WO2006082913A1 - ネットワーク決済カード、ネットワーク決済プログラム、認証サーバ、及びショッピングシステムと決済方法 - Google Patents
ネットワーク決済カード、ネットワーク決済プログラム、認証サーバ、及びショッピングシステムと決済方法 Download PDFInfo
- Publication number
- WO2006082913A1 WO2006082913A1 PCT/JP2006/301831 JP2006301831W WO2006082913A1 WO 2006082913 A1 WO2006082913 A1 WO 2006082913A1 JP 2006301831 W JP2006301831 W JP 2006301831W WO 2006082913 A1 WO2006082913 A1 WO 2006082913A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- user
- card
- authentication
- payment
- server
- Prior art date
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q30/00—Commerce
- G06Q30/06—Buying, selling or leasing transactions
- G06Q30/0601—Electronic shopping [e-shopping]
- G06Q30/0603—Catalogue ordering
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/02—Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/04—Payment circuits
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/08—Payment architectures
- G06Q20/10—Payment architectures specially adapted for electronic funds transfer [EFT] systems; specially adapted for home banking systems
- G06Q20/102—Bill distribution or payments
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/08—Payment architectures
- G06Q20/12—Payment architectures specially adapted for electronic shopping systems
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q30/00—Commerce
- G06Q30/06—Buying, selling or leasing transactions
- G06Q30/0601—Electronic shopping [e-shopping]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q40/00—Finance; Insurance; Tax strategies; Processing of corporate or income taxes
- G06Q40/12—Accounting
Definitions
- Network payment card Network payment card, network payment program, authentication server, shopping system and payment method
- the present invention relates to a shopping system in which a user selects and purchases a product provided by a server via a network, and more particularly to a network payment card used when a user uses a shopping system and payment. It relates to an authentication server that identifies the card information of the user to be used.
- a shopping system in which a server side sells products via a network.
- the shopping system 440 is roughly divided into a user terminal 4401 on the user side and a sales server 4402 and a settlement sano 4403 on the server side via the network.
- the processing flow in the shopping system can be broadly divided into steps 10 in which the user selects a product and notifies the server of the purchase intention. It is divided into step 20 for selecting and notifying the personal information and card information to the server side, and step 30 for performing the settlement procedure on the server side.
- the user uses the user terminal 3401, the credit card company name, the credit card information such as car KID, nose word, etc., and the user's name, age, address, telephone number, e—
- the user's personal information such as a mail address is input, and this information is transmitted from the user terminal 3401 to the sales server 3402.
- the sales server 3402 the user The user's payment information is acquired by managing the merchandise selected by the user and receiving the credit card information owned by the user and the personal information of the user.
- the sales server 3402 refers to the credit card information acquired in accordance with the payment procedure request from the user terminal 3401, searches the payment server 2303 operated by the card company, and obtains the acquired user payment information. Send.
- Payment server 2303 identifies users from the information card managed by the server based on the credit card information and personal information of the received user payment information, and performs the payment procedure for the product to be purchased. (See Patent Document 1).
- Patent Document 1 Japanese Patent Laid-Open No. 10-240814
- the payment procedure for selecting a credit card in the above shopping system is credit card information such as “credit card company name”, “card ID”, “password”, and “user”.
- the user's name, age, address, phone number, re-mail address, etc. are not bothersome to enter the user's personal information on the network. Leakage or eavesdropping and impersonation by a third party can result in significant damage to users. Because of these problems, the use of credit cards on the network is not convenient and secure.
- the present invention pays attention to such problems, and in the shopping system via the network, the settlement procedure is performed for the product selected by the user without notifying the user's card information or personal information.
- the purpose is to provide a network payment card and a network settlement program that can be used to make payments for products that are actually selected by the user at a store.
- An object is to provide a server, a shopping system, and a settlement method.
- the network payment card of the present invention includes an authentication processing unit that performs an authentication process using an authentication key generated based on card information used for a payment procedure, and the authentication processing unit includes the authentication process described above.
- An authentication server that generates a one-time ID using a key and authenticates the one-time ID
- the payment procedure for the product selected by the user is carried out by acquiring the one-time ID generated in step 1 and authenticating the authentication server using the authentication key.
- the network payment program of the present invention performs an authentication process using an authentication key generated based on information on a card used for a payment procedure when the computer executes the program, and the authentication key
- a one-time ID is generated using the authentication server
- a one-time ID generated by an authentication server that authenticates the one-time ID is acquired, and the authentication server is authenticated using the authentication key.
- a step of communicating between a user terminal and a server to allow a user to select a product displayed on the user terminal, and the selected product A step of displaying and selecting a payment procedure method to be performed; a step of reading the network payment card or the network payment program when the payment method is a network payment card or a network payment program; Selecting a card company that can be used for a payment procedure from a selectable card company managed by the server and a selectable card company managed by the network payment card or network payment program; Displaying and executing a request for authentication processing with the server, and between the server and the server When the authentication process is executed, the network payment card or the network payment program is generated based on information on the card used for the payment procedure.
- the generated authentication key is used to generate a one-time ID and transmitted to the server, and the server authenticates the transmitted one-time ID using the authentication key generated based on the card information.
- Perform two-way one-time ID authentication that identifies the card information that the user uses for the payment procedure, generates a one-time ID using the authenticated authentication key, and sends it to the user terminal. It is characterized by performing.
- the payment method of the present invention includes a step of causing the store terminal to read a network payment card that performs communication between the store terminal and the server and performs a payment procedure for the product selected by the user; A process of selecting a card company that can be used for a payment procedure from a selectable card company managed by the server and a selectable card company managed by the network settlement card, and the server. Displays the request for authentication processing and executes it And a step of displaying and executing a request to perform a settlement procedure process with the server, and when executing the authentication process, the network settlement card or the network settlement program performs the settlement procedure.
- a one-time ID is generated using the authentication key generated based on the card information used in the transmission and transmitted to the server, and the server uses the authentication key generated based on the card information.
- the store terminal is configured to authenticate the transmitted one-time ID, identify the card information used by the user for the settlement procedure, and generate the one-time ID using the authenticated authentication key. Two-way one-time ID authentication is performed.
- the authentication server of the present invention includes a product price information management unit that acquires the price information of a product selected by a user at a user terminal in a shopping system via a network, and a sales server that sells the product.
- a user card authentication processing unit that authenticates the card information used by the user in the payment procedure using the authentication key generated based on the card information, and the one-time ID transmitted to the user terminal.
- a user settlement procedure control unit that obtains user settlement information from the amount information of the acquired product and card information used by the authenticated user for a settlement procedure, and performs a settlement procedure. To do.
- the shopping system of the present invention performs communication via a network by reading a network payment card or a network payment program that performs a payment procedure for a product selected by a user, and the network payment card or the network payment program.
- the terminal communicates with the terminal, receives the one-time ID generated by the network payment card or network payment program, and the price information of the product selected by the user, and uses it based on the one-time ID.
- the user obtains card information to be used for the payment procedure, and obtains and uses the user payment information from the authentication server, the authentication server that obtains the user payment information including the amount information of the product and the card information.
- a payment server that performs the payment procedure for the product selected by the authentication server authenticates the card information used by the user for the payment procedure from the one-time ID, generates a one-time ID using the authentication key used for the authentication, and generates the generated one-time ID.
- the network payment card or network payment program via the terminal with the time ID The network payment card or the network payment program requests the payment procedure of the product to the authentication server via the terminal after authenticating the authentication server.
- the shopping system of the present invention includes a network payment card that performs a payment procedure for a product selected by a user, a store terminal that reads the network payment card and communicates via a network, and the store terminal
- the one-time ID generated by the network payment card and the price information of the product selected by the user are received from the store terminal and used by the user for the payment procedure based on the one-time ID.
- An authentication server that acquires card information to be acquired and user settlement information including the price information of the product and the card information, and a product selected by the user by acquiring the user settlement information from the authentication server.
- a payment server that performs the payment procedure of the card, and the authentication server uses the one-time ID to provide card information that the user uses for the payment procedure.
- a one-time ID is generated using the authentication key used for the authentication, the generated one-time ID is transmitted to the network payment card via the store terminal, and the network payment card Then, after the authentication of the authentication server is performed, a product settlement procedure is requested to the authentication server via the store terminal.
- the user side does not input the card information or personal information of the user, but generates the one-time ID
- the server side authenticates the one-time ID.
- the card information used by the user for payment can be authenticated.
- the server side authenticates the server by simply authenticating the user's card information on the server side.
- a shopping system via a network can be used.
- the payment procedure can be performed without notifying the user's card information or personal information.
- FIG. 1 is a diagram showing the configuration of a shopping system used in an embodiment of the present invention.
- FIG. 2 is a diagram showing an internal configuration of a network payment card used in an embodiment of the present invention.
- FIG. 3 is a diagram showing an internal configuration of an authentication server used in an embodiment of the present invention.
- FIG.4 Diagram showing the flow of purchase product selection process, which is one process of the shopping system
- FIG. 14 Diagram showing the form in which an authentication server is operated by a card company or a network payment card issuing company
- FIG.17 Diagram showing product information selected by user displayed on user terminal screen and data structure managed by sales server
- FIG. 18 Diagram showing the payment method displayed on the user terminal screen, the card information that can be processed, and the data structure managed by the sales server ⁇ 19] Display form of card information that can be processed on the user terminal screen ⁇ 20] Display form of card information that can be displayed on the user terminal screen ⁇ 21] User terminal screen Display form of card information that can be processed for payment displayed in] 22] Display form of card information that can be processed for payment displayed on user terminal screen ⁇ 23] Show the data structure sent from the sales server to the authentication server Figure
- FIG. 30 is a diagram showing an internal configuration of a network payment card used in one embodiment of the present invention.
- FIG. 31 is a diagram showing an internal configuration of an authentication server used in an embodiment of the present invention.
- FIG. 32 is a diagram showing the configuration of a shopping system used in one embodiment of the present invention.
- FIG. 33 is a diagram showing the internal configuration of a network payment card used in one embodiment of the present invention.
- FIG.34 Diagram showing the flow of purchased product selection process, which is one process of the shopping system
- FIG. 35 is a diagram showing the flow of user card authentication processing, which is one processing of the shopping system.
- FIG.36 Diagram showing the flow of payment procedure processing, which is one processing of the shopping system
- FIG.37 Diagram showing the flow of confirmation procedure for payment procedure end information, which is one process of the shopping system
- FIG.38 Diagram showing the flow of confirmation procedure for payment procedure end information, which is one process of the shopping system.
- FIG.39 Diagram showing the flow of confirmation procedure for payment procedure end information, which is one process of the shopping system.
- FIG. 40 is a diagram showing the configuration of a shopping system used in one embodiment of the present invention.
- FIG. 41 Diagram showing the flow of purchased product selection processing, which is one process of the shopping system.
- FIG. 42 Diagram showing flow of user card authentication processing, which is one processing of the shopping system. Is a diagram showing the flow of payment procedure processing o
- FIG.44 Diagram showing the configuration of a conventional shopping system
- FIG.45 Diagram showing the processing flow of a conventional shopping system
- the shopping system 100 can be roughly divided into a network payment card 101 that performs a payment procedure for a product selected by the user in the shopping system, and a network payment card 101.
- a network payment card 101 that performs a payment procedure for a product selected by the user in the shopping system
- a network payment card 101 Connect, read, and communicate over a network with a desktop, notebook, or mopile bath
- the server side is connected to the user terminal 102 via a network and sells products on the server side.
- the authentication server 104 obtains the amount information of the product selected by the user, obtains the card information that the user uses for the payment procedure from the one-time ID transmitted from the user terminal 102, and obtains the user payment information.
- a payment server 105 that acquires user payment information from the authentication server 104 and performs a payment procedure for the product selected by the user.
- the sales server 103, the authentication server 104, and the settlement server 105 provided on the server side may be physically integrated or separated.
- the configuration of the program managed inside the network payment card 101 can be roughly divided into an active state control unit 201 that manages the active state of the card and a card used for the payment procedure.
- An authentication processing unit 202 that performs authentication using an authentication key generated based on the information on the network, and a communication unit 203 that notifies or obtains various types of information.
- the network payment card 101 is connected to the user terminal 102. Each block functions by connecting and executing the program in the network payment card 101 by the computer of the user terminal 102.
- the network payment card 101 may be an IC card, a USB memory, etc.
- the reader / writer is used to cause the computer of the user terminal 102 to execute the program in the network payment card 101 and read or write it. Also in the case of a USB memory, the computer of the user terminal 102 is caused to execute the program in the network payment card 101 and read or write it. Note that reading and writing may be performed in either contact or non-contact manner.
- the active state control unit 201 manages the biometric information of the user who activates the network payment card 101 and the pin code such as the password set by the issuing company of the network payment card 101.
- Pin code storage unit 204 pin code acquisition unit 205 for acquiring pin codes such as biometric information etc. entered by the user, pin code acquisition unit 205, pin code storage unit
- the pin code determination unit 206 that determines whether or not it is correct using the pin code managed by 204!
- An activation processing unit 207 that performs processing to activate the network payment card 101 when it is a pin code, and an invalid processing unit 208 that deactivates the network payment card 101 when the pin code is incorrect.
- the pin code managed by the pin code storage unit 204 is managed as a code for activating the program in the network payment card 101.
- the user or the issuing company of the network payment card 101 registers in advance.
- the password records a character string such as alphanumeric characters, and the biometric information records the user's fingerprint, palm, iris or voiceprint.
- the pin code can be a combination of biological information and a password.
- the authentication processing unit 202 makes a payment of a card ID or PIN issued by a credit card company or a bank company such as a bank card or a user's personal information when the user registers as a member!
- An authentication key storage unit 209 for managing an authentication key generated based on information such as a card used for the procedure, a one-time ID generation unit 210 for generating a one-time ID using the authentication key of the authentication key storage unit 209, Authentication using the authentication key of the one-time ID output unit 211 that outputs the generated one-time ID to the user terminal 102, the one-time ID acquisition unit 212 that acquires the one-time ID generated by the authentication server 104, and the authentication key storage unit 209 Server authentication unit 213 that authenticates the server 104, registered company name that the user registers as a member and manages the card company name such as a credit card company or bank card in association with the authentication key of the authentication key storage unit 209 Storage part 214, A registration company name output unit 215
- the one-time ID is identification information that can be authenticated once and used to identify a legitimate sender / receiver.
- the one-time ID is generated using an authentication key that is managed in the network payment card 101 and the authentication server 104 and is generated based on information such as the card used for the payment procedure, and communicates between the two. It is set to be changed every time.
- authentication using this one-time ID allows only authorized senders to authenticate each other.
- the network payment card 101 generates a one-time ID using an authentication key managed in the card, and the authentication server 104 receives this one-time ID.
- the authentication server 104 reads the one-time ID using the authentication key managed in the server, and identifies the card information including the card ID and personal identification number used by the user for the payment procedure, or personal information. can do. After that, the authentication server 104 generates a one-time ID using the authentication key used to specify the card information, and the network payment card 10
- the network payment card 101 can use the authentication key managed in the card to read the one-time ID, identify the authentication server 104, and the successful one-time ID authentication. Can be recognized.
- the authentication key is managed by both parties, and a one-time ID that can be authenticated only once and is difficult to predict using this is generated. Even if the time ID is leaked or wiretapped and the one-time ID is used, spoofing can be prevented. In addition, it is possible to verify the legitimacy between the user side and the server side, and to protect both information. Details of one-time ID generation, bidirectional one-time ID authentication processing, etc. are disclosed in “One-Time ID Generation Method, Authentication Method, Authentication System, Server, Client, and Program” in Japanese Patent Application Laid-Open No. 2004-282295. Yes.
- the price of the product obtained from the sales server 103 is the price information of the product selected by the user on the user terminal 102.
- the user uses the authentication key generated based on information such as the card managed by the server for the settlement procedure.
- User card authentication processing unit 302 which authenticates card information, obtains user payment information from the amount information of the acquired product and the card information used by the authenticated user for the payment procedure, and uses the user payment information
- a user settlement procedure control unit 303 that requests a settlement procedure from the settlement server 105 and a transmission / reception unit 304 that notifies or obtains various types of information are provided.
- the product price information management unit 301 obtains the sales server ID and the price information of the product selected by the user from the sales server 103, the product price information acquisition unit 3 05, and the acquired sales server ID. Is registered, the sales server determination unit 306 that determines whether or not the power is registered, the sales server ID storage unit 307 that manages the registered sales server ID, In the case of a sales server, a product price information acquisition unit 308 that acquires the product price information transmitted from the sales server 103 is provided.
- the user card authentication processing unit 302 receives the activation request unit 309 that requests the user terminal 102 to activate the network payment card 101, and the one-time ID transmitted from the network payment card 101.
- One-time ID acquisition unit 310 to acquire, authentication key storage unit 311 for managing authentication keys used to specify information such as card IDs, passwords, or personal information registered by the user, one-time ID acquisition Using the authentication key managed by the authentication key storage unit 311 for the one-time ID acquired by the unit 310, the card information specifying unit 312 for authenticating the card information used by the user for the payment procedure, using the authenticated authentication key
- a one-time ID generation unit 313 for generating a one-time ID and a one-time ID output unit 314 for outputting the generated one-time ID.
- the user settlement procedure control unit 303 obtains user settlement information from the product amount information obtained by the product amount information obtaining unit 308 and the user settlement information from the card information identified by the card information identifying unit 312.
- the payment procedure completion information is acquired from the payment server 105 together with the payment procedure completion notification from the payment server 105
- the payment procedure completion information is acquired and registered in the user payment procedure information storage unit 317.
- a notification acquisition unit 319 and a user settlement information confirmation unit 320 that accepts a request for a list of settlement procedure end information from the user terminal 102 and reads the list from the user settlement procedure information storage unit 317 are provided.
- the processing operation of the shopping system configured as described above will be described.
- the processing flow in the shopping system is divided into an initial process as a preparation stage, a purchase product selection process as a first stage, a user card authentication process as a second stage, and a settlement procedure process as a final stage. It is done.
- the network payment card 101 is a card already registered by the user.
- a means of requesting and obtaining a credit card or bank card management company, or a company that issues a network payment card as shown in Figs. 11 and 12 (hereinafter referred to as a network payment card issuance)
- a network payment card issuance There is a means to obtain it by requesting it to the company. In either case, it is necessary to notify the card information such as credit card and bank card already registered by the user, card information such as personal identification number, and personal information of the user.
- the card company or the network payment card issuing company generates an authentication key for authenticating the card information that the user uses for the payment procedure based on the notified card information, and registers it in the network payment card 101 for use. Issued to those who In the former case, only the same card company can be registered in the network payment card 101. In the latter case, a different card company can be registered in the network payment card 101.
- the card information notification means is arbitrary, and there are means such as mailing and sending to those companies.
- the normal state of the network payment card 101 is set to an inactive state.
- the pin code registered in the pin code storage unit 205 may be registered by either the user or the issuing company of the network payment card 101. However, if the bincode is biometric information, it is necessary to register the biometric information of the user himself / herself.
- the authentication server 104 needs to manage an authentication key that can authenticate the card information used by the user for the payment procedure from the one-time ID transmitted from the network payment card 101. In other words, the authentication key must be managed for each card information.
- the payment server 105 notifies the user of the credit card or bank card owned by the user, the card ID, the personal identification number, etc. Card information and user personal information are linked and managed. By performing the above initial processing in the preparation stage, this shopping system can be used. In other words, when the payment server 105 receives user payment information from the authentication server 104, the payment server 105 may process the payment procedure for the product selected by the user based on the card information managed by the server. it can.
- the sales server 103 and the authentication server 104 register server information with each other, and are mutually authenticated by using the server ID.
- step 1 the user connects to the sales server 103 via the network from the user terminal 102, and requests a product information list in the server.
- the sales server 103 presents a product information list to the user terminal 102, and the user selects an item to be purchased and places an order.
- the product list is displayed on the display screen of the user terminal 102, and the user selects “To Cart” for the product to be purchased using the mouse or button of the user terminal 102.
- the user selects “To Order” (see Fig. 16).
- the sales server 103 calculates the total price of the product information.
- the product information ordered by the user and the total amount are displayed, and if the user confirms this and intends to purchase, the mouse and the user terminal 102 Use the buttons to select “Confirm” (see Figure 17). If there is no intention to purchase, “re-search” is selected and re-selected, or communication with the sales server 103 is terminated.
- the sales server 103 When notifying that there is an intention to purchase, the sales server 103 generates an order ID for the ordered product information and the total price, and selects “Product information selected by the user”, “Total price of the selected product”, “ Various information such as “order ID” is linked and managed (see Fig. 17).
- step 2 an introduction of card information that can be used for a payment method and a payment procedure is displayed on the display screen of the user terminal 102 (see FIG. 18).
- “Network payment”, “Card payment”, “Transfer”, “Cash on delivery”, etc. are displayed as the payment method.
- the card information that can be settled displays the card company with which the sales server 103 is affiliated.
- the network settlement card 101 is connected to the user terminal 102 and read. Accordingly, when the computer of the user terminal 102 causes the program in the network payment card 101 to function, the card company managed by the sales server 103 and the network payment are displayed on the display screen of the user terminal 102.
- the host company is displayed. Specifically, when the card server a to f is managed by the sales server 103 and the card companies a, b, e, and h are managed by the network payment card 101, the display screen of the user terminal 101 is displayed. Displays card companies a, b, and e. The card companies that can be used for payment procedures are displayed in such a way that the available card companies appear as shown in Fig. 19 and Fig. 20, or the card companies that can be used as shown in Fig. 21 and Fig. 22. There is a form to create and display a new selection screen.
- the selection operation is performed using the mouse or button of the user terminal 101.
- the user notifies the name of the card company used for the payment procedure, in addition to the various information managed by the sales server 103 as described above, “current time”, “selected card company name”, “sales card” 1D "etc. are linked and managed.
- the sales server 103 communicates with the authentication server 104 that manages the card company as it acquires the name of the power company selected by the user (here, card company a).
- the authentication server 104 is operated by a card company (see Figs. 10 and 13), operated by a network payment card issuer (see Figs. 12 and 15), or either a card company or a network payment card issuer.
- the authentication server 104 that acquired the data associated with “total price of the selected product”, “order”, “current time”, “sales server ID”, etc. It is determined whether or not the server is power.
- the authentication server 104 determines whether the server is a legitimate server using the server ID managed by the sales server ID storage unit 307 by the sales server determination unit 306.
- the sales server 103 is a valid server, the above information is acquired.
- the authentication server 104 the information is acquired by the commodity price information acquisition unit 308 and input to the user settlement information acquisition unit 315.
- the authentication server 10 4 activates the network payment card 101 and requests the user terminal 102 to transmit a one-time ID.
- This request is transmitted from the activation request unit 309.
- a request for authentication processing is displayed on the display screen of the user terminal 102.
- the user inputs a pin code for activating the network payment card 101 using the mouse or button of the user terminal 102. (See Fig. 24 and Fig. 25).
- the pin code determination unit 206 of the active state control unit 201 of the network payment card 101 is managed by the pin code storage unit 204 and determines the pin code as V. If it is determined that the pin code is valid, the activation process is performed and a one-time ID is generated using the authentication key associated with the card company name selected by the user for the payment procedure. .
- the activation process is processed by the activation processing unit 207 of the activation state control unit 201, and the one-time ID is managed by the authentication key storage unit 209 of the authentication processing unit 202. It is generated using the authentication key associated with the card company name selected by the user.
- the generated one-time ID is transmitted to the authentication server 104 using the user terminal 102.
- the one-time ID input to the user terminal 102 may be displayed on the display screen and may be transmitted to the authentication server 104 by operating the mouse or button of the user terminal 102. Alternatively, it may be automatically transmitted to the authentication server 104 without being displayed on the display screen. Also, if it is determined that the pin code is not valid, the activation process is not performed and a one-time ID is not generated.
- the authentication server 104 In response to receiving the one-time ID transmitted from the user terminal 102, the authentication server 104 performs a process of authenticating the card information of the user used for the payment procedure. In the authentication server 104, the authentication process is performed using the one-time ID input to the card information specifying unit 312 of the user card authentication processing unit 302 using the authentication key managed in the authentication key storage unit 311. By authenticating the user's card information, it is possible to obtain “force information” such as a card ID and PIN.
- the authentication server 104 has a one-time ID transmitted from the user terminal 102.
- a one-time ID is generated using the authentication key that performed the authentication.
- the one-time ID is generated using the authentication key authenticated by the card information specifying unit 312.
- the generated one-time ID is transmitted to the network payment card 101 via the user terminal 102.
- the one-time ID input to the user terminal 102 is displayed on the display screen, and is input to the network payment card 101 by operating the mouse or button of the user terminal 102. It is also possible to automatically enter the network payment card 101 without displaying it on the display screen.
- the network payment card 101 performs authentication processing for authenticating the authentication server 104 in response to receiving the one-time ID input from the user terminal 102. Similar to the processing performed by the authentication server 104, the authentication processing is performed using the one-time ID input to the server authentication unit 213 of the authentication processing unit 202 using the authentication key managed by the authentication key storage unit 209.
- authenticating authentication server 104 bi-directional one-time ID authentication was performed between network payment card 101 and authentication server 104, and the user side and the server side verified the validity of each other. It is possible to protect both information. Thus, the user card authentication process is completed.
- the final settlement process will be described with reference to FIG.
- a payment procedure processing is requested to the authentication server 104 using the program in the network payment card 101 in step 4.
- the settlement procedure request input to the user terminal 102 is displayed on the display screen, and is transmitted to the authentication server 104 by operating the mouse or button of the user terminal 102. Alternatively, it may be automatically sent to the authentication server 104 without being displayed on the display screen.
- the authentication server 104 As the authentication server 104 receives the payment procedure request transmitted from the user terminal 102, the authentication server 104 holds and holds the payment procedure request to the payment server 105 using the user payment procedure information. (See Fig. 28).
- the settlement procedure request receiving unit 316 receives the settlement procedure request, inputs the user settlement information held in the user information acquisition unit 315 to the settlement procedure request unit 318, and performs settlement.
- the procedure request unit 318 transmits this to the settlement server 105 to request a settlement procedure.
- the user settlement information is also registered in the user settlement information storage unit 318.
- the payment server 105 receives the user payment information, it performs a payment procedure for the product selected by the user.
- the user settlement information is information in which “total amount of selected product”, “order”, “current time”, “sales sano ID”, “card information”, and the like are linked.
- the settlement server 105 authenticates the “card information” included in the received user settlement information using the “card information” managed in the server. As a result, the card information of the user can be specified, and the settlement procedure for the product selected by the user can be performed.
- Credit card companies, bank companies, and other card companies that operate payment server 105 carry out procedures for charging users specified based on the “card information” included in user payment information and use the card
- the settlement server 105 completes the settlement procedure, it transmits “settlement procedure termination information” with a flag “completed” indicating that the procedure is terminated to the authentication server 104 (see FIG. 29).
- the “payment procedure end information” is data including “total amount of selected products”, “order”, “current time”, “sales sano ID”, etc., as with the user payment information.
- “payment procedure end information” is acquired by the payment procedure end notification acquisition unit 319 and is managed by the user payment information storage unit 317.
- User payment information is registered in the user payment information acquisition unit 317 first, and when the user payment information storage unit 317 acquires “payment procedure end information”, the payment procedure for the corresponding order ID is performed. You can determine that it has finished. Thereafter, the authentication server 104 transmits to the user terminal 102 that the payment procedure has been completed. This completes the payment procedure process, and the entire process of the shopping system is completed.
- the network payment card 101 is read by the user terminal 102 and the program is executed. Along with this, on the display screen of user terminal 102, the name of the card company that can be used for the payment procedure managed by the network settlement card and the name of the card company that you want to check for the payment procedure are displayed on the display screen. The By selecting the card company name confirmed by the user during the payment procedure, the user can access the network payment card 101.
- the user terminal 102 is operated by the selected card company (see Fig. 10 and Fig. 13), or operated by the network payment card issuing company (see Fig. 12 and Fig. 15), or the power company or network.
- the server search is determined by the form of issuing the network payment card.
- the authentication server 104 activates the network payment card 101 to the user terminal 102 and requests to send a one-time ID. This request is transmitted from the activation request unit 309.
- a request to perform authentication processing is displayed on the display screen of the user terminal 102, and the user inputs a pin code for activating the network payment card 101 using the mouse or button of the user terminal 102 accordingly. . According to this input, the network payment card 101 determines whether or not it is a valid pin code.
- the pin code determination unit 206 of the active state control unit 201 determines whether the power is valid using the pin code managed by the pin code storage unit 204. If it is determined that the pin code is valid, the activation process is performed and a one-time ID is generated using an authentication key that is managed in association with the selected card company name.
- the In the network settlement card 101 the activation process is processed by the activation processing unit 207 of the activation state control unit 201, and the one-time ID is managed by the authentication key storage unit 209 of the authentication processing unit 202. Generated using the authentication key associated with the card company name. The generated one-time ID is transmitted to the authentication server 104 using the user terminal 102.
- the one-time ID input to the user terminal 102 is displayed on the display screen and operated by operating the mouse or button of the user terminal 102, it can be transmitted to the authentication server 104. Alternatively, it may be automatically sent to the authentication server 104 without being displayed on the display screen. If it is determined that the pin code is not valid, the activation process is not performed and a one-time ID is not generated.
- the authentication server 104 In response to receiving the one-time ID transmitted from the user terminal 102, the authentication server 104 performs a process of authenticating the user's card information.
- the authentication process is performed using the real-time ID input to the card information specifying unit 312 of the user card authentication processing unit 302 using the authentication key managed by the authentication key storage unit 311.
- Use By authenticating the card information of the user, it is possible to obtain “payment procedure end information” using the card information. In other words, based on the acquired “card information”, a list of data associated with “total amount of selected products”, “order”, “current time”, “sales server ID”, etc., for which the payment procedure has been completed is acquired. can do.
- the authentication server 104 generates a one-time ID using an authentication key that has been authenticated by the one-time ID transmitted from the user terminal 102.
- the one-time ID is generated using the authentication key previously authenticated by the card information specifying unit 312.
- the generated one-time ID is transmitted to the network payment card 101 via the user terminal 102.
- the one-time ID input to the user terminal 102 is displayed on the display screen and operated by operating the mouse or button of the user terminal 102, it can be input to the network payment card 101. Alternatively, it may be automatically entered into the network payment card 101 without being displayed on the display screen.
- the network payment card 101 performs an authentication process for authenticating the authentication server 104 in response to receiving the one-time ID input from the user terminal 102.
- the authentication process is the same as the process performed by the authentication server 104.
- the one-time ID input to the server authentication unit 213 of the authentication processing unit 202 is the authentication key managed by the authentication key storage unit 209. It is done using.
- bidirectional one-time ID authentication is performed between the network settlement card 101 and the authentication server 104, and the user side and the server side mutually verify the validity. Both of them can be protected.
- the user terminal 102 is used to request the authentication server 104 for the list of “payment procedure end information” acquired above.
- the list request from the user terminal 102 may be displayed on the display screen, and may be transmitted to the authentication server 104 by operating the mouse or button of the user terminal 102. Further, it may be automatically transmitted to the authentication server 104 without being displayed on the display screen.
- the authentication server 104 transmits a list of “payment procedure end information” to the user terminal 102.
- a list of “Payment procedure end information” is displayed on the display screen of the user terminal 102, and the user confirms using the mouse and button of the user terminal 102 ⁇ Select “Payment procedure end information”. Do .
- Payment Procedure End Information is data that links “Total Price of Selected Products”, “Order”, “Current Time”, “Sales Sano ID”, etc.
- the sales server 103 helicopter is established based on the “sales Sano ID” and communication is performed.
- the sales server 103 acquires the product information linked and registered together with the order ID when the product purchase is selected based on the transmitted “order ID”, and transmits it to the user terminal 102.
- “product information” for which the user has performed the payment procedure is displayed on the display screen of the user terminal 102, and the detailed information of the product for which the payment procedure has been completed can be confirmed. This completes the confirmation process for the payment procedure completion information.
- the network payment card is connected to a user terminal such as a desktop, a notebook, or a mopile personal computer in a shopping system via a network.
- a user terminal such as a desktop, a notebook, or a mopile personal computer in a shopping system via a network.
- a one-time ID is generated using the authentication key included in the network payment card.
- the authentication key managed by the server is managed for the one-time ID. It can be used to authenticate force information used by users for payment. This makes it easy for the user to leak or eavesdrop on the network, as long as the user's card information, personal information, and other notifications are saved. The system can be used with peace of mind.
- the user side can also authenticate the server, and by performing bidirectional one-time ID authentication, the user side and the server side can authenticate each other. It can be verified, and both types of information can be protected.
- the purchased product selection process performed between the user terminal 102 and the sales server 103 is described as being operated online, but the process is operated offline. You can also.
- the sales server 103 uses the data associated with the “selected card company name”, “order”, “sales Sano ID”, etc. to the user terminal 102.
- the authentication server 104 By notifying the authentication server 104, the user terminal 102 can communicate with the authentication server 104 and perform the user card authentication process after the purchased product selection process.
- the “payment procedure end information” is the power described as being managed by the authentication server 104, and is transmitted to the network payment card 101 or the user terminal 102 together with the settlement procedure end notification. , May be recorded.
- the “payment procedure end information” is the power described as being managed by the authentication server 104, and is transmitted to the network payment card 101 or the user terminal 102 together with the settlement procedure end notification. , May be recorded.
- the “payment procedure end information” See Fig. 8
- the list is simply displayed on the display screen, and the detailed information of the product to be browsed is displayed on the basis of the sales server ID and the order ID. It is possible to confirm this by acquiring it at (see Figure 9).
- the computer of the user terminal 102 executes the program of the network payment card 101
- authentication of the user's pin code input and the pin code managed by the pin code storage unit 204 is performed.
- the network payment card 101 is not provided (see FIG. 30), but instead, the authentication server 104 has an active state control unit 201 (see FIG. 31).
- the pin code that activates the network payment card 101 may be managed for each card information used for the network payment card 101 or the payment procedure. That is, when the authentication server 104 requests the card information used for the payment procedure from the network payment card 101 via the user terminal 102, the network payment card 101 uses the authentication key corresponding to the card used for the payment procedure.
- a one-time ID is generated using the, while the user inputs a pin code for activating the network payment card 101 using the user terminal 102.
- the one-time ID generation unit 210 of the network payment card 101 adds a pin code to the one-time ID and transmits it to the authentication server 104 via the user terminal 102.
- the authentication server 104 receives the received one-time ID.
- the card information is input to the card information specifying unit 312 of the user card authentication processing unit 302, and the card information used for the settlement procedure is specified using the authentication key managed by the authentication key storage unit 311.
- the pin code added to the one-time ID Is input to the active state control unit 201, and the pin code determination unit 206 of the active state control unit 201 determines using the pin code managed in the pin code storage unit 204. If it is determined that the pin code is valid, the network payment card 101 is activated. Since the pin code is not managed by the network payment card 101 but is managed by the authentication server 104 and the pin code is added to the one-time ID and transmitted, it is difficult for a third party to steal the pin code. In this example, a pin code is added to the one-time ID!
- the encryption method for the attached means is mixed or embedded in the one-time ID and the encryption processing is performed, and the authentication server 104 separates the one-time ID and the pin code. By performing the decryption operation, it is possible to make it more difficult to steal the pin code on the network.
- bidirectional one-time ID authentication is performed only between the user terminal 102 and the authentication server 104.
- One-time ID authentication may be performed.
- the network between the sales server 103 and the authentication server 104, or the network between the settlement server 105 and the authentication server 104 can be implemented via the Internet.
- the product price information transmitted from the sales server 103 to the authentication server 104 is described as a notification of only the total price of the ordered product. You may be notified.
- the second embodiment of the present invention will be described below.
- the mode in which the user uses the network payment card 101 to use the shopping system via the network has been described.
- a mode in which the shopping system is used by starting the network payment program set in the user terminal 102 without using the network payment card 101 will be described.
- the overall configuration of the shopping system will be described. As shown in Fig. 32, the configuration of the shopping system 100 can be roughly divided into the use of a desktop, notebook, mopile PC, mobile phone, etc. with a network payment program set in the terminal.
- the server side is connected to the user terminal 102 via the network and sells the product, and the price information of the product selected by the user from the sales server 103 is displayed on the server side.
- a payment server 105 that performs the payment procedure for the product selected by the user.
- the sales server 103, the authentication server 104, and the settlement server 105 provided on the server side may be physically integrated or separated.
- the network payment program is the same as the configuration of the program managed inside the network payment card 101 shown in FIG. 2 (see FIG. 33), the sales server 103, the authentication server 104, and the payment. Since the configuration of the server 105 is the same, a duplicate description is omitted.
- the processing operation of the shopping system configured as described above will be described.
- the overall processing of the system is basically the same as the flow described in the first embodiment.
- the initial processing is the preparation stage
- the purchased product selection process is the first stage
- the second stage It can be divided into user force authentication processing and settlement procedure processing at the final stage.
- the network payment program is a means of requesting and obtaining a card company that manages a credit card or bank card registered by the user, or a company that issues a network payment program. There are means for obtaining and issuing requests. In either case, it is necessary to notify the card information such as credit card and bank card already registered by the user, card information such as personal identification number, and personal information of the user.
- the card company or the company that issues the network payment program generates an authentication key for authenticating the card information that the user uses for the payment procedure based on the notified card information, and registers it in the network payment program. Issued to users.
- the user sets the network payment program in the user terminal 102.
- the normal state of the network payment program is set to an inactive state.
- the network settlement program In order to set the network settlement program to the active state, it is necessary to input the same pin code as that registered in the pin code storage unit 205 of the program.
- the pin code registered in the bin code storage unit 205 may be registered by either the user or the program issuer. However, if the pin code is biometric information, it is necessary to register the user's biometric information.
- the authentication server 104 can authenticate the card information used by the user for the payment procedure from the one-time ID transmitted from the user terminal 102 by using the network payment program. It is necessary to manage authentication keys. In other words, the authentication key must be managed for each card information.
- the payment server 105 also notifies the user when acquiring a credit card or bank card, or when acquiring a network payment program. Force information such as numbers and personal information of users are linked and managed. This shopping system can be used by performing the above processing in the preparation stage. In other words, when the payment server 105 receives user payment information from the authentication server 104, the payment server 105 processes the payment procedure for the product selected by the user based on the card information managed by the server. You can.
- the sales server 103 and the authentication server 104 register server information with each other, and are mutually authenticated by using the server ID.
- step 1 the user connects from the user terminal 102 to the sales server 103 via the network and requests a product information list in the server. Accordingly, the sales server 103 presents a product information list to the user terminal 102, and the user selects a product to be purchased and places an order. Specifically, on the display screen of the user terminal 102, The product list is displayed, and the user has purchased using the mouse and button of the user terminal 102! The user has selected “Go to Cart” for the product, and the user has purchased! /, When you have selected all the products, select “To Order” (see Figure 16).
- the sales server 103 calculates the total price of the product information.
- the product information ordered by the user and the total amount are displayed, and if the user confirms this and intends to purchase, the user terminal 102 mouse or Use the buttons to select “Confirm” (see Figure 17).
- “re-search” is selected and the re-selection force or communication with the sales server 103 is terminated.
- the sales server 103 Upon notification that there is an intention to purchase, the sales server 103 generates an order ID for the ordered product information and the total price, and “Product information selected by the user”, “Total price of the selected product”. , And manage various types of information such as “order ID” (see Figure 17).
- step 2 an introduction of card information that can be used for payment methods and payment procedures is displayed on the display screen of the user terminal 102 (see FIG. 18).
- “Network payment”, “Card payment”, “Transfer”, “Cash on delivery”, etc. are displayed as the payment method.
- the card information that can be settled displays the card company with which the sales server 103 is affiliated.
- the user uses “network payment” for the payment procedure, the user activates the network payment program set in the user terminal 102.
- the computer of the user terminal 102 causes the program to function
- the card company managed by the sales server 103 and the network payment program manage it on the display screen of the user terminal 102.
- the card company that can be used for the payment procedure is displayed by the card company.
- the display on the user terminal 101 is displayed.
- the card companies that can be used for the payment procedure are displayed as shown in Fig. 19 and Fig. 20, so that the card companies that can be used appear, and as shown in Fig. 21 and Fig. 22, the card companies that can be used.
- the sales server 103 associates the current information, the selected card company name, the sales server ID, etc., in addition to the various information linked and managed as described above. Manage. Thereafter, the sales server 103 communicates with the authentication server 104 managing the card company in accordance with the acquisition of the card company name (here, card company a) selected by the user.
- the authentication server 104 is operated by the card company (see Fig. 10 and Fig. 13), or operated by the company issuing the network payment program (see Fig. 12 and Fig. 15), or issued by the card company or the network payment program.
- the authentication server 104 that acquired the data associated with “total price of the selected product”, “order”, “current time”, “sales server ID”, etc. It is determined whether or not the server is power.
- the authentication server 104 determines whether the server is a legitimate server using the server ID managed by the sales server ID storage unit 307 by the sales server determination unit 306.
- the sales server 103 is a valid server, the above information is acquired.
- the authentication server 104 the information is acquired by the commodity price information acquisition unit 308 and input to the user settlement information acquisition unit 315. Thereafter, the authentication server 104 activates the network payment program to the user terminal 102 and requests to transmit a one-time ID.
- This request is transmitted from the activation request unit 309.
- a request to perform authentication processing is displayed on the display screen of the user terminal 102, and in accordance with this, the user inputs a pin code that activates the network payment program using the mouse or button of the user terminal 102. (See Figure 24 and Figure 25).
- the pin code determination unit 206 of the active state control unit 201 of the network settlement program makes a determination using the pin code managed in the pin code storage unit 204. If it is determined that the pin code is valid, A one-time ID is generated using the authentication key associated with the name of the card company selected by the user for the payment procedure.
- the activation process is processed by the activation processing unit 207 of the activation state control unit 201, and the real-time ID is managed by the authentication key storage unit 209 of the authentication processing unit 202. It is generated using the authentication key associated with the selected card company name.
- the generated one-time ID is transmitted to the authentication server 104 using the user terminal 102. At this time, even if the one-time ID input to the user terminal 102 is displayed on the display screen and operated by operating the mouse or button of the user terminal 102, it can be transmitted to the authentication server 104. Alternatively, it may be automatically sent to the authentication server 104 without being displayed on the display screen. If it is determined that the pin code is not valid, the activation process is not performed and a one-time ID is not generated.
- the authentication server 104 In response to receiving the one-time ID transmitted from the user terminal 102, the authentication server 104 performs a process of authenticating the card information of the user used for the settlement procedure. In the authentication server 104, the authentication process is performed using the one-time ID input to the card information specifying unit 312 of the user card authentication processing unit 302 using the authentication key managed in the authentication key storage unit 311. By authenticating the user's card information, it is possible to obtain “force information” such as a card ID and PIN.
- the authentication server 104 generates a one-time ID using an authentication key that has been authenticated by the one-time ID transmitted from the user terminal 102.
- the one-time ID is generated using the authentication key authenticated by the card information specifying unit 312.
- the generated one-time ID is transmitted to the user terminal 102, and the user terminal 102 executes authentication processing for authenticating the authentication server 104 by the network payment program.
- the network payment program may be executed by displaying the one-time ID input to the user terminal 102 on the display screen and operating the mouse or button of the user terminal 102. Without automatically displaying on the display screen. Gram may be executed.
- Authentication processing is performed using the one-time ID input to the server authentication unit 213 of the authentication processing unit 202 using the authentication key managed by the authentication key storage unit 209, as in the processing performed by the authentication server 104. Do.
- bidirectional one-time ID authentication is performed between the network payment card 101 and the authentication server 104, and the user side and the server side mutually verify the validity. It is possible to protect both information. This completes the user card authentication process.
- step 4 the authentication server 104 is requested to perform the payment procedure processing using the network payment program running in the user terminal 102.
- the request for the settlement procedure input to the user terminal 102 is displayed on the display screen, and is transmitted to the authentication server 104 by operating the mouse or button of the user terminal 102 and executing it. It can also be automatically sent to the authentication server 104 without being displayed on the display screen.
- the authentication server 104 In response to receiving the payment procedure request transmitted from the user terminal 102, the authentication server 104 holds and holds the payment procedure request to the payment server 105 using the user payment procedure information. (See Fig. 28).
- the settlement procedure request receiving unit 316 receives the settlement procedure request, inputs the user settlement information held in the user information acquisition unit 315 to the settlement procedure request unit 318, and performs settlement.
- the procedure request unit 318 transmits this to the settlement server 105 to request a settlement procedure.
- user payment information is also registered in the user payment information storage unit 318.
- the payment server 105 receives the user payment information, it performs a payment procedure for the product selected by the user.
- the user settlement information is information in which “total amount of selected product”, “order”, “current time”, “sales sano ID”, “card information”, and the like are linked.
- the settlement server 105 authenticates the “card information” included in the received user settlement information using the “card information” managed in the server. As a result, the card information of the user can be specified, and the settlement procedure for the product selected by the user can be performed.
- Credit card companies and banking companies that operate the payment server 105 Proceed with the procedure to charge the user specified based on the “card information” included in the user settlement information, and identify the sales based on the “sales sales ⁇ 1D” included in the user settlement information. A procedure for paying consideration to the sales company operating the server 103 is performed.
- the settlement server 105 completes the settlement procedure, it transmits “settlement procedure termination information” with a flag “completed” indicating that the procedure is terminated to the authentication server 104 (see FIG. 29).
- the “payment procedure end information” is data including “total amount of selected products”, “order”, “current time”, “sales sano ID”, etc., as with the user payment information.
- “payment procedure end information” is acquired by the payment procedure end notification acquisition unit 319 and is managed by the user payment information storage unit 317.
- User payment information is registered in the user payment information acquisition unit 317 first, and when the user payment information storage unit 317 acquires “payment procedure end information”, the payment procedure for the corresponding order ID is performed. You can determine that it has finished. Thereafter, the authentication server 104 transmits to the user terminal 102 that the payment procedure has been completed. This completes the payment procedure process, and the entire process of the shopping system is completed.
- the computer executes a network payment program in the user terminal 102.
- the name of the card company that is managed by the program and can be used for the payment procedure, and the card company name confirmed by the payment procedure are displayed on the display screen. Is displayed.
- the program running in the user terminal 102 is operated by the selected card company (see Figure 10 and Figure 13), or the network payment card issuing company Search for servers that are operated (see Figures 12 and 15) or operated by either the card company or the network payment card issuer (see Figures 11 and 14).
- the server search is determined by the issue form of the network settlement program.
- the authentication server 104 activates the network payment card 101 to the user terminal 102 and requests to send a one-time ID. This request is transmitted from the activation request unit 309.
- a request for authentication processing is displayed on the display screen of the user terminal 102, and according to this, the user presses the mouse or button of the user terminal 102.
- the network payment program determines whether or not it is a valid pin code.
- the pin code determination unit 206 of the active state control unit 201 uses the pin code managed by the pin code storage unit 204 to determine whether it is valid.
- activation processing is performed and a one-time ID is generated using an authentication key managed in association with the selected card company name.
- activation processing is processed by the activation processing unit 207 of the activation state control unit 201, and the one-time ID is associated with the selected card company name managed by the authentication key storage unit 209 of the authentication processing unit 202. Generated using the specified authentication key.
- the generated one-time ID is transmitted from the user terminal 102 to the authentication server 104.
- the one-time ID generated in the user terminal 102 is displayed on the display screen, and can be transmitted to the authentication server 104 by operating the mouse or button of the user terminal 102. Alternatively, it may be automatically sent to the authentication server 104 without being displayed on the display screen.
- the activation process is not performed and a one-time ID is not generated.
- the authentication server 104 In response to receiving the one-time ID transmitted from the user terminal 102, the authentication server 104 performs processing for authenticating the user's card information.
- the authentication process is performed using the real-time ID input to the card information specifying unit 312 of the user card authentication processing unit 302 using the authentication key managed by the authentication key storage unit 311.
- the “payment procedure end information” using the card information can be obtained. In other words, based on the acquired “card information”, a list of data associated with “total amount of selected products”, “order”, “current time”, “sales server ID”, etc., for which the payment procedure has been completed is acquired. can do.
- a one-time ID is generated using an authentication key for authenticating the one-time ID transmitted from the user terminal 102.
- the one-time ID is generated using the authentication key previously authenticated by the card information specifying unit 312.
- the generated one-time ID is transmitted to the user terminal 102 and input to the network payment program being executed.
- the one-time input to the network payment program The system ID is displayed on the display screen of the user terminal 102, and can be entered into the network payment program by operating the mouse or button. It is automatically displayed without being displayed on the display screen. You may enter into a network payment program.
- the network payment program in the user terminal 102 performs an authentication process for authenticating the authentication server 104 as the one-time ID is acquired.
- the authentication process is the same as the process performed by the authentication server 104, and the one-time ID input to the server authentication unit 213 of the authentication processing unit 202 is authenticated by the authentication key storage unit 209. This is done using a key.
- bidirectional one-time ID authentication is performed between the network payment program being executed in the user terminal 102 and the authentication server 104. Can verify each other's legitimacy and protect both sides of the information.
- the user terminal 102 is used to request the authentication server 104 for the list of “payment procedure end information” acquired above.
- the list request from the user terminal 102 may be displayed on the display screen, and may be transmitted to the authentication server 104 by operating the mouse or button of the user terminal 102. Further, it may be automatically transmitted to the authentication server 104 without being displayed on the display screen.
- the authentication server 104 transmits a list of “payment procedure end information” to the user terminal 102.
- a list of “Payment procedure end information” is displayed on the display screen of the user terminal 102, and the user confirms using the mouse and button of the user terminal 102 ⁇ Select “Payment procedure end information”. To do.
- Payment Procedure End Information is data that links “Total Price of Selected Products”, “Order”, “Current Time”, “Sales Sano ID”, etc.
- the sales server 103 helicopter is established based on the “sales Sano ID” and communication is performed.
- the sales server 103 acquires the product information linked and registered together with the order ID when the product purchase is selected based on the transmitted “order ID”, and transmits it to the user terminal 102.
- “product information” for which the user has performed the payment procedure is displayed on the display screen of the user terminal 102, and the detailed information of the product for which the payment procedure has been completed can be confirmed.
- payment procedure end information The confirmation process ends.
- a network payment program is set on a user terminal such as a desktop, a notebook, a mobile computer, or a mobile phone, and the terminal By making it run on a computer, a one-time ID is generated using the authentication key included in the network payment program.
- the one-time ID is managed by the server and the authentication key is managed. It can be used to authenticate the card information used by the user for payment. As a result, the user can easily and safely relieve such information that cannot be leaked or eavesdropped on the network if the user's trouble of notifying the card information and personal information is saved. Then you can use the system.
- the user side can also authenticate the server, and by performing bidirectional one-time ID authentication, the user side and the server side can authenticate each other. It can be verified, and both types of information can be protected.
- the purchased product selection process performed between the user terminal 102 and the sales server 103 is described as being operated online, but the process is operated offline. You can also.
- the sales server 103 notifies the user terminal 102 and the authentication server 104 of data associated with the “selected card company name”, “order”, “sales Sano ID”, etc.
- the user terminal 102 communicates with the authentication server 104 and can perform the user card authentication process after the purchased product selection process.
- the “settlement procedure end information” has been described as being managed by the authentication server 104, but it may be transmitted to the user terminal 102 and recorded together with the notification of the settlement procedure end ( (See Figure 39).
- the computer of the user terminal 102 executes the network payment program, displays the list of “Payment Procedure End Information”, and browses from this list. You can confirm the detailed information of the product you want to obtain by acquiring it based on the sales server ID and order ID (see Figure 38).
- the “payment procedure completion information” is sent to the user terminal 102
- the authentication server 104 has an active state control unit that can be used for the network payment card 101 or the payment procedure. You can manage the pin code that activates the network payment card 101 for each card information!
- the bidirectional one-time ID authentication is performed only between the user terminal 102 and the authentication server 104.
- the bidirectional one-time ID is performed.
- Authentication may be performed.
- the network between the sales server 103 and the authentication server 104, or the network between the settlement server 105 and the authentication server 104 can be implemented via the Internet.
- the product price information transmitted from the sales server 103 to the authentication server 104 is described as a notification of only the total price of the ordered product. You may be notified.
- Embodiments 1 and 2 an example in which a user uses a virtual store via a network has been described. In this embodiment, an example of using a store where a user actually exists will be described.
- the shopping system 100 can be broadly divided into a network payment program and a user side.
- the network payment card 4010 that records the program or a mobile terminal 4020 such as a mobile personal computer or mobile phone set with the program, the network payment program in the network payment card 40 10 or the portable terminal 4020, and the network payment program are executed via the network.
- the server side communicates with the store terminal 4030 and obtains the one-time ID generated by the network payment program and the amount information of the product selected by the user from the store terminal 4030 on the server side.
- the user Based on the one-time ID, the user obtains card information to be used for the payment procedure, and obtains user payment information including product price information and card information. Includes a payment server 4050 that obtains payment information and performs the payment procedure for the product selected by the user To have.
- the store terminal 4030 is a terminal used in an actual store, and the employees of the store also receive the network payment card 4010 or the portable terminal 4020, and are managed within these.
- the network payment program is executed on the computer of the store terminal 4030. Note that the authentication server 104 and the settlement server 105 provided on the server side may be physically integrated or separated.
- the network payment program managed by the network payment card 4010 or the portable terminal 4020 has the same configuration as the program managed inside the network payment card 101 shown in FIG. Since the configuration of the server 105 is the same, a duplicate description is omitted.
- the overall processing of the system is basically the same as the flow described in the first and second embodiments.
- the initial process which is a preparation stage
- the network payment card 4010 is acquired or the network payment program is acquired and set in the portable terminal 4020.
- the purchase product selection process which is the first stage
- the user selects a product to be purchased at a store, and indicates to the employees of the store, etc., that the product will be settled by network settlement.
- the user card authentication process which is the second stage
- the settlement procedure process which is the final stage, are performed using the store terminal 4030, the authentication server 4040, and the settlement server 4050.
- the card company or the company that issues the network payment card Z program generates an authentication key for authenticating the force information that the user uses for the payment procedure based on the notified card information, and uses this to generate the network payment card.
- Register with the Z program and issue to users In the former case, only the same card company can be registered in the network payment card Z program. In the latter case, different card companies can be registered in the network payment card Z program.
- there are means such as sending a network payment program via a network using e-mail, etc., or storing the network payment program in an IC card or storage medium and mailing it.
- the network payment program is acquired through a network or a storage medium, the program is set in the portable terminal 4020. If it is acquired with an IC card, it is used as a network payment card 4010 (see Figure 3 and Figure 33).
- the normal state of the network payment program is set to an inactive state.
- the network settlement program In order to set the network settlement program to the active state, it is necessary to input the same pin code as that registered in the pin code storage unit 205 of the program.
- the pin code registered in the bin code storage unit 205 may be registered by either the user or the program issuer. However, if the pin code is biometric information, it is necessary to register the user's biometric information.
- the authentication server 104 uses the network payment program to authenticate the card information used by the user for the payment procedure from the one-time ID transmitted from the store terminal 4030. You need to manage your keys. In other words, the authentication key must be managed for each card information.
- the payment server 105 the user When acquiring a credit card or bank card, certain or force information such as the card company name, card ID or PIN that the user has informed of when acquiring a network payment program, and the user Are managed in association with personal information.
- This shopping system can be used by performing the above processing in the preparation stage. These are the same as those described in Examples 1 and 2 above.
- step 1 the user selects a product to be purchased at a store, and indicates to the employees of the store, etc., that the product will be settled by network payment.
- the store terminal 4030 generates an order ID for the product information and the total price for which the intention has been indicated, and “Product information selected by the user”, “Total price of the selected product”, “Order ID”
- the various information such as are linked and managed (see Figure 17).
- the employee of the store also receives the network payment card 4010 or the portable terminal 4020 with the user power, and executes the network payment program managed in the store on the computer of the store terminal 4030.
- card companies that can be used for the payment procedure are displayed from the card company managed by the store terminal 4030 and the card company managed by the network payment program.
- the card company a to f is managed at the store terminal 4030 and the card companies a , b, e, and h are managed within the network payment card program
- the card is displayed on the display screen of the store terminal 4030. Companies a, b, and e are displayed.
- the card companies that can be used for payment procedures are displayed in such a way that the available card companies appear as shown in Figs. 19 and 20, or the available card companies as shown in Figs. 21 and 22. There is a form to create and display a new selection screen.
- the store employee or the like performs a selection operation using the mouse or button of the store terminal 4030.
- the store terminal 4030 links the “current time”, “selected card company name”, “store terminal ID”, etc. Manage it.
- “Store terminal ID” is an identifier for identifying the store terminal.
- the store terminal 4030 communicates with an authentication sano 4040 that manages the selected card company.
- the certified Sano 4040 is operated by the card company (Fig. 10, Fig. 1). 3), or operated by the network payment card Z program issuer (see Figure 12 and Figure 15), or operated by either the card company or the network payment card Z program issuer (see Figure 11 or Figure 14). Yes.
- the “total price of the selected product”, “order”, “current time”, and “store terminal ID” managed in association with the product information selected by the user are transmitted to the authentication server 4040.
- communication is performed between the store terminal 4030 and the authentication server 4040.
- the purchased product selection process is completed.
- the authentication server 104 that acquired the data associated with “total price of selected product”, “order”, “current time”, “store terminal ID”, etc. It is determined whether or not the force is.
- the store terminal determination unit (corresponding to the sales server determination unit 306 shown in FIG. 31) is determined by the store terminal ID storage unit (sales server ID storage shown in FIG. 31). The ID is managed using the ID. If the store terminal 4030 is a valid terminal, the above information is acquired.
- the information is acquired by the product price information acquisition unit 308 and input to the user settlement information acquisition unit 315.
- the authentication server 104 activates the network payment program to the store terminal 4030 and requests to transmit the one-time ID. This request is transmitted from the activation request unit 309.
- a request for authentication processing is displayed on the display screen of the store terminal 4030, and accordingly, the user inputs a pin code for activating the network payment program using the mouse button of the store terminal 4030 (Fig. 24, see Figure 25).
- the pin code determination unit 206 of the active state control unit 201 of the network payment program makes a determination using the pin code managed by the pin code storage unit 204. If it is determined that the pin code is valid, it is activated and a one-time ID is generated using the authentication key associated with the card company name selected by the user for the payment procedure.
- activation processing is processed by the activation processing unit 207 of the active state control unit 201, and the one-time ID is managed by the authentication key storage unit 209 of the authentication processing unit 202, and the card selected by the user. Generated using the authentication key associated with the company name.
- the generated one-time ID is transmitted to the authentication Sano 040 using the store terminal 4 030.
- input to the store terminal 4030 Can be sent to the authentication server 4040 by operating the mouse and buttons on the store terminal 4030 and automatically executing it. Alternatively, it may be sent to authentication sano 040. If it is determined that the pin code is not valid, the activation process is not performed and a one-time ID is not generated.
- the authentication Sano 040 performs a process of authenticating the card information of the user used for the settlement procedure.
- the authentication process is performed using the one-time ID input to the card information specifying unit 312 of the user card authentication processing unit 302 using the authentication key managed by the authentication key storage unit 311. .
- card information such as a card ID and PIN.
- a one-time ID is generated using an authentication key for authenticating the one-time ID transmitted from the store terminal 4030.
- the one-time ID is generated using the authentication key authenticated by the card information specifying unit 312.
- the generated one-time ID is transmitted to the store terminal 4030, and the store terminal 4030 executes an authentication process for authenticating the authentication sano 040 by the network payment program.
- the one-time ID input to the store terminal 4030 is displayed on the display screen, and the network payment program may be executed by operating the mouse or button of the store terminal 4030. It is also possible to automatically execute a network payment program without displaying it on the screen.
- the authentication process uses the one-time ID input to the server authentication unit 213 of the authentication processing unit 202 using the authentication key managed by the authentication key storage unit 209, as in the processing performed by the authentication server 040. Do it.
- bidirectional one-time ID authentication was performed between the network payment program and the authentication server 104, and the user side and the server side mutually verify the validity. It is possible to protect both types of information.
- the user card authentication process ends.
- the final settlement procedure process will be described with reference to FIG.
- step 3 the authentication sano 040 is requested from the authentication terminal 040 using the network payment program running on the store terminal 4030.
- the payment procedure request input to the store terminal 4030 may be displayed on the display screen and transmitted to the authentication server 4040 by operating the mouse or button of the store terminal 4030. In addition, it can be automatically sent to the authentication server 4040 without being displayed on the display screen.
- the authentication server 104 receives and holds the payment procedure request transmitted from the store terminal 4030, and uses it to send the payment procedure request to the payment server 4050 using the user payment procedure information. Perform (see Figure 28).
- the settlement procedure request reception unit 316 receives the settlement procedure request, inputs the user settlement information temporarily held by the user information acquisition unit 315 to the settlement procedure request unit 318, and performs settlement.
- the procedure request unit 318 transmits this to the settlement sano 050 to request a settlement procedure.
- the user settlement information is also registered in the user settlement information storage unit 318.
- the payment server 4050 performs the payment procedure for the product selected by the user as the user payment information is received.
- the user settlement information is information in which “total price of selected product”, “order ID”, “current time”, “store terminal ID”, “card information”, and the like are linked.
- the payment server 4050 authenticates the “card information” included in the received user payment information using the “card information” managed in the server. As a result, the card information of the user can be specified, and the settlement procedure for the product selected by the user can be performed.
- Credit card companies and banking companies that operate settlement server 4050 carry out procedures to charge users specified based on “card information” included in user settlement information, and A procedure for paying consideration to a store operating a store terminal 4030 identified based on the “store terminal ID” included in the user settlement information is performed.
- the settlement server 4050 when the settlement procedure is completed, the “settlement procedure completion information” with the “completed” flag indicating that the procedure is completed is transmitted to the authentication server 4040 (see FIG. 29).
- the “payment procedure end information” is data including “total price of selected product”, “order ID”, “current time”, “store terminal ID”, and the like, similar to the user payment information.
- Authentication server 4040 The “payment procedure end information” is acquired by the payment procedure end notification acquisition unit 319 and is managed by the user payment information storage unit 317.
- User payment information acquisition unit 317 has previously registered user payment information, and user payment information storage unit 317 obtains the “payment procedure end information” so that the payment procedure for the corresponding order ID can be performed. Can be determined.
- the authentication server 4040 transmits the completion of the payment procedure to the network payment program executed at the store terminal 4040. As described above, the settlement procedure process is completed, and the entire process of the shopping system is completed.
- the confirmation processing of the settlement procedure end information is normally performed using the user terminal 102 or the portable terminal 4020, but can also be performed using the store terminal 4030.
- the processing is as described in the first and second embodiments.
- the network payment capability storing the network payment program or the portable terminal set with the program is carried to a store, and the user selects a product,
- a one-time ID is generated using the authentication key included in the network payment program, while the server manages the one-time ID on the server.
- the card information used for payment by the user can be authenticated using the authentication key.
- the user side also authenticates the server, and by performing bidirectional one-time ID authentication, the user side and the server side are mutually valid. It is possible to verify the information and to protect both information.
- a state control unit may be provided to manage the network payment card 101 or the pin code that activates the network payment card 101 for each card information used for the payment procedure.
- bi-directional one-time ID authentication is performed only between the store terminal 4030 and the authentication server 040 when performing communication between servers.
- One-time ID authentication may be performed.
- the network between the settlement sano 4050 and the authentication sano 4040 can also be implemented via the Internet.
- the product price information transmitted from the store terminal 4030 to the authentication server 4040 is described as a notification of only the total price of the ordered product. Information may be notified.
Landscapes
- Business, Economics & Management (AREA)
- Accounting & Taxation (AREA)
- Finance (AREA)
- Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Strategic Management (AREA)
- Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- Theoretical Computer Science (AREA)
- Economics (AREA)
- Development Economics (AREA)
- Marketing (AREA)
- Computer Security & Cryptography (AREA)
- Technology Law (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
Description
Claims
Priority Applications (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2007501632A JPWO2006082913A1 (ja) | 2005-02-04 | 2006-02-03 | ネットワーク決済カード、ネットワーク決済プログラム、認証サーバ、及びショッピングシステムと決済方法 |
US11/815,583 US20090138367A1 (en) | 2005-02-04 | 2006-02-03 | Network settling card, network settling program, authentication server, and shopping system and settling method |
EP06712974A EP1852816A1 (en) | 2005-02-04 | 2006-02-03 | Network settling card, network settling program, authentication server, and shopping system and settling method |
Applications Claiming Priority (4)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2005-029867 | 2005-02-04 | ||
JP2005029867 | 2005-02-04 | ||
JP2005347925 | 2005-12-01 | ||
JP2005-347925 | 2005-12-01 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2006082913A1 true WO2006082913A1 (ja) | 2006-08-10 |
Family
ID=36777295
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/JP2006/301831 WO2006082913A1 (ja) | 2005-02-04 | 2006-02-03 | ネットワーク決済カード、ネットワーク決済プログラム、認証サーバ、及びショッピングシステムと決済方法 |
Country Status (4)
Country | Link |
---|---|
US (1) | US20090138367A1 (ja) |
EP (1) | EP1852816A1 (ja) |
JP (1) | JPWO2006082913A1 (ja) |
WO (1) | WO2006082913A1 (ja) |
Cited By (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2011502295A (ja) * | 2007-10-12 | 2011-01-20 | アネクト エーエス | 様々な電子装置間の、特に電子サービスプロバイダの電子装置と電子サービスのユーザの電子装置との間の保護された電子通信を確立する方法 |
JP2012503243A (ja) * | 2008-09-19 | 2012-02-02 | ロゴモーション エス.アール.オー. | 電子決済アプリケーションシステムと決済認証方法 |
JP2012123487A (ja) * | 2010-12-06 | 2012-06-28 | Ntt Data Corp | サービス提供許可装置、サービス提供許可方法およびプログラム |
JP2017037657A (ja) * | 2010-01-29 | 2017-02-16 | カーディナルコマース コーポレーション | スマート/認証フィールドおよび定義を用いた電子支払処理の方法およびシステム |
WO2019026196A3 (ja) * | 2017-08-02 | 2019-05-09 | マクセル株式会社 | 生体認証決済システム、決済システムおよびレジシステム |
JP2022058451A (ja) * | 2017-08-02 | 2022-04-12 | マクセル株式会社 | 決済方法 |
JP7433490B2 (ja) | 2021-12-28 | 2024-02-19 | マクセル株式会社 | 決済方法 |
Families Citing this family (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP2105873A1 (en) * | 2008-03-11 | 2009-09-30 | Imunant S.r.l. | System and method for performing a transaction |
JP5620968B2 (ja) * | 2012-11-22 | 2014-11-05 | ヤフー株式会社 | 情報配信装置、情報配信システム、情報配信方法および情報配信プログラム |
CN106529952B (zh) * | 2015-09-09 | 2021-09-17 | 腾讯科技(深圳)有限公司 | 数据转移中的验证实现方法及*** |
JP6772893B2 (ja) * | 2017-02-28 | 2020-10-21 | 株式会社リコー | 認証管理システム、管理装置、認証装置、認証管理方法 |
Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JPH11506231A (ja) * | 1995-05-30 | 1999-06-02 | アマゾン、コム、インコーポレーテッド | 非機密性のネットワークを介してクレジットカード番号のリストを通信する方法およびシステム |
JP2000305985A (ja) * | 1999-04-19 | 2000-11-02 | Oki Electric Ind Co Ltd | 電子決済システム |
JP2000322486A (ja) * | 1999-02-12 | 2000-11-24 | Citibank Na | 銀行カード取引きを履行するための方法およびシステム |
JP2002508550A (ja) * | 1998-03-25 | 2002-03-19 | オービス・パテンツ・リミテッド | クレジットカードシステム及び方法 |
JP2003323408A (ja) * | 2002-04-26 | 2003-11-14 | Masayuki Itoi | 個人認証方法及びシステム |
JP2004220175A (ja) * | 2003-01-10 | 2004-08-05 | Seiko Epson Corp | 情報カード、情報カード用装着装置、情報カード装置、情報カード処理装置及び情報カード処理方法 |
JP2004295796A (ja) * | 2003-03-28 | 2004-10-21 | Bank Of Tokyo-Mitsubishi Ltd | 決済認証情報記録器、決済操作装置、情報記録器認証装置、決済記録装置、方法、プログラムおよび記録媒体 |
-
2006
- 2006-02-03 EP EP06712974A patent/EP1852816A1/en not_active Withdrawn
- 2006-02-03 JP JP2007501632A patent/JPWO2006082913A1/ja active Pending
- 2006-02-03 US US11/815,583 patent/US20090138367A1/en not_active Abandoned
- 2006-02-03 WO PCT/JP2006/301831 patent/WO2006082913A1/ja active Application Filing
Patent Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JPH11506231A (ja) * | 1995-05-30 | 1999-06-02 | アマゾン、コム、インコーポレーテッド | 非機密性のネットワークを介してクレジットカード番号のリストを通信する方法およびシステム |
JP2002508550A (ja) * | 1998-03-25 | 2002-03-19 | オービス・パテンツ・リミテッド | クレジットカードシステム及び方法 |
JP2000322486A (ja) * | 1999-02-12 | 2000-11-24 | Citibank Na | 銀行カード取引きを履行するための方法およびシステム |
JP2000305985A (ja) * | 1999-04-19 | 2000-11-02 | Oki Electric Ind Co Ltd | 電子決済システム |
JP2003323408A (ja) * | 2002-04-26 | 2003-11-14 | Masayuki Itoi | 個人認証方法及びシステム |
JP2004220175A (ja) * | 2003-01-10 | 2004-08-05 | Seiko Epson Corp | 情報カード、情報カード用装着装置、情報カード装置、情報カード処理装置及び情報カード処理方法 |
JP2004295796A (ja) * | 2003-03-28 | 2004-10-21 | Bank Of Tokyo-Mitsubishi Ltd | 決済認証情報記録器、決済操作装置、情報記録器認証装置、決済記録装置、方法、プログラムおよび記録媒体 |
Non-Patent Citations (1)
Title |
---|
SKIP9 NISSHO SECURITY SOLUTION: "Nissho Erekutoronikusu Kabushiki Kaisha", NIKKEI COMMUNICATIONS, no. 398, 8 September 2003 (2003-09-08), pages 108 - 109, XP003000719 * |
Cited By (12)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2011502295A (ja) * | 2007-10-12 | 2011-01-20 | アネクト エーエス | 様々な電子装置間の、特に電子サービスプロバイダの電子装置と電子サービスのユーザの電子装置との間の保護された電子通信を確立する方法 |
JP2012503243A (ja) * | 2008-09-19 | 2012-02-02 | ロゴモーション エス.アール.オー. | 電子決済アプリケーションシステムと決済認証方法 |
JP2017037657A (ja) * | 2010-01-29 | 2017-02-16 | カーディナルコマース コーポレーション | スマート/認証フィールドおよび定義を用いた電子支払処理の方法およびシステム |
JP2018101427A (ja) * | 2010-01-29 | 2018-06-28 | カーディナルコマース コーポレーション | スマート/認証フィールドおよび定義を用いた電子支払処理の方法およびシステム |
US10565586B2 (en) | 2010-01-29 | 2020-02-18 | Cardinalcommerce Corporation | Electronic payment processing method and system with smart/authenticate fields and definitions |
JP2012123487A (ja) * | 2010-12-06 | 2012-06-28 | Ntt Data Corp | サービス提供許可装置、サービス提供許可方法およびプログラム |
WO2019026196A3 (ja) * | 2017-08-02 | 2019-05-09 | マクセル株式会社 | 生体認証決済システム、決済システムおよびレジシステム |
JPWO2019026196A1 (ja) * | 2017-08-02 | 2020-04-16 | マクセル株式会社 | 生体認証決済システム、決済システムおよびレジシステム |
JP7003136B2 (ja) | 2017-08-02 | 2022-01-20 | マクセル株式会社 | レジシステム |
JP2022058451A (ja) * | 2017-08-02 | 2022-04-12 | マクセル株式会社 | 決済方法 |
JP7234340B2 (ja) | 2017-08-02 | 2023-03-07 | マクセル株式会社 | 決済方法 |
JP7433490B2 (ja) | 2021-12-28 | 2024-02-19 | マクセル株式会社 | 決済方法 |
Also Published As
Publication number | Publication date |
---|---|
US20090138367A1 (en) | 2009-05-28 |
EP1852816A1 (en) | 2007-11-07 |
JPWO2006082913A1 (ja) | 2008-06-26 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11875317B2 (en) | Electronic money transfer method and system for the same | |
US7953671B2 (en) | Methods and apparatus for conducting electronic transactions | |
WO2006082913A1 (ja) | ネットワーク決済カード、ネットワーク決済プログラム、認証サーバ、及びショッピングシステムと決済方法 | |
US8225089B2 (en) | Electronic transaction systems utilizing a PEAD and a private key | |
KR100953231B1 (ko) | 전자 거래 시스템 및 그 방법 | |
US7505941B2 (en) | Methods and apparatus for conducting electronic transactions using biometrics | |
EP2212842B1 (en) | System and method for secure management of transactions | |
CA2718515C (en) | System and method for making electronic payments from a wireless mobile device | |
US20010051924A1 (en) | On-line based financial services method and system utilizing biometrically secured transactions for issuing credit | |
WO2016015054A1 (en) | Mobile communication device with proximity based communication circuitry | |
EP2904556A2 (en) | Systems, methods, and computer program products for managing remote financial transactions | |
KR20030011578A (ko) | 전자 결제 방법, 시스템, 및 장치 | |
JP2015518614A (ja) | データ及びアイデンティティの検証及び認証のためのシステム及び方法 | |
JP2005512234A6 (ja) | 顧客中心コンテキストアウェア切換モデル | |
JP2005512234A (ja) | 顧客中心コンテキストアウェア切換モデル | |
JP2012048694A (ja) | ワンクリック決済機能付オーダリング端末機 | |
CN116711267A (zh) | 移动用户认证***和方法 | |
JP2005512225A (ja) | 埋込コンテンツの自動化された権利管理及び支払いシステム | |
JP5981507B2 (ja) | 支払いを処理する方法 | |
JP2003150876A (ja) | バーチャルクレジットカード発行方法および利用方法 | |
WO2018164243A1 (ja) | 取引支援プログラム及びシステム | |
JP7368173B2 (ja) | 決済システム | |
CN101147166A (zh) | 网络结帐卡、网络结帐程序、认证服务器及购物***和结帐方法 | |
JP2023125217A (ja) | プログラム、情報処理装置、及び情報処理方法 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
WWE | Wipo information: entry into national phase |
Ref document number: 2007501632 Country of ref document: JP |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2006712974 Country of ref document: EP |
|
WWE | Wipo information: entry into national phase |
Ref document number: 200680009090.4 Country of ref document: CN |
|
WWP | Wipo information: published in national office |
Ref document number: 2006712974 Country of ref document: EP |
|
WWW | Wipo information: withdrawn in national office |
Ref document number: 2006712974 Country of ref document: EP |
|
WWE | Wipo information: entry into national phase |
Ref document number: 11815583 Country of ref document: US |