WO2013099958A1 - 携帯端末、端末機能管理システム、端末機能管理方法、端末機能管理プログラム、及びそのプログラムを記録するコンピュータ読取可能な記録媒体 - Google Patents
携帯端末、端末機能管理システム、端末機能管理方法、端末機能管理プログラム、及びそのプログラムを記録するコンピュータ読取可能な記録媒体 Download PDFInfo
- Publication number
- WO2013099958A1 WO2013099958A1 PCT/JP2012/083677 JP2012083677W WO2013099958A1 WO 2013099958 A1 WO2013099958 A1 WO 2013099958A1 JP 2012083677 W JP2012083677 W JP 2012083677W WO 2013099958 A1 WO2013099958 A1 WO 2013099958A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- balance
- access
- balance data
- data
- authentication information
- Prior art date
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/341—Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
- G06F21/6245—Protecting personal data, e.g. for financial or medical purposes
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/322—Aspects of commerce using mobile devices [M-devices]
- G06Q20/3226—Use of secure elements separate from M-devices
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/353—Payments by cards read by M-devices
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/354—Card activation or deactivation
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/36—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
- G06Q20/367—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes
- G06Q20/3672—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes initialising or reloading thereof
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/36—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
- G06Q20/367—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes
- G06Q20/3676—Balancing accounts
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G06Q20/4012—Verifying personal identification numbers [PIN]
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07F—COIN-FREED OR LIKE APPARATUS
- G07F7/00—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
- G07F7/08—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
- G07F7/10—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
- G07F7/1008—Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
Definitions
- the present invention relates to a portable terminal, a terminal function management system, a terminal function management method, a terminal function management program, and a computer-readable recording medium for recording the program.
- Patent Document 1 discloses a mobile phone that automatically sets the electronic money card to a use-not-permitted state after a predetermined usable time has elapsed since the electronic money card was set to a use-permitted state.
- Patent Document 1 If the technology described in Patent Document 1 is applied to, for example, a mobile phone incorporating an electronic money card, there is a high possibility that the electronic money card is in a use-disapproved state when the loss or theft of the mobile phone is found. In this respect, unauthorized use of electronic money by others after loss or theft can be prevented.
- a portable terminal a terminal function management system, and a terminal function that can quickly and accurately determine the electronic money balance to be guaranteed while preventing unauthorized use of electronic money by others after loss or theft It is an object to provide a management method, a terminal function management program, and a computer-readable recording medium for recording the program.
- a portable terminal includes a storage unit that stores balance data indicating a balance of electronic money, a balance response unit that reads and returns the balance data, and an amount indicated by the balance data as balance change information.
- An amount change means for changing based on the access control means for restricting access to balance data based on given authentication information and permitting access to balance data only when the authentication information is presented;
- An access restriction setting means for restricting access to balance data by the access control means using the authentication information input by the user as given authentication information, and an access control means. Presenting the entered authentication information after the access to the balance data is restricted until the restriction is removed, Comprises a balance acquisition means for acquiring the balance data is replied to the balance reply means joules, and the balance storage means for storing balance data acquired in the data storage means.
- the access control means is restricted from accessing the balance data using the authentication information input by the user as the given authentication information. For this reason, it becomes possible to prevent unauthorized use of electronic money by others after loss or theft. Also, according to this, after the access control means restricts access to the balance data, the input authentication information is presented and the IC module balance reply means responds until the restriction is removed. Balance data is acquired, and the acquired balance data is stored in the data storage means. For this reason, it becomes possible to determine the electronic money balance quickly and accurately.
- the balance storage means may transmit the acquired balance data to a management server accessible to the data storage means, and store it in the data storage means.
- the balance data acquired by the balance storage means is transmitted to a management server accessible to the data storage means and stored in the data storage means. For this reason, it becomes possible to more reliably prevent unauthorized use of electronic money by others after loss or theft.
- the portable terminal may further include an access restriction releasing unit that causes the access control unit to release the access restriction to the balance data, using the authentication information input by the user as given authentication information.
- the access restriction release unit causes the balance acquisition unit to acquire balance data when releasing the access restriction, and the balance indicated by the acquired balance data is stored in the data storage unit. Only when the balance indicated by the balance data matches, the access restriction on the balance data may be released.
- the access restriction releasing unit may release the access restriction to the balance data only when the release information is acquired from the management server.
- the access restriction to the balance data is released only when the release information is acquired from the management server. For this reason, it becomes possible to more reliably prevent unauthorized use of electronic money by others after loss or theft.
- a terminal function management system includes a storage unit that stores balance data indicating a balance of electronic money, a balance response unit that reads and returns the balance data, and changes the amount indicated by the balance data.
- a portable terminal capable of accessing an IC module having an amount change means for changing based on information and an access control means for restricting access to balance data based on given authentication information, and connectable to the portable terminal Terminal function management system configured with a simple management server, wherein the mobile terminal uses the authentication information input by the user as given authentication information to allow the access control means to restrict access to balance data.
- Balance acquisition means for acquiring balance data returned to the balance response means of the IC module, balance transmission means for transmitting the acquired balance data to a management server accessible to the data storage means, and authentication information input by the user
- the access control means for releasing the access restriction to the balance data as given authentication information, and the management server stores the balance data received from the portable terminal in the data storage means.
- Storage means and restriction release permission means for transmitting release information in response to a request from the mobile terminal, and the access restriction release means uses the predetermined release information acquired from the management server to access balance data. It is characterized by releasing the restriction.
- the access control means is restricted from accessing the balance data using the authentication information input by the user as the given authentication information. For this reason, it becomes possible to prevent unauthorized use of electronic money by others after loss or theft.
- the input authentication information is presented from the predetermined time before the access control means is restricted to the access to the balance data until the restriction is lifted, and the balance authentication means of the IC module is presented.
- the balance data returned is acquired, and the acquired balance data is stored in the data storage means. For this reason, it becomes possible to determine the electronic money balance quickly and accurately.
- the access control means included in the IC module restricts access to the balance data based on given authentication information and balance data only when the authentication information is presented.
- the balance acquisition means provided in the portable terminal permits access to the IC card by presenting the input authentication information from when access to the balance data is restricted by the access control means until the restriction is lifted.
- the balance data returned to the balance response means of the module is acquired, and the access restriction release means causes the balance acquisition means to acquire balance data when releasing the access restriction, and transmits the acquired balance data to the management server
- the restriction release permission means included in the management server includes the balance indicated by the balance data received from the mobile terminal and the remaining data stored in the data storage means. Only if the balance indicated by the data matches may transmit release information to the portable terminal.
- the management server further includes invalid information storage means for storing invalid information that can determine whether or not the electronic money function mounted on the IC module is invalid.
- the restriction release permitting means provided with reference to the invalid information stored in the invalid information storage means determines that the electronic money function mounted on the IC module accessible to the mobile terminal that requested the release information is invalid. In this case, the release information may not be transmitted to the mobile terminal.
- the management server does not transmit the release information to the mobile terminal when it is determined that the electronic money function is invalid. For this reason, by indicating that the electronic money function of the portable terminal after being lost or stolen is invalid, it is possible to more reliably prevent unauthorized use of electronic money by others.
- the access restriction setting means provided in the mobile terminal accesses the balance data to the access control means using the encryption information generated by using the input authentication information as given authentication information.
- the balance transmission means provided in the mobile terminal further transmits the generated encrypted information to the management server, and the balance storage means provided in the management server further stores the encrypted information received from the mobile terminal in the data storage means.
- the restriction release permission unit included in the management server may transmit the encryption information as release information in response to a request from the mobile terminal.
- the access control means restricts access to the balance data by using the encryption information as the given authentication information, and the management server transmits the encryption information as the release information in response to a request from the mobile terminal.
- the access restriction using the encryption information and the cancellation thereof are executed, it is possible to more surely prevent the unauthorized use of the electronic money by others after the loss or theft.
- a terminal function management method includes a storage unit that stores balance data indicating a balance of electronic money, a balance response unit that reads and returns the balance data, and changes the amount indicated by the balance data.
- Amount change means for changing based on information
- an access control means for restricting access to balance data based on given authentication information and permitting access to balance data only when the authentication information is presented
- a balance acquisition step for acquiring the balance data that is presented to the balance reply means of the IC module by presenting the input authentication information until the limit is canceled, and the portable terminal stores the acquired balance data as data storage means
- a balance storage step for storing the balance.
- the access control means is restricted from accessing the balance data using the authentication information input by the user as the given authentication information. For this reason, it becomes possible to prevent unauthorized use of electronic money by others after loss or theft. Also, according to this, after the access control means restricts access to the balance data, the input authentication information is presented and the IC module balance reply means responds until the restriction is removed. Balance data is acquired, and the acquired balance data is stored in the data storage means. For this reason, it becomes possible to determine the electronic money balance quickly and accurately.
- a terminal function management method includes a storage unit that stores balance data indicating a balance of electronic money, a balance response unit that reads and returns the balance data, and changes the amount indicated by the balance data.
- a portable terminal capable of accessing an IC module having an amount change means for changing based on information and an access control means for restricting access to balance data based on given authentication information, and connectable to the portable terminal
- a terminal function management method performed by a terminal function management system configured with a management server, wherein the mobile terminal accesses the balance data to the access control means using the authentication information input by the user as given authentication information.
- An access restriction setting step to restrict, and when the mobile terminal is restricted to access to balance data by the access control means A balance acquisition step for acquiring balance data returned to the balance response means of the IC module before the restriction is removed, and a management server that allows the portable terminal to access the acquired balance data to the data storage means
- the mobile terminal uses the predetermined release information acquired from the management server to control access to the balance data. Characterized in that to release the.
- the access control means is restricted from accessing the balance data using the authentication information input by the user as the given authentication information. For this reason, it becomes possible to prevent unauthorized use of electronic money by others after loss or theft. Also, according to this, after the access control means restricts access to the balance data, the input authentication information is presented and the IC module balance reply means responds until the restriction is removed. Balance data is acquired, and the acquired balance data is stored in the data storage means. For this reason, it becomes possible to determine the electronic money balance quickly and accurately.
- a terminal function management program includes a storage unit that stores balance data indicating a balance of electronic money, a balance response unit that reads and returns the balance data, and an amount indicated by the balance data.
- Amount changing means for changing the balance based on the balance change information, and restricting access to the balance data based on the given authentication information and permitting access to the balance data only when the authentication information is presented
- a terminal function management program that functions as a portable terminal portable terminal that can access an IC module having an access control means, the balance of the authentication information input by the user to the access control means as given authentication information
- the function of the access restriction setting means that restricts access to data and the remaining by the access control means
- a function of balance acquisition means for obtaining the balance data that is presented to the balance response means of the IC module by presenting the input authentication information after the access to the data is restricted until the restriction is released; And a function of balance storage means for storing the acquired balance data in the data storage means.
- the access control means is restricted from accessing the balance data using the authentication information input by the user as the given authentication information. For this reason, it becomes possible to prevent unauthorized use of electronic money by others after loss or theft. Also, according to this, after the access control means restricts access to the balance data, the input authentication information is presented and the IC module balance reply means responds until the restriction is removed. Balance data is acquired, and the acquired balance data is stored in the data storage means. For this reason, it becomes possible to determine the electronic money balance quickly and accurately.
- a computer-readable recording medium includes a storage unit that stores balance data indicating a balance of electronic money, a balance response unit that reads and returns the balance data, and an amount indicated by the balance data.
- Amount change means for changing based on balance change information and access for restricting access to balance data based on given authentication information and permitting access to balance data only when the authentication information is presented
- a computer-readable recording medium recording a terminal function management program for operating a portable terminal accessible to an IC module having a control means, the portable terminal using a given authentication information inputted by a user Access restriction setting means for restricting access to balance data by the access control means as information, and access control means
- Balance acquisition means for presenting input authentication information and obtaining balance data returned to the balance reply means of the IC module from when access to balance data is restricted by
- a terminal function management program that functions as a balance storage unit that stores the acquired balance data in a data storage unit is recorded.
- the access control means is restricted from accessing the balance data using the authentication information input by the user as the given authentication information. For this reason, it becomes possible to prevent unauthorized use of electronic money by others after loss or theft. Also, according to this, after the access control means restricts access to the balance data, the input authentication information is presented and the IC module balance reply means responds until the restriction is removed. Balance data is acquired, and the acquired balance data is stored in the data storage means. For this reason, it becomes possible to determine the electronic money balance quickly and accurately.
- a terminal function management system includes a storage unit that stores balance data indicating a balance of electronic money, a balance response unit that reads and returns the balance data, and changes the amount indicated by the balance data.
- a mobile terminal and a store terminal that can access an IC card, and a mobile terminal that has access to an IC card, and a money amount changing means that changes based on information, and an access control means that restricts access to balance data based on given authentication information
- a terminal function management system comprising a management server connectable to the store terminal, wherein the mobile terminal accesses the balance data to the access control means using the authentication information input by the user as given authentication information.
- Access restriction setting means for restricting access to the balance data and access control means for a predetermined time before access to balance data is restricted.
- the balance acquisition means for acquiring the balance data returned to the balance response means of the IC card before the restriction is released, and the input authentication information and the acquired balance data to the management server accessible to the data storage means
- a balance transmitting means for transmitting, and the store terminal includes an access restriction releasing means for causing the access control means to release the access restriction to the balance data, using the authentication information input by the user as the given authentication information, and managing
- the server stores the authentication information and balance data received from the portable terminal in the data storage means and the store only when the authentication information from the store terminal matches the authentication information stored in the data storage means.
- a restriction release permission unit that transmits the release information to the terminal, and the access restriction release unit includes predetermined release information acquired from the management server. Using, characterized in that to release the access restriction to balance data.
- the access control means is restricted from accessing the balance data using the authentication information input by the user as the given authentication information. For this reason, it becomes possible to prevent unauthorized use of electronic money by others after loss or theft. Further, according to this, only when the release information is acquired from the management server, the access restriction to the balance data is released. For this reason, it becomes possible to more reliably prevent unauthorized use of electronic money by others after loss or theft.
- a portable terminal capable of quickly and accurately determining an electronic money balance to be guaranteed while preventing unauthorized use of electronic money by others after loss or theft
- a function management method, a terminal function management program, and a computer-readable recording medium for recording the program can be provided.
- FIG. 1 is a diagram for explaining an outline of an embodiment of the portable terminal 7.
- the mobile terminal 7 is a mobile phone terminal capable of Internet communication, such as a smartphone.
- the portable terminal 7 has an electronic money function such as a settlement process using electronic money using a built-in non-contact type IC chip 12 and a balance increase / decrease process.
- the portable terminal 7 also has an access control function (hereinafter referred to as “lock function”) that sets access restrictions in a specific area in the IC chip 12 and restricts access to data recorded in the area.
- lock function an access control function that sets access restrictions in a specific area in the IC chip 12 and restricts access to data recorded in the area.
- the IC chip 12 stores balance data indicating the balance of electronic money in a predetermined storage area.
- the mobile terminal 7 can communicate with the electronic money server 2 (management server). Communication with the electronic money server 2 is performed by an application 15 that is application software that provides various services related to electronic money.
- the user U of the mobile terminal 7 sets a PIN (Personal Identification Number, authentication information) for enabling the lock function in the mobile terminal 7 using the application 15 ( (Procedure 1).
- the application 15 completes the activation of the lock function for the IC chip 12 (procedure 2).
- the application 15 accesses the IC chip 12 while temporarily releasing the lock, and requests the current value balance (balance data) (procedure 3). Then, the IC chip 12 transmits the value balance to the application 15 in response to the request from the application 15 (procedure 4). When the balance is acquired, the application 15 resets the lock of the IC chip 12. Then, the application 15 transmits the received value balance to the electronic money server 2 (procedure 5), and the electronic money server 2 stores the received value balance in a predetermined storage device and indicates that the storage has been successful. (Procedure 6).
- the settlement process by the IC chip 12 is not permitted, and the process of updating the value balance by decreasing it is impossible. For this reason, for example, even if the reader / writer 9 of the store terminal 8 (communication terminal) requests the IC chip 12 to perform settlement processing by short-range wireless communication (procedure 7), there is no response (or an error). And the settlement process is not performed (procedure 8).
- any of the following lock functions can be used.
- an example in which the following lock function (a) is used is shown.
- the concealment flag is turned ON to “conceal” a predetermined area in the IC chip. That is, the area for storing the electronic money balance or the area including the area is “shielded”. In this case, when receiving an access command for the hidden area, the IC chip does not respond (or returns a code indicating no area).
- the negative flag of the IC chip is turned ON by issuing a negative flag ON command recorded in the IC chip.
- the payment terminal such as the store terminal 8 confirms the negative flag in the IC chip 12 at the beginning of the payment process, and if it is ON, the electronic money function is stopped (cannot be used by returning an error without proceeding with the subsequent processes). State).
- FIG. 2 is a diagram showing a network configuration of the electronic money system 1 (terminal function management system).
- the electronic money system 1 includes a mobile terminal 7, an electronic money server 2, the Internet 4, a base station 5, and a store terminal 8 installed at a member store 81.
- the mobile terminal 7 can communicate with the electronic money server 2 via the Internet 4 by wirelessly communicating with the base station 5.
- the mobile terminal 7 includes an application 15 (access restriction setting unit, balance acquisition unit, and balance storage unit) and an IC chip 12.
- the IC chip 12 includes an antenna for short-range wireless communication, and can perform short-range wireless communication with the reader / writer of the shop terminal 8.
- the IC chip 12 can store the value balance, and can perform settlement by executing a command transmitted from the store terminal 8 in a situation where the lock function of the IC chip 12 is invalid.
- the application 15 accepts the input of the PIN, and sets the lock on the IC chip 12 (enables the lock function) and releases the lock on the IC chip 12 (disables the lock function).
- the application 15 acquires the value balance of the IC chip 12 and transmits it to the electronic money server 2 after a predetermined time before the activation of the lock function for the IC chip 12 (for example, several milliseconds to several seconds before). Then, the completion information indicating that the storage in the electronic money server 2 is successful is received.
- the electronic money server 2 is a server that manages the distribution of value in the electronic money system 1.
- the electronic money server 2 collects log data in which a payment history is recorded from the store terminal 8 regularly or irregularly. And this and the log data at the time of settlement by the IC chip 12 are totaled together, and the correspondence between the distribution of value and the currency is taken.
- the member store 81 is a company that provides products and services by taking consideration from users such as retail stores and restaurants.
- the member store 81 is a member of an alliance that uses the electronic money service provided by the electronic money system 1 and includes one or a plurality of store terminals 8.
- the store terminal 8 performs short-range wireless communication with the IC chip 12 and performs a settlement by transmitting a command to the IC chip 12 in a situation where the lock function of the IC chip 12 is invalid.
- the store terminal 8 transmits log data describing the processing content with the IC chip 12 to the electronic money server 2 regularly or irregularly.
- FIG. 3 is a diagram illustrating a functional configuration of the mobile terminal 7
- FIG. 4 is a diagram illustrating a physical configuration of the mobile terminal 7.
- the mobile terminal 7 includes CPU 101 (Central Processing Unit), RAM 102 (Random Access Memory), ROM 103 (Read Only Memory), and EEPROM 109 (Electrically Erasable Programmable Read Only Memory) as main physical components. ), A small computer terminal including hardware such as an operation unit 104, a wireless communication unit 105, a short-range wireless communication unit 110, a display 106, antennas 107 and 111, and various chips 108. By operating these components, each function of the mobile terminal 7 is exhibited.
- CPU 101 Central Processing Unit
- RAM 102 Random Access Memory
- ROM 103 Read Only Memory
- EEPROM 109 Electrically Erasable Programmable Read Only Memory
- a small computer terminal including hardware such as an operation unit 104, a wireless communication unit 105, a short-range wireless communication unit 110, a display 106, antennas 107 and
- the mobile terminal 7 includes an application 15 (setting unit), a terminal function unit 10 (connection unit) having the application 15, and a terminal function unit 10 as main functional components.
- the IC chip 12 includes a communication-connectable IC chip 12.
- the IC chip 12 includes a chip processing unit 17 (authentication storage unit) connected to an antenna for near field communication, and a chip storage unit 18 controlled by the chip processing unit 17. (Data storage means).
- the IC chip 12 has a function as a computer including a CPU (Central Processing Unit), a ROM (Read Only Memory), a RAM (Random Access Memory), an EEPROM, and the like.
- the terminal function unit 10 also has a function as a computer, and the portable terminal 7 is in a state in which two computers can be communicably connected.
- the chip storage unit 18 has a plurality of storage areas in which communication connection by the application 15 is restricted, and stores electronic data such as value balance and log data.
- the value balance is the amount of electronic money currently stored.
- the log data is log data that records processing contents when processing related to electronic money such as settlement and balance reference is performed.
- the terminal function unit 10 is a computer including a CPU, ROM, RAM, EEPROM, touch screen, speaker, microphone, GPS (Global Positioning System) positioning module, and the like.
- the terminal function unit 10 can communicate with (access) the chip storage unit 18 of the IC chip 12 to obtain a value balance, and can wirelessly communicate with the base station 5 (see FIG. 2).
- the application 15 is installed in the EEPROM.
- the application 15 stores a PIN as authentication information that enables access to a storage area where communication connection is restricted.
- the PIN is input by the user U of the portable terminal 7 and stored in, for example, the EEPROM 109.
- the terminal function unit 10 can obtain the value balance stored in the chip storage unit 18 by temporarily releasing the lock function of the IC chip 12 by using the PIN obtained from the EEPROM 109 and using it. Become.
- the application 15 can also enable a lock function that makes it impossible to acquire (reference) a value balance, except for the terminal function unit 10 that performs access using a PIN.
- the application 15 can perform lock release and lock control for the IC chip 12 using encryption information such as random number data.
- the application 15 transmits the encryption information to the electronic money server 2 for storage.
- the application 15 transmits the command information which instruct
- the application 15 temporarily releases the lock function using the PIN acquired from the EEPROM 109 and accesses the chip storage unit 18 via the chip processing unit 17 in a state where the lock function of the IC chip 12 is valid. Further, in a state where the chip storage unit 18 is accessible, the application 15 inputs a balance reference command to the IC chip 12 to read the value balance from the IC chip 12 or reads a log data reference command to read the log data. The control which enables the function to perform is performed.
- the application 15 accesses the IC chip 12 by the terminal function unit 10 in a state where the lock function of the IC chip 12 is invalid, and performs setting processing for setting access restrictions to the chip storage unit 18.
- the lock function can be activated. As a result, the function of performing payment processing using the value balance becomes impossible.
- the application 15 stores the value balance read after a predetermined time before the lock function is enabled (that is, the setting process is completed) (for example, several milliseconds to several seconds before) as the mobile terminal 7. It is transmitted to and stored in the electronic money server 2 existing outside.
- the read value balance may be stored in the mobile terminal 7 (for example, the terminal function unit 10).
- the value balance that the application 15 transmits to the electronic money server 2 and stores the value balance is the number of accesses from the application 15 to the chip storage unit 18 from when the lock function is enabled (that is, when the setting process is completed). It may be a value balance read up to the end point.
- the application 15 may acquire the value balance stored in the electronic money server 2 after a predetermined time before the lock function is disabled (that is, the setting process is completed). The balance may be transmitted to the electronic money server 2. Processing of the value balance acquired by the electronic money server 2 will be described later. Further, the application 15 determines whether or not the value balance read while the lock function is enabled and the value balance stored in the electronic money server 2 are different. The function may be continued and enabled. Acquisition of the value balance stored in the electronic money server 2 by the application 15 will be described later.
- the application 15 continues to enable the lock function until it receives release information that instructs to release (invalidate) the lock function.
- the application 15 can transmit request information for requesting transmission of release information to the electronic money server 2 based on an input by the user of the mobile terminal 7.
- the application 15 can receive a PIN input by the user of the mobile terminal 7, and when receiving the PIN input, the application 15 performs control to switch the mobile terminal 7 to a restriction mode in which the lock function is enabled.
- a predetermined condition for example, when the GPS positioning module detects that the current position of the mobile terminal 7 is within a predetermined area, or when a predetermined time has passed since the lock function was released, Examples include a case where the mobile terminal 7 has been used a predetermined number of times after the function is released, or a case where a settlement process of a predetermined amount or more is performed by the IC chip 12.
- FIG. 5 is a diagram illustrating functional configurations of the electronic money server 2 and the store terminal 8
- FIG. 6 is a diagram illustrating physical configurations of the electronic money server 2 and the store terminal 8.
- the electronic money server 2 and the store terminal 8 include a CPU 201 (Central Processing Unit) as main physical components, a RAM 202 (Random Access Memory) as a main storage device, and a ROM 203 (Read Only Memory). ), A communication module 204 for performing communication, and a computer including hardware such as an auxiliary storage device 205 such as a hard disk. By operating these components, each function of the electronic money server 2 and the store terminal 8 is exhibited.
- a CPU 201 Central Processing Unit
- RAM 202 Random Access Memory
- ROM 203 Read Only Memory
- a computer including hardware such as an auxiliary storage device 205 such as a hard disk.
- the electronic money server 2 includes, as main functional components, a server function unit 21 (reception unit and transmission unit), a balance storage unit 22 (balance storage unit), and a negative storage.
- the unit 23 (invalid storage means) is provided.
- the server function unit 21 communicates with the mobile terminal 7.
- the server function unit 21 can receive request information requesting transmission of release information from both the mobile terminal 7 and the store terminal 8.
- the server function unit 21 can transmit the release information to the mobile terminal 7.
- the server function unit 21 may perform an authentication process in which the request information received from the mobile terminal 7 and the request information received from the store terminal 8 are collated. And when authentication is successful, the server function part 21 may transmit the permission information which permits transmission of cancellation
- FIG. The reader / writer 9 of the store terminal 8 that has received the permission information transmits the release information to the portable terminal 7, thereby enabling the payment process by the reader / writer 9.
- the server function unit 21 can receive the value balance from the mobile terminal 7. When the received value balance is stored in the balance storage unit 22, the server function unit 21 notifies that the storage is successful and the value balance. Success information is transmitted to the portable terminal 7.
- the server function unit 21 determines whether or not the value balance received from the portable terminal 7 and the value balance already stored in the balance storage unit 22 are the same. 7 can be transmitted.
- the server function unit 21 includes the negative storage unit 23. The transmission of the release information to 7 is stopped.
- the balance storage unit 22 stores the value balance when the server function unit 21 receives the value balance read after a predetermined time before the lock function is enabled (that is, the setting process is completed). Store.
- the server function unit 21 transmits to the portable terminal 7 that the storage is successful and the success information notifying the value balance.
- the negative storage unit 23 stores in advance negative information indicating whether the chip storage unit 18 is invalid.
- the negative information indicates that the chip storage unit 18 is invalid
- transmission of the release information by the server function unit 21 to the portable terminal 7 including the negative storage unit 23 is stopped.
- the negative information is added or changed by a mobile communication company or the like who has received the notification.
- the deletion / change of the negative information is performed by, for example, a mobile communication company or the like who has received the notification when the mobile terminal 7 is found.
- the store terminal 8 includes a reader / writer 9 and a terminal function unit 91.
- the reader / writer 9 is a device that performs a settlement process by performing short-range wireless communication with the mobile terminal 7 to reduce the value balance.
- the terminal function unit 91 can accept input of request information by the user of the mobile terminal 7. Upon receiving the request information, the terminal function unit 91 transmits the input request information to the electronic money server 2. Further, the terminal function unit 91 can communicate with the electronic money server 2.
- FIG. 7 is a flowchart for explaining the procedure of the value balance storage process associated with the activation of the lock function.
- step S1 the application 15 receives an input of a PIN (step S1). With this as a trigger, the application 15 completes the activation of the lock function for the IC chip 12 (step S2, setting step).
- the application 15 temporarily releases the lock, accesses the IC chip 12, and acquires the current value balance (step S3, connection step). Then, the application 15 transmits the acquired value balance to the electronic money server 2 (step S4, control step), the electronic money server 2 stores the received value balance in the storage area, and the fact that the storage is successful The value balance is notified to the portable terminal 7 (step S5).
- the settlement process by the IC chip 12 is not permitted, and the process of updating the value balance by decreasing it is impossible. For this reason, for example, even if the reader / writer 9 included in the store terminal 8 (see FIG. 1) requests the IC chip 12 to perform a settlement process by short-range wireless communication, there is no reaction and the settlement process is not performed.
- the request information is transferred to the electronic money by making a predetermined input (for example, PIN input) to the application 15. It is transmitted to the server 2 (step S6, receiving step).
- the electronic money server 2 transmits the release information to the mobile terminal 7 (step S7, transmission step).
- the application 15 completes disabling the lock function (step S8).
- step S5 that is, the situation where the lock function of the IC chip 12 is valid
- the user U of the mobile terminal 7 uses the PIN for invalidating the lock function using the application 15. Input to the portable terminal 7.
- the application 15 receives a PIN input (step S11). With this as an opportunity, the application 15 temporarily releases the lock function, accesses the IC chip 12, acquires the current value balance (step S12), and transmits the acquired value balance to the electronic money server 2. (Step S13). When the balance is acquired, the application 15 resets the lock of the IC chip 12.
- the electronic money server 2 determines whether or not the value balance received from the mobile terminal 7 in step S13 and the value balance received from the mobile terminal 7 and stored in the balance storage unit 22 in step S4 are the same. In the same case, the above-described release information is transmitted to the mobile terminal 7 (step S14). When the mobile terminal 7 receives the release information, the application 15 completes disabling the lock function (step S15).
- FIG. 8 is a module configuration diagram for explaining a module configuration of the terminal function management program P1 for causing the computer to function as the mobile terminal 7.
- the terminal function management program P1 includes a connection module P10, a setting module P11, a control module P12, and a storage module P13.
- connection module P10 is a part that comprehensively controls the function of executing various types of information processing.
- the function of the terminal function unit 10 described above is realized.
- the functions realized by executing the setting module P11 are the same as the functions of the application 15 described above.
- the functions realized by executing the control module P12 are the same as the functions of the chip processing unit 17 described above.
- the function realized by executing the storage module P13 is the same as the function of the chip storage unit 18 described above.
- the terminal function management program P1 is provided in a mode in which it is fixedly recorded on a recording medium such as a CD-ROM or a DVD-ROM or a semiconductor memory, for example.
- the terminal function management program P1 may be provided via a communication network as a computer data signal superimposed on a carrier wave.
- FIG. 9 is a module configuration diagram for explaining a module configuration of the terminal function management program P2 for operating the mobile terminal 7 and the electronic money server 2.
- the terminal function management program P2 includes a function module P20, a setting module P21, a control module P22, a storage module P23, a receiving module P24, and a transmitting module P25.
- the function module P20 is a part that comprehensively controls the function of executing arithmetic processing of various information. By executing the function module P20, the function of the terminal function unit 10 described above is realized.
- the functions realized by executing the setting module P21, the control module P22, and the storage module P23 are the same as the functions of the application 15, the chip processing unit 17, and the chip storage unit 18, respectively.
- the functions realized by executing the reception module P24 and the transmission module P25 are the same as the functions of the electronic money server 2 described above.
- the terminal function management program P2 is provided in a manner fixedly recorded on a recording medium or a semiconductor memory, like the terminal function management program P1. Further, the terminal function management program P2 may be provided via a communication network.
- the setting process (validation of the lock function) for setting the restriction on the access to the chip storage unit 18 that stores the value balance is executed. For this reason, it becomes possible to prevent the unauthorized use of electronic money by another person after the loss or theft of the portable terminal 7. Further, according to this, the electronic money server 2 stores the value balance acquired at a predetermined time before the activation of the lock function and the value balance acquired after that time. For this reason, it becomes possible to quickly and accurately determine and guarantee the electronic money balance to be guaranteed in the balance guarantee service.
- the value balance acquired by the terminal function unit 10 from the time when the lock function is activated to the time when the above-mentioned access is completed may be stored in the electronic money server 2. This makes it possible to more reliably prevent unauthorized use of the payment function by others after loss or theft.
- the electronic money server 2 that stores the acquired value balance exists outside the mobile terminal 7. For this reason, it becomes possible to prevent the unauthorized use of the payment function by others after loss or theft more reliably.
- the application 15 continues to activate the lock function when the value balance acquired by the terminal function unit 10 during the activation of the lock function and the value balance stored in the electronic money server 2 are different. For this reason, it becomes possible to prevent the unauthorized use of the payment function by others after loss or theft more reliably.
- the application 15 continues to activate the lock function until receiving the release information that instructs to release the lock function. For this reason, it becomes possible to prevent the unauthorized use of the payment function by others after loss or theft more reliably.
- the balance stored in the chip storage unit 18 cannot be acquired, only the value balance can be acquired by the terminal function unit 10 that has acquired the authentication information. As a result, it becomes impossible to acquire the value balance stored in the chip storage unit 18, so that it is possible to prevent unauthorized use of the payment function by others after loss or theft. Further, since the value balance can be acquired only by the terminal function unit 10 that has acquired the authentication information, the value balance acquired by the terminal function unit 10 is used for processing for a service for a user unrelated to the payment function described above. This makes it possible to improve convenience for the user of the mobile terminal.
- the portable terminal 7 is switched to the restricted mode when the input of the authentication information is accepted, and is switched to the restricted mode again when a predetermined condition is satisfied after the restriction mode is released. For this reason, even if the user of the mobile terminal forgets to switch again after the restriction mode is canceled, the restriction mode is again switched when a predetermined condition is satisfied. For this reason, it becomes possible to prevent the unauthorized use of the payment function by others after loss or theft more reliably.
- the electronic money server 2 when the electronic money server 2 receives the request information from the mobile terminal 7, the electronic money server 2 transmits the release information to the mobile terminal 7, so that the lock function is released. Thereby, since the lock function is released in accordance with the request of the user of the mobile terminal 7, it is possible to improve the convenience for the user of the mobile terminal 7.
- the release information is transmitted to the mobile terminal 7 by the electronic money server 2. For this reason, it becomes possible to guarantee the electronic money balance more reliably.
- the electronic money server 2 stops the transmission of the release information to the mobile terminal 7 including the chip storage unit 18. For this reason, it is possible to more reliably prevent unauthorized use of the payment function by others by indicating in the negative information that the chip storage unit 18 corresponding to the lost or stolen portable terminal is invalid. Become.
- the portable terminal 7 validates the lock function using the random number data and transmits the random number data to the electronic money server 2, and the electronic money server 2 sends command information for instructing transmission of the random number data to the portable terminal 7. Is received, the release information is transmitted to the portable terminal 7 to invalidate the lock function.
- the lock function using the random number data is validated and invalidated, unauthorized use of the settlement function by another person after loss or theft can be more reliably prevented.
- the electronic money server 2 performs an authentication process in which the request information received from the mobile terminal 7 and the request information received from the store terminal 8 are collated. Is transmitted to the store terminal 8. And the shop terminal 8 will transmit cancellation
- FIG. As a result, an authentication process is performed in which the request information received from the mobile terminal 7 and the request information received from the store terminal 8 are collated. When the authentication is successful, the lock function is released in accordance with the request of the user of the mobile terminal 7 Therefore, convenience for the user of the mobile terminal 7 can be enhanced.
- the IC chip 12 has been described as being built in the mobile terminal 7, but the location of the IC chip 12 is not particularly limited, and for example, as shown in FIG.
- a plate-like IC card 73 having a function similar to that of the IC chip 12 may exist independently of the mobile terminal 71.
- the IC card 73 includes a card processing unit 74 having the same function as the chip processing unit 17 and a card storage unit 75 having the same function as the chip storage unit 18. Then, the short-range wireless communication unit 72 of the portable terminal 71 performs near-field wireless communication (Near Field Communication, NFC) with the IC card 73, thereby enabling the lock function of the IC card 73 by the application 15 that has received the user input. It can be enabled and disabled.
- NFC Near Field Communication
- the lock function is validated and invalidated by inputting a PIN based on specific technical specifications.
- the present invention is not limited to this form, and can be implemented in a form according to the technical specifications of the settlement system to be applied.
Landscapes
- Business, Economics & Management (AREA)
- Engineering & Computer Science (AREA)
- Accounting & Taxation (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Strategic Management (AREA)
- General Business, Economics & Management (AREA)
- Finance (AREA)
- Computer Networks & Wireless Communication (AREA)
- Microelectronics & Electronic Packaging (AREA)
- Computer Security & Cryptography (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Economics (AREA)
- Development Economics (AREA)
- Databases & Information Systems (AREA)
- Medical Informatics (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- General Engineering & Computer Science (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Telephone Function (AREA)
- Control Of Vending Devices And Auxiliary Devices For Vending Devices (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
Description
まず、本発明に係る携帯端末の実施形態の概要を、図1を用いて説明する。図1は、この携帯端末7の実施形態の概要を説明するための図である。携帯端末7は、スマートフォンといった、インターネット通信可能な携帯型電話端末である。携帯端末7は、内蔵する非接触型のICチップ12を用いた電子マネーによる決済処理や残高の増減処理等の電子マネー機能を有している。また、携帯端末7は、ICチップ12内の特定の領域にアクセス制限を設定し、当該領域に記録されているデータへのアクセスを制限するアクセス制御機能(以下、「ロック機能」という。)も有している。ICチップ12は、電子マネーの残高を示す残高データを所定の記憶領域に記憶している。
引き続き、携帯端末7の実施形態の詳細を、図2を用いて説明する。図2は、電子マネーシステム1(端末機能管理システム)のネットワーク構成を示した図である。電子マネーシステム1は、携帯端末7、電子マネーサーバ2、インターネット4、基地局5、加盟店81に設置された店舗端末8を備えて構成されている。
引き続き、携帯端末7において行われる、ロック機能の有効化に伴うバリュー残高の格納処理の手順(端末機能管理方法)を、図7を用いて説明する。図7は、ロック機能の有効化に伴うバリュー残高の格納処理の手順を説明するためのフローチャートである。
引き続き、コンピュータを携帯端末7として機能させるための端末機能管理プログラムのモジュール構成について図8を用いて説明する。図8は、コンピュータを携帯端末7として機能させるための端末機能管理プログラムP1のモジュール構成を説明するためのモジュール構成図である。
引き続き、携帯端末7及び電子マネーサーバ2を動作させる端末機能管理プログラムのモジュール構成について図9を用いて説明する。図9は、携帯端末7及び電子マネーサーバ2を動作させる端末機能管理プログラムP2のモジュール構成を説明するためのモジュール構成図である。
携帯端末7によれば、バリュー残高を記憶するチップ記憶部18へのアクセスの制限を設定する設定処理(ロック機能の有効化)が実行される。このため、携帯端末7の紛失や盗難後の他人による電子マネーの不正利用を防止することが可能になる。また、これによれば、ロック機能の有効化が完了する所定時間前の時点及びその時点以後に取得されたバリュー残高が、電子マネーサーバ2に記憶される。このため、残高保証サービスにおいて保証すべき電子マネー残高を迅速かつ正確に確定して保証することが可能になる。
本発明に係る実施形態では、ICチップ12は携帯端末7に内蔵される構成として説明したが、ICチップ12の配置場所は特に限定されず、例えば、図10に示されるように、ICチップ12と同様の機能を有する板状のICカード73が、携帯端末71とは独立して存在する構成であってもよい。
Claims (14)
- 電子マネーの残高を示す残高データを記憶する記憶手段と、当該残高データを読み出して返答する残高返答手段と、当該残高データが示す金額を残高変更情報に基づいて変更する金額変更手段と、所与の認証情報に基づいて前記残高データへのアクセスを制限するとともに、該認証情報が提示された場合に限り前記残高データへのアクセスを許可するアクセス制御手段と、を有するICモジュールにアクセス可能な携帯端末であって、
ユーザにより入力された認証情報を前記所与の認証情報として前記アクセス制御手段に前記残高データへのアクセスを制限させるアクセス制限設定手段と、
前記アクセス制御手段により前記残高データへのアクセスが制限されてから当該制限が解除されるまでに、前記入力された認証情報を提示して、前記ICモジュールの前記残高返答手段に返答させた残高データを取得する残高取得手段と、
前記取得した残高データをデータ記憶手段に記憶させる残高保存手段と、
を備える携帯端末。 - 前記残高保存手段は、前記取得した残高データを、前記データ記憶手段にアクセス可能な管理サーバに送信し、当該データ記憶手段に記憶させる、
請求項1に記載の携帯端末。 - ユーザにより入力された認証情報を前記所与の認証情報として、前記アクセス制御手段に前記残高データへのアクセス制限を解除させるアクセス制限解除手段をさらに備える、
請求項1又は2に記載の携帯端末。 - 前記アクセス制限解除手段は、アクセス制限を解除する際に残高データを前記残高取得手段に取得させ、該取得した残高データが示す残高と、前記データ記憶手段に記憶されている残高データが示す残高とが一致している場合に限り、前記残高データへのアクセス制限を解除させる、
請求項3に記載の携帯端末。 - 前記アクセス制限解除手段は、管理サーバから解除情報を取得した場合に限り、前記残高データへのアクセス制限を解除させる、
請求項3又は4に記載の携帯端末。 - 電子マネーの残高を示す残高データを記憶する記憶手段と、当該残高データを読み出して返答する残高返答手段と、当該残高データが示す金額を残高変更情報に基づいて変更する金額変更手段と、所与の認証情報に基づいて前記残高データへのアクセスを制限するアクセス制御手段と、を有するICモジュールにアクセス可能な携帯端末と、当該携帯端末と接続可能な管理サーバとにより構成される端末機能管理システムであって、
前記携帯端末は、
ユーザにより入力された認証情報を前記所与の認証情報として前記アクセス制御手段に前記残高データへのアクセスを制限させるアクセス制限設定手段と、
前記アクセス制御手段により前記残高データへのアクセスが制限される所定時間前から当該制限が解除されるまでに、前記ICモジュールの前記残高返答手段に返答させた残高データを取得する残高取得手段と、
前記取得した残高データを、データ記憶手段にアクセス可能な前記管理サーバに送信する残高送信手段と、
ユーザにより入力された認証情報を前記所与の認証情報として、前記アクセス制御手段に前記残高データへのアクセス制限を解除させるアクセス制限解除手段と、
を備え、
前記管理サーバは、
前記携帯端末から受信した残高データを、データ記憶手段に記憶させる残高保存手段と、
前記携帯端末からの要求に応じて解除情報を送信する制限解除許可手段と、
を備え、
前記アクセス制限解除手段は、前記管理サーバから取得した所定の解除情報を用いて、前記残高データへのアクセス制限を解除させる、
端末機能管理システム。 - 前記ICモジュールが備えるアクセス制御手段は、所与の認証情報に基づいて前記残高データへのアクセスを制限するとともに、該認証情報が提示された場合に限り前記残高データへのアクセスを許可し、
前記携帯端末が備える残高取得手段は、前記アクセス制御手段により前記残高データへのアクセスが制限されてから当該制限が解除されるまでに、入力された認証情報を提示して、前記ICモジュールの前記残高返答手段に返答させた残高データを取得し、
前記アクセス制限解除手段は、アクセス制限を解除する際に残高データを前記残高取得手段に取得させ、該取得した残高データを前記管理サーバに送信し、
前記管理サーバが備える制限解除許可手段は、前記携帯端末から受信した残高データが示す残高と、前記データ記憶手段に記憶されている残高データが示す残高とが一致している場合に限り、前記携帯端末に前記解除情報を送信する、
請求項6に記載の端末機能管理システム。 - 前記管理サーバは、前記ICモジュールが搭載する電子マネー機能が無効であるか否かを判別可能な無効情報を記憶する無効情報記憶手段をさらに備え、
前記管理サーバが備える前記制限解除許可手段は、前記無効情報記憶手段が記憶する無効情報を参照し、前記解除情報の要求元の携帯端末がアクセス可能なICモジュールに搭載されている電子マネー機能が無効であると判別される場合、当該携帯端末に前記解除情報を送信しない、
請求項6又は7に記載の端末機能管理システム。 - 前記携帯端末が備える前記アクセス制限設定手段は、前記入力された認証情報を用いて生成された暗号情報を前記所与の認証情報として前記アクセス制御手段に前記残高データへのアクセスを制限させ、
前記携帯端末が備える残高送信手段は、前記作出された暗号情報をさらに前記管理サーバに送信し、
前記管理サーバが備える前記残高保存手段は、前記携帯端末から受信した暗号情報を前記データ記憶手段にさらに記憶させ、
前記管理サーバが備える前記制限解除許可手段は、携帯端末からの要求に応じて、前記暗号情報を前記解除情報として送信する、
請求項6~8のいずれか一項に記載の端末機能管理システム。 - 電子マネーの残高を示す残高データを記憶する記憶手段と、当該残高データを読み出して返答する残高返答手段と、当該残高データが示す金額を残高変更情報に基づいて変更する金額変更手段と、所与の認証情報に基づいて前記残高データへのアクセスを制限するとともに、該認証情報が提示された場合に限り前記残高データへのアクセスを許可するアクセス制御手段と、を有するICモジュールにアクセス可能な携帯端末が行う端末機能管理方法であって、
前記携帯端末が、ユーザにより入力された認証情報を前記所与の認証情報として前記アクセス制御手段に前記残高データへのアクセスを制限させるアクセス制限設定ステップと、
前記携帯端末が、前記アクセス制御手段により前記残高データへのアクセスが制限されてから当該制限が解除されるまでに、前記入力された認証情報を提示して、前記ICモジュールの前記残高返答手段に返答させた残高データを取得する残高取得ステップと、
前記携帯端末が、前記取得した残高データをデータ記憶手段に記憶させる残高保存ステップと、
を有する端末機能管理方法。 - 電子マネーの残高を示す残高データを記憶する記憶手段と、当該残高データを読み出して返答する残高返答手段と、当該残高データが示す金額を残高変更情報に基づいて変更する金額変更手段と、所与の認証情報に基づいて前記残高データへのアクセスを制限するアクセス制御手段と、を有するICモジュールにアクセス可能な携帯端末と、当該携帯端末と接続可能な管理サーバとにより構成される端末機能管理システムが行う端末機能管理方法であって、
前記携帯端末が、ユーザにより入力された認証情報を前記所与の認証情報として前記アクセス制御手段に前記残高データへのアクセスを制限させるアクセス制限設定ステップと、
前記携帯端末が、前記アクセス制御手段により前記残高データへのアクセスが制限される所定時間前から当該制限が解除されるまでに、前記ICモジュールの前記残高返答手段に返答させた残高データを取得する残高取得ステップと、
前記携帯端末が、前記取得した残高データを、データ記憶手段にアクセス可能な前記管理サーバに送信する残高送信ステップと、
前記管理サーバが、前記携帯端末から受信した残高データを、データ記憶手段に記憶させる残高保存ステップと、
前記管理サーバが、前記携帯端末からの要求に応じて解除情報を送信する制限解除許可ステップと、
前記携帯端末が、ユーザにより入力された認証情報を前記所与の認証情報として、前記アクセス制御手段に前記残高データへのアクセス制限を解除させるアクセス制限解除ステップと、
を有し、
前記アクセス制限解除ステップでは、前記携帯端末が、前記管理サーバから取得した所定の解除情報を用いて、前記残高データへのアクセス制限を解除させる、
端末機能管理方法。 - コンピュータを、電子マネーの残高を示す残高データを記憶する記憶手段と、当該残高データを読み出して返答する残高返答手段と、当該残高データが示す金額を残高変更情報に基づいて変更する金額変更手段と、所与の認証情報に基づいて前記残高データへのアクセスを制限するとともに、該認証情報が提示された場合に限り前記残高データへのアクセスを許可するアクセス制御手段と、を有するICモジュールにアクセス可能な携帯端末携帯端末として機能させる端末機能管理プログラムであって、
前記コンピュータに、
ユーザにより入力された認証情報を前記所与の認証情報として前記アクセス制御手段に前記残高データへのアクセスを制限させるアクセス制限設定手段の機能と、
前記アクセス制御手段により前記残高データへのアクセスが制限されてから当該制限が解除されるまでに、前記入力された認証情報を提示して、前記ICモジュールの前記残高返答手段に返答させた残高データを取得する残高取得手段の機能と、
前記取得した残高データをデータ記憶手段に記憶させる残高保存手段の機能と、
を実現させる端末機能管理プログラム。 - 電子マネーの残高を示す残高データを記憶する記憶手段と、当該残高データを読み出して返答する残高返答手段と、当該残高データが示す金額を残高変更情報に基づいて変更する金額変更手段と、所与の認証情報に基づいて前記残高データへのアクセスを制限するとともに、該認証情報が提示された場合に限り前記残高データへのアクセスを許可するアクセス制御手段と、を有するICモジュールにアクセス可能な携帯端末を動作させる端末機能管理プログラムを記録したコンピュータ読取可能な記録媒体であって、
前記携帯端末を、
ユーザにより入力された認証情報を前記所与の認証情報として前記アクセス制御手段に前記残高データへのアクセスを制限させるアクセス制限設定手段と、
前記アクセス制御手段により前記残高データへのアクセスが制限されてから当該制限が解除されるまでに、前記入力された認証情報を提示して、前記ICモジュールの前記残高返答手段に返答させた残高データを取得する残高取得手段と、
前記取得した残高データをデータ記憶手段に記憶させる残高保存手段と、
として機能させる端末機能管理プログラムを記録したコンピュータ読取可能な記録媒体。 - 電子マネーの残高を示す残高データを記憶する記憶手段と、当該残高データを読み出して返答する残高返答手段と、当該残高データが示す金額を残高変更情報に基づいて変更する金額変更手段と、所与の認証情報に基づいて前記残高データへのアクセスを制限するアクセス制御手段と、を有するICカードにアクセス可能な携帯端末及び店舗端末と、当該携帯端末及び当該店舗端末と接続可能な管理サーバとにより構成される端末機能管理システムであって、
前記携帯端末は、
ユーザにより入力された認証情報を前記所与の認証情報として前記アクセス制御手段に前記残高データへのアクセスを制限させるアクセス制限設定手段と、
前記アクセス制御手段により前記残高データへのアクセスが制限される所定時間前から当該制限が解除されるまでに、前記ICカードの前記残高返答手段に返答させた残高データを取得する残高取得手段と、
前記入力された認証情報及び前記取得した残高データを、データ記憶手段にアクセス可能な前記管理サーバに送信する残高送信手段と、
を備え、
前記店舗端末は、
ユーザにより入力された認証情報を前記所与の認証情報として、前記アクセス制御手段に前記残高データへのアクセス制限を解除させるアクセス制限解除手段を備え、
前記管理サーバは、
前記携帯端末から受信した認証情報及び残高データを、データ記憶手段に記憶させるデータ保存手段と、
前記店舗端末から認証情報が前記データ記憶手段に記憶している認証情報と一致する場合に限り、前記店舗端末に解除情報を送信する制限解除許可手段と、
を備え、
前記アクセス制限解除手段は、前記管理サーバから取得した所定の解除情報を用いて、前記残高データへのアクセス制限を解除させる、
端末機能管理システム。
Priority Applications (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201280064930.2A CN104067304B (zh) | 2011-12-28 | 2012-12-26 | 便携终端、终端功能管理***以及终端功能管理方法 |
US14/368,648 US11055696B2 (en) | 2011-12-28 | 2012-12-26 | Portable terminal, terminal function management system, terminal function management method, terminal function management program, and computer-readable recording medium upon which said program has been recorded |
KR1020147014728A KR101498869B1 (ko) | 2011-12-28 | 2012-12-26 | 휴대 단말기, 단말기 기능 관리 시스템, 및 단말기 기능 관리 방법 |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2011289810A JP5351953B2 (ja) | 2011-12-28 | 2011-12-28 | 携帯端末、端末機能管理システム、端末機能管理方法、端末機能管理プログラム、及びそのプログラムを記録するコンピュータ読取可能な記録媒体 |
JP2011-289810 | 2011-12-28 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2013099958A1 true WO2013099958A1 (ja) | 2013-07-04 |
Family
ID=48697439
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/JP2012/083677 WO2013099958A1 (ja) | 2011-12-28 | 2012-12-26 | 携帯端末、端末機能管理システム、端末機能管理方法、端末機能管理プログラム、及びそのプログラムを記録するコンピュータ読取可能な記録媒体 |
Country Status (5)
Country | Link |
---|---|
US (1) | US11055696B2 (ja) |
JP (1) | JP5351953B2 (ja) |
KR (1) | KR101498869B1 (ja) |
CN (1) | CN104067304B (ja) |
WO (1) | WO2013099958A1 (ja) |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20150012414A1 (en) * | 2011-12-28 | 2015-01-08 | Rakuten, Inc. | Electronic money server, electronic money processing method, electronic money processing program product, and storage medium on which electronic money processing program product is stored |
CN108154361A (zh) * | 2017-12-22 | 2018-06-12 | 恒宝股份有限公司 | 一种移动终端内嵌u盾的访问方法及移动终端 |
CN115376252A (zh) * | 2022-07-13 | 2022-11-22 | 中国工商银行股份有限公司 | 卡片交互设备、方法、装置、计算机设备和存储介质 |
Families Citing this family (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP5930218B2 (ja) * | 2013-10-30 | 2016-06-08 | インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Machines Corporation | ユーザの操作を制限する機能を有する情報処理装置、方法、及び、プログラム |
US10121144B2 (en) | 2013-11-04 | 2018-11-06 | Apple Inc. | Using biometric authentication for NFC-based payments |
KR20170052389A (ko) | 2015-11-04 | 2017-05-12 | 삼성전자주식회사 | 휴대용 전자 장치를 위한 경보 시스템 및 방법 |
JP6985608B2 (ja) * | 2018-03-29 | 2021-12-22 | 株式会社バッファロー | 通信機器、通信機器の作動方法、通信機器の作動プログラム |
AU2020247833A1 (en) * | 2019-03-27 | 2021-11-18 | Xard Group Pty Ltd | Transaction application with a tokenized identifier |
CN112016125B (zh) * | 2020-09-08 | 2023-10-10 | 杭州海康威视数字技术股份有限公司 | 针对记录仪的异常处理方法、装置及设备 |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2003132291A (ja) * | 2001-10-26 | 2003-05-09 | Sony Corp | 携帯端末機および電子マネー残高回収方法 |
JP2007172576A (ja) * | 2005-11-22 | 2007-07-05 | Sharp Corp | 電子機器及びプログラム |
JP2008234168A (ja) * | 2007-03-19 | 2008-10-02 | Hitachi Software Eng Co Ltd | 電子マネー機能をもつ端末装置 |
Family Cites Families (12)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5640002A (en) * | 1995-08-15 | 1997-06-17 | Ruppert; Jonathan Paul | Portable RF ID tag and barcode reader |
CA2305249A1 (en) * | 2000-04-14 | 2001-10-14 | Branko Sarcanin | Virtual safe |
CN1290052C (zh) * | 2000-11-08 | 2006-12-13 | 松下电器产业株式会社 | 个人电子价值银行*** |
JP4112170B2 (ja) | 2000-12-27 | 2008-07-02 | 三菱電機株式会社 | 携帯電話機及び不正使用防止方法 |
JP3617491B2 (ja) * | 2001-10-31 | 2005-02-02 | ソニー株式会社 | Icチップ及び情報処理端末 |
JP5043442B2 (ja) * | 2004-01-20 | 2012-10-10 | 金 富 黄 | ロック付き銀行コンピュータ口座システム |
US7849161B2 (en) * | 2004-06-30 | 2010-12-07 | At&T Intellectual Property I, L.P. | System and methods for remotely recovering and purging data from a wireless device in a communications network |
JP4403433B2 (ja) * | 2007-08-23 | 2010-01-27 | ソニー株式会社 | 電子財布装置、通信方法及びプログラム |
JP5018339B2 (ja) * | 2007-08-23 | 2012-09-05 | ソニー株式会社 | 信号処理装置、信号処理方法、プログラム |
JP5286714B2 (ja) * | 2007-08-23 | 2013-09-11 | ソニー株式会社 | 電子財布装置、電子バリュー利用方法及びプログラム |
US20110137740A1 (en) * | 2009-12-04 | 2011-06-09 | Ashmit Bhattacharya | Processing value-ascertainable items |
US8868458B1 (en) * | 2010-02-12 | 2014-10-21 | Jpmorgan Chase Bank, N.A. | Remote account control system and method |
-
2011
- 2011-12-28 JP JP2011289810A patent/JP5351953B2/ja active Active
-
2012
- 2012-12-26 US US14/368,648 patent/US11055696B2/en active Active
- 2012-12-26 WO PCT/JP2012/083677 patent/WO2013099958A1/ja active Application Filing
- 2012-12-26 KR KR1020147014728A patent/KR101498869B1/ko active IP Right Grant
- 2012-12-26 CN CN201280064930.2A patent/CN104067304B/zh active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2003132291A (ja) * | 2001-10-26 | 2003-05-09 | Sony Corp | 携帯端末機および電子マネー残高回収方法 |
JP2007172576A (ja) * | 2005-11-22 | 2007-07-05 | Sharp Corp | 電子機器及びプログラム |
JP2008234168A (ja) * | 2007-03-19 | 2008-10-02 | Hitachi Software Eng Co Ltd | 電子マネー機能をもつ端末装置 |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20150012414A1 (en) * | 2011-12-28 | 2015-01-08 | Rakuten, Inc. | Electronic money server, electronic money processing method, electronic money processing program product, and storage medium on which electronic money processing program product is stored |
CN108154361A (zh) * | 2017-12-22 | 2018-06-12 | 恒宝股份有限公司 | 一种移动终端内嵌u盾的访问方法及移动终端 |
CN115376252A (zh) * | 2022-07-13 | 2022-11-22 | 中国工商银行股份有限公司 | 卡片交互设备、方法、装置、计算机设备和存储介质 |
Also Published As
Publication number | Publication date |
---|---|
CN104067304B (zh) | 2017-06-16 |
KR101498869B1 (ko) | 2015-03-09 |
JP2013140429A (ja) | 2013-07-18 |
US20150142652A1 (en) | 2015-05-21 |
CN104067304A (zh) | 2014-09-24 |
US11055696B2 (en) | 2021-07-06 |
KR20140084327A (ko) | 2014-07-04 |
JP5351953B2 (ja) | 2013-11-27 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
JP5351953B2 (ja) | 携帯端末、端末機能管理システム、端末機能管理方法、端末機能管理プログラム、及びそのプログラムを記録するコンピュータ読取可能な記録媒体 | |
US10977642B2 (en) | Apparatuses and methods for operating a portable electronic device to conduct mobile payment transactions | |
US10659457B2 (en) | Information processing device, information processing system, and information processing method | |
US20140289119A1 (en) | System and method for providing secure data communication functionality to a variety of applications on a portable communication device | |
US11062050B2 (en) | Devices, systems, and methods for securely storing and managing sensitive information | |
CN104811308A (zh) | 具有蓝牙接口的认证设备 | |
WO2012068292A1 (en) | System and method for physical-world based dynamic contactless data emulation in a portable communication device | |
JP7081133B2 (ja) | 認証情報提供サーバ及び施解錠方法 | |
Alattar et al. | Host-based card emulation: Development, security, and ecosystem impact analysis | |
EP3944109A1 (en) | Information processing system, information processing method, and program | |
EP2577616B1 (en) | A method of authorizing a person, an authorizing architecture and a computer program product | |
JP5619719B2 (ja) | 情報処理システム、携帯端末、情報処理方法、情報処理プログラム、及びそのプログラムを記録するコンピュータ読取可能な記録媒体 | |
KR101385723B1 (ko) | 금융거래를 수행할 수 있는 디지털 시스템, 상기 디지털 시스템과 페어를 이루는 페어 시스템, 및 금융거래 방법 | |
KR101543302B1 (ko) | 스마트 안심 인증 서비스 시스템 및 방법 | |
US11861028B2 (en) | Devices, systems, and methods for securely storing and managing sensitive information | |
JP6928151B1 (ja) | 情報処理方法及び情報処理装置 | |
US20240020413A1 (en) | Devices, systems, and methods for securely storing and managing sensitive information |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 12861718 Country of ref document: EP Kind code of ref document: A1 |
|
ENP | Entry into the national phase |
Ref document number: 20147014728 Country of ref document: KR Kind code of ref document: A |
|
WWE | Wipo information: entry into national phase |
Ref document number: 14368648 Country of ref document: US |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 12861718 Country of ref document: EP Kind code of ref document: A1 |