JP2001331447A - Computer system for transmitting mail including password safely in terms of security - Google Patents

Abstract

PROBLEM TO BE SOLVED: To transmit a password to a customer in a safe form on the assumption that the password is to be forgotten. SOLUTION: An agency server 9 utilizing a mail server 3 is provided with an employee information DB 13 for storing employee numbers and mail addresses, an individual authentication means for authenticating an individual and a means for generating the password for the customer and safely transmitting mail including the password to the mail address stored in the employee information DB 13 to the mail server 3 in the case that the individual authentication means receives only the employee number from a customer terminal and a prescribed processing is executed in the case that the individual authentication means receives the employee number and the password inside the mail from the customer terminal. In the case of updating an insurance contract or the like, the mail address of the contractor of a contract updating object is acquired from the employee information DB 13 by using the employee number of the contractor and the mail including the password for the contractor and information relating to contract updating addressed to the above mail address is safely transmitted to the mail server 13.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a technique for securely transmitting a password used for personal authentication to a customer with security.

[0002]

2. Description of the Related Art Identity authentication using an ID and a password is used in various situations. For example, a bank ATM (Auto
When withdrawing a deposit in a matted teller machine, a cash card recording an account number as an ID is inserted into an ATM and a password is input. If the correct password corresponding to the account number is entered, the deposit can be withdrawn. The password of a bank account or the like that a customer uses relatively often is not often forgotten, but the bank account and other passwords that are not frequently used may be forgotten.

If the password is forgotten, the user must confirm his / her identity and reset the password. In addition, Japanese Patent Application Laid-Open Nos.
Information such as a password hint is registered in advance, as in JP 77872, and if the customer forgets the password, the hint is presented to the customer, and the customer enters the password based on the hint. There are also techniques that remind you.

[0004] Various membership services are provided on the Internet. For example, a "password" is registered in advance in the event that a password is forgotten. In some cases, the password is reissued, and the password is transmitted to an e-mail address registered in advance. However, transmission of e-mail on the Internet is generally not safe in terms of security, and there is also a case where an e-mail is stolen and viewed by another person.

[0005]

[Problems to be Solved by the Invention] Application for insurance contracts and financial products, renewal of insurance contracts and financial products, acceptance of address change procedures, etc. are accepted by insurance companies or financial institutions provided on the network or their agents or In the case of performing this on a homepage of an agent (hereinafter referred to as “agent”), the first issue to be considered is security. It is necessary to prevent others from seeing the contents of the contract or performing procedures without permission. For this reason, identity authentication using IDs and passwords is important. However, as a practical matter, it is difficult for customers to remember passwords for procedures related to financial products such as insurance and investment trusts several times a year. extremely difficult.
If it is assumed that the password is memorized, a great deal of labor must be devoted to handling and processing such as reissuing the password.

Accordingly, an object of the present invention is to provide a technique for transmitting a password to a customer in a security-safe manner on the assumption that the customer does not remember the password.

Another object of the present invention is to provide a technique for enabling a customer to smoothly carry out a renewal procedure when renewing a contract for an insurance or financial product.

[0008]

According to a first aspect of the present invention, there is provided a computer which utilizes a mail server which can securely communicate with a customer terminal and manages mail addressed to the customer. The system (for example, the agency server in the embodiment) stores customer identification information (for example, a customer ID and an employee number) and an e-mail address to which a password of the customer is to be notified. Employee information DB), personal identification means for performing personal authentication of the customer with a pair of the customer identification information and the password, and a case where the personal authentication means does not receive a correct password from the customer terminal (for example, only the customer ID) ), A password for the customer is acquired (for example, a newly generated password or a previously stored password is read). E-mail addressed to the customer's e-mail address stored in the customer information storage means and including the password is securely protected (for example, if the computer system is connected to the same intranet as the mail server, (Including the case where the mail is transmitted after encryption etc.) When the personal authentication means receives the mail sending means to be sent to the mail server and the customer's identification information and the password contained in the mail from the customer's terminal Has means for executing a predetermined process.

For example, when an employee of a specific company is a customer, a server for insurance / financial business is connected to the company's intranet, for example. If the mail server on the intranet and the pair of the employee number and the mail address of the employee used by the company for business are used, the password can be sent by e-mail with security and security. Also, for example, S / MIME (Secure / M
ultipurpose InternetMail Extension) and PEM (Priv
If you use acy Enhanced Mail) technology, you can send an email including a password safely because it is encrypted. Further, for example, for example, ISP (Inte
In the case where a server for insurance and financial services is provided in the (rnet Service Provider) and an e-mail including a password is transmitted only to the user of the ISP, an e-mail including a password can be transmitted safely and securely.

In this way, even if the customer does not enter a password or enters an incorrect password, the customer can automatically receive a new password safely and securely. Therefore, the user can log in using the new password. After logging in, the customer may be required to perform a process of setting a new password, or may perform a process for contracting an insurance contract or other financial product without setting a password. Such a configuration is also possible. Processing for insurance contracts and contracts for other financial products may include receiving a contract application, receiving a contract renewal application, changing an address, and introducing insurance / financial products or contract contents.

Further, the above-mentioned mail transmitting means is addressed to the mail address of the contract renewal target contractor obtained from the customer information storage means by using the identification information of the contract renewal target contractor. It is also possible to adopt a configuration in which an e-mail including a password for the contractor whose contract is to be renewed and information related to the renewal of the contract is transmitted to the mail server in a secure manner. At the time of contract renewal, it is highly likely that the customer has already forgotten the password. Therefore,
If the password can be sent safely for security in conjunction with the contract renewal guidance, customer convenience will be greatly improved. In addition, not only at the time of contract renewal, but also at another timing, a target customer can be extracted and an e-mail including a procedure guide, an advertisement, and a password can be transmitted.

If the password included in the mail is newly generated before sending the mail, the security level can be increased. However, it is also possible to reuse a password set by a customer in the past or generated in the past.

A computer according to a second aspect of the present invention
The system includes customer information storage means for storing customer identification information and telephone information (for example, a mobile phone telephone number and a mobile phone e-mail address) to which the customer's password is to be notified; A personal authentication means for performing personal authentication of a customer with a password pair, and, when the personal authentication means does not receive a correct password from the customer terminal, obtains a password for the customer and stores it in the customer information storage means. Output means for outputting the password to the customer's telephone using the information of the customer's telephone, and personal identification of the customer's identification information and the password output to the customer's telephone from the customer's terminal. Means for executing a predetermined process when the means receives the data.

For example, a mobile phone dedicated to a customer or a customer (employee)
In the case of a company in which a dedicated telephone number is assigned to each company, the password can be notified by voice of the telephone. Further, there is also a case where an e-mail is transmitted to a customer-dedicated mobile phone by using a mail function of the mobile phone.

The output means described above is used to obtain the telephone information of the contract renewal target obtained from the customer information storage means by using the identification information of the contract renewal target contractor, It is also possible to adopt a configuration in which the password for the contract renewal target and information related to the contract renewal are output to the telephone of the contract renewal target contractor. As a result, the procedure for contract renewal can be easily performed.

According to a third aspect of the present invention, a computer system which can securely communicate with a customer terminal and uses a mail server for managing mail addressed to the customer includes a server. This server is
Personal authentication means for performing customer authentication using a pair of customer identification information and a password; and if the personal authentication means does not receive a correct password from the customer terminal, obtain a password for the customer and File creation means for creating a customer information file storing a password and a customer's mail address or customer identification information, and sending the customer information file to the server and a computer capable of securely communicating with the mail server on security. And a mail transmission program for transmitting, from the customer terminal, a mail including the customer identification information and a password for the customer using the customer information file in the computer to a mail server that manages mail addressed to the customer from the terminal of the customer. Password included in the email sent The when authentication means has received, and means for executing a predetermined process.

For example, if the insurance / financial business server cannot be connected to the company intranet, the customer information file and the mail transmission program are sent to a computer connected to the intranet, and mail is sent from the computer to the employee of the company. It is sent to the address. In some cases, a dedicated program is installed on a computer connected to the intranet, and only the customer information file is downloaded. Even in such a form, it is possible to safely send an e-mail including a password to a customer in terms of security.

The file creation means described above may be used as a client that stores identification information of a customer who is a contract renewal target or a mail address of the contract renewal target contractor and a password for the contract renewal target contractor. An information file is generated, and an e-mail sending program sends an e-mail including information related to the contract renewal and a password for the contract renewal target to the mail server to the contract renewal target contractor. Such a configuration is also possible. Procedures at the time of contract renewal can be promptly advanced.

The transmission means described above may be configured to transmit a mail transmission program to a computer.

The computer system according to the first to third aspects of the present invention is implemented by a combination of computer hardware and a program. A program that causes the computer hardware to execute each step of the processing as described above is, for example, a storage medium or storage such as a floppy (registered trademark) disk, a CD-ROM, a magneto-optical disk, a semiconductor memory, or a hard disk. Stored in the device. The intermediate processing result is temporarily stored in a memory.

[0021]

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS An example in which the present invention is applied to insurance business will be described below. However, the present invention is also applicable to various services requiring personal authentication, for example, other financial-related services. In particular, it is useful for a company that provides, for example, financial products whose contract period is specified in the contract. [First Embodiment] FIG. 1 shows an outline of a system according to a first embodiment. For example, an intranet 1 which is a corporate LAN
Includes a mail server 3 for managing mail addressed to each employee's mail address, a customer terminal A (5) and a customer terminal B.
(7) is connected. The intranet 1 is a secure network for security. Internal customer terminal A
The mail between (5) and the customer terminal B (7) is once transmitted to the mail server 3 and stored in a destination mail address area (mail box) in the mail server 3. The customer terminal 3 or 5 performs reception processing using the mail client program, so that the mail in the mailbox can be used at the customer terminal 3 or 5. In addition,
It is assumed that personal identification processing is performed by some method for receiving mail from the mail server 3 at the customer terminals 3 and 5. That is, it is assumed that the person who can see the mail transmitted to the specific mail address is only the person himself / herself. The same applies to mails received from outside the company via the Internet. Further, it is assumed that a web browser is executable on the customer terminals 3 and 5.

The agency server 9 used by the insurance company agency is connected to the intranet 1 via a VPN (Virtual Private Network) 11. A dedicated line instead of the VPN 11 may be used. The agency server 9 is, for example, a web server, and enables information on various insurances and insurance contract procedures for access from the customer terminals 5 and 7. However, with respect to portions other than the mere provision of information, the customer information, for example, the contract details, etc., is provided only to the person. Therefore, in the agency server 9, personal authentication processing is performed. In the personal authentication process, for example, an employee number and a password are used. The agency server 9 has a function of transmitting a password by e-mail to a customer e-mail address, as described later, in addition to the personal authentication processing. That is, the mail including the password is transmitted to the mail server 3 that manages the mail addressed to the customer mail address. Information necessary for such processing is connected to the agency server 9 as the employee information DB 13.

FIG. 2 shows an example of the employee information DB 13. For example, an employee number, a mail address, a password, a telephone number, a name, and the like are stored for each customer (employee). Employee information other than the password is obtained from the company if the company permits. If the company does not allow it, it is necessary to individually obtain employee information excluding the password, particularly the employee number and e-mail address, from the customer. It would be good if the password could be the same as the password for accessing the mailbox in the company, for example, but in some cases the company would not allow it. Here, a password is separately set.

The agency server 9 is connected to the insurance company server 15 via, for example, a dedicated line 17. The insurance company server 15 transmits, for example, information on new insurance to the dedicated line 17.
Or a process of transmitting the calculation result to the agency server 9 by transmitting the calculation result to the agency server 9 via the agent server 9 when the information that is the basis of the insurance premium calculation is received from the agency server 9, for example. A configuration for implementing the present invention may be adopted. Note that the insurance company server 15 itself is not a
It may be configured to connect to the intranet 1 via N11 or the like.

Next, the operation of the system shown in FIG. 1 will be described with reference to FIG. The customer operates the customer terminal 5 or 7 to access the agency server 9 (step S1). If this access is a request for a process that requires personal authentication, such as applying for an insurance contract,
The screen information requesting the input of the employee number and the password is transmitted to the customer terminal 5 or 7 (step S3). Customer terminal 5
Or, 7 displays a screen for requesting input of an employee number and a password in the Web browser. The customer, on the other hand,
Assume that you have forgotten your password. In this embodiment, in this case, the customer inputs only the employee number. The screen information transmitted from the agency server 9 may include a description such as “If you have forgotten your password, enter only the employee number”. Unless the user inputs the e-mail address at this time, spoofing cannot be prevented.

When the customer inputs the employee number into the Web browser of the customer terminal 5 or 7, the customer presses a transmission button provided in the Web browser. Then, the customer terminal 5 or 7 transmits the employee number to the agency server 9 (step S5). When only the employee number is received, the agency server 9 newly generates a password for the employee number without performing the personal authentication process (step S7).
The generated password is stored in the employee information DB13.
It is stored corresponding to the employee number. Although a new password is generated, when only the employee number is received, the agency server 9 changes the employee information DB.
It is also possible to replace step S7 by searching for the password 13 and acquiring the already registered password. However, since the password stored in the employee information DB 13 is a password that has been used in the past, it is leaked to another person for some reason (for example, when a memo of the password by a customer is seen by another person). In some cases. Therefore, a newly generated security level is higher.

Next, the agency server 9 acquires the corresponding mail address from the employee information DB 13 using the received employee number, and transmits the password generated in step S7 by mail. That is, the mail including the password is transmitted to the mail server 3 (step S9). The mail server 3 receives the mail including the password and stores it in the mailbox of the destination mail address (Step S).
11).

Next, the customer instructs the customer terminal 5 or 7 to perform a mail receiving process. Then, the customer terminal 5 or 7
The mail server 3 sends a mail reception request as mail reception processing.
(Step S15). At this time mail server 3
Performs personal authentication processing, and if the personal authentication is successful, sends an e-mail addressed to the customer to the customer terminal 5 or 7 (step S13). Upon receiving the mail, the customer terminal 5 or 7 displays the contents of the mail according to the operation of the customer. Here, it is assumed that the customer can know the password generated in step S7.

Then, the customer operates the customer terminal 5 or 7 to access the agency server 9 again (step S1).
7). Then, the agency server 9 also displays the screen information requesting the input of the employee number and the password again at the customer terminal 5 or 7.
(Step S19). W of customer terminal 5 or 7
The web browser displays the received screen information. The customer inputs the employee number and the password acquired from the e-mail to the Web browser, and presses a send button similarly prepared in the Web browser. Then customer terminal 5 or 7
Transmits the input employee number and password to the agency server 9 (step S21).

Upon receiving the employee number and the password, the agency server 9 performs an identity authentication process. This is to confirm whether the pair of the employee number and the password registered in the employee information DB 13 is the same as the pair of the received employee number and the password. If it is determined that they are the same, for example, screen information for performing password change registration is transmitted to the customer terminal 5 or 7. When a new password set by the customer is received from the customer terminal 5 or 7,
It is registered in the employee information DB 13 corresponding to the employee number of the customer. In addition, the agent server 9 may register the new password in addition to or separately from the registration of the new password.
Carry out insurance application processing. The insurance application process includes a process for a new insurance application and a renewal application for an existing insurance contract. For example, the agency server 9 transmits the insurance application form screen information selected by the customer to the customer terminal 5 or 7, receives the insurance application content input by the customer,
For example, it transmits to the insurance company server 15 connected by the dedicated line 17. Further, the contents of the existing insurance contract are acquired from, for example, the insurance company server 15 and transmitted to the customer terminal 5 or 7.
It may be configured such that the agency server 9 manages contract information in a database (not shown) by itself.

The general processing flow has been described above. Here, the operation of the system shown in FIG. 1 when updating an existing insurance contract will be described with reference to FIG. First, the agency server 9 extracts a customer related to renewal of the insurance contract. This is extracted by, for example, acquiring information (for example, employee number) of the customer at the time of renewing the insurance contract from the insurance company server 15 or searching the insurance contract database held by the agency server 9. Then, a new password is generated for the extracted customer (step S31). The generated password is stored in the employee information DB 13 corresponding to the employee number of the customer. 3, it is also possible to take out the password stored in advance in the employee information DB 13 and use it again.

Then, the agency server 9 transmits an e-mail for guiding the renewal of the insurance contract including the generated password to the e-mail address of the extracted customer (step S33). That is, the employee information DB 13 is searched using the extracted employee number of the customer to obtain an e-mail address, and the generated password and the information on insurance contract renewal are sent to the mail server 3 that manages e-mail addressed to the e-mail address. Send an email containing Mail server 3
Receives the mail and stores it in the mailbox of the destination mail address (step S35).

Next, the customer instructs the customer terminal 5 or 7 to perform a mail receiving process. Then, the customer terminal 5 or 7
The mail server 3 sends a mail reception request as mail reception processing.
(Step S39). At this time mail server 3
Performs personal authentication processing, and if the personal authentication is successful, sends an e-mail addressed to the customer to the customer terminal 5 or 7 (step S37). Upon receiving the mail, the customer terminal 5 or 7 displays the contents of the mail according to the operation of the customer. Here, it is assumed that the customer can know the password generated in step S7.

The customer operates the customer terminal 5 or 7 to access the agency server 9 (step S4).
1). Then, the agency server 9 also outputs screen information for inputting the employee number and the password to the customer terminal 5 or 7 (step S43). Web of customer terminal 5 or 7
The browser displays the received screen information. Customer is W
Enter the employee number and the password obtained from the e-mail into the web browser, and press the send button also prepared in the web browser. Then, the customer terminal 5 or 7 transmits the input employee number and password to the agency server 9 (step S45).

Upon receiving the employee number and the password, the agency server 9 performs an identity authentication process. This is to confirm whether the pair of the employee number and the password registered in the employee information DB 13 is the same as the pair of the received employee number and the password. If it is determined that they are the same, for example, screen information for performing password change registration is transmitted to the customer terminal 5 or 7. When a new password set by the customer is received from the customer terminal 5 or 7,
It is registered in the employee information DB 13 corresponding to the employee number of the customer. In addition, the agent server 9 may register the new password in addition to or separately from the registration of the new password.
Perform insurance contract renewal processing. For example, the contents of an existing insurance contract are acquired from, for example, the insurance company server 15 and transmitted to the customer terminal 5 or 7, and the customer is requested to input such as whether to update the condition as it is or to change the condition. In addition,
It may be configured such that the agency server 9 manages contract information in a database (not shown) by itself.

As described above, since the agency server 9 is connected to the intranet 1 via the VPN 11, the security on the intranet 1 and the VPN 11 is maintained. Also, even when the customer terminals 5 and 7 receive the mail from the mail server 3, if the personal authentication is performed in any way, even if the mail including the password is transmitted, there is a very high possibility of being stolen by another person. Low. As described above, in the present embodiment, the password can be transmitted securely by e-mail on the premise that the customer forgets the password. In the case of renewal of the insurance contract, the customer can be notified of the renewal of the insurance contract as a customer service, and at the same time, the password can be sent in a secure form. You can solve it with this email. Insurance agents and insurance companies are more likely to obtain insurance contract renewals because the customer can proceed smoothly.

[Embodiment 2] FIG. 5 shows Embodiments 2 to 5.
An outline of the system is shown. The Internet, which is an insecure network, has a router 233.
ISP23 and the agent server 2 via communication devices such as
5 are connected. Although the insurance company server 27 is directly connected to the agency server 25 in FIG.
7 may be connected to the Internet 21. Also, as described in the first embodiment, the insurance company instead of the agency may provide a server corresponding to the agency server 25.

The router 233 of the ISP 23 has the ISP
A mail server 231 for 23 members is provided.
Normally, the security between the mail server 231 of the ISP 23 and the customer terminal 31 is secure.
When the mail is downloaded from the client terminal 31 to the customer terminal 31, the personal authentication processing is performed by the personal authentication function provided in the mail server 231. In some cases, I
In some cases, the agency server 235 is provided in the router 233 of the SP 23 so that only members of the ISP 23 can access.

The ISP 23 sends the customer terminal 31 to the public line network 2
Start 9 and connect. A customer telephone set 33 is also connected to the public line network 29. In addition, the customer's mobile phone 35
Are also wirelessly connected to the public network 29.

The agency server 25 is connected to the public line network 29, makes a call to the customer's telephone 33 and the portable telephone 35, and uses the voice synthesis function provided in the agency server 25 to transmit information. It can also be communicated. Further, when the mobile phone 35 has a mail transmission / reception function, the agency server 25 sends a dedicated line 3 to the mobile phone mail server 37 provided in the mobile phone company.
9 and the like. The mobile phone mail server 37 is connected to the public line network 37, and sends mail to the mobile phone 35 and receives mail from the mobile phone 35 using the public line network 37 and wireless communication.

In the second to fifth embodiments, a certain ISP2
A case in which a customer who is a member of No. 3 accesses the agency server 25 connected to the Internet 21 using the customer terminal 31 and performs insurance contract processing or the like. Then, as in the first embodiment, it is assumed that the customer has forgotten the password.

The processing flow of the second embodiment is the same as that of the first embodiment shown in FIGS. However, the method of transmitting the newly generated password is different. In the second embodiment, the Internet 2
1 send the mail. However, if an e-mail containing a password is sent in plain text, it may be seen by others. Therefore, since the encryption is performed by using the S / MIME or PEM technology, the mail including the password can be sent safely via the Internet 21 in terms of security. If the mail is safely delivered to the mail server 231, usually the password cannot be peeped, but S / MIME or PE
When M is used, the code is decrypted at the customer terminal 31, so that it is safe as long as the code is not broken.

[Third Embodiment] The processing flow of the third embodiment is the same as that of the first embodiment shown in FIGS. However, the method of transmitting the newly generated password is different. In the third embodiment, the ISP
An agent server 235 is provided in the ISP 23, and a mail server 231 is also provided in the ISP 23. As described above, the agency server 235 can be accessed only by members of the ISP 23, and the mailbox is always on the mail server 231. Therefore, the agency server 235 sends the mail including the password to the ISP 23
To the mail server 231 via a secure network inside the server. In this way, since the security between the agency server 235 and the mail server 231 and the security between the mail server 231 and the customer terminal 31 are secure, the password can be transmitted to the customer without being stolen.

[Fourth Embodiment] The processing flow of the fourth embodiment is similar to that of the first embodiment shown in FIGS. However, in the fourth embodiment, the password is transmitted by voice without using e-mail.
Therefore, no mail server is used. Although the mail including the password is transmitted in step S9 in FIG. 3 and step S33 in FIG. 4, in the third embodiment,
By using the voice synthesis function of the agency server 25, the telephone number of the customer's telephone set 33 registered in advance is called via the public line network 29, and the password is notified by voice. The agency server 25 can also call the mobile phone 35 via the public line network 29 and wirelessly to notify the password by voice. If the customer does not answer the telephone when the agency server 25 calls, the password will be leaked. Therefore, the customer information (employee information) in FIG. You need to register a number. For this reason, for example, only the telephone number of the mobile phone 35 may be registered. Further, there is a case where screen information indicating that a call is to be made is transmitted from the agency server 25 to the customer terminal 31 to urge the customer to immediately answer the call.

If the password is transmitted to the customer by voice via the public line network 29 as described above, it can be said that the security is secure as long as no one else answers the telephone.

In the fourth embodiment, steps S11 to S15 in FIG. 3 and step S11 in FIG.
35 to S39 will be skipped.

[Fifth Embodiment] The processing flow of the fifth embodiment is the same as that of the first embodiment shown in FIGS. However, the method of transmitting the mail including the password is different. In the fifth embodiment, the agency server 25 connects to the mobile phone mail server 37 via a secure communication line such as a dedicated line 39, and transmits a mail including a password to the mobile phone mail server 37. . It is downloaded from the mobile phone mail server 37 to the mobile phone 35 via the public line network 29 and wirelessly. The public network 29 is usually secure in terms of security, and it can be said that the wireless portion is now also secure.

In the case of the fourth and fifth embodiments, for example, a customer information DB as shown in FIG. 6 is used instead of the employee information DB 13 shown in FIG. That is, the customer ID,
A password and at least one of a telephone number and a mail address of the mobile phone are registered as telephone information.

[Sixth Embodiment] As described in the first embodiment, the connection of the agency server or the insurance company server to the company intranet may or may not be permitted. In this embodiment, an agent server or an insurance company server cannot be connected to a company intranet, and an employee accesses the agent server via the Internet.

FIG. 7 shows a system outline of the sixth embodiment. The company 43 has an intranet 433.
The intranet 433 includes a mail server 439 for managing mail addressed to the mail addresses of the employees, a customer terminal 435 for executing a Web browser, and an agent terminal that is allowed to operate the agent staff in the company 43. 437 are connected. Agent terminal 437 has W
The web browser 4371 is executed, and the web browser 43
An applet 4373 is executed on 71. Note that J
The ava (Java is a trademark of Sun Microsystems) applet 4373 is not always executed.

The intranet 433 is connected to the Internet 41 via a firewall 431.
An agent server 45 is connected to the Internet 41. Although not shown, the insurance company server may be connected to the agency server 45 as shown in FIG. An employee information DB 47 is connected to the agency server 45. The employee information DB 47 may be the same as that in FIG.

Next, the operation of the system shown in FIG. 7 will be described with reference to FIG. The customer operates the customer terminal 435 to access the agency server 45 (step S51). The agency server 45, when this access is a request for a process that requires personal authentication such as application for an insurance contract,
The screen information requesting the input of the employee number and the password is transmitted to the customer terminal 435 (step S53). Customer terminal 4
Reference numeral 35 displays a screen for requesting input of an employee number and a password in the Web browser. On the other hand, it is assumed that the customer has already forgotten the password. In this embodiment, in this case, the customer inputs only the employee number.

When the customer inputs the employee number into the web browser of the customer terminal 435, the customer presses a send button provided in the web browser. Then the customer terminal 435
Transmits the employee number to the agency server 45 (step S55). When only the employee number is received, the agency server 45 newly generates a password for the employee number without performing the personal authentication process. The generated password is stored in the agency terminal file together with the employee number of the customer and the mail address extracted from the employee information DB 47 by using the password (step S5).
7). For the generated password, the employee information D
It is also stored in B47.

FIG. 9 shows an example of the agency terminal file. The agency terminal file is later downloaded to the agency terminal 437 at an arbitrary timing, and is stored in the agency terminal 437.
Used for sending mail from 37. In other words, for a certain period of time, employee information of customers to whom e-mails are to be transmitted is accumulated in the agency terminal file. The agency terminal file stores not only the case where the customer accesses the agency server 45 but also the employee information of the customer extracted by the agency server 45 or the like as having come to the time of renewing the insurance contract. Therefore, in FIG. 9, a flag column (“update (0)”) indicating whether the customer is a customer extracted upon renewal of the insurance contract.
"/ Other (1)", 0 is set if the customer is extracted when updating the insurance contract, and 1 is set otherwise. 0/1 can be reversed), an employee number column, a mail address column, and a generated password column. Providing a column for employee numbers is optional. If the agency terminal 437 has a configuration in which a mail address can be obtained from the employee number, the employee number may be included instead of the mail address.

Upon receiving the employee number, the agency server 45 transmits screen display information to the customer terminal 435, for example, "Please wait for a while. May indicate that the request has been accepted.

Next, the agent terminal 437 at an arbitrary timing
Is operated by the staff of the agency to access the agency server 45 and request the agency server 45 to download the agency terminal file (step S59). On the other hand, the agency server 45 transmits the agency terminal file to the agency terminal 437 using SSL (Secure Socket Layer) (step S61). Without SSL, the Internet 41 is not secure
Must be sent via the Internet, so that the password is leaked to the outside. Further, since the firewall 431 is provided, it is not possible to transmit the agency terminal file to the agency terminal 437 starting from the agency server 45. Agent terminal 43 in firewall 431
If the communication link is not sent from the server 7 to the agency server 45, the agency terminal file cannot be sent to the agency terminal 437. Next, the agency server 45 transmits the mail applet 4373 (step S63). The mail applet 4373 transmits a mail including the password for the customer to the mail server 439 for managing the mail addressed to the employee's mail address to the customer to whom the password is to be transmitted, using the agency terminal file. It has the function to do.

Thus, when the agency terminal 437 receives the agency terminal file and the mail applet, the mail applet 4373 is activated on the Web browser 4371, and the mail applet 4373 uses the agency terminal file. Then, the mail including the password is transmitted to the mail server 439 (step S65). The mail server 439 stores the received mail in the mailbox corresponding to the destination mail address (Step S)
67).

Here, the mail applet 4373 is
Change the content of the mail generated based on whether or not the customer (employee) whose insurance contract is to be updated in the agency terminal file.
The e-mail applet 4373 generates an e-mail including an outline of the insurance contract and a password for log-in as guidance of the renewal of the insurance policy for a customer whose insurance contract is to be renewed. , Generate an e-mail including a password and a guide to send the password. In both cases, advertisements may be included.

The processing in the agency terminal 437 ends when all the mail addresses stored in the agency terminal file have been processed. In the description so far, the agency staff operates the agent server 4
5, the agent terminal file is downloaded to the agent terminal 437. However, after the processing of the agency terminal 437 is started once, for example, the mail applet 4373 may be configured to execute the steps S59 and S65 periodically or at an arbitrary timing. In this way, the labor of the agency staff is reduced, and the password can be transmitted to the customer quickly.

The customer operates the customer terminal 435 at an arbitrary timing to instruct the customer terminal 435 to perform a mail receiving process. Then, customer terminal 435 outputs a mail reception request to mail server 439 as mail reception processing (step S71). At this time, the mail server 3 performs, for example, personal authentication processing, and if the personal authentication is successful, sends an e-mail addressed to the customer to the customer terminal 435 (step S69). Upon receiving the mail, the customer terminal 435 displays the contents of the mail according to the operation of the customer. Here, it is assumed that the customer can know the password generated in step S57.

Then, the customer operates the customer terminal 435,
Access the agency server 45 (step S73).
Then, the agency server 45 also outputs screen information for inputting the employee number and the password to the customer terminal 435 (step S75). The Web browser of the customer terminal 435 displays the received screen information. For security reasons, the customer terminal 435 and the agency server 45 will be used hereafter.
Performs communication using SSL. The customer inputs the employee number and the password acquired from the e-mail to the Web browser, and presses a send button similarly prepared in the Web browser. Then, the customer terminal 435 transmits the input employee number and password to the agency server 45 (step S77).

Upon receiving the employee number and the password, the agency server 45 performs a personal authentication process. This is a pair of employee number and password registered in the employee information DB 47,
This is to confirm whether the pair of the received employee number and password is the same. If it is determined that they are the same, for example, screen information for performing password change registration is transmitted to the customer terminal 435. And the customer terminal 435
When a new password set by the customer is received from the company, the new password is registered in the employee information DB 47 corresponding to the employee number of the customer. In addition, the agency server 45 may register the new password in addition to or separately from the registration of the new password.
Perform insurance contract renewal processing. For example, the contents of an existing insurance contract are acquired and transmitted to the customer terminal 435, and the customer is requested to input such as whether to update under the same conditions or change the conditions.

[Embodiment 7] In the embodiment 6, the mail transmission applet 4373 is downloaded from the agency server 45. However, a dedicated terminal having the same function as the mail transmission applet is provided to the agency terminal 4371 without downloading. Install the program. And
The agency terminal 437 downloads only the agency terminal file from the agency server 45, and executes a dedicated program to transmit an email including a password to the mail server. The processing flow is almost the same as that of FIG. 8 of the sixth embodiment.
Step 65 is executed by a dedicated program.

The embodiment of the present invention described above is an example, and various modifications are possible. The agency server and the insurance company server can be configured by a plurality of servers instead of a single server. Although one or two customer terminals are shown, the number of customer terminals is not limited. Furthermore, the number of ISPs is not limited, and the number of mobile phone mail servers is not limited. Employee information DB
May also include the contents of the insurance contract.

In the above-described embodiment, when the password is forgotten, only the employee number is input. However, not only the employee number but also a password is transmitted by e-mail even when, for example, an incorrect password is entered. Thus, when a person other than the person tries to log in, the mail is reliably sent to the person, so that the presence of a person trying to perform an illegal act can be detected.

Although the case where the customer terminal is fixed is shown, a portable telephone can be used as the customer terminal.

[0067]

According to the present invention, it is possible to provide a technique for transmitting a password to a customer in a security-safe manner on the assumption that the customer does not remember the password.

In addition, it was possible to provide a technique for enabling a customer to smoothly perform a renewal procedure when renewing a contract for an insurance or financial product.

[Brief description of the drawings]

FIG. 1 is a schematic diagram of a system according to a first embodiment.

FIG. 2 is a diagram illustrating an example of an employee information DB.

FIG. 3 is a diagram showing a processing flow (normal case) of the first embodiment;

FIG. 4 is a processing flow of the first embodiment (in the case of renewing an insurance contract);
FIG.

FIG. 5 is a schematic diagram of a system according to the second to fifth embodiments.

FIG. 6 is a diagram illustrating an example of a customer information DB according to the fourth and fifth embodiments.

FIG. 7 is a schematic diagram of a system according to a sixth embodiment.

FIG. 8 is a diagram illustrating a processing flow according to a sixth embodiment.

FIG. 9 is a diagram showing an example of an agency terminal file.

[Explanation of symbols]

1,433 Intranet 3,231,439
Mail server 5, 7, 31, 435 Customer terminal 9, 235, 25, 45 Agent server 15, 27 Insurance company server 13, 47 Employee information DB 29 Public line network 37 Mobile phone mail server 33 Telephone 35 Mobile phone 21, 41 Internet 437 Agent terminal

 ──────────────────────────────────────────────────続 き Continuing from the front page (72) Katsuichi Masuyama, Inventor 1-2-1, Marunouchi, Chiyoda-ku, Tokyo Tokyo Metropolitan Marine Insurance Company (72) Inventor Yoshiyuki Nakai 1-2-1, Marunouchi, Chiyoda-ku, Tokyo No. Tokyo Marine Fire Insurance Co., Ltd. (72) Muneda Machida, Inventor 1-2-1, Marunouchi, Chiyoda-ku, Tokyo (72) Inventor Koji Iwamoto 1-2-2 Marunouchi, Chiyoda-ku, Tokyo, Japan No. 1 Tokyo Marine Fire Insurance Co., Ltd. (72) Inventor Takehiro Aoki 1-2-1, Marunouchi, Chiyoda-ku, Tokyo 1-272 Inside Tokyo Keikai Fire Insurance Co., Ltd. (72) Inventor Hiroyuki Inoue Chiyoda-ku, Tokyo 1-2-1, Marunouchi Tokyo Metropolitan Maritime Fire Insurance Co., Ltd. (72) Inventor: Teruaki Tanaka 1-2-1, Marunouchi, Chiyoda-ku, Tokyo Kyoto Marine Fire Insurance Co., Ltd. in the F-term (reference) 5B085 AE03 AE23 5J104 AA07 EA03 EA11 KA01 NA01 NA05 PA08 5K030 GA15 HA06 HC01 HC13 KA06 KA07

Claims (9)

[Claims] 1. A computer system which can securely communicate with a terminal of a customer in terms of security and uses a mail server which manages mail addressed to the customer, the identification information of the customer and a password of the customer. Customer information storage means for storing an e-mail address as a notification destination of the customer, personal authentication means for performing personal authentication of the customer with a pair of the customer identification information and the password, and wherein the personal authentication means is correct from the customer terminal. If the password is not received, a password for the customer is acquired, and an e-mail addressed to the customer's e-mail address stored in the customer information storage means and including the password is securely and safely transmitted to the mail server. Means for transmitting to the customer, identification information of the customer from the terminal of the customer and the mail Means for executing a predetermined process when the personal authentication means receives the password and the password. 2. The method according to claim 1, wherein the mail sending means is addressed to an e-mail address of the contract renewal target contractor obtained from the customer information storage means using identification information of the contract renewal target contractor, and 2. The computer system according to claim 1, wherein a mail including a password for a contractor to be renewed and information related to renewal of the contract is transmitted to the mail server in a secure manner. 3. A customer information storage means for storing customer identification information and information on a telephone to which a password of the customer is to be notified, and a user who performs customer authentication by using a pair of the customer identification information and the password. If the authentication means does not receive a correct password from the customer terminal, the personal authentication means obtains a password for the customer, and retrieves the customer telephone information stored in the customer information storage means. Output means for outputting the password to the customer's telephone by using the identification information of the customer from the customer's terminal and the password output to the customer's telephone when the personal authentication means receives the password. Means for executing a predetermined process. 4. The contractor according to claim 1, wherein said output means acquires telephone information of said contract update target contractor obtained from said customer information storage means using identification information of a contract update target contractor which is a customer. 4. The computer system according to claim 3, wherein a password for the contractor to be updated and information related to the contract update are output to a telephone of the contractor to be updated. 5. A computer system using a mail server capable of securely communicating with a customer terminal and managing mail addressed to the customer, wherein the computer system includes a server. The server includes: a personal identification unit configured to perform personal identification of the customer with a pair of the customer identification information and the password; and a password for the customer when the personal identification unit does not receive a correct password from the terminal of the customer. And a file creation means for creating a customer information file storing the password and the customer's e-mail address or customer identification information, and a computer capable of performing secure communication with the server and the mail server on security. Transmitting means for transmitting the customer information file to the customer terminal; The customer identification information and the computer are transmitted by executing a mail transmission program that transmits a mail including a password for the customer to the mail server that manages mail addressed to the customer using the customer information file. And a means for executing a predetermined process when the personal authentication means receives the password contained in the mail. 6. The customer information in which the file creating means stores identification information of a customer who is a contract renewal target or a mail address of the contract renewal target contractor and a password for the contract renewal target contractor. A file is generated, and the mail transmission program transmits, to the mail server, mail including information related to contract renewal and a password for the contract renewal target contractor to the contract renewal target contractor. The computer system according to claim 5, wherein: 7. The computer system according to claim 5, wherein said transmission means transmits said mail transmission program to said computer. 8. The computer system according to claim 1, wherein said predetermined process is at least one of a new password setting process and a contract application receiving process. 9. The password included in the mail is newly generated before sending the mail.
A computer system according to any one of claims 1 to 8.