single or plural items of true data are interspersed among numerous items of false data and the false and true data are composed of two-dimensional code data in plural groups having different areas, and wherein the location(s) and/or storing order of the item(s) of true data interspersed among the numerous items of false data are determined and presented to a user. [0011]
  • The second invention (claims 5 through 7) provide a Secret Information Protective storing Method, wherein a single or plural items of true data encrypted by applying two-dimensional codes to secret information are interspersed among numerous items of false data, and wherein the location(s) and/or storing order of the item(s) of true data with respect to the numerous items of false data are held in a user's memory for memory authentication (brain authentication) to prevent any unauthorized person from decrypting the secret information. [0012]
  • The third invention (claim 8) provides a Secret Information Protective storing Method wherein items of true data indicating decryption keys for encrypted secret information are interspersed among numerous items of false data for concealment and the locations and reading order of the items of true data interspersed among the numerous items of false data are held in a user's memory. [0013]
  • The fourth invention (claim 9) provides a Secret Information Protective storing method of concealing, recording, and storing secret information interspersed with true information and false information, wherein the true information is divided into plural items and interspersed among numerous items of the false information to conceal the true information, wherein numerous items of true data indicating the locations of the items of true information and numerous items of false data indicating the locations of the items of false information are provided, and wherein the locations and storing order of the items of true data interspersed among the numerous items of false data are determined from a user's memory. [0014]
  • The invention of [0015] claim 10 is achieved, in the invention of claim 9 by referring to a graphic sheet which includes coloring, illustrations, graphics, and landscapes, when the locations and order of the items of true data interspersed among the numerous items of false data are determined from a user's memory.
  • The fifth invention (claim 11) provides a System for Reporting Emergency such as Theft or conferment when Secret Information is accessed, wherein during the input of a password upon user authentication in an internet transaction, a user adds an alarm signal that is set in advance for informing that he or she is placed under the control of an unauthorized person, and the system detects that the user is under an abnormal condition by detecting the alarm signal, whereupon the system performs a protection/preservation measure. [0016]
  • The sixth invention (claim 12) provides a System for Reporting Emergency such as Theft or conferment hen Secret Information is accessed, wherein during the input of a password upon user authentication in an internet transaction, a user adds an alarm signal that is set in advance for informing that he or she is placed under the control of an unauthorized person, and the system detects that the user is under an abnormal condition by detecting the alarm signal, whereupon the system performs a normal user authentication procedure as well as performs a protection/preservation measure. [0017]
  • The seventh invention (claim 13) provides a system for informing theft, confinement, and other emergency conditions occurring during operations on secret information, wherein during the input of a password upon user authentication in an internet transaction, a user deletes an alarm signal that is set in advance in a password for informing that he or she is placed under the control of an unauthorized person, and the system detects that the user is under an abnormal condition by detecting the alarm signal, whereupon the system performs a protection/preservation [0018]
  • The eighth invention (claim 14) provides a and System for Reporting Emergency such as Theft or conferment when Secret Information is accessed, wherein the number of items of matching data to be recorded on a recording medium is selected to include a single item of true data and plural items of false data to provide a user authentication data recording medium which has the matching data interspersed with the single item of true data and the plural items of false data, wherein in recording secret information with cryptographic keys on the user authentication data recording medium, one of the numerous items of matching data is determined to be the true data and the remaining items of matching data are determined to be the false data, wherein information indicated by the single item of true data is determined to be authentication data indicating the secret information with the cryptographic keys on the user authentication data recording medium, wherein in using the user authentication data recording medium to enter the authentication data, the single item of true data is selected from the user authentication data recording medium, thereby determining that the true authentication data is selected and validating the user authentication, and wherein in selecting the single item of true data from the user authentication data recording medium during the input operation by means of the user authentication data recording medium, if at least one item of false data is included in the input data, it is determined that a theft-causing unauthorized access is attempted and then the user authentication is invalidated with a theft alarm generated. [0019]
  • The ninth invention (claim 15) is achieved, in the invention of [0020] claim 8, by including plural items of true data in the user authentication data recording medium. More specifically, several ones of the numerous items of matching data are determined to be the true data by specifying the locations and order of them, the remaining items of matching data are determined to be the false data, and information indicated by the plural items of true data is determined to be authentication data on the user authentication data recording medium. Thus, the plural items of true data are selected from the user authentication data recording medium in a correct order during the input operation by means of the user authentication data recording medium, thereby determining that the true matching data is selected and validating the user authentication.
  • The tenth invention (claim 16) is achieved, in the [0021] claim 8 and claim 9, by determining some of the false data as confinement informing data and adding it to the true data to include at least one item of confinement informing data, thereby determining that the user is placed under the control of an unauthorized person and validating the user authentication with a confinement informing alarm generated.
  • More specifically, in recording secret information with cryptographic keys on the user authentication data recording medium, one or several ones of the numerous items of matching data are determined to be the true data with a reading order determined, the remaining items of matching data are determined to be the false data, information indicated by the single or plural items of true data in the correct reading order is determined to be authentication data indicating the secret information with the cryptographic keys on the user authentication data recording medium, and some of the false data is determined to be confinement informing data. During the input operation by means of the user authentication data recording medium, the single or plural items of true data from the matching data and the reading order are selected and the confinement informing data is added, thereby determining that the true authentication data is selected and validating the user authentication. Then, if at least one item of confinement informing data is included in addition to the true data, it is determined that the user is placed under the control of an unauthorized person and a control center validates the user authentication with a confinement informing alarm generated.[0022]
  • BRIEF DESCRIPTION OF DRAWINGS
  • FIG. 1 is an explanatory drawing for showing a first embodiment of a recording and storage card which includes secret information composed of two-dimensional code data. [0023]
  • FIG. 2 is an explanatory drawing for showing a second embodiment of the card. [0024]
  • FIG. 3 is an explanatory drawing for showing a third embodiment of the card. [0025]
  • FIG. 4 is an explanatory drawing for showing a fourth embodiment of the card. [0026]
  • FIG. 5 is an explanatory drawing of two-dimensional codes, which are composed of small squares in FIG. 5[0027] a, large squares in FIG. 5b, and rectangles in FIG. 5c, respectively.
  • FIG. 6 is an explanatory drawing for showing a fifth embodiment of the recording and storage card which includes secret information composed of two-dimensional code data. [0028]
  • FIG. 7 is a schematic drawing for showing recording and reading operations on a [0029] card 1.
  • FIG. 8 is a block diagram for showing the same operations as shown in FIG. 7. [0030]
  • FIG. 9 is an explanatory drawing of encrypted information. [0031]
  • FIG. 10 is an explanatory drawing of address cards. [0032]
  • FIG. 11 is an explanatory drawing of address cards including illustrations. [0033]
  • FIG. 12 is a flowchart of the fifth invention. [0034]
  • FIG. 13 is a flowchart of the sixth invention. [0035]
  • FIG. 14 is a flowchart of the seventh invention. [0036]
  • FIG. 15 is an explanatory drawing of a user authentication data recording card. [0037]
  • FIG. 16 is an explanatory drawing of a user authentication data recording card for an embodiment which uses matching data of different shapes. [0038]
  • FIG. 17 is an explanatory drawing of user authentication data recording cards for showing an embodiment in which two-dimensionally coded data is recorded. [0039]
  • FIG. 18 is an explanatory drawing of user authentication data recording cards for showing an embodiment in which marks and symbols are used as matching data. [0040]
  • FIG. 19 is an explanatory drawing of reading means for matching data in the second embodiment and also shows the functions of a control computer. [0041]
  • FIG. 20 is an explanatory drawing for showing the system operation of an emergency conditions informing system according to the eighth through tenth embodiments. [0042]
  • FIG. 21 is a flowchart for showing the same system operation as shown in FIG. 21. [0043]
  • FIG. 22 is an explanatory drawing for showing the embodiment of the tenth invention in a similar manner to FIG. 19. [0044]
  • FIG. 23 is a flowchart for showing the seventh embodiment of the tenth invention.[0045]
  • BEST MODE FOR CARRYING OUT THE INVENTION
  • According to the invention of [0046] claims 1 and 2, a user who holds a recording and storage card including secret information of two-dimensional code data composed of a single or plural items of true data interspersed among numerous items of false data, determines and selects the location(s) and the reading order of the item(s) of true data among the numerous items of false data from the user's own memory, so that the secret information of two-dimensional data is reproduced and provided to a computer directly or through a communication line.
  • In the invention of [0047] claim 3, the user refers to illustrations or graphics composed of the numerous items of false data and true data as auxiliary means, in determining and selecting the locations and the reading order of the items of true data among the numerous items of false data from the user's own memory.
  • In the invention of [0048] claim 4, the user also refers to illustrations or graphics which exist in the background to the numerous items of false data and true data, in determining and selecting the locations and the reading order of the items of true data among the numerous items of false data from the user's own memory.
  • According to the invention of [0049] claims 5 through 7, the location(s) and the storing order of the single or plural items of true data with respect to the numerous items of false data are determined from the user memory authentication (brain authentication) to select the single or plural items of true data interspersed among the numerous items of false data, so that the secret information with cryptographic keys is decrypted for reproduction.
  • According to the embodiment of [0050] claim 8, the user determines and selects the locations and the reading order of the items of true data which indicate decryption keys, from among the numerous items of false data from the user's own memory in decrypting the encrypted secret information.
  • According to the embodiment of [0051] claim 9, the locations and the order of the items of true data for true information interspersed among the numerous items of false data are determined from the user's memory, and according to the embodiment of claim 8, the determination from the user's memory is accomplished by using, as auxiliary means, a graphic sheet which includes coloring, illustrations, graphics, and landscapes.
  • Now, the present invention will be described below in detail with reference to the drawings. [0052]
  • Referring to FIGS. 1 through 3, the [0053] reference numeral 1 designates a recording and storage card including secret information, on which a single or plural items of true data A are interspersed among numerous items of false data B and the false data B and the true data A are encrypted by applying two-dimensional codes thereto.
  • The single or plural items of true data A and the numerous items of false data B are arranged in groups of different sizes. Therefore, all the items of false data B and true data A cannot be identified visually. Recorded data items of two-dimensional codes may be different from each other or some of the recorded data items may be in a group of numerous identical data items. [0054]
  • Moreover, the items of false data B and true data A may be in identical shape (for example, a square) or in different shapes such as a square, a rectangle, and a circle and such different shapes may allow the user to hold the locations of the items of true data A in the user's memory more easily. For this purpose, it is assumed that any difference in size or shape is irrelevant to whether the data is true or false and thus, the data cannot be authenticated based on any difference in size or shape. [0055]
  • FIG. 1 shows that a single item of true data A and numerous other items of data are in identical shape (for example, a square) but of two different sizes, that is, larger squares and smaller squares. [0056]
  • Referring to FIG. 1, it is assumed that a collection of first unit records [0057] 10 and second unit records 12 represents an apartment house, the second unit records 12 represent collectively a staircase and/or elevator, and the first unit records 10 represent dwellings in the apartment house.
  • To locate cryptographic keys, it is also assumed that the second dwelling on the right side of the staircase on the second floor is the item of true data A and all the others are items of false data B. [0058]
  • FIG. 2 shows that plural items of true data A and other items of data are represented by squares and rectangles as three types of unit records, that is, first unit records [0059] 10, second unit records 12, and third unit records 13.
  • The first unit records [0060] 10 in smaller square shape represent dwellings, the second unit records 12 in larger square shape represent collectively a staircase and/or elevator in a similar manner to FIG. 1, and the third unit records 13 in rectangular shape represent collectively an anti-disaster floor in order to facilitate holding in a user's memory where the items of true data A are located.
  • FIG. 3 shows the embodiment and that a “robot” is represented as an illustration or graphic formed of numerous items of false data and true data. [0061]
  • To determine and select the locations of the items of true data interspersed among the numerous items of false data from a user's memory, it is assumed that a rectangle “above the robot's left eye” represents a first item of true data A[0062] 1, a larger square “in the middle of the robot's belly” represents a second item of true data A2, and a smaller square at the toe of “the robot's left leg” represents a third item of true data A3.
  • Such auxiliary means as the robot's “eye”, “belly”, and “leg” can be used to facilitate determination of the locations of the items of true data and the order of selecting them from the numerous items of false data. [0063]
  • FIG. 4 shows the embodiment that a landscape is represented as a background to the numerous items of false data and true data. [0064]
  • In the figure, the landscape is placed over the graphics formed of a collection of the numerous items of false data and the items of true data interspersed among them. It should be noted that a landscape sheet with the landscape printed on a transparent sheet can be placed over a data sheet with the collection of the numerous items of false data and true data displayed thereon to overlay or superimpose the landscape. [0065]
  • To determine and select the items of true data interspersed among the numerous items of false data from a user's memory, it is assumed that a rectangle in the leftmost one of “three pine trees on a mountain” represents a first item of true data A[0066] 01, a larger square in the cargo on an “on-river ship” represents a second item of true data A02, and a smaller rectangle nearest to a bridge among “three stones near the bridge” represents a third item of true data A03.
  • Such auxiliary means as the “trees on a mountain”, “on-river ship”, and “stones near the bridge” can facilitate determination of the locations of the items of true data and the order of selecting them from the numerous items of false data. [0067]
  • Next, data obtained by applying two-dimensional codes will be described below with reference to FIG. 5. [0068]
  • The two-dimensional codes include grid-arranged (matrixed) squares or rectangles, concentrically-arranged circles, and multilevel bar codes and it has the advantages that, as compared with one-dimensional bar codes of data units, the amount of information can be increased in a series manner because of its two-dimensional arrangement, that numerous different items of data can be visually approximated by making a change to a data unit to vary the data to be displayed, and that numerous items of data with different sizes and shapes can be also considered as identical items of data. The first embodiment of the present invention makes use of these advantages. [0069]
  • In FIG. 5, the two-dimensional codes are composed of grid-arranged (matrixed) squares or rectangles, that is, smaller squares in FIG. 5[0070] a, larger squares in FIG. 5b, and rectangles in FIG. 5c, and the respective recorded items of two-dimensional data indicate an identical numerical value or mark throughout the three figures. In addition, the reference numeral 14 designates a border of data range and 15 designates two-dimensional code data.
  • In the above-described embodiment, coloring can facilitate determination of the locations of the items of true data and the order of selecting them from the numerous items of false data in recording the data on a recording medium or in printed form. [0071]
  • Next, the second embodiment will be described below. [0072]
  • According to the embodiment of [0073] claim 3, some items of true data encrypted by applying two-dimensional codes to secret information with cryptographic keys are interspersed among numerous items of false data, and the locations of the item of true data with respect to the numerous items of false data are held in a user's memory for memory authentication (brain authentication) to prevent any unauthorized person from decrypting the secret information.
  • The second through fourth embodiments ([0074] claims 3 through 7) can be implemented by using a recording and storage card for secret information with cryptographic keys encrypted by two-dimensional data according to the first embodiment and another recording and storage card for secret information with cryptographic keys encrypted by two-dimensional data as shown in FIG. 6 can be also used.
  • In a card shown in FIG. 6, two-dimensional data for each item of data is in identical shape, that is, a square of the same size. A sequence of alphanumeric characters are added for assisting in holding the locations and reading order of the items of true data in a user's memory. It should be noted that alphanumeric characters (for example, B2, B1, F1, F2, F3, . . . ) may be added to the cards shown in FIGS. 1 and 2 as memory assistance for the locations and reading order of the items of true data. [0075]
  • Referring to FIGS. 7 and 8, recording and reading operations on a [0076] card 1 will be described below.
  • It is assumed that among twenty codes printed on the [0077] card 1, sixteen codes are dummies. A password is divided into four parts, which are placed in the upper second location, the lower fifth location, the lower sixth location, and the upper ninth location from the left end (see FIG. 6). It is assumed that these four parts are read out in the order of “E-9-2-F”.
  • An authorized user who knows this order uses a handheld or pen-[0078] type scanner 2 to sequentially read out the lower fifth location # 1, the upper ninth location # 2, the upper second location # 3, and the lower sixth location # 4 as shown in FIG. 7 while ignoring the other code locations. An accessed system receives a restored password of hundreds through thousands of digits and/or characters to identify the authorized user.
  • Referring to FIGS. 7 and 8, the [0079] reference numeral 3 designates a terminal unit, 4 designates a keyboard, 5 designates a communication network such as Internet, 6 designates a central control computer, and 7 designates data.
  • Next, the third embodiment (claim 6) and the fourth embodiment (claim 7) will be described below. [0080]
  • [0081] Encrypted information 20 in FIG. 9 is divided into three items of true information P1, P2, P3, which are interspersed among items of false information Q1, Q2, . . . to conceal the true information. Thus, the false information Q and the true information P cannot be discriminated from their appearances.
  • The items of true information P[0082] 1, P2, P3 are assigned 5, A, and
    Figure US20040053654A1-20040318-P00900
    (a katakana character) as items of address information p (true data) and the other items of false information Q1, Q2, • • • • are assigned numbers other than 5, alphabetic characters other than A, and katakana characters other than
    Figure US20040053654A1-20040318-P00900
    as items of address information q (false data).
  • Referring to FIG. 10, both the items of true data P and the items of false data Q are placed on [0083] address cards 21A, 21B, and 21C.
  • Then the user selects the items of [0084] true data 5, A, and
    Figure US20040053654A1-20040318-P00900
    from among the items of false data through memory authentication (brain authentication).
  • To facilitate secure selection of the reading order, these items of data can be colored in red, yellow, and blue. [0085]
  • If two-dimensional codes are applied, the embodiments as shown in FIGS. 1 through 4 and FIG. 6 can be used. In addition, as shown in FIG. 11, marks and symbols other than alphanumeric characters can be also used. [0086]
  • It should be noted that the third and fourth embodiments ([0087] claims 8 through 10) are not limited to optical/printed two-dimensional codes but they are applicable to non-optical/non-printed indexed data blocks and optical/non-optical symbols. The algorithm used for these embodiments is also applicable not only to some items of data printed as two-dimensional codes but to those printed as symbols or to data blocks or symbols which are not printed but indexed and recorded on a storage medium.
  • The above-described first through fourth embodiments ([0088] claims 1 through 10) can facilitate input operations of authentication data used for user authentication as well as selection of true authentication data from numerous items of false data, thereby holding it in one's memory more easily. In addition, since the number of items of false data is equal to that of alphanumeric characters, these embodiments can prevent any unauthorized person from decrypting authentication symbols for greater safety. A recording medium storing corporate information and/or personal information can be concealed more securely. Moreover, cryptographic keys for user authentication and secret information such as corporate information and/or personal information can be treated in a more secret manner for online applications and offline applications as well as in recording and storing on a recording medium in a computer itself.
  • Since the number of items of data is equal to the number of alphanumeric character strings of plural digits, these embodiments can prevent any unauthorized person from decrypting authentication symbols for greater safety. A recording medium storing corporate information and/or personal information can be concealed more securely. [0089]
  • Subsequently, the third through seventh embodiments ([0090] claims 11 through 13) will be described below.
  • Referring to a flowchart shown in FIG. 12, [“123947=] is set as a password for user authentication in an internet transaction (or in other cases including the operation of a cash dispenser, user authentication upon a credit, or a key number for opening a key of a doorway, a safe or a case for a recording medium) and an authorized user is informed of this password in advance. Specifically, a password obtained by adding [”] and to the original password [123947], i.e., a password obtained by adding [”] to the first place of the original password [123947] and [=] to the last place thereof, is set as an alarm signal. [0091]
  • The alarm signal may be set irrelevant to the password. For example, the one having [”] at the first place, [=] at the last place and numerical strings between [”] and [=] may be set as the alarm signal (i.e., [123947] in the above-mentioned [“123947=] is changed to numerical strings irrelevant to the password). Further, the position of [”] and the numerical strings between [”] and [=] are composed of optional numerals in optional digit numbers. When randomly selected symbols are assigned to each user as additional signals, this alarm signal cannot be known other than the authorized user. Accordingly, an unauthorized person in bad faith cannot detect the sending of this alarm signal. [0092]
  • During the input operation of a password for the above-mentioned user authentication, the user informs that he or she is placed under the control of an unauthorized person by adding the above-mentioned alarm signal set in advance. [0093]
  • A system detects that the user is under an abnormal condition by detecting the alarm signal, and it is to perform a protection/preservation measure. In the invention of [0094] claim 2 with reference to FIG. 13, the user authentication is completed ignoring the existence of the alarm signal.
  • As the protection/preservation measure, the system leads the access to a false web page that is prepared beforehand for transmitting information that is similar to but not the same as the true information and does not give great damage to its organization, facility or corporation even if it is leaked. [0095]
  • Even in the case where there is no such preparation and the outflow of true information (for example, remittance instruction or the like) is missed for a safety of user's life and body, the system can promptly set about a user rescue, detection of an invader or complementary activity if it grasps the abnormal condition on real time. [0096]
  • In this case, the system never asks the user the question of “Is there anything abnormal?”. The system persistently proceeds the processing, or false processing. Or a danger occurs that the user is immediately exposed to a revenge of the unauthorized person because the user does not follow the instruction. [0097]
  • When a method is applied wherein numerous passwords are divided into plural parts and the one in which false items are interspersed is recorded and printed to any medium so that only the authorized user memorizes the position and restoration order of the true data, this alarm signal can be concealed, thereby enhancing practicability. Specifically, it is enough to together select this data block upon emergency, so that the process can easily be performed even under the tense condition. Similarly, another method can be applied wherein an alarm signal is added or inserted upon sending so-called authentication information other than a password such as decrypted open keys or cryptographic keys. [0098]
  • Further, this software algorithm can be applied not only to the password but also to the other authentication method. In the case of fingerprint authentication, the fingerprint on the third finger of the right hand is, for example, determined as a signal that completes the authentication but alarms the occurrence of the abnormal condition. In the case of signature recognition, a second signature maybe registered for this purpose. In case where symbols are used for authentication without using characters or numerals, one or plural symbols may be assigned to each user for this purpose. [0099]
  • In the seventh embodiment (claim 13), referring to a flowchart shown in FIG. 14, a user inputs a password by adding an alarm signal set in advance in user authentication in an internet transaction. For example, the user adds [#] to [A1234], i.e., inputs [A1234#]. The user deletes [#] at the end and inputs [A1234] for informing that he or she is placed under the control of unauthorized person. The preservation measure after this is the same as that shown in the fifth embodiment (claim 11) and the sixth embodiment (claim 12). [0100]
  • The fifth through seventh embodiments detects an access from a user placed under the control of an unauthorized person in bad faith in user authentication in an internet transaction, thereby being capable of protecting and preserving both the user and the system. Providing the alarm signal continued from the original password assuredly specify a sender of the alarm signal and further reduces “prank sending” or “miss-sending” of the alarm signal. Moreover, specifying an alarm signal every user can reduce “prank sending” or “miss-sending” of the alarm signal. [0101]
  • Now, the eighth through tenth embodiments ([0102] claims 14 through 16) will be described below.
  • FIG. 15 shows a user authentication data recording card A[0103] 1 as a user authentication data recording medium used with the present invention and numerous items of matching data a such as kanji character strings, alphanumeric character strings, image and/or audio data are two-dimensionally coded and recorded on the data recording card through recording means which is capable of optically and/or magnetically reading data.
  • FIG. 16 shows matching data in different shapes a[0104] 1, a2, a3.
  • FIG. 17 shows matching data printed by a computer-controlled printer or magnetically recorded and the two-dimensional coding as shown in the figure can allow for recording identical data irrespective of data shapes. In addition, the two-dimensional coding can make it difficult to discriminate visibly recorded data items because they are printed in substantially identical appearances. [0105]
  • It should be noted that the present invention is not limited to the two-dimensional codes as described above and one-dimensional codes, symbols including illustrations and caricatures, alphanumeric character strings, kanji character strings, words and phrases can be used as matching data. Therefore, matching data may include character strings and image and/or audio data which can be manipulated by a computer for matching operations. [0106]
  • A recording medium of the user authentication data recording card A[0107] 1 may be a portion of an optically readable printing card or a magnetically recording area formed on a portion of a card such as a credit card. Alternatively, the data recording card may be an electrically recording medium such as an IC card.
  • FIG. 18 shows an embodiment of the user authentication data recording medium (user authentication data recording card A) which includes marks and symbols as matching data a[0108] 4, a5, a6.
  • Before issuing the above-described user authentication data recording medium [0109] 1 to each user, a single or plural items of true data P are determined from numerous items of matching data a and all the remaining items of matching data are determined to be plural items of false data Q, and then the matching data consisting of the single or plural items of true data and the plural items of false data are recorded on the user authentication data recording medium. It should be noted that when plural items of true data P are used, the order of reading the items of true data P is also determined. For example, as shown in FIG. 12, the items of true data are determined to be P1=E, P2=9, P3=2, and P4=F to complete the user authentication data recording medium 1 (user authentication data recording card A1) as a matching card.
  • The location of an item of true data or the locations and the reading order of plural items of true data in the user authentication data recording medium [0110] 1 (user authentication data recording card A1) are determined and recorded in a recording unit of a CPU or central control computer 6 to allow the computer to perform a matching operation for authentication data recorded on the user authentication data recording medium 1 (user authentication data recording card A1) presented by a holder thereof.
  • Next, a process of entering authentication data on a user authentication data recording medium [0111] 1 (user authentication data recording card A1) will be described below.
  • Referring to FIG. 19, the authentication data on the user authentication data recording medium [0112] 1 (user authentication data recording card A1) as shown in FIG. 15 is entered into a terminal unit 3 through a pen-type scanner 2 and then transmitted directly or through a communication line (Internet) to a CPU connected to the terminal unit.
  • For each authorized user, four predetermined items of data among the twenty items of matching data are entered in a particular order. More specifically, the lower [0113] fifth item # 1, the upper ninth item # 2, the upper second item # 3, and the lower sixth item # 4 are read out in this order. These items of data are alphanumeric characters “E-9-2-F” as shown in FIG. 15. The handheld scanner 2 reads all the items of data on the user authentication data recording medium 1 and then items of authentication data selected through selective input means such as a keyboard 4 are transmitted to the CPU or central control computer 6 via the terminal unit 3.
  • In addition to the recording unit described above, the CPU or [0114] central control computer 6 includes a true data discriminator, a false data discriminator, a confinement informing data discriminator, a true data counter, a false data counter, a user authentication signal generator, a theft alarm (unauthorized access alarm) generator, and a confinement informing message generator.
  • The operation performed by the CPU or control [0115] computer 6 to transmit the authentication data as described above will be described below with reference to an operational flow explanatory drawing of FIG. 20 and a flowchart of FIG. 8.
  • When four particular items of data are entered in a particular order (for example, the user authentication data recording medium [0116] 1 in FIG. 15 is used to enter the four items of true data P1=E, P2=9, P3=2, and P4=F in the order of “E-9-2-F”), the process goes on as shown by the left-hand flow in FIG. 21. Namely, steps S1, S2, S3, and S4 are performed in this order to complete a user authentication operation successfully.
  • If any item of true data is entered in an incorrect order (any item of false data is entered or any item of data which does not exist in the user authentication data (noise data) is entered), this is considered as an authentication error to cause a branch at any of the steps S[0117] 1, S2, S3, and S4, resulting in a user authentication failure. Then, if the error count exceeds a predetermined value, for example, three at step S5, the authentication access is terminated. If the error count is less than the predetermined value, for example, it is two or less, another authentication access may be permitted.
  • If items of false data are entered, the process goes on as shown by the central flow in the figure and steps S[0118] 6, S7, S8, and S9 are performed in this order to store the items of false data in the recording means of the CPU or computer 6, counting the entered items of false data.
  • If the false data count is two or more, a branch is caused at any of steps S[0119] 10, S11, and S12 to detect an “unauthorized access”.
  • If the false data count is one during four input operations, this is considered as a “misoperation” to allow for entering matching data again. [0120]
  • As an alternative to the method of interspersing predetermined items of true data among items of false data as described above, a user authentication recording medium with numerous items of matching data a, irrespective of whether these items are true or false (that is, without predetermined items of true and false data) may be given to a user to allow the user to select some items of true data from among them with the remaining items to be assumed as those of false data. Namely, the user may be given a temporary right to select items of true and false data and also items of confinement informing data. [0121]
  • If a particular one among numerous items of false data is determined as an item of “alarm data” and such an item of alarm data is entered after the steps S[0122] 1, S2, S3, and S4 have been performed in this order to complete the user authentication operation successfully (namely, after the four items of true data have been entered), a user authentication and confinement informing message is generated and transmitted upon detection of any item of “confinement informing data” at step S13.
  • In an embodiment shown in FIGS. 22 and 23, all items of data recorded in a user authentication data recording medium [0123] 1 (user authentication data recording card A1) can be read by a card reader and then items of authentication data selected by selective input means such as a keyboard can be transmitted to a CPU or central control computer 6 via a terminal unit 3. Alternatively, as described below, a computer included in an electronic device terminal unit may be used to electronically record the content of a user authentication data recording medium (user authentication data recording card A) as well as to record it in a control center (authentication data registration computer) online or offline, so that matching data strings entered as authentication data based on the user-transmitted record can be entered in a control center (authentication computer) online or offline for matching the authentication data. It should be noted that alphanumeric characters, binary comparison, image comparison, and other data comparison techniques may be used for matching.
  • Referring to FIG. 25, a CPU or central control computer [0124] 6A in a control center (authentication data registration computer) has an input data storage in addition to the functional means as shown in FIG. 5 for the first embodiment [the true data discriminator, the false data discriminator, the confinement informing data discriminator, the true data counter, the false data counter, the user authentication signal generator, the theft alarm (unauthorized access alarm) generator, and the confinement informing message generator].
  • The operation performed by the CPU or control computer [0125] 6A to transmit the authentication data as described above will be described below with reference to a flowchart of FIG. 10. When four particular data are entered in a particular order (for example, the user authentication data recording medium 1 in FIG. 12 is used to enter the four items of true data P1=E, P2=9, P3=2, and P4=F in the order of “E-9-2-F”) and authentication data in a recording unit matches the authentication data in the input data storage, it is determined that true authentication data is entered to complete a user authentication operation successfully. If the authentication data in the recording unit does not match the authentication data in the input data storage (any item of true data is entered in an incorrect order or any item of false data is entered or any item of data which does not exist in the user authentication data (noise data) is entered), this is considered as an authentication error, resulting in a user authentication failure.
  • Then, if the false data count is less than a predetermined value, for example, it is one or less, another authentication access may be permitted. [0126]
  • If the false data count is equal to or more than the predetermined value, for example, it is two or more, this is considered as an “unauthorized access” to generate a theft alarm. [0127]
  • If a particular one among numerous items of false data is determined as an item of “alarm data” and such an item of alarm data is entered after the user authentication operation has been completed successfully (namely, after the four items of true data have been entered), a user authentication and confinement informing message is generated and transmitted upon detection of any item of “confinement informing data”. [0128]
  • If the content of a user authentication data recording medium is recorded in a recording unit of a computer built in a mobile telephone or portable terminal unit, recording means in a portable electronic device can be used to allow the control center to issue a user authentication data recording medium by recording similar information to that in a user authentication data recording card, that is, numerous items of matching data a, in the recording means of the portable electronic device, determining items of true data P from the items of matching data a, and determining and recording authentication data for a holder of the portable electronic device in the recording means of the portable electronic device and a computer in the control center. [0129]
  • During a user authentication operation, the numerous items of matching data a are provided on a display of the portable electronic device to allow the user to specify the locations of the items of true data P from the user's memory for transmitting them to the control center (authentication data registration computer). If any item of false data Q is transmitted, it will be informed or alarmed that the portable electronic device (such as a mobile telephone or an entrant authentication device) may be lost or thieved. If any item of “confinement informing data” is detected, a user authentication and confinement informing message will be generated and transmitted. [0130]
  • To specify the locations of the items of true data P, a keyboard (including a ten key pad or a dial), a touch screen, or other computer input means may be used. For an application wherein a user authentication operation must be performed offline without any communication to the control center, a single device may include all functions to be performed by the computer in the authentication data registration center as well as the authentication computer shown in FIG. 19. For example, an entrant controller can unlock a door to permit someone to enter the room only through user authentication without any communication to an external computer. However, such a controller can be set to generate and transmit a theft alarm or confinement informing message through communication means for online communication to security. [0131]
  • Particularly, under circumstances where a user confinement informing message is required, a communication to security in addition to permission to enter the room and operate an electronic device may be effective for both user rescue and security of the electronic device and the electronic device control room. [0132]
  • The eighth invention uses a single item of true data P. As soon as an item of false data Q is detected, a loss or theft is informed or alarmed. [0133]
  • The ninth invention uses plural items of true data P and generates an alarm upon detection of plural items of false data Q, thereby reducing erroneous alarms due to input mistakes. [0134]
  • In addition to the features of the eighth and tenth invention, the invention can generate and transmit a confinement informing message upon detection of any item of “confinement informing data”. Therefore, when the fifth or sixth embodiment is implemented, the additional feature to generate and transmit a confinement informing message upon detection of any item of “confinement informing data” as shown in FIG. 23 can be omitted. [0135]
  • The eighth through tenth inventions (claims 14 through 16) can use a user authentication data recording medium [0136] 1 on which numerous similar items of matching data are recorded, and these embodiments can also select items of true data from among the numerous similar items of matching data from a user's memory to securely prevent an unauthorized person from making a user authentication request based on authentication data. If the authentication data to be transmitted includes an item of false data, generation of a theft alarm can enhance the feature to prevent an unauthorized access through a lost or thieved user authentication data recording medium.
  • Furthermore, as same as inventions of [0137] claims 11 through 13, these inventions can be effective for protecting and preserving both the user and the system against access from the user, if the user is placed under the control of an unauthorized person in bad faith.
  • INDUSTRIAL APPLICABILITY
  • The present invention provides means for concealing, recording, and storing secret information such as corporate information and technical information. The present invention also establishes an alarm system as a safety measure to be taken when secret information with cryptographic keys, a recording medium including such secret information, or an electronic and/or communication device having such a recording medium is thieved or lost, or fraudulently used by means of leaked authentication data. The present invention further establishes a system for informing that there occurs an unauthorized access to a restricted area or electronic device. In addition, the present invention can detect access from an authorized user placed under the control of an unauthorized person in bad faith to allow for protection and preservation of both the user and the system. Therefore, the present invention is very useful in industrial fields where a secret information recording medium which has secret information with cryptographic keys recorded thereon, such as an authentication card, is used. [0138]

Claims (16)

1. A secret information record medium,
wherein a single item of true data is interspersed among numerous items of false data and the false and true data are composed of two-dimensional code data in plural groups having different areas, and
wherein the location of the item of true data interspersed among the numerous items of false data is determined and presented to a user.
2. A secret information record medium,
wherein plural items of true data are interspersed among numerous items of false data and the false and true data are composed of two-dimensional code data in plural groups having different areas, and
wherein the locations and storing order of the items of true data interspersed among the numerous items of false data are determined and presented to a user.
3. A secret information record medium according to claim 1 or 2, characterized by the user refers to illustrations or graphics composed of the numerous items of false data and true data as auxiliary means, in determining and selecting the locations and the reading order of the items of true data among the numerous items of false data from the user's own memory.
4. A secret information record medium according to claim 1 or 2, characterized by the user also refers to illustrations or graphics which exist in the background to the numerous items of false data and true data, in determining and selecting the locations and the reading order of the items of true data among the numerous items of false data from the user's own memory.
5. A secret information protection method,
wherein a single item of true data encrypted by applying two-dimensional codes to secret information with cryptographic keys for entrant-limited and/or operator-limited control is interspersed among numerous items of false data, and
wherein the location of the item of true data with respect to the numerous items of false data is held in a user's memory for memory authentication to prevent any unauthorized person from decrypting the secret information.
6. A secret information protection method,
wherein plural items of true data encrypted by applying two-dimensional codes to secret information with cryptographic keys for entrant-limited and/or operator-limited control are interspersed among numerous items of false data, and
wherein the locations and storing order of the items of true data with respect to the numerous items of false data are held in a user's memory for memory authentication to prevent any unauthorized person from decrypting the secret information.
7. A secret information protection method according to claim 5 or 6, wherein said false and true data are printed on a paper card so that they can be read by an optical reader for data reproduction.
8. A secret information protective storing method,
wherein items of true data indicating decryption keys for encrypted secret information are interspersed among numerous items of false data for concealment and the locations and reading order of the items of true data interspersed among the numerous items of false data are held in a user's memory.
9. A secret information protective storing method,
wherein true information is divided into plural items and interspersed among numerous items of false information to conceal the true information,
wherein numerous items of true data indicating the locations of the items of true information and numerous items of false data indicating the locations of the items of false information are provided, and
wherein the locations and storing order of the items of true data interspersed among the numerous items of false data are determined from a user's memory.
10. A secret information protective storing method according to claim 9,
wherein true information is divided into plural items and interspersed among numerous items of false information to conceal the true information,
wherein numerous items of true data indicating the locations of the items of true information and numerous items of false data indicating the locations of the items of false information are provided, and
wherein the locations and storing order of the items of true data interspersed among the numerous items of false data are determined from a user's memory by referring to a graphic sheet which includes coloring, illustrations, graphics, and landscapes to specify portions of the graphic sheet.
11. A system for reporting emergency such as theft or conferment when secret information is accessed,
wherein during the input of a password upon user authentication in an internet transaction, a user adds an alarm signal that is set in advance for informing that he or she is placed under the control of an unauthorized person, and the system detects that the user is under an abnormal condition by detecting the alarm signal, whereupon the system performs a protection/preservation measure.
12. A system for reporting emergency such as theft or conferment when secret information is accessed,
wherein during the input of a password upon user authentication in an internet transaction, a user adds an alarm signal that is set in advance for informing that he or she is placed under the control of an unauthorized person, and the system detects that the user is under an abnormal condition by detecting the alarm signal, whereupon the system performs a normal user authentication procedure as well as performs a protection/preservation measure.
13. A system for reporting emergency such as theft or conferment when secret information is accessed,
wherein during the input of a password upon user authentication in an internet transaction, a user deletes an alarm signal that is set in advance in a password for informing that he or she is placed under the control of an unauthorized person, and the system detects that the user is under an abnormal condition by detecting the alarm signal, whereupon the system performs a protection/preservation.
14. A system for reporting emergency such as theft or conferment when secret information is accessed,
wherein the number of items of matching data to be recorded on a recording medium is selected to include a single item of true data and plural items of false data to provide a user authentication data recording medium which has the matching data interspersed with the single item of true data and the plural items of false data,
wherein in recording secret information with cryptographic keys on said user authentication data recording medium, one of the numerous items of matching data is determined to be the true data and the remaining items of matching data are determined to be the false data,
wherein information indicated by the single item of true data is determined to be authentication data indicating the secret information with the cryptographic keys on the user authentication data recording medium,
wherein in using the user authentication data recording medium to enter the authentication data, the single item of true data is selected from the user authentication data recording medium, thereby determining that the true authentication data is selected and validating the user authentication, and
wherein in selecting the single item of true data from the user authentication data recording medium during the input operation by means of the user authentication data recording medium, if at least one item of false data is included in the input data, it is determined that a theft-causing unauthorized access is attempted and then the user authentication is invalidated with a theft alarm generated.
15. A system for reporting emergency such as theft or conferment when secret information is accessed,
wherein the number of items of matching data to be recorded on a recording medium is selected to include plural items of true data and plural items of false data to provide a user authentication data recording medium which has the matching data interspersed with the plural items of true data and the plural items of false data,
wherein in recording secret information with cryptographic keys on said user authentication data recording medium, several ones of the numerous items of matching data are determined to be the true data by specifying the locations or features and order, the remaining items of matching data are determined to be the false data, and information indicated by the plural items of true data is determined to be authentication data indicating the secret information with the cryptographic keys on the user authentication data recording medium,
wherein during the input operation by means of the user authentication data recording medium, the plural items of true data are selected from the user authentication data recording medium in a correct order, thereby determining that the true authentication data is selected and validating the user authentication,
wherein in selecting the plural items of true data from the user authentication data recording medium during the input operation by means of the user authentication data recording medium, if the number of items of false data included in the input data is equal to or more than a predetermined number, it is determined that a theft-causing unauthorized access is attempted and then the user authentication is invalidated with a theft alarm generated, and
wherein a control center which detects the generated theft alarm prevents subsequent use of said user authentication data recording medium.
16. A system for reporting emergency such as theft or conferment when secret information is accessed,
wherein the number of items of matching data to be recorded on a recording medium is selected to include a single or plural items of true data and plural items of false data to provide a user authentication data recording medium which has the matching data interspersed with the single or plural items of true data and the plural items of false data,
wherein in recording secret information with cryptographic keys on said user authentication data recording medium, one or several ones of the numerous items of matching data are determined to be the true data with a reading order determined, the remaining items of matching data are determined to be the false data, information indicated by the single item of true data or the plural items of true data in the correct reading order is determined to be authentication data indicating the secret information with the cryptographic keys on the user authentication data recording medium, and some of the false data is determined to be confinement informing data,
wherein during the input operation by means of the user authentication data recording medium, the single or plural items of true data from the matching data on the user authentication data recording medium and the reading order are selected and said confinement informing data is added, thereby determining that the true authentication data is selected and validating the user authentication, and
wherein if at least one item of confinement informing data is included in addition to the true data, it is determined that the user is placed under the control of an unauthorized person and a control center validates the user authentication with a confinement informing alarm generated.
US10/333,868 2000-07-25 2001-07-23 Secret information record medium, secret information protection method, secret information protective storing method, and system for reporting emergency such as theft or confinement when secret information is accessed Abandoned US20040053654A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US11/731,610 US8577807B2 (en) 2000-07-25 2007-03-30 Method for protecting secret information in a system for reporting an emergency when secret information is accessed

Applications Claiming Priority (7)

Application Number Priority Date Filing Date Title
JP2000223940A JP2002041472A (en) 2000-07-25 2000-07-25 Method for protecting and maintaining both user and system in the internet
JP2000-223940 2000-07-25
JP2000284811A JP2002092564A (en) 2000-09-20 2000-09-20 Recording/storing card for secret information, secret information protecting method, and concealedly recording and storing method of secrete information
JP2000-284811 2000-09-20
JP2000396990A JP4868643B2 (en) 2000-12-27 2000-12-27 Authentication system for input operation of personal authentication data recording medium
JP2000-396990 2000-12-27
PCT/JP2001/006356 WO2002008921A1 (en) 2000-07-25 2001-07-23 Secret information recorded medium, secret information protection method, secret information protective storing method, and system for reporting emergency such as theft or confinement when secret information is accessed

Related Child Applications (1)

Application Number Title Priority Date Filing Date
US11/731,610 Division US8577807B2 (en) 2000-07-25 2007-03-30 Method for protecting secret information in a system for reporting an emergency when secret information is accessed

Publications (1)

Publication Number Publication Date
US20040053654A1 true US20040053654A1 (en) 2004-03-18

Family

ID=27344160

Family Applications (2)

Application Number Title Priority Date Filing Date
US10/333,868 Abandoned US20040053654A1 (en) 2000-07-25 2001-07-23 Secret information record medium, secret information protection method, secret information protective storing method, and system for reporting emergency such as theft or confinement when secret information is accessed
US11/731,610 Active 2025-03-05 US8577807B2 (en) 2000-07-25 2007-03-30 Method for protecting secret information in a system for reporting an emergency when secret information is accessed

Family Applications After (1)

Application Number Title Priority Date Filing Date
US11/731,610 Active 2025-03-05 US8577807B2 (en) 2000-07-25 2007-03-30 Method for protecting secret information in a system for reporting an emergency when secret information is accessed

Country Status (5)

Country Link
US (2) US20040053654A1 (en)
EP (1) EP1313027A4 (en)
CN (2) CN101025778A (en)
AU (1) AU2001272784A1 (en)
WO (1) WO2002008921A1 (en)

Cited By (26)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20030018709A1 (en) * 2001-07-20 2003-01-23 Audible Magic Playlist generation method and apparatus
US20030033321A1 (en) * 2001-07-20 2003-02-13 Audible Magic, Inc. Method and apparatus for identifying new media content
US20030037010A1 (en) * 2001-04-05 2003-02-20 Audible Magic, Inc. Copyright detection and protection system and method
US20030135623A1 (en) * 2001-10-23 2003-07-17 Audible Magic, Inc. Method and apparatus for cache promotion
US20040174998A1 (en) * 2003-03-05 2004-09-09 Xsides Corporation System and method for data encryption
US20050198404A1 (en) * 2004-03-05 2005-09-08 Takahiro Kawakami Semiconductor device and electronic apparatus
WO2006015168A3 (en) * 2004-07-28 2006-08-03 Audible Magic Corp System for distributing decoy content in a peer to peer network
US20090030651A1 (en) * 2007-07-27 2009-01-29 Audible Magic Corporation System for identifying content of digital data
US20090036040A1 (en) * 2007-08-03 2009-02-05 Nidek Co., Ltd Eyeglass lens processing apparatus
US7502476B1 (en) 2005-05-27 2009-03-10 Magiq Technologies, Inc. Systems and methods of enhancing QKD security using a heralded photon source
US7529659B2 (en) 2005-09-28 2009-05-05 Audible Magic Corporation Method and apparatus for identifying an unknown work
US20090240361A1 (en) * 2000-11-03 2009-09-24 Wold Erling H Method and apparatus for creating a unique audio signature
US20090328204A1 (en) * 2007-04-19 2009-12-31 Hiroki Taoka Information security apparatus, security system, and method for preventing leakage of input information
US20100122350A1 (en) * 2005-07-14 2010-05-13 Research In Motion Limited Password methods and systems for use on a mobile device
US7917645B2 (en) 2000-02-17 2011-03-29 Audible Magic Corporation Method and apparatus for identifying media content presented on a media playing device
US20120032777A1 (en) * 2009-02-25 2012-02-09 Giuseppe Asselle Control system for managing access to restricted areas
US8199651B1 (en) 2009-03-16 2012-06-12 Audible Magic Corporation Method and system for modifying communication flows at a port level
US8332326B2 (en) 2003-02-01 2012-12-11 Audible Magic Corporation Method and apparatus to identify a work received by a processing system
CN103873442A (en) * 2012-12-13 2014-06-18 腾讯科技(深圳)有限公司 Registration information processing method and device
US9069994B1 (en) * 2010-12-06 2015-06-30 Amazon Technologies, Inc. Audible alert for stolen user devices
US9081778B2 (en) 2012-09-25 2015-07-14 Audible Magic Corporation Using digital fingerprints to associate data with a work
US9432360B1 (en) * 2013-12-31 2016-08-30 Emc Corporation Security-aware split-server passcode verification for one-time authentication tokens
US20160301674A1 (en) * 2013-02-01 2016-10-13 Interman Corporation Identity confirmation method and identity confirmation system using life log
CN112100641A (en) * 2020-11-09 2020-12-18 成都掌控者网络科技有限公司 Multi-dimensional authorization method, system, equipment and storage medium
US11416597B2 (en) * 2017-12-28 2022-08-16 Wacom Co., Ltd. Authentication system and electronic pen
US11645428B1 (en) * 2020-02-11 2023-05-09 Wells Fargo Bank, N.A. Quantum phenomenon-based obfuscation of memory

Families Citing this family (48)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB2381603B (en) 2001-10-30 2005-06-08 F Secure Oyj Method and apparatus for selecting a password
US7644433B2 (en) 2002-12-23 2010-01-05 Authernative, Inc. Authentication system and method based upon random partial pattern recognition
WO2004109455A2 (en) 2003-05-30 2004-12-16 Privaris, Inc. An in-circuit security system and methods for controlling access to and use of sensitive data
ATE358952T1 (en) * 2004-09-03 2007-04-15 Research In Motion Ltd SYSTEM AND METHOD FOR GENERATING A SAFETY CONDITION INDICATOR ON A DISPLAY DEVICE
US7482925B2 (en) 2005-06-24 2009-01-27 Visa U.S.A. Apparatus and method to electromagnetically shield portable consumer devices
US7522905B2 (en) 2005-06-24 2009-04-21 Visa U.S.A. Inc. Apparatus and method for preventing wireless interrogation of portable consumer devices
US7657849B2 (en) 2005-12-23 2010-02-02 Apple Inc. Unlocking a device by performing gestures on an unlock image
US7849321B2 (en) 2006-08-23 2010-12-07 Authernative, Inc. Authentication method of random partial digitized path recognition with a challenge built into the path
JP2008152549A (en) * 2006-12-18 2008-07-03 Spansion Llc Memory device, and password storage method for memory device
US8604995B2 (en) 2007-06-11 2013-12-10 Visa U.S.A. Inc. Shielding of portable consumer device
CN101382975B (en) * 2007-09-07 2010-06-09 杨文馨 Method for inputting password
CN100518064C (en) * 2007-09-17 2009-07-22 吴建明 Credit sign accidental streakline generating method
EP3882797A1 (en) 2007-09-24 2021-09-22 Apple Inc. Embedded authentication systems in an electronic device
US8038068B2 (en) 2007-11-28 2011-10-18 Visa U.S.A. Inc. Multifunction removable cover for portable payment device
US8600120B2 (en) 2008-01-03 2013-12-03 Apple Inc. Personal computing device control using face detection and recognition
US8528072B2 (en) 2010-07-23 2013-09-03 Apple Inc. Method, apparatus and system for access mode control of a device
JP4920804B1 (en) 2010-08-31 2012-04-18 秀治 小川 Communication device, reminder device, and information recording medium
US8754860B2 (en) 2010-11-05 2014-06-17 Apple Inc. Device, method, and graphical user interface for manipulating soft keyboards
US8587547B2 (en) 2010-11-05 2013-11-19 Apple Inc. Device, method, and graphical user interface for manipulating soft keyboards
US9092132B2 (en) 2011-01-24 2015-07-28 Apple Inc. Device, method, and graphical user interface with a dynamic gesture disambiguation threshold
US11165963B2 (en) 2011-06-05 2021-11-02 Apple Inc. Device, method, and graphical user interface for accessing an application in a locked device
US8769624B2 (en) 2011-09-29 2014-07-01 Apple Inc. Access control utilizing indirect authentication
US9002322B2 (en) 2011-09-29 2015-04-07 Apple Inc. Authentication with secondary approver
US9372978B2 (en) 2012-01-20 2016-06-21 Apple Inc. Device, method, and graphical user interface for accessing an application in a locked device
KR101710771B1 (en) 2012-05-18 2017-02-27 애플 인크. Device, method, and graphical user interface for manipulating user interfaces based on fingerprint sensor inputs
JP6044435B2 (en) * 2013-04-19 2016-12-14 ソニー株式会社 Information processing apparatus, information processing method, and computer program
US9898642B2 (en) 2013-09-09 2018-02-20 Apple Inc. Device, method, and graphical user interface for manipulating user interfaces based on fingerprint sensor inputs
CN110232273A (en) 2013-10-25 2019-09-13 华为技术有限公司 The method and terminal that a kind of couple of user is authenticated
CN104598780B (en) * 2013-10-31 2017-09-01 阿里巴巴集团控股有限公司 Account recognition methods and system
CN103729599A (en) * 2013-10-31 2014-04-16 深圳酷派技术有限公司 Data invoking processing method and device
CN103906045B (en) * 2013-12-25 2017-12-22 武汉安天信息技术有限责任公司 A kind of monitoring method and system of mobile terminal privacy taking and carring away
US9483763B2 (en) 2014-05-29 2016-11-01 Apple Inc. User interface for payments
CN104363249B (en) * 2014-12-01 2018-07-24 网易有道信息技术(北京)有限公司 A kind of method and apparatus of information record
CN105095728A (en) * 2015-06-15 2015-11-25 南京市信息中心 Two-dimensional code identification method based on digital signatures and timestamps
CN105007155B (en) * 2015-07-28 2017-12-08 福建联迪商用设备有限公司 Quick Response Code mask encryption and decryption approaches and system
DK179186B1 (en) 2016-05-19 2018-01-15 Apple Inc REMOTE AUTHORIZATION TO CONTINUE WITH AN ACTION
CN106203175A (en) * 2016-07-28 2016-12-07 安徽易联众信息技术有限公司 Government affairs information defense controls method
US10235532B2 (en) * 2016-09-23 2019-03-19 Harman International Industries, Incorporated Device access control
CN106598882B (en) * 2016-12-09 2019-09-20 武汉斗鱼网络科技有限公司 A kind of safe internal storage data guard method and device
EP4155988A1 (en) 2017-09-09 2023-03-29 Apple Inc. Implementation of biometric authentication for performing a respective function
KR102185854B1 (en) 2017-09-09 2020-12-02 애플 인크. Implementation of biometric authentication
US11170085B2 (en) 2018-06-03 2021-11-09 Apple Inc. Implementation of biometric authentication
US10860096B2 (en) 2018-09-28 2020-12-08 Apple Inc. Device control using gaze information
US11100349B2 (en) 2018-09-28 2021-08-24 Apple Inc. Audio assisted enrollment
JP6635495B1 (en) 2018-12-25 2020-01-29 パスロジ株式会社 Remote control system, remote control method, and program
CN110457937A (en) * 2019-07-02 2019-11-15 上海数据交易中心有限公司 Data circulation method and device, system, storage medium, server
SE2150551A1 (en) * 2021-04-30 2022-10-31 Safevest Ab Method, system and device for securing a bank account to prohibit theft and assault
CN115118453A (en) * 2022-05-19 2022-09-27 成都安美勤信息技术股份有限公司 Mailing sensitive information privacy protection method based on commercial cipher algorithm

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5321242A (en) * 1991-12-09 1994-06-14 Brinks, Incorporated Apparatus and method for controlled access to a secured location
US5354974A (en) * 1992-11-24 1994-10-11 Base 10 Systems, Inc. Automatic teller system and method of operating same
US5731575A (en) * 1994-10-26 1998-03-24 Zingher; Joseph P. Computerized system for discreet identification of duress transaction and/or duress access

Family Cites Families (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPS5853770B2 (en) * 1978-07-10 1983-12-01 日本電信電話株式会社 Kanji input device
GB2112190B (en) * 1981-12-23 1985-12-18 Omron Tateisi Electronics Co Personal identification system
SG46177A1 (en) * 1989-12-13 1998-02-20 Ibm Computer system security device
JPH0498389A (en) * 1990-08-10 1992-03-31 Hitachi Ltd Code input system for automatic transaction device
TW299410B (en) * 1994-04-04 1997-03-01 At & T Corp
JP3764961B2 (en) * 1995-11-30 2006-04-12 カシオ計算機株式会社 Secret data storage device and secret data read method
JPH09180036A (en) * 1995-12-22 1997-07-11 Focus Syst:Kk Ic card system with user identifying function
DE19620346A1 (en) * 1996-05-21 1997-11-27 Bosch Gmbh Robert Graphical password log-in procedure for user of data terminal in computer system
JP2891206B2 (en) * 1996-10-21 1999-05-17 日本電気株式会社 Password verification method
US6145738A (en) * 1997-02-06 2000-11-14 Mr. Payroll Corporation Method and apparatus for automatic check cashing
JPH10307799A (en) * 1997-02-28 1998-11-17 Media Konekuto:Kk Personal identification method and device in computer communication network
JPH10289210A (en) * 1997-04-14 1998-10-27 Hitachi Inf Syst Ltd Password input system and recording medium storing the program
JP3636902B2 (en) * 1998-03-31 2005-04-06 富士通株式会社 Electronic information management system, IC card, terminal device, electronic information management method, and computer-readable recording medium recording electronic information management program
JP3112076B2 (en) * 1998-05-21 2000-11-27 豊 保倉 User authentication system
JP2000081934A (en) * 1998-09-04 2000-03-21 Ricoh Co Ltd Information processor
JP2000223940A (en) * 1999-02-02 2000-08-11 Nec Kansai Ltd Pc card
JP2000284811A (en) * 1999-03-31 2000-10-13 Omron Corp Terminal mount and electronic apparatus with terminal mount
US7363503B2 (en) * 2000-01-17 2008-04-22 Savernova A.G. Method for producing a data structure for use in password identification
US20010037468A1 (en) * 2000-04-11 2001-11-01 Gaddis M. Norton Method and apparatus for creating unique image passwords

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5321242A (en) * 1991-12-09 1994-06-14 Brinks, Incorporated Apparatus and method for controlled access to a secured location
US5354974A (en) * 1992-11-24 1994-10-11 Base 10 Systems, Inc. Automatic teller system and method of operating same
US5731575A (en) * 1994-10-26 1998-03-24 Zingher; Joseph P. Computerized system for discreet identification of duress transaction and/or duress access

Cited By (61)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10194187B2 (en) 2000-02-17 2019-01-29 Audible Magic Corporation Method and apparatus for identifying media content presented on a media playing device
US7917645B2 (en) 2000-02-17 2011-03-29 Audible Magic Corporation Method and apparatus for identifying media content presented on a media playing device
US9049468B2 (en) 2000-02-17 2015-06-02 Audible Magic Corporation Method and apparatus for identifying media content presented on a media playing device
US8086445B2 (en) 2000-11-03 2011-12-27 Audible Magic Corporation Method and apparatus for creating a unique audio signature
US20090240361A1 (en) * 2000-11-03 2009-09-24 Wold Erling H Method and apparatus for creating a unique audio signature
US20080155116A1 (en) * 2001-04-05 2008-06-26 Audible Magic Corporation Copyright detection and protection system and method
US20050154678A1 (en) * 2001-04-05 2005-07-14 Audible Magic Corporation Copyright detection and protection system and method
US8775317B2 (en) 2001-04-05 2014-07-08 Audible Magic Corporation Copyright detection and protection system and method
US7363278B2 (en) 2001-04-05 2008-04-22 Audible Magic Corporation Copyright detection and protection system and method
US20080141379A1 (en) * 2001-04-05 2008-06-12 Audible Magic Corporation Copyright detection and protection system and method
US7711652B2 (en) 2001-04-05 2010-05-04 Audible Magic Corporation Copyright detection and protection system and method
US9589141B2 (en) 2001-04-05 2017-03-07 Audible Magic Corporation Copyright detection and protection system and method
US7707088B2 (en) 2001-04-05 2010-04-27 Audible Magic Corporation Copyright detection and protection system and method
US8645279B2 (en) 2001-04-05 2014-02-04 Audible Magic Corporation Copyright detection and protection system and method
US20090077673A1 (en) * 2001-04-05 2009-03-19 Schmelzer Richard A Copyright detection and protection system and method
US8484691B2 (en) 2001-04-05 2013-07-09 Audible Magic Corporation Copyright detection and protection system and method
US20030037010A1 (en) * 2001-04-05 2003-02-20 Audible Magic, Inc. Copyright detection and protection system and method
US20090328236A1 (en) * 2001-04-05 2009-12-31 Schmelzer Richard A Copyright detection and protection system and method
US7797249B2 (en) 2001-04-05 2010-09-14 Audible Magic Corporation Copyright detection and protection system and method
US8082150B2 (en) 2001-07-10 2011-12-20 Audible Magic Corporation Method and apparatus for identifying an unknown work
US8972481B2 (en) 2001-07-20 2015-03-03 Audible Magic, Inc. Playlist generation method and apparatus
US20030018709A1 (en) * 2001-07-20 2003-01-23 Audible Magic Playlist generation method and apparatus
US10025841B2 (en) 2001-07-20 2018-07-17 Audible Magic, Inc. Play list generation method and apparatus
US7877438B2 (en) 2001-07-20 2011-01-25 Audible Magic Corporation Method and apparatus for identifying new media content
US20030033321A1 (en) * 2001-07-20 2003-02-13 Audible Magic, Inc. Method and apparatus for identifying new media content
US20030135623A1 (en) * 2001-10-23 2003-07-17 Audible Magic, Inc. Method and apparatus for cache promotion
US8332326B2 (en) 2003-02-01 2012-12-11 Audible Magic Corporation Method and apparatus to identify a work received by a processing system
US20040174998A1 (en) * 2003-03-05 2004-09-09 Xsides Corporation System and method for data encryption
US20050198404A1 (en) * 2004-03-05 2005-09-08 Takahiro Kawakami Semiconductor device and electronic apparatus
US8130746B2 (en) 2004-07-28 2012-03-06 Audible Magic Corporation System for distributing decoy content in a peer to peer network
WO2006015168A3 (en) * 2004-07-28 2006-08-03 Audible Magic Corp System for distributing decoy content in a peer to peer network
US7502476B1 (en) 2005-05-27 2009-03-10 Magiq Technologies, Inc. Systems and methods of enhancing QKD security using a heralded photon source
US9553969B2 (en) * 2005-07-14 2017-01-24 Blackberry Limited Password methods and systems for use on a mobile device
US20100122350A1 (en) * 2005-07-14 2010-05-13 Research In Motion Limited Password methods and systems for use on a mobile device
US7529659B2 (en) 2005-09-28 2009-05-05 Audible Magic Corporation Method and apparatus for identifying an unknown work
US8566959B2 (en) 2007-04-19 2013-10-22 Panasonic Corporation Information security apparatus, security system, and method for preventing leakage of input information
US20090328204A1 (en) * 2007-04-19 2009-12-31 Hiroki Taoka Information security apparatus, security system, and method for preventing leakage of input information
US8006314B2 (en) 2007-07-27 2011-08-23 Audible Magic Corporation System for identifying content of digital data
US8732858B2 (en) 2007-07-27 2014-05-20 Audible Magic Corporation System for identifying content of digital data
US9785757B2 (en) 2007-07-27 2017-10-10 Audible Magic Corporation System for identifying content of digital data
US20090030651A1 (en) * 2007-07-27 2009-01-29 Audible Magic Corporation System for identifying content of digital data
US9268921B2 (en) 2007-07-27 2016-02-23 Audible Magic Corporation System for identifying content of digital data
US10181015B2 (en) 2007-07-27 2019-01-15 Audible Magic Corporation System for identifying content of digital data
US8112818B2 (en) 2007-07-27 2012-02-07 Audible Magic Corporation System for identifying content of digital data
US8113912B2 (en) * 2007-08-03 2012-02-14 Nidek Co., Ltd. Eyeglass lens processing apparatus
US20090036040A1 (en) * 2007-08-03 2009-02-05 Nidek Co., Ltd Eyeglass lens processing apparatus
US20120032777A1 (en) * 2009-02-25 2012-02-09 Giuseppe Asselle Control system for managing access to restricted areas
US8730005B2 (en) * 2009-02-25 2014-05-20 Giuseppe Asselle Control system for managing access to restricted areas
US8199651B1 (en) 2009-03-16 2012-06-12 Audible Magic Corporation Method and system for modifying communication flows at a port level
US9069994B1 (en) * 2010-12-06 2015-06-30 Amazon Technologies, Inc. Audible alert for stolen user devices
US10698952B2 (en) 2012-09-25 2020-06-30 Audible Magic Corporation Using digital fingerprints to associate data with a work
US9608824B2 (en) 2012-09-25 2017-03-28 Audible Magic Corporation Using digital fingerprints to associate data with a work
US9081778B2 (en) 2012-09-25 2015-07-14 Audible Magic Corporation Using digital fingerprints to associate data with a work
CN103873442A (en) * 2012-12-13 2014-06-18 腾讯科技(深圳)有限公司 Registration information processing method and device
US10129234B2 (en) * 2013-02-01 2018-11-13 Interman Corporation Identity confirmation method and identity confirmation system using life log
US20160301674A1 (en) * 2013-02-01 2016-10-13 Interman Corporation Identity confirmation method and identity confirmation system using life log
US9432360B1 (en) * 2013-12-31 2016-08-30 Emc Corporation Security-aware split-server passcode verification for one-time authentication tokens
US11416597B2 (en) * 2017-12-28 2022-08-16 Wacom Co., Ltd. Authentication system and electronic pen
US11645428B1 (en) * 2020-02-11 2023-05-09 Wells Fargo Bank, N.A. Quantum phenomenon-based obfuscation of memory
US11928249B2 (en) 2020-02-11 2024-03-12 Wells Fargo Bank, N.A. Quantum phenomenon-based obfuscation of memory
CN112100641A (en) * 2020-11-09 2020-12-18 成都掌控者网络科技有限公司 Multi-dimensional authorization method, system, equipment and storage medium

Also Published As

Publication number Publication date
AU2001272784A1 (en) 2002-02-05
US8577807B2 (en) 2013-11-05
CN101025778A (en) 2007-08-29
EP1313027A4 (en) 2009-02-18
CN1455899A (en) 2003-11-12
US20090328162A1 (en) 2009-12-31
EP1313027A1 (en) 2003-05-21
WO2002008921A1 (en) 2002-01-31

Similar Documents

Publication Publication Date Title
US8577807B2 (en) Method for protecting secret information in a system for reporting an emergency when secret information is accessed
US4890323A (en) Data communication systems and methods
US6957338B1 (en) Individual authentication system performing authentication in multiple steps
US4140272A (en) Optical card, system and method for securing personal identification data
US20050160052A1 (en) Biometric authorization method and system
EP0029894A2 (en) A system for achieving secure password verification
BRPI0619148A2 (en) method and apparatus for verifying a person's identity or rights using unique transaction codes
CN1263324A (en) Fingerprint identification keyboard device and its identification method
WO2008021428A2 (en) Portable magnetic stripe reader for criminality security applications
CN104680670A (en) Re-encryption/encryption technique solution for key control points during bank card operation on ATM (automatic teller machine)
CN100409252C (en) General anticounterfeiting method and system
JP2005293490A (en) Biometrics system
JP4868643B2 (en) Authentication system for input operation of personal authentication data recording medium
JPS62212781A (en) Personal identification system
JPS6243773A (en) Password system
JP4008626B2 (en) Integrated management system for entry / exit and equipment use
WO2001075782A1 (en) Individual body identifying method by two-dimensional code, hybrid individual person authenticating system, and off-line person identifying system
JP2943853B2 (en) User authentication system using graphic image input
JP2006293454A (en) Personal identification method and system
JPH09212460A (en) User confirmation system
JP2002041813A (en) Personal identification system
Wen et al. Privacy and security in E-healthcare information management
JP2002041472A (en) Method for protecting and maintaining both user and system in the internet
JP2010079515A (en) Authentication system, key for use in the same, authentication method, and program
JPH02213972A (en) Illegal use preventing method for computer

Legal Events

Date Code Title Description
AS Assignment

Owner name: MNEMONIC SECURITY LIMITED, JAPAN

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:KOKUMAI, HITOSHI;MASUNO, RYUHEI;KURIYAMA, MASAYUKI;REEL/FRAME:013799/0620;SIGNING DATES FROM 20030107 TO 20030110

STCB Information on status: application discontinuation

Free format text: ABANDONED -- FAILURE TO RESPOND TO AN OFFICE ACTION