EP3185221B1 - Authentication apparatus and method for optical or acoustic character recognition - Google Patents

Description

The present invention relates to an authentication device and a method for authenticating or determining the identity of a person, a device, an object, a service, an application and/or a computer program, in which authentication takes place via a security element with at least one security feature and an authentication device , in which optical character recognition and subsequent conversion of the recognizable characters into readable characters takes place. Finally, a comparison is made with stored reference symbols or computer-readable reference features.

Security elements with differently developed security features are known. For example, describes the DE 10 2004 055 761 A1 a document of value in sheet form, in which a code that can be detected in the non-visible spectral range and other security features in the form of visible features are provided as security features. In addition, it is also known that, for example, complex surface structures such as cracks and fissures can be used as a security feature, similar to a fingerprint, for authentication. Such a security element is for example in the U.S. 7,793,837 B1 described, wherein individual cracks are designed such that they overlay a character string. However, a dynamic change in the crack structure and a resulting change in the readability of the characters depicted are not disclosed.

In addition, there are also dynamic security features, for example in the form of craquelure structures, which develop randomly in such a way that possible counterfeiting cannot be predicted. Such a craquelure pattern in the form of tears or fissures, chipping, wear or shrinkage is described by the applicant in US Pat DE 10 2009 003 221 A1 . The random development of the crackle creates a security feature that is nearly impossible for a counterfeiter to counterfeit. Due to the dynamic further development of the craquelure, counterfeit security is further increased.

In addition, there are also optical security features that are displayed via an electronically controlled display element and are therefore optically variable. Such an optically variable element is in the DE 10 2004 045 211 A1 described. In doing so, one overlaps electrically controlled display element and a diffractive structure at least in regions, so that the optical appearance of the optical effect generated by the diffractive structure is at least partially influenced by the electrically controlled display element. In addition, there are also methods for disguising characters, for example the representation of authenticity data or other measured values, by visually representing so-called camouflage data that is generated using a mathematical algorithm. Such a device and such a method are in DE 10 2004 049 998 A1 shown.

The DE 10 2009 036 706 A1 by the applicant describes a digital display for showing security-related information or patterns that change due to an algorithm and/or external influences. This can be, for example, characters or a pattern that change dynamically between two query times. However, this method does not provide for converting the recorded characters into other characters.

There are also procedures to trace back banknotes, for example. These are usually based on analyzing and matching displayed serial numbers. Such a procedure is in DE 10 2009 044 881 A1 described. However, the procedure only works if the displayed serial number is legible. If there is mechanical damage to the security element, for example if a serial number can no longer be read due to a crack, it can no longer be assigned. The proposed embodiment variant therefore proposes that, in a second comparison step, the serial number of the banknote that is physically present is compared with serial number images stored in a data memory. In addition to the pure serial numbers, other features, for example the characteristic image feature of the crack, are also used for the comparison in this comparison.

In addition, there are security features that have visible and non-visible security features to increase protection against counterfeiting, for example described in DE 10 2007 044 992 B3 , in which a first defractive area has a hidden code that is not visible to the naked eye and is integrated into the defractive surface structures of the security element. Any attempt to change the visual appearance of the open information or the hidden code affects the hidden code or the open information, so that such attempts at manipulation can be easily detected.

There are also efforts to make features disappear or to make them visible by using complementary colors. Such approaches are, for example, in DE 601 26 698 T2 , the US 3,632,993A or the DE 10 2206 057 507 A1 known.

Finally, methods are known for converting characters via optical character recognition (OCR) into computer-readable characters, for example text or code, using an image detection method. Such a method is, for example, in DE 20 2013 011 992 U1 , the DE 10 2008 077 331 B4 , the DE 10 2006 037 260 B3 or the WO02/099735 A1 described. Finally, there are also methods for identification or authentication that take place via dynamic acoustic security information, for example described by the applicant in WO 2015/124696 A1 .

The patent specification filed by the inventor DE 10 2009 036 706 B3 discloses a security element with an electronic display device, the displayed information or pattern changing over time due to an algorithm and/or external influences.

Disclosures filed by the inventor EP 2 824 641 A1 and DE 10 2014 004 349 A1 describe generic authentication devices.

Static and dynamic security features to increase security when authenticating or identifying persons, services or objects are known in the prior art, but there is still the possibility that counterfeiters can copy common security features or circumvent security mechanisms with reasonable effort.

Against this background, it is the object of the present invention to provide an improved authentication device and method in order to increase the counterfeit security of security elements.

This object is achieved by an authentication device having the features of claim 1 and a method having the features of claim 9.

The authentication device according to the invention is based on carrying out a character recognition of a security element with at least one security feature consisting of characters and the subsequent conversion of the characters into interpretable characters Characters or features based on the appearance of the security element. The conditions for detecting the appearance of the characters and/or the reading conditions for the character recognition and/or the analysis parameters for the character analysis of the characters of the security element for an authentication request are defined by at least one control device.

• ein Sicherheitselement mit wenigstens einem aus Zeichen bestehenden Sicherheitsmerkmal, die über eine Zeichenerkennung erfassbar sind,
• wenigstens eine Erfassungseinrichtung zum Erfassen des Erscheinungsbilds der Zeichen des Sicherheitsmerkmals,
• wenigstens eine Zeichenerkennungseinrichtung zur Durchführung einer Zeichenerkennung und/oder einer Zeichenanalyse, bei der die erkennbaren Zeichen des Erscheinungsbildes des Sicherheitsmerkmals in maschinenlesbare Zeichen, eine Information und/oder akustische Töne umgewandelt werden,
• wenigstens eine Abgleicheinrichtung zum Abgleich des von der Erfassungseinrichtung erfassten Sicherheitsmerkmals und/oder der von der Zeichenerkennungseinrichtung umgewandelten Zeichen, Informationen oder Tonfolgen mit einem in einem Speicher hinterlegten Referenzmerkmal und/oder einem oder mehreren Referenzzeichen und/oder einem oder mehreren Referenztönen.

In its basic form, the authentication device according to the invention comprises the following components:

• a security element with at least one security feature consisting of characters that can be detected via character recognition,
• at least one detection device for detecting the appearance of the characters of the security feature,
• at least one character recognition device for carrying out character recognition and/or character analysis, in which the recognizable characters of the appearance of the security feature are converted into machine-readable characters, information and/or acoustic tones,
• at least one matching device for matching the security feature detected by the detection device and/or the characters, information or tone sequences converted by the character recognition device with a reference feature stored in a memory and/or one or more reference characters and/or one or more reference tones.

The authentication device according to the invention is characterized in that it comprises at least one control device in which the detection conditions for detecting the appearance of the characters and/or the reading conditions for the character recognition and/or the analysis parameters for the character analysis of the characters of the security feature for an authentication request are specified and that the security element has at least one structural feature which influences the appearance of the security feature and thus the detectability of one or more characters of the security feature during character recognition and/or character interpretation, preferably dynamically.

The structural features are preferably so pronounced that the appearance of the Influencing characters of the security feature, for example via a layer of material placed above or below the security feature. The characters themselves can also be structural features, for example by printing with an ink that changes its physical, chemical or biological properties over a period of time. This can be, for example, the color of the characters, their fluorescence or the degree of magnetism when using inks that contain magnetic particles.

In an alternative variant, the authentication device according to the invention comprises, depending on the application, a plurality of control devices which each show the detection conditions for detecting the appearance, the reading conditions for character recognition and/or the analysis parameters for character analysis of the characters of the security feature for an authentication request. The control device according to the invention can thus be part of the detection device and/or the character recognition device and/or the matching device.

According to the invention, the security element consists of optically detectable characters, which can be read via optical character recognition (OCR recognition), converted into machine-readable characters and can be evaluated digitally. A detection device for detecting the appearance of the characters of the security feature is provided for the detection, preferably a camera.

In the context of the present invention, the word "character" is to be interpreted in the sense of optically detectable information.

Accordingly, the characters can be machine-readable patterns, characters such as letters, numbers or symbols, for example. After the characters have been recorded, a character analysis is carried out, in which the recognizable characters of the appearance of the security feature are converted into readable characters or information.

In the case of optical character recognition (OCR recognition), the images of the characters optically captured by the capture device are converted into computer-readable, digital characters. These signs usually consist of characters, typefaces,

Letters, numbers, a text sequence, symbols or special characters.

According to the invention, the character recognition device is an OCR device and the character analysis is an OCR analysis that specifies the computer-readable character into which an optically detected character is to be converted. The character recognition device captures the optically detectable characters of the security element and converts them into corresponding machine-readable characters (eg letters, numbers, symbols, special characters, etc.).

After the characters have been converted into computer-readable characters or information, the characters or information converted by the character recognition device are compared with a reference feature and/or reference character stored in a memory. Additionally or alternatively, the comparison device can also carry out a direct comparison of the security feature detected by the detection device with a reference feature stored in a memory and/or one or more reference characters. The comparison device is preferably part of an authentication server that manages character recognition and character storage.

Merely registering a security feature, for example a code consisting of characters, would not in itself represent a security-enhancing measure compared to existing security procedures. However, if a character string is superimposed by external influences or a structural feature, such as an unpredictably forming crackle in an overlying paint, thereby influencing the underlying character string and thus also an OCR analysis, the static code becomes an unpredictable dynamic code educated. In one variant, the character string itself is a structural feature, for example by being dynamic based on changed by internal or external influences. An example of printing a security feature with an ink or dye that changes color or some other chemical, physical, or biological property.

According to the invention, it is provided that the authentication device comprises one or more control devices. In a preferred variant, the authentication device is designed as an authentication system with several separate components, some of which are spatially separate, consisting of a separate detection device (e.g. a camera), a character recognition device (e.g. an OCR recognition device) and a matching device (e.g. a authentication server). Accordingly, it is not a requirement that the individual components of the authentication device form a physical unit. Rather, it is preferred that the individual components of the authentication device are localized at different locations and possibly connected to one another via a network.

According to the invention, it is provided that the at least one control device is assigned to the detection device, the character recognition device and/or the matching device. The control device specifies the rules and/or parameters for detecting and/or reading in and/or analyzing the characters of the security feature. The control device with its specified rules and parameters thus represents a further dynamic security feature in addition to any structural features which, as external structural features (for example a crackle), overlay individual characters in the character string of the security feature of the security element. The actually static code is made dynamic both by the physical changes of the overlying layer and by the change in the OCR reading and analysis conditions in the result and not changed in a foreseeable way.

According to the present invention, the controller determines the detection conditions for detecting the appearance of the characters. Since the characters are detected by an optical detection device, the parameters for the optical detection are defined, for example by a camera or a lens system. These can be, for example, camera-specific parameters such as depth of field, focus, section enlargements, section reductions, sharpness filters or exposure parameters, including manipulative exposures such as over- or underexposure, flash exposures, use of filters or exposures with light specific color, strength or wavelength, or a limitation of the image resolution used, as well as other selection-relevant parameters.

In addition or as an alternative to defining the detection conditions for detecting the appearance of the characters, the read-in conditions for character recognition can also be specified by the control device. These include, for example, specifications that only certain characters of the security feature are recorded. This includes, for example, characters of a predefined size, a specific type or design, a specific color or a specific position.

In addition to the detection conditions and/or reading conditions, the analysis parameters for the character analysis of the characters of the security feature for an authentication request can also or alternatively be specified. These include, for example, the algorithm or an assignment rule with which a character detected via the detection device is interpreted or converted after it has been read. For example, it can be provided that certain characters of the security feature are converted into other characters. These detection and assignment rules can be changed dynamically, randomly, sporadically or continuously between the authentication device and the device to be authenticated, with the last exchanged setting being valid in each case.

Protection against counterfeiting can be increased and impermissible authentication avoided simply by an unforeseeable selection of specific characters within the character string of the security feature. In this way, with a single security feature consisting of a large number of characters, a large number of authentication options with completely different security features can be generated, which means that it is not possible to draw conclusions about the entire security feature. In a further variant, certain characters of the security feature can also be translated or converted into other characters, especially if they are changed or influenced by dynamic factors such as the battery level of a display device or the authentication device, or when reading a non-digital security element by crackle -Cracks in the paint or an overlying layer, to be physically altered. The character analysis therefore generally includes the conversion of the the characters read in by the character recognition device in a rule or an algorithm, converted into machine-readable characters, it being possible for this rule to be additionally influenced by other, unforeseeable factors. According to the invention, an optically obtained image containing OCR-readable characters is used for OCR recognition and subsequent conversion into computer-readable characters, with one or more characters of the security element being manipulated in such a way that OCR recognition or OCR analysis is performed for certain characters is no longer possible or the difficult or illegible characters are interpreted differently or have to be assigned differently according to a rule.

According to the invention, security is increased in that the security element has at least one structural feature which influences the appearance of the security feature and thus the detectability of one or more characters of the security feature of character recognition. This is an optically detectable security feature consisting of characters in which at least some characters can be recognized by a character recognition device and converted into computer-readable characters. In one variant it is provided that the structural feature overlays, changes, modifies, deletes or reinforces one or more characters of the security feature, so that the character recognition device can no longer use the modified character for character analysis and character conversion. In such a case, the structural change in one or more characters within the security feature would result in a previously readable character becoming an unreadable character or a changed character. The structural feature is preferably a surface change, for example a crackle pattern in the form of cracks, flaking, fissures or recesses. As a result of these surface changes, one or more characters of the security feature are changed in such a way that they can no longer be read or interpreted by the character recognition device. In variants of this embodiment, structural features can also be 3D surface changes such as surface elevations or surface depressions. This changes the relative location and/or position and/or arrangement of the characters compared to the original state. Relative displacements of characters on the security element or changes in the color of the characters are also possible in order to influence the detectability and/or the reading and/or the subsequent analysis during character recognition and/or character interpretation.

According to a preferred embodiment, the surface of the security element according to the invention is coated with a material that changes the appearance of the Safety feature or individual characters influenced by it. In a preferred variant, the material is a lacquer that covers the security element. According to a further variant, the individual characters of the security feature can also be printed or imprinted with an ink or color that is invisible in daylight.

Instead of a layer, the structural feature can also build up the entire three-dimensional security element, for example by means of 2D printing, 3D printing, spraying, moulding, casting, pressing, assembling individual components or by growth. In a preferred variant, a three-dimensional security element produced in this way can also change as a result of biological, chemical, physical or mechanical influences. In an exemplary variant, such a three-dimensional security element also includes a numeric code in/or on its surface, which changes dynamically due to the material properties and can be read out.

In addition, the background of the security element can also play a role in the detection and/or recognition of the security feature, for example in that characters of the security feature determined by the coloring or by a physical property of the background are no longer readable or previously illegible characters become visible as a result of the treatment . This can be done, for example, by the characters being overshadowed or no longer legible due to cloudiness. Thus, a structural feature can not only erase or change certain characters within the security feature, so that they are no longer recognizable for a later character analysis, but the opposite also applies, that a previously unreadable character is changed by a structural modification into one that can be read by the character recognition device character is convertible.

In a preferred variant it is provided that a structural feature of the security element itself changes dynamically in a random manner and thus leads to a changed appearance of the security element between two query times. The dynamic change in the structural feature of the security element is caused by a material property of the structural feature, an inherent property of the security element and/or by being influenced by an external physical and/or chemical and/or biological factor. Due to the dynamic change of the structural feature, previously recognizable characters are converted into unrecognizable characters or vice versa between two query times.

Another security-enhancing feature is that the read-in conditions for detecting the appearance of the security feature and/or character recognition and/or character analysis can be changed by the control device in such a way that a possible forger cannot foresee this change. In this way, specific target values or parameters can be specified, which have an influence on the detection device. Certain characters within the security feature can also be changed in such a way that they can no longer be read for later character recognition. For example, exposure with complementary colors can take place during the security query, so that certain characters (all or individual characters) within the security feature are strengthened or weakened for later character recognition. As a result, previously poorly visible or invisible (unrecognizable) characters become visible (recognizable) for character recognition and formerly visible (recognizable) characters are no longer readable, interpretable or recognizable for later character recognition after the corresponding complementary color has been applied. This presupposes that the corresponding characters are represented with complementary colors and/or that the exposure takes place with a color that is complementary to the character color. A combination with a rule would also be conceivable. For example, the rule could be that purple characters are not read. If the security feature is now irradiated with a blue light, all red characters become violet and the previously violet characters become almost blue, depending on how intense the irradiation and how large the tolerance range was selected.

The at least one control device of the authentication device according to the invention comprises components which, based on software or hardware, influence the detection device, the character recognition device and/or the character analysis. This can be done by sending the specific parameters required for reading/recognition to the respective facility. The selection of the parameters can be specified by the authentication device or can be random. A counterfeiter would therefore not only have to fake the false identity by presenting a stolen and forged original security element, but also take into account the correspondingly specified rules when reading or character recognition, for example when reading with a smartphone (mobile phone) and subsequent character analysis.

Depending on the type of change in the character, a recognition threshold can be established during the subsequent character analysis in order to define or interpret a recognizable and/or difficult to recognize and/or unrecognizable character. Furthermore, can be provided that only specific colors of a character of the security feature are used for the subsequent character analysis, which can be done for example by determining the color of the character. It can also be specified that only characters of a specific size, position or arrangement are used for character analysis and thus for authentication. This can be done, for example, by determining the position of the characters, preferably by means of optics. Furthermore, a sharpness or blurry area can be defined when the security feature is detected, so that certain characters can no longer be read. The same also applies to a depth of field of a three-dimensional security element. A surface can be made up of several planes or layers, with the sharp area being focused on a specific plane. Only characters of this level can be used for later character recognition and thus character analysis. Furthermore, special filters can be used which cause certain characters of the security feature to become readable and/or unreadable. As with the other procedural measures, the use of the filter not only changes the appearance of the security feature, but also the security-relevant information resulting from it. In the case of optical character recognition, this can be done with all optically possible means, for example also by irradiation with a specific wavelength or by over- or under-exposure.

Thus, the read-in conditions specified by the control device can be specified both at the physical level during the reading itself and during the subsequent character recognition and/or character analysis. The timing for making such dynamic changes can be predetermined or arbitrary. For example, the user who wants to undergo authentication can read in his security element using a smartphone camera and transmit it to the authentication server. For this purpose, macro lenses can preferably be used as attachments to mobile phone lenses for better recognition. The authentication server stores an image of the security element, in particular the security features attached thereto, and evaluates the characters contained in the security features using a character recognition method (for example OCR character recognition). The information stored in this way cannot be copied by a possible counterfeiter without coming into possession of the security element.

However, even if the forger were to come into possession of the security element, the control device according to the invention can provide that a query for authentication or identification only has to be made under certain conditions, which only the user knows. For example, it can be provided that a specific section or angle of the security element is required for successful authentication during optical detection by the detection device. Furthermore, a rule could provide that the security element is mechanically processed before it is detected by the detection device, for example by bending or folding, so that the surface structure of the security element changes in such a way that characters of the security feature are no longer recognizable for a later character interpretation and the security feature changes necessarily further developed in order to be able to detect possible counterfeits. A preferred variant provides that the security element consists of a layer or is covered with a layer which either forms a craquelure pattern by itself or when the surface of the security element is mechanically acted upon, for example by folding or buckling. Such a layer, which as a structural feature changes the appearance of the characters of the security feature, can consist, for example, of a lacquer, a dye, a plastic, an artificial polymer or a biopolymer.

Physical changes to the surface or to the structural features applied therein or on it can also be carried out by the user himself prior to authentication or to update security-relevant information. For example, the security element can be covered with a material that forms random cracks or breakouts and thus changes characters of a security feature in such a way that they can no longer be read or interpreted differently for later optical character recognition. It is preferably provided that the characters that cannot be read by the detection device or that cannot be interpreted by the character recognition device are translated into spaces or any other character. It can also happen that changed characters are still readable, but are recognized as different characters compared to before. As a result, security-relevant character information is generated that cannot be foreseen by a potential attacker.

In summary, three states can exist in optical character recognition if an external influence or a structural feature partially changes characters of a security feature. On the one hand, the characters can remain unchanged, ie if the structural feature (for example craquelure) has not influenced them. Furthermore, the characters can also be changed, so that these characters are recognized as a different conversion result in the character analysis and thus a changed one Generate code that was unpredictable. Finally, the characters can also be affected in such a way that they are no longer legible.

Based on the idea according to the invention, a security element, which comprises at least one security feature, can be optically changed by a structural feature (e.g. a crackle caused by a paint) in such a way that it would be very difficult even with a visual comparison to find such an individual security pattern imitate According to the invention, however, character recognition, preferably optical OCR recognition, is carried out in which individual characters of the security feature, for example within a complex code, can no longer be read. Such characters are either not recognized in an OCR analysis and are therefore not converted into computer-readable characters, or they are recognized as incorrect characters and accordingly ignored, or converted into another computer-readable character. A copy can only outsmart the result of an optical OCR analysis if it is the same as the original in all aspects or in those aspects specified according to a rule, which is only possible with disproportionate effort, if at all.

Provision can also be made for certain recognizable characters to be translated into other information, for example into any other character or tone sequence. The generation of specific acoustic tone sequences results in a user being able to authenticate himself to an authentication device using a characteristic tone sequence. Due to the dynamic change and/or a changing valid rule of the generated sound information, it is not possible for an imitator to forge it.

A possible authentication variant is such that a security element equipped with at least one security feature is first read in by a detection device of the user and then the characters of the security feature are converted into computer-readable characters, readable information, for example a code after they have been transmitted.
The transmission preferably takes place in a central database. If, for example, the user has to authenticate himself to a service provider, the service provider can use his recording device to record the same security element as the user and transmit it to the central database. Based on this, the comparison device according to the invention can carry out the comparison according to a predetermined rule. In a In an alternative variant, the central database can communicate to the second detection device which rules are valid for the reading process and only transmit the valid character string obtained according to the rule or the corresponding appearance of the security feature to the detection device. Alternatively, the information generated from this can also be sent back to the user by the authentication device. This must in turn transmit the information received to an authentication device. It can only be ensured that the person to be authenticated is the correct person if the transmitted security-relevant information (e.g. a sequence of tones or a code) matches. Authentication is positive if the security-relevant information transmitted is identical to the information transmitted or entered by the user.

In a further embodiment it is provided that the authentication device also comprises a display device on which the current or modified appearance of the security element can be displayed after transmission by the authentication device for authentication. This can be a smartphone (cell phone), for example, on the display of which the security element generated locally or transmitted by the authentication device or security features isolated therefrom are shown.

In a first variant, it can be provided that a security element with security features required for authentication is read in, for example via the camera of a smartphone (for example a ticket). The image of the security element captured by the capture device can be displayed on the display of the smartphone (=display device). The captured image of the security element is then transmitted to an authentication device. For a later authentication, it is no longer absolutely necessary for an existing network connection (eg online connection) to exist between the authentication device and the (first) smartphone that is being authenticated. Rather, further authentication is also possible without a network connection ("offline"). This is done in that a detection device (e.g. a reader at a supermarket checkout or the camera of a second smartphone) optically detects the security element shown on the display of the first smartphone or the security features shown on it and compares the appearance thus detected with the one stored in the authentication device Appearance of the security feature (= reference feature) compares. According to the invention, it is now provided that at least one control device specifies the appropriate rules for detecting, reading in and/or analyzing the characters (eg by means of a software-based program instruction). A control device can thus specify to the reader that, for example, only the characters displayed in a specific color within a code should be read. The comparison device of the authentication device then undertakes a comparison of the security feature detected by the reading device with the stored reference feature. The display device itself can also include a control device that specifies, for example, which parts of the security feature are to be displayed to the reading device. It can also be specified for an authentication that the rules of the control device of the display device match the rules of the control device of the reading device. In this way, the at least one control device can be used to specify what is to be displayed graphically by the display device and ultimately used for character analysis and character conversion.

The comparison device can also communicate the last character strings valid for the respective control device and its user, so that authentication is even possible if both systems are "offline", i.e. neither the user nor the reader has a connection to the respective security server. The prerequisite for this is that the security feature has not changed again since the last notification of the user-side change with regard to the relevant characters, or that a corresponding error tolerance is accepted.

The device according to the invention and the method can be used in particular to authenticate or determine the identity of a person, a device, an object, a service, an application and/or a computer program. Furthermore, the use of associated information for documentation in a storage system, acknowledgment system or archiving system is also possible.

The invention is explained in more detail in the following exemplary embodiments.

in the in 1 illustrated embodiment, a security element 1 with a surface 3 is shown. At least one security feature 2 consisting of characters is located on or in the surface 3. In the variant shown, the characters are, for example, a code consisting of letters and numbers. Furthermore, structural features 4 are provided, recognizable as a crackle pattern with cracks in the variant shown. The structural features 4 (ie the cracks) mean that individual characters of the security feature 2 (the numbers 2 and 5 in the variant shown) can no longer be clearly read by the detection device or can no longer be interpreted or interpreted differently by the character recognition device 6 . This creates a security element that has been modified via the structural features 4 and whose security features 2 have been modified in such a way that they lead to a modified result in a later Character recognition of characters lead. The appearance of the security element 1 and/or the characters of the security feature 2 is captured by a camera as optical capture device 5 and evaluated by a character recognition device 6 . The character recognition device 6 performs optical character recognition (OCR recognition). A character analysis then takes place, in which the recognizable characters of the appearance of the security feature 2 are converted or interpreted into readable characters. In the variant shown, the characters A, N, X, 3, 4 can be read. The digits 2 and 5 can no longer be clearly read due to the superimposed cracks in the structural feature 4 and—depending on the recognition settings—are therefore not converted by the character recognition device 6 or interpreted correctly. This creates information from recognizable and not clearly recognizable characters. If necessary, the characters that are not recognizable or difficult to recognize can be converted into alternative characters or information, which also increases security. Corresponding conversion rules can be created here. For example, it would also be possible to have digits or letters completely replaced by other characters during the OCR analysis.

A comparison device 7 carries out a comparison of the security feature 2 detected by the detection device 5 by comparing the characters of the security feature 2 converted by the character recognition device 6 with a reference feature stored in a memory.

According to the invention, it is now provided that not only a simple optical character recognition and conversion of recognizable characters takes place. The authentication device also includes at least one control device 8, in which the detection conditions for detecting the appearance of the characters and/or the reading conditions for the character recognition and/or the analysis parameters for the character analysis of the characters of the security feature 2 are specified for an authentication request. For example, the control device 8 can specify that only the characters A and X in the character string of the security feature 2 that are emphasized more strongly are used for the subsequent character recognition by the character recognition device 6 . This can be done, for example, by using a specific coloring using a filter. Alternatively, the security element 1 can be irradiated with complementary colors so that, for example, the letters A and X are reinforced, while the other characters of the security feature 2 are erased or at least weakened by using the complementary color. The control device 8 can also specify that only specific characters of the character string of the security feature 2 are used for authentication are, for example only certain character positions or excerpts of the security element 1.

However, the control device 8 can not only specify the read-in conditions for the detection device 5, but also the analysis parameters for a later character analysis. These can provide, for example, that only certain characters of the character string of the security element 2 are used for a conversion and are therefore relevant for a later authentication.

Characters that are made up of several colors, for example, can deliver different results depending on the design, the use of complementary light or the type of selection rule: If, for example, the number "8" consists of half blue and half red, it would Digit interpreted as digit "3" when applying the selection rule that only the color "blue" applies. This is also the case if the character were read on a screen under blue light, since in this case the red part changes to white. When reading a printed image under blue light, this red part would change to black while the blue part would remain blue. A selection rule that only blue should be read out would therefore always return the number "3" as the result.

In 2 shows an example of the method or the authentication device that is not according to the invention. It is provided that the characters of the security feature 2 of the security element 1 are initially recognized, with all or part of the characters being converted into an acoustic tone sequence by the character recognition device 6 after detection by the detection device 5 . This creates a characteristic acoustic signature which is dependent on the characters embossed on the security element 1 and which can be used for authentication via the matching device 7 . In this variant, it can be provided that the generated tone sequence is transmitted to the user for authentication, so that the user has to play the transmitted tone sequence for authentication so that the tone sequence can be read in again via a separate additional detection device 5, in this case a microphone and is compared with the stored reference tone sequence via the adjustment device 7 (acoustic signature). If both sequences of tones match the specifications, the authentication is positive.

The reverse case is also possible, namely that the authentication device reads the user's security element and generates an individual sound from parts of the detected characters, which is recorded via the user's microphone and forwarded digitally to a central authentication server, which in turn receives this from the authentication device has also received and stored the sound and checks its acoustic consistency.

In this variant, to increase safety, it can now be provided that after the correct tone sequence has been transmitted, the acoustic information is changed in a further process before it is detected by the detection device 5, for example by playing in further signals, such as ambient noise, which change the tone sequence or the tone mixture. As a result, a new acoustic signature is generated, which in turn can be stored as new security information in the authentication device. This new acoustic signature then serves as a starting point for later identification of the user.

In 3 an exemplary security element 1 is shown, in which a large number of security features 2 can be recognized in the form of codes. The security features 2 are presented differently in that the characters consist of different colors, different sizes, fonts or character spacing. The surface 3 of the security element 1 is coated with a lacquer in which cracks or cracks form as a structural feature 4 . The cracks run through the security element 1 and thereby overlap individual characters of the security features 2.

This security element 1 is detected by a detection device (not shown) in the course of an authentication query and subjected to optical character recognition (OCR analysis). The recognizable characters are converted into corresponding computer-readable characters. Characters that are not clearly recognizable or are overlaid by a structural feature 4 receive a different assignment, for example a space or any other character, which generates an individual code that is not predictable and differs from the read code. One or more control devices (not shown) can now be used to determine how the reading in or the OCR analysis is to take place. Thus, when the security element 1 is detected, it can be specified that only characters of the security feature 2 that are written in italics are to be read. Another rule may provide that only characters with a specific color scheme are recorded. Furthermore, rules for the OCR conversion can also be specified, for example threshold values for a clear/fuzzy recognition of characters.

Such a security element 1 is impossible for a counterfeiter to copy with reasonable effort. The latter also does not know the individual rules for the capture or the OCR conversion, so that it is impossible for him to foresee the security information stored as a reference feature on the authentication server. The same rules are used for authentication that were used previously when the security element 1 was read in for the first time. If this is the original, the authentication is positive. Should the comparison reveal too many differences in character recognition or character interpretation, authentication would fail and an alarm would be raised.

In 4 a further variant of the authentication device according to the invention is shown. In this case, the authentication device can consist of a plurality of spatially separate components which are connected to one another, for example via a network (for example the Internet). The starting point is a physical security element 1 (eg ticket) on whose surface 3 security features 2 are formed in the form of a code. Individual characters of the security feature 2 are superimposed by cracks as a structural feature 4 and can therefore no longer be properly evaluated for a later OCR analysis. Optical detection of the security element 1 takes place via a mobile phone 1 by means of a built-in mobile phone camera, which serves as a detection device 5 . After the security element 1 has been detected, the security element 1 is displayed on the display device of the mobile phone 1 and sent to a server as an image or security feature that has already been read in the form of a code, which on the one hand can store the image of the security element 1, but at the same time can also recognize characters or can carry out a comparison with a reference characteristic. For this reason, the server includes a character recognition device 6 and a matching device 7. The mobile phone 1 and/or 2 can take over the functions of the server, particularly if it is a local registration on the mobile phone. In this case the server would only be updated.

In the embodiment variant shown, authentication takes place via a further reading device (mobile phone 2). With this readout device as an additional detection device 5, the security element 1 shown in the display device of the mobile phone 1 is read in. A control device 8 specifies that the readout should be carried out, for example, with red light, so that in the security element 1 only the digits 5 and 3 of the security feature 2 are recognizable.

Depending on the variant, the readout rule can be specified either by the server itself or by the mobile phone 2 , provided that it has its own control device 8 which specifies the readout rule for reading in the security element 1 . The mobile phone 1, the server and/or the mobile phone 2 can have their own control device 8, which depends on the respective application. In this way, the rules and parameters for reading in and the subsequent evaluation of the security feature for the individual components of the authentication device can be defined individually.

Even without converting the characters of the display device of the mobile phone 1 detected by the detection device 5 is sufficient to guarantee a high level of security. In order to increase security, the characters of the security feature 2 detected with the reading device of the mobile phone 2 can also be subjected to an OCR recognition in order to convert readable characters into computer-readable characters. Because of the superimposed structural features 4, individual characters can no longer be properly interpreted.

A particular feature of the embodiment variant of the authentication device according to the invention shown here is that the display device of the mobile phone 1 does not have to be connected to the server for an authentication query, i. H. the authentication can also be carried out when the mobile phone 1 is "offline". The security feature 2 detected by the reading device of the mobile phone 2 is compared with the stored reference character via the server's matching device 7 . A double authentication can be carried out if the mobile phone 1 has an intact network connection, i.e. is "online", because then the mobile phone 2 can countercheck the detected security feature 2 by querying back with the mobile phone 1.

In a further preferred variant (not shown) it is provided that a mobile communication device (e.g. mobile phone 1 or mobile phone 2) comprises character recognition device 6 and/or matching device 7 and/or control device 8 . Then you don't need a separate server. The mobile phone would take over its functions.

figure 5 shows an alternative variant of the authentication device according to the invention (=authentication device), in which all components of the authentication device have a connection within a network (=all devices online). Here, too, a physical security element 1 is first recorded by means of a mobile phone camera via a mobile phone 1 and transmitted to the authentication server, which, if necessary, uses character recognition a character recognition device 6 and, if necessary, a character comparison with a stored reference character via a comparison device 7.

In addition, a local database is provided, which includes a memory with read-in codes for "offline" operation. A regular update takes place according to a given rule (e.g. a definition) between the authentication server and the local database. This database can also be located directly on the cell phone 2 . According to the selection rule, the reading should be carried out with a red light. Characters that are displayed in complementary colors to the red light cannot be displayed in the OCR analysis and are neutralized.

For an authentication, the security element 1 is first shown on the display (display device) of the mobile phone. If the mobile phone 1 is provided with a control device 8, the security element 1 can also be displayed in accordance with specified conditions or rules. In any case, the security feature displayed on mobile phone 1 is detected by the reading device on mobile phone 2 . The reading out can also take place according to predetermined rules by means of a control device 8, so that in the variant shown the numbers "5" and "3" of the character string of the security feature 2 are visible as a result. A check is then carried out with the authentication server to determine whether the security feature 2 detected by the reading device of the cell phone 2 matches the stored security feature. The stored reference data can either be stored on the authentication server itself or on an internal or external local database. The control device 8 can either be assigned to the server, the mobile phone 1 or mobile phone 2 or to several of these devices.

In an alternative variant, the reading device of the mobile phone 2 can also read the physical security element 1 itself.

In 6 a method variant is shown in which individual or all devices of the authentication device according to the invention have no network connections (=all devices offline). In this case, the reading device of the mobile phone 2 communicates directly with the local database and carries out a check of the security feature 2 received from the display device of the mobile phone 1 directly with the local database. With this variant, there would be no character recognition or comparison with the authentication server.

In 7 the situation is shown that only the mobile phone 1 is offline while the mobile phone 2 is online. In this case, the security feature 2 would be checked via the authentication server. In this variant of the method, the local database would not be required for checking the security feature 2 that was read in.

In 8 the situation is shown in which the mobile phone 1 is online while the mobile phone 2 is offline. In this case, a communication link between the authentication server and the cell phone 1 would exist. The reading device of the cell phone 2 can still read the physical security element 1 directly or via the display device of the cell phone 1 displayed security feature 2 when the cell phone 1 is online. Otherwise, the security feature 2 that has been read out is again checked via a local database.

Claims (14)

1. Authentication device comprising

   - a security element (1) with at least one security feature (2) consisting of characters which can be detected via character recognition, wherein the security element (1) has at least one structural feature (4) which influences the appearance of the security feature (2) and thus the detectability of one or more characters of the security feature (2) during character recognition and/or character interpretation,

   - at least one detection device (5) for detecting the appearance of the characters of the security feature (2),

   - at least one optical character recognition device (6) for carrying out optical character recognition (OCR) in which the recognizable characters of the appearance of the security feature (2) are converted into machine-readable characters, wherein one or more characters of the security element are manipulated in such a way that, in an OCR recognition or OCR analysis, characters that are difficult or impossible to read are interpreted differently or are reassigned according to a rule,

   - at least one comparison device (7) for comparing the security feature (2) detected by the detection device (5) and/or the characters, converted by the character recognition device (6) with a reference feature stored in a memory, characterized in that the authentication device comprises at least one control device (8), which prescribes the rules and/or parameters for the detection and/or reading and/or analysis for the characters of the security feature in such a way that the detection conditions for detecting the appearance of the characters and/or the reading conditions for the character recognition and/or the analysis parameters for the character analysis of the characters of the security feature (2) are specified for an authentication request of the control device (8) are changed in an unpredictable way by the selection of the parameters being predetermined by the authentication device or being random.
2. Authentication device according to Claim 1, characterized in that the structural feature (4) is a material layer and/or a property of the security element (1) and/or the security feature (2) or parts thereof, which the appearance of the security feature (2) and thus influences the detectability of one or more characters of the security feature (2) during character recognition and/or character interpretation.
3. Authentication device according to Claim 2, characterized in that the structural feature (4) of the security element (1) is selected from the group consisting of a crackle pattern in the form of cracks, flaking, fissures or recesses; 3D surface changes such as surface elevations or surface depressions, relative displacements of characters on the security element (1), colour or mechanical changes in the characters and/or the background of the security element (2) such as overshadowing or clouding, wherein the structural feature (4) at least partially overlays , removes or otherwise alteres the security feature (2).
4. Authentication device according to one of Claims 2 to 3, characterized in that a structural feature (4) of the security element (1) itself changes dynamically in a random manner and thus leads to a changed appearance of the security element (1) between two query times, wherein the dynamic change of the structural feature (4) of the security element (1) is caused by a material property of the structural feature (4), an inherent property of the security element (1) and/or by being influenced by an external physical and/or chemical and/or biological factor.
5. Authentication device according to Claim 1, characterized in that the reading conditions for the detection of the appearance of the security feature (2) and / or the character recognition and / or the character analysis comprise a recognition threshold for a recognizable and / or unrecognizable character, an intensity measurement of the brightness and/or the colour values of the characters, a character colour determination, a character size determination, a character position determination, a focus or blur area, the application of a filter or mask, an over- or under-exposure, an exposure with complementary colours or other property of characters.
6. Authentication device according to Claim 1, characterized in that the security element (1) comprises a biopolymer which is either built up in layers or forms the security element (1) or parts thereof, or in which characters of the security feature (2) are formed from a biopolymer, wherein the biopolymer additionally changes due to biological, chemical, physical or mechanical influences.
7. Authentication device according to Claim 1, characterized in that a display device is also provided on which the current or modified appearance of the security element (1) can be displayed after transmission by or to the comparison device (7) for authentication.
8. Authentication device according to Claim 1, characterized in that the control device (8) is part of the detection device (5) and/or the character recognition device (6) and/or the comparison device (7).
9. Method for authentication or determination of the identity of a person, a device, an object, a service, an application and/or a computer program, in which authentication takes place via a security element (1) with at least one security feature (2) and an authentication device, comprising the steps:

   - Providing a security element (1) with at least one security feature (2) consisting of characters which can be detected via character recognition, wherein the security element (1) has at least one structural feature (4) which influences the appearance of the security feature (2) and thus the detectability of one or more characters of the security feature (2) during character recognition and/or character interpretation,

   - detecting the appearance of the characters of the security feature (2) via a detection device,

   - Carrying out optical character recognition (OCR) in which the recognizable characters of the appearance of the security feature (2) are converted into machine-readable characters, wherein the recognisable characters of the appearance of the security feature (2) are converted into machine-readable characters, wherein individual or several characters of the security feature are manipulated in such a way that, during an OCR recognition or OCR analysis, characters that are difficult or impossible to read are interpreted differently or are reassigned according to a rule,

   - comparing the security feature (2) detected by the detection device (5) and/or the characters converted by the character recognition device (6) with a reference feature stored in a memory, characterised in that the rules and/or parameters for the detection and/or reading and/or analysis for the characters of the security feature are predetermined in such a way that the detection conditions for detecting the appearance of the characters and/or the reading conditions for character recognition and/or the analysis parameters for character analysis of the characters of the security feature (2) for an authentication request are changed in an unpredictable way by the selection of the parameters being predetermined by the authentication device or being random.
10. Method according to Claim 9, characterized in that at least one reading condition is changed between two query times of a security query, whereby a character previously recognizable at the first query time is converted into an unrecognizable character, or a previously unrecognizable character is converted into recognizable character, or a recognizable character is converted into another recognizable character.
11. Method according to Claim 9, characterized in that only certain characters within the security feature (2) are used for the authentication, wherein the selection being made via a control device (8) which specifies the detection conditions for detecting the appearance of the characters and/or the reading conditions for the character recognition and / or the analysis parameters for the character analysis of the characters of the security feature (2).
12. Method according to Claim 9, characterized in that at least one reading condition provides that the detection of the appearance of the characters of the security feature (2) is influenced at least in sections in such a way that certain characters are not readable for later character recognition and/or character analysis, or unreadable characters become readable for later character recognition and/or character analysis, and/or readable characters are interpreted differently in later character recognition.
13. Method according to Claim 9, characterized in that the security element (1) is displayed on a display device, wherein a reading condition provides that the reproduction of the appearance of the characters of the security feature in the display device is influenced at least in sections in such a way that certain characters for the later character recognition and/or character analysis are unreadable, or unreadable characters become readable for later character recognition and/or character analysis, and/or readable characters are interpreted differently in later character recognition.
14. Method according to Claim 9, characterized in that the reading of the security element (1) or parts thereof takes place under illumination with complementary colours, so that certain characters are not readable for later character recognition and/or character analysis, or unreadable characters become readable for later character recognition and/or character analysis, and/or readable characters are interpreted differently in later character recognition.

Images