Entrance and exit of a person is efficiently managed by simple authentication and registration of entrance and exit using a communication terminal carried by the person. An information processing apparatus includes a face information register that registers face information of registered users who are to enter into and exit from a place in association with the place, an information acquirer that acquires, from a communication terminal, position information of the communication terminal, face information of an applying user who applies to enter into or exit from the place, and application information for entering or exiting, a user authenticator that performs user authentication by comparing the face information of the applying user acquired from the communication terminal by the information acquirer with the face information of the registered users registered in the face information register, and an entrance and exit recorder that records, if the user authentication succeeds, that the applying user has entered into or exited from the place corresponding to the position information.

A stay management apparatus includes a registration unit for acquiring a face image of a visitor and to register the face image, an entry control unit for authenticating the visitor based on authentication target information that is associated with identification information of the visitor and to permit entry of the visitor, an acquisition unit for acquiring destination information, about inside the building, which is associated with the identification information of the visitor, a determination unit for determining a permitted stay duration of the visitor inside the building based on the destination information, a detection unit for detecting stay of the visitor by face authentication, based on monitor images that are sequentially captured, and an output unit for outputting an alert when stay of the visitor is detected by the face authentication after a lapse of the permitted stay duration.

A device for registering and authenticating a user device for vehicle control includes: a communication unit connected to the user device to receive an authentication request from the user device; an interface configured to communicatively connect with at least one antenna included in the vehicle and communicating with a FOB of the vehicle; and a processor configured to detect whether the user device is registered based on at least one of user information and device information included in the received authentication request, to detect whether a user of the user device has the FOB by using the at least one antenna, and to control a registration process of the user device which is set differently depending on whether the user has the FOB when the user device is not registered.

A physical access control (PAC) system configured to perform a two-factor authentication prior to granting access to a secure area. The PAC system includes an access point device configured to perform facial recognition on a person proximate to the access point device, and perform wireless handshake with a mobile device associated with the person prior to granting or denying entry to the secure area.

A method according to one embodiment includes receiving, by an access control device, a credential token from a mobile device, wherein the credential token includes an access credential, a credential identifier, and a caveat that instructs the access control device to perform an associated action, determining, by the access control device, a credential type associated with the access credential based on the credential identifier, determining, by the access control device, a set of caveat rules associated with the credential type, wherein the set of caveat rules identifies one or more actions authorized for an access credential of the credential type, and performing, by the access control device, the associated action identified by the caveat in response to a determination that the associated action is an action authorized by the set of caveat rules associated with the credential type.

A method and system for digital authentication is disclosed, in which an owner device associated with a smart lock receives identity information of a user device requesting access to the smart lock. The owner device registers first contract information of the smart contract, for granting access of the smart lock to the user device, on a decentralized trust network, and sends second contract information about the smart contract to the user device. The second contract information comprises validation information of the smart contract indicating an un-validated information of the second contract information. The user device validates the received second contract information against the first contract information on the decentralized trust network, and authenticates the user device with the smart lock using the validated second contract information.

An information processing apparatus according to the present invention includes: an acquisition unit that acquires biometric information on a user in a procedure area where the user is able to select a first scheme involving use of biometric authentication in a procedure or a second scheme not involving use of the biometric authentication in the procedure; a matching unit that matches the biometric information with registered biometric information on a registrant allowed to use the first scheme and determines whether or not the user is the registrant; and a guidance unit that, when it is determined by the matching unit that the user is the registrant, guides the user for a procedure place corresponding to the first scheme and, when it is determined that the user is not the registrant, generates guidance information about a way to a procedure place corresponding to the second scheme.

A detection sensor or a user device is used to aid in providing authentication and activation of a door system when a user tries to access the door for ingress and egress. Operating parameters of the door systems may be set to allow ingress and egress only when a user is identified and authorized. As such, the operating parameters of the door systems may include authentication and activation parameters such that the door systems are controlled, at least in part, based on the presence of a user and/or a user device and the identification of the specific user. As such operating parameters may be different for different users or types of users. Moreover, the user device may be used to authenticate a user and control ingress and egress through the door automatically or through an authentication action taken by the user.

In biometric ticketing, physical token-less ticketing system using biometrics, a person may be identified using a digital representation of a biometric. Ticketing information may be ascertained based on the identification. The ticketing information may be provided, actions may be performed using the ticketing information, and so on. In some implementations, a checkpoint device receives biometric data from a person. A digital representation of the biometric data is used to obtain an identifier from an identification system. The digital representation of the biometric data may not be included in the identifier. The identifier is used by to obtain ticketing information from a ticketing system. The person may be allowed or denied entry into a ticketed area based on the ticketing information.

A method of enrolling a user at a biometric lockset is described. The method includes receiving user access information from a mobile device of an administrative user of the biometric lockset. The user access information indicates to the biometric lockset to enter an enrollment mode in which a user identity is associated with fingerprint data in a user entry within a memory of the biometric lockset. A plurality of different light codes are displayed on the lockset, each one of the plurality of light codes representative of a different state of fingerprint data capture. A message is transmitted to the mobile device, and corresponds to the light code displayed at the lockset. The completed fingerprint data is stored in association with the user identity of the user in the user entry.