JP2004220567A - Electronic cash system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an electronic cash system with which the convenience and safety of commercial transactions are enhanced, in the chargeable prepaid electronic cash system. <P>SOLUTION: In the electronic cash system, when a USB key 16 in which category information as information regarding use of electronic cash is stored is inserted into a user PC 14, and purchase application of an article or service is performed on a service site provided by a service site server 13 by using the user PC 14, the category information about the USB key 16 is collated with category information about the article and the service by the user PC 14 and when pieces of category information coincide with each other, a settlement processing by the electronic cash with a cash center server 11 is carried out. <P>COPYRIGHT: (C)2004,JPO&NCIPI

Description

    The present invention relates to a prepaid electronic cash system using a USB key, which is a USB (Universal Serial Bus) device, and more particularly to an electronic cash system with improved convenience and security in commercial transactions.

    The conventional electronic cash stores data corresponding to the amount of money in an IC card, reduces the accumulated amount of data in the IC card in an actual store or the like, and makes it possible for the store or the like to withdraw the money, thereby performing shopping and the Internet. In this method, data on the amount of money stored in the IC card is read, and when the product or the like is purchased on the Internet, the data can be debited to the seller of the product or the like, so that the IC card can be used.

Regarding the electronic cash in the conventional prepaid system, Japanese Patent Application Laid-Open No. 2002-83237, published on March 22, 2002, discloses a method for managing the settlement of e-commerce using the prepaid system (applicant: BIS Inc., inventor: Muramatsu and others).
This conventional system is provided with a prepaid card in which an identification number of a card issuing company and a user UIC are registered in advance, a store processing terminal device, a POS terminal, and a charge management computer, and when a request for provision of paid content services is made. The charge management computer performs subtraction processing of a prepaid fee from the stored merchandise information of the card in accordance with the amount of distribution service.
Incidentally, a magnetic card and an IC card are used as the prepaid card.

As for an electronic cash using a USB key, there is Japanese Patent Application Laid-Open No. 2002-259867 published on Sep. 13, 2002 by the present applicant.
In the electronic cash system using the USB key, a user purchases a USB key sold for a specific amount, and purchases a product or the like on the Internet within a range of the amount of the USB key managed by the cash center. In that, it was an electronic cash that used up a specific amount.

JP-A-2002-83237 (pages 7 to 21) JP-A-2002-259867 (pages 3 to 5)

    However, in the above-mentioned conventional electronic cash system, for example, since an IC card is used, an IC card reader / writer is required when conducting business transactions on the Internet. There was a problem that investment became enormous.

    Further, in an electronic cash using an IC card, since data such as the amount of money is stored in the IC card, there is a possibility that the balance data is falsified, and improvement in security is urgently required.

    Further, in the electronic cash system using the USB key, the amount corresponding to the USB key is used up, and when it is used up, it is necessary to purchase a new USB key. In other words, it was not possible to charge the money so that the used USB key could be reused.

    In addition, the use of electronic commerce on the Internet may be restricted due to age restrictions, etc. due to the nature of the products or services handled, but all of the above electronic cash systems are users who can receive use. It is not sufficient to verify that there is, and there is a problem that e-commerce is not properly performed.

    The present invention has been made in view of the above circumstances, and an object of the present invention is to provide a chargeable prepaid electronic cash system with improved convenience and security of commercial transactions.

In particular, it is an object of the first electronic cash system of the present invention to provide an electronic cash system in which the security of funds transfer is improved, the degree of freedom of small-value transactions is secured, and the convenience of use is improved.
An object of the second electronic cash system of the present invention is to provide an electronic cash system in which the suitability of electronic commerce and the convenience of use are improved.

    According to the present invention, in an electronic cash system, an encrypted identifier for charging and using an electronic cash is stored in a USB key which is a USB device connectable to a USB port connector of a computer accessible to the Internet. When storing a USB key identifier, a charging password, and an amount usable as an electronic cash in association with each user, and transferring funds used as a prepaid electronic cash from a user's bank account to an account of an operating company. Enter the encrypted identifier of the USB key obtained by the computer and the charging password, decrypt the encrypted identifier, and store the corresponding password and the input charging password in the charging password to be stored. Allow funds transfer if they match , It is those provided in and fund transfer is made available amount of money corresponding to the user of the management company server you want to add the amount of such funds.

    According to the present invention, in the electronic cash system, the management company server stores the identifier of the USB key, the user password, the charging password, and the amount available as the electronic cash in association with each other for each user. When the user uses the electronic cache of the USB key, the user inputs the encrypted identifier of the USB key and the user password obtained by the computer, decrypts the encrypted identifier, and stores the corresponding identifier in the stored user password. If the password and the input user password match, if the commercial transaction is possible within the range of the amount available to the user, the commercial transaction is established.

    The present invention relates to the electronic cash system, wherein the operating company server encrypts the USB key acquired by the computer when the funds used as the prepaid electronic cash are transferred from the user's bank account to the operating company account. The entered identifier, the user password and the charging password are input, the encrypted identifier is decrypted, and the corresponding password in the stored user passwords matches the input user password. If the corresponding password matches the input charging password, the transfer of funds is permitted.

    The present invention provides, in an electronic cash system, a cash center server that performs settlement processing using an electronic cash, a service site server that provides goods or services at a service site on a web, and a USB port, and is connected to the service site server. A user device for performing an operation of purchasing a product or a service, and a USB device having a USB interface. The cash center server stores category information in the service site in a storage unit, and performs settlement from the service site server. Upon receiving the request to start, the category information in the service site is transmitted to the service site server, the USB device stores the category information corresponding to the user in the storage unit, and the category information is requested by the user device. Output, the service site server When there is an application for use of the service site from the user device, the cash center server is requested to start the settlement processing, the category information of the service site is received from the cash center server and output to the user device, When the device is applied to the service site with the USB device inserted in the USB port, the device inputs category information from the service site server, and checks with the category information obtained from the USB device to settle if the data matches. Processing can be executed, and if they do not match, the settlement processing is terminated.

    According to the present invention, in the electronic cash system, the USB device stores a serial number in a storage unit, the user device includes an input unit, and issues a one-time password using the serial number to the USB device. Requesting the transmission of the encrypted serial number, and displaying the one-time password issued from the USB device under the condition that the category information matches, and inputting the password from the input unit. The entered one-time password and the encrypted serial number are transmitted to the cash center server via the service site server, and the cash center server decrypts and generates the received one-time password and the encrypted serial number. If the password matches the one-time password, the payment process will be accepted. That.

    According to the present invention, in the electronic cash system, the cash center server issues a transaction ID every time an instruction in a payment process is transmitted via the service site server, and receives the encrypted primary data received via the service site server. The key is decrypted, and the transaction processing is continued if matched with the transmitted transaction ID. If not, the payment processing is terminated, and the user device connects the transaction ID received via the service site server. Output to the USB device, transmit the encrypted primary key input from the USB device to the cash center server via the service site server, and the USB device transmits the primary key with the transaction ID input from the user device. User who has updated and updated the updated primary key with a common key And outputs it to the location.

    The present invention relates to an electronic cash system, comprising: a cache center server that performs an increase process of an electronic cash; a cache registration device that includes a USB port and performs an operation of connecting to the cache center server to apply for an increase in the electronic cache; and a USB interface. And a USB device that stores a serial number in a storage unit. The cache registration device includes an input unit, and when a USB device is inserted into a USB port, an application for a cash center server is requested. Request the device to issue a one-time password using the serial number and send the encrypted serial number, display the one-time password issued from the USB device, and input the password from the input unit. , The entered one-time password and encryption The received serial number is sent to the cash center server, and the cash center server checks the received one-time password against the one-time password generated by decrypting the encrypted serial number and accepts the increase processing if the password matches. It is.

    The present invention provides the electronic cash system, wherein the cache center server issues a transaction ID every time an instruction in the amount increase process is transmitted to the cache registration device, decrypts the encrypted primary key received from the cache registration device, If it matches with the transmitted transaction ID and matches, the cash increase process is continued, and if it does not match, the cash increase process ends, and the cache registration device outputs the transaction ID received from the cache center server to the connected USB device, and The encrypted primary key input from the device is transmitted to the cache center server, the USB device updates the primary key with the transaction ID input from the cache registration device, and encrypts the updated primary key with the common key. And output it to the cache registration device. That.

    According to the present invention, an encrypted identifier for charging and using an electronic cash is stored in a USB key, which is a USB device connectable to a USB port connector of a computer that can access the Internet, and Stores the identifier of the USB key, the password for charging, and the amount available as an electronic cash in association with each other, and when transferring funds used as a prepaid electronic cash from a user's bank account to an account of an operating company, a computer When the encrypted identifier of the USB key and the charging password obtained in step 4 are input, the encrypted identifier is decrypted, and the corresponding charging password stored in the charging password matches the input charging password. The transfer of funds is permitted at Since the electronic cash system is provided with an operating company server that adds the amount of the fund to the available amount corresponding to the user, a charge password is required at the time of charge, thereby improving charge security. There are effects that can be.

    According to the present invention, the management company server stores, for each user, a USB key identifier, a user password, a charging password, and an amount available as an electronic cash in association with each other. When using the electronic cash of the user, the encrypted identifier of the USB key obtained by the computer and the user password are input, the encrypted identifier is decrypted, and the corresponding password among the stored user passwords is input. If the user password matches, the electronic cash system that establishes the commercial transaction if the commercial transaction is possible within the range of the amount of money available to the user, it is necessary to input the user password at the time of the electronic commercial transaction. Therefore, there is an effect that the security of the transaction can be improved.

    According to the present invention, when an operating company server transfers funds used as a prepaid electronic cash from a user's bank account to an operating company account, an encrypted identifier of a USB key obtained by a computer, Enter the password and the charging password, decrypt the encrypted identifier, and match the corresponding password in the stored user passwords with the input user password, and furthermore, the corresponding password in the storing charging passwords The electronic cash system allows the transfer of funds when the entered password for reconciliation matches the password entered. Therefore, when recharging, it is necessary to enter a dual password of the user password and the recharging password. Has the effect of being able to significantly improve

    According to the present invention, a cash center server that performs settlement processing by an electronic cash, a service site server that provides a product or service at a service site on the web, and a USB port are provided. A cash center server has a user device for performing an operation of purchasing a service and a USB device having a USB interface, stores the category information in the service site in a storage unit, and requests the service site server to start settlement. Upon receiving the information, the category information on the service site is transmitted to the service site server, the USB device stores the category information corresponding to the user in the storage unit, and outputs the category information in response to a request from the user device, The service site server sends the relevant service from the user device. When there is an application for the use of the site, the cash center server is requested to start the settlement processing, the category information of the service site is received from the cash center server and output to the user device, and the user device is connected to the USB port. If the user applies for a service site while the USB device is inserted, category information is input from the service site server, and the category information obtained from the USB device is compared with the category information. Since the electronic cash system terminates the settlement process if the values do not match, it is possible to easily perform matching of the user suitable for the category information on the service site and shift to settlement, thereby improving the e-commerce adequacy. effective.

    According to the present invention, the cash center server issues a transaction ID every time an instruction in a settlement process is transmitted via the service site server, and decrypts the encrypted primary key received via the service site server. If the transaction ID is matched with the transmitted transaction ID, the settlement processing is continued if not matched, and if not matched, the settlement processing is terminated, and the user device outputs the transaction ID received via the service site server to the connected USB device. Then, the encrypted primary key input from the USB device is transmitted to the cache center server via the service site server, and the USB device updates the primary key with the transaction ID input from the user device, and updates the primary key. The electronic cache that encrypts the primary key with a common key and outputs it to the user device. Since the system has an effect of capable of improving the security of electronic card transactions by a simple control.

An embodiment of the present invention will be described with reference to the drawings.
The electronic cash system of the present invention uses a key of a USB device to purchase and increase an electronic certificate transaction and an electronic cash using an encrypted ID (identifier) and a password in the USB key. And safety can be improved.

Hereinafter, embodiments of the first and second electronic cash systems of the present invention will be described.
First, the electronic cash system according to the first embodiment of the present invention uses the USB key of a USB device that can be plugged into a USB port connector of a computer to purchase an electronic cash (fund transfer: charge). This is performed using the encrypted ID in the USB key, the user password (password 1) and the password for transferring funds (password 2), and in normal electronic commerce, the transaction can be performed with the USB key ID and the user password. Yes, the transfer of funds to purchase an electronic cash from the user's account is made stricter by entering a USB key ID and a double password, while in a normal business transaction the transaction is entered by entering the USB key ID and one password. It is possible to secure the degree of freedom and improve the convenience of using electronic cash

    Further, in the electronic cash system according to the first embodiment of the present invention, in order to secure the degree of freedom of the transaction and further improve the convenience of using the electronic cash, the user password (password 1) must be changed. The input may be unnecessary, and the input of the password 2 may be required for charging. In other words, by eliminating the need to enter any password in electronic commerce, it is possible to improve the convenience as a small-value prepaid electronic cash.

The configuration of the electronic cash system according to the first embodiment of the present invention will be described with reference to FIG. FIG. 1 is a configuration block diagram of the electronic cash system according to the first embodiment of the present invention.
As shown in FIG. 1, an electronic cash system (hereinafter, referred to as a first system) according to a first embodiment of the present invention includes a USB key 1, a personal computer (PC) 2, the Internet 3, and a net bank. It basically has a server 4, an operating company server 5, a database (DB) 6, and a product / service providing company server 7.

    Here, it is the management company server 5 that manages and operates the electronic cash in the first system, and there are originally a plurality of PCs 2 and product / service provider company servers 7 connected to the Internet 3. There may be more than one.

Each part in the first system will be specifically described.
The USB key 1 is a USB device connectable to a USB port connector of a computer, and stores therein an encrypted identifier (encrypted USB key ID). The encrypted ID of the USB key is stored in a non-rewritable storage area. That is, since the encrypted ID is not rewritable, falsification is prevented, and decryption is impossible by encryption.

The PC 2 is a computer having a USB port connector, and can be connected to the Internet 3.
The user performs user registration of the USB key 1 using the PC 2, charges the USB key 1, and purchases a product / service from the product / service providing company server 7 with the charged amount. The user registration may be performed offline.

The Internet 3 is a communication network that connects the PC 2 and each server.
The net bank server 4 is a server that can transfer funds via the Internet 3, and specifically, transfers funds from a user's account provided in the net bank to an account of a management company by a user's instruction. It has become.
It should be noted that the user deposits the account of the net bank from an ATM (cash dispenser) of the bank or an ATM of another bank. Alternatively, the user's account may be paid via the Internet 3.

The management company server 5 is a server that provides a prepaid electronic cash in the first system, and includes a DB 6 that stores data necessary for operation.
The management company server 5 performs a reception process for receiving a user's registration from the PC 2, performs an electronic cash charge process, and further performs a settlement process and a payment process with the product / service provider company server 7. . Specific processing in the management company server 5 will be described later.

The DB 6 is a database managed by the management company server 5 and stores a password, a balance, and the like for a USB key ID. The DB 6 also records the history of user transactions.
As shown in FIG. 2, the data contents stored in the DB 6 are a user name, a USB key ID, a first password (transaction password: user password), and a second password (charging password: fund transfer password). , And the balance for the charge amount (accumulated amount: available amount).
FIG. 2 is a diagram showing an outline of data contents stored in a database in the electronic cash system according to the first embodiment of the present invention.

    The product / service provider company server 7 is a server that provides a product or service to the user of the PC 2. Specifically, when the user browses the commercial transaction site of the product / service providing company server 7 and applies for the purchase of the product / service, the user is deducted from the accumulated amount of the user managed by the management company, and the payment is made. Is being done.

Next, the overall flow of the first system will be described with reference to FIG.
First, the user opens an account with the net bank and deposits the account.
Next, the user performs user registration when purchasing the USB key 1 from the electronic cash management company. At the time of user registration, the account name, account number, user name, user password (first password), charging password (second password), etc. of the net bank are registered.
Note that the user registration is performed online or offline, but in the case of online registration, the submission of the bank registration stamp is performed by mail.

When the user registration is completed, the user can obtain the USB key 1 provided by the management company.
Before distributing the USB key 1, the management company server 5 may associate the ID of the USB key 1 with the user, or have the user input a password or the like after distributing the USB key 1. Alternatively, the input password may be collated with the password stored in the DB 6 to associate with the user.
The association with the user sets the USB key ID for the user name or the like in the DB 6 of FIG.

When the user registration is completed and the user obtains the USB key 1, next, the USB key 1 is charged in order to use the USB key 1 as a prepaid electronic cash.
The recharging is a process of transferring a specific amount of funds from the account of the net bank to the account of the management company according to a user's instruction. The specific amount is predetermined by the management company, and a small amount of money such as 10,000 yen, 30,000 yen, or 50,000 yen can be transferred as a prepaid electronic cash. For the transferred funds, the management company server 5 adds the amount to the amount available to the user.
Specific processing of charging will be described later.

When the USB key 1 becomes usable as an electronic cash, the user accesses the Web site of the product / service providing company server 7 using the PC 2 and makes an application for purchase of a product or the like. Makes an inquiry to the management company server 5 as to whether the funds necessary for purchasing the product or the like are sufficient, and if the purchase fund is sufficient, executes a commercial transaction for the purchase of the product or the like. If the purchase funds are not enough, the commercial transaction is stopped.
The settlement is made by the establishment of the commercial transaction, and the money is deducted from the balance of the electronic cash of the user managed by the management company server 5.
The product purchase / settlement / payment processing will be described later.

Next, the charging process in the first system will be described with reference to FIG. FIG. 3 is a flowchart showing a flow of a charging process in the electronic cash system according to the first embodiment of the present invention.
In the charging process in the management company server 5, as shown in FIG. 3, the encrypted ID of the USB key 1 transmitted from the PC 2 is received (S1), and the encrypted ID is decrypted (S2).

    Next, a user password (first password) is input from the PC 2 and it is determined whether or not the user password is appropriate for the ID of the USB key 1 with reference to the DB 6 (S4). Specifically, the ID corresponding to the ID received and decrypted in the DB 6 is searched, and the next input user password is compared with the user password of the searched ID. If there is, it is determined that it is inappropriate.

If it is determined in step S4 that the user password is not appropriate (No), the process is terminated. If the user password is appropriate (Yes), then the charging password (second password) is sent from the PC2. Is input (S5).
Then, it is determined whether or not the charging password is appropriate for the ID of the USB key 1 (S6). Specifically, the charging password (second password) stored corresponding to the ID searched in step S4 is compared with the charging password input in step S5. It is determined that the charging password is appropriate, and if they do not match, it is determined that the charging password is incorrect.

In the determination process S6, if the charge password is not appropriate (No), the process is terminated, and if the charge password is appropriate (Yes), a process of specifying the charge amount is performed (S7).
The charge amount is selected from the amounts prepared by the management company. For example, it can be selected from well-divided amounts such as 10,000 yen, 30,000 yen, and 50,000 yen. Since this is for simplifying the charging process, an arbitrary amount may be specified within a certain limit. Further, the restriction of being within a certain limit may be removed.

    In addition, the charged amount is added to the amount available to the user, but a limit can be provided to limit the available amount to a certain limit. As a result, it is possible to suppress an increase in the amount of money that can be used.

    When the specific processing of the charge amount is completed, the transfer processing of the specific amount is performed (S8). The amount transfer processing is processing for transferring the above-mentioned specific amount of funds from the user's account in the net bank to the account of the management company. Thus, the charging process ends.

Next, merchandise purchase / settlement / payment processing in the first system will be described with reference to FIG. FIG. 4 is a flowchart showing a flow of a product purchase / settlement / payment process in the management company server 5 in the electronic cash system according to the first embodiment of the present invention.
In the product purchase / settlement / payment process in the management company server 5, as shown in FIG. 4, first, the encrypted ID of the USB key 1 is received from the USB key 1 via the PC 2 (S11). Then, the management company server 5 decrypts the received encrypted ID (S12).

    Further, the management company server 5 inputs the user password (first password) from the PC 2 (S13), and determines whether the user password is appropriate for the ID of the USB key 1 (S14). Specifically, the ID corresponding to the ID received and decrypted in the DB 6 is searched, and the next input user password is compared with the user password of the searched ID. If there is, it is determined that it is inappropriate.

    When it is determined that the user password input in the determination process S14 is inappropriate (No), the process ends. When it is determined that the input user password is appropriate (Yes), the balance corresponding to the searched ID is referred to (S15). The reference balance and the price of the purchased product are compared to determine whether the product can be purchased (S16).

If it is not possible to purchase the product (No), the process is terminated. If the product is available for purchase (Yes), the purchased product is finally determined and the purchased product is determined to receive an application for purchase. Processing is performed (S17).
Next, the management company server 5 performs a settlement process of subtracting the price of the purchased product from the balance of the user (S18), and further performs a payment process of paying the price of the purchased product to the account of the product / service provider (S19).

Before the purchase commodity determination processing in step S17, the encrypted ID of the USB key 1 is received and decrypted again, and it is determined whether or not the encrypted ID matches the ID decrypted in step S12, and a valid user is determined. May be confirmed. Therefore, if the USB key 1 has been removed before the above process, or if another USB device or another person's USB key has been inserted into the USB port connector, the subsequent process is disabled.
In addition, before the process S17, the processes S11 to S14 can be performed again to strengthen the personal authentication.

    In the first system, the user password is input at the time of charging and at the time of commercial transaction. However, in order to perform the commercial transaction quickly and easily, the input of the user password may be omitted. .

    Further, in the first system, the input of a charging password may be required at the time of charging, and the input of a user password may be required at the time of commercial transaction. In other words, security can be ensured by changing the password between charge and commercial transaction.

    According to the first system, a prepaid electronic cash is realized by using a USB device. A long number input such as a credit card is unnecessary, and a read writer device is installed for each PC like an IC card. Since there is no need to perform this, there is an effect that a highly convenient electronic cash system can be provided with a simple and inexpensive configuration for both the operating company and the user.

    Further, according to the first system, when transferring (charging) an amount corresponding to a prepaid electronic cash from an account of a user of a net bank to an account of a management company, an ID of a USB key 1 and a user in electronic commerce are transferred. Since it is necessary to input a charging password (second password) in addition to the password (first password), security can be improved.

    In other words, even if the user password is stolen during the e-commerce process and the USB key 1 is stolen, it is possible to use it within the range of the charged specific amount, but the charging password must be stolen. In this case, the charge cannot be performed, and the account of the user of the net bank is protected.

    Further, according to the first system, since the electronic commerce only uses the ID of the USB key 1 and the user password, the electronic commerce can be performed quickly and easily, and the convenience for the user is improved. There is an effect that can be.

Next, an electronic cash system according to a second embodiment of the present invention will be described.
The electronic cash system according to the second embodiment of the present invention uses a USB key in which category information is stored, and when an application for purchase of a product or service is made on a service site, the category information on the USB key The product is compared with the category information of the product or service, and when it matches, the settlement process is performed by the electronic cash, thereby improving the appropriateness of electronic commerce and the convenience of use.

Here, the category information is information on the use of the electronic cash, and is information for restricting or promoting the use by giving or not giving permission to the use. An example of category information is age restriction. For example, if the user is under 18, the USB key holds information indicating that as category information.
In the second system, the category information about the user of the USB key is stored in the USB key, while the category information about the product or service is managed on the operation side of the electronic cash. When the category information of the service matches the category information of the user, the settlement processing is performed.

The configuration of the electronic cash system according to the second embodiment of the present invention will be described with reference to the drawings. FIG. 5 is a configuration block diagram of an electronic cash system according to the second embodiment of the present invention.
As shown in FIG. 5, an electronic cash system (hereinafter, referred to as a second system) according to a second embodiment of the present invention includes a cache center server 11, an information database (information DB) 12, and a service site server 13 , A user personal computer (user PC) 14, a cache registration personal computer (cache registration PC) 15, a USB key 16, a CA (Certificate
Authority: It basically has an authority 17 and the Internet 18.

    Here, the cash center server 11 manages and operates the electronic cash in the second system, and the product / service site server 13, the user PC 2, and the cache registration PC 15 that are connected to the Internet 18 originally exist in plurality. is there.

Each part in the second system will be specifically described.
The cash center server 11 is a server managed by an operating company that provides a prepaid electronic cash in the second system, and performs settlement processing of the electronic cash by a USB key 16 described later and cash increase processing. In addition, the cash center server 11 includes an information DB 12 that stores data used for settlement processing and cash increase processing, such as a USB key ID and a balance.
The cash center server 11 manages category information on products or services handled by the service site server 13 and stores the category information in the information DB 12.
Specific processing in the cache center server 11 will be described later.

The information DB 12 is a database managed by the cache center server 11. The information DB 12 stores data used for the payment processing and the cash increase processing in a table format. The information DB 12 stores an account management table, a purchase history table, a payment management table, a transaction management table, and a session table.
In addition, in the information DB 12, in addition to the above table, products or services handled by the service site server 13 and category information are stored in association with each other.

The service site server 13 is a server that provides goods or services on a Web site, and upon receiving an application for purchase of the goods or services from the user PC 14, connects to the cash center server 11 and shifts to settlement processing. It is.
Specific processing in the service site server 13 will be described later.

The user PC 14 is a PC having a USB port, and performs a payment process using the USB key in a state where the USB key is inserted into the USB port.
Specific processing in the user PC 14 will be described later.

The cache registration PC 15 is a PC having a USB port, and performs a cache increase process using the USB key in a state where the USB key is inserted into the USB port. The cash registration PC 15 is assumed to be, for example, a terminal that is installed in a convenience store or the like and is capable of depositing cash, or a PC that can access a site of a bank's net bank and transfer money to an operating company.
Specific processing in the cache registration PC 15 will be described later.

    The USB key 16 is a device that can be inserted into USB ports of the user PC 14 and the cache registration PC 15. The USB key 16 has a built-in CPU, and when inserted into a USB port and supplied with electricity, performs an operation (data update or the like) based on commands from the user PC 14 and the cache registration PC 15.

The CA station 17 is an organization for performing site authentication, and performs site authentication between the service site server 13 and the user PC 14 in the settlement processing, and between the cash center server 11 and the cache registration PC 15 in the increase processing. More specifically, the CA station 17 issues a tally via the Internet 18 to each device that performs site authentication. Then, when the device using the site (user PC 14, cache registration PC 15) accesses the site, the device using the site uses the Web browser to collate the tally and find a match. If it is determined that the Web site is correct, site authentication is performed. It should be noted that the site authentication by the CA station is SSL (Secure
This is performed by communication using Socket Layer) encryption.
The Internet 18 is a communication network that connects each server and each PC in the present system.

Next, the configuration of each unit of the second system will be described.
First, the configurations of the cache center server 11 and the information database will be described with reference to FIG. FIG. 6 is a configuration block diagram of the cache center server 11 and the information DB 12.
As shown in FIG. 6, the cache center server 11 includes a CPU (Central Processing Unit) 111, a communication interface (I / F) 112, a data storage unit 113, and a program storage unit 114. The program storage unit 114 stores a payment processing program 114a, an increase processing program 114b, a front end program 114c, a control program 114d, and a decryption processing program 114e.
The information DB 12 stores an account management table 121, a purchase history table 122, a payment management table 123, a transaction management table 124, and a session table 125. Although not shown in FIG. 6, the information DB 12 also stores a common key table in which a USB key ID and common key information are stored in association with each other. Here, the information on the common key includes a storage location of the common key in the data storage unit 113 of the cache center server 11, and the like.

In the cash center server 11, the CPU 111 controls operations of a settlement process and a cash increase process. Specifically, the CPU 11 executes the operation of each of the above-described processes by reading and executing a program stored in the program storage unit 114.
Further, the CPU 111 is connected to the information DB 12 so as to be accessible, and reads data from a table stored in the information DB 12 or writes data to the table to update the data in each of the above processes.

The communication I / F 112 exchanges communication between the CPU 111 and the Internet 18, converts communication data received from the Internet 18 into a data format recognizable by the CPU 111, outputs the data to the CPU 111, and outputs the data to the CPU 111. TCP / IP (Transmission)
The data is converted into a data format corresponding to Control Protocol / Internet Protocol and transmitted to the Internet 18.

The data storage unit 113 stores data necessary for the settlement processing and the cash increase processing. The data required for the payment processing and the cash increase processing corresponds to the applet of the payment screen and the ID of the USB key. The data storage unit 113 stores a common key unique to the USB key in advance.
The program storage unit 114 stores programs used in the settlement processing and the cash increase processing. The data storage unit 113 and the program storage unit 114 are, for example, HD (Hard
Disk).

    In the program storage unit 114, the payment processing program 114a is a program for performing a payment processing, and in response to a command (a connection command, a login command, a payment command, etc.) related to the payment processing from the service site server 13 or the user PC 14. An instruction processing unit that reads or updates data from various tables in the information DB 12 and returns an output for an instruction, issues a session ID and a transaction ID, and updates the transaction management table 124 and the session table 125 in the information DB 12 and updates the table. And ID management means for reading data from the device.

Here, the session ID is an identifier for identifying a group of processing operations in the settlement processing and the cash increase processing, and is issued from the cash center server 11 when the settlement processing and the cash increase processing are started.
The transaction ID is an identifier for identifying the content of each processing operation in the settlement processing and the cash increase processing, and is issued from the cash center server 11.

    The increase processing program 114b is a program for performing a cache increase processing, and reads data from various tables in the information DB 12 in response to an instruction (a connection instruction, a login instruction, a settlement instruction, etc.) related to the cache increase processing from the cache registration PC 15. Alternatively, it is provided with command processing means for performing an update and returning an output for the command, and ID management means for issuing a session ID and a transaction ID and updating the transaction management table 124 and the session table 125 in the information DB 12.

The front end program 114c is a program for exchanging data with the cache registration PC 15. The front-end program 114c includes a Web display unit, and exchanges data with the cache registration PC 15 via a Web page during the cache increase processing.
The front end program 114c communicates with the cache registration PC 15 by encrypting data using, for example, SSL.

    The control program 114d is a program for controlling switching between settlement processing and cash increase processing in the cash center server 11. The control program 114d is read and executed by the CPU 111 when the cash center server 11 is started, and when a payment processing or cash increase processing command is input, the control program 114d determines which of the instructions is the payment processing program or the payment increase program. Select one of the processing programs to read and execute.

    The decryption processing program 114e is a program for decrypting the encrypted primary key. The decryption processing program 114e specifies the corresponding common key from the common key table of the information DB 12 based on the USB key ID received together with the encrypted primary key, extracts the common key from the data storage unit 113, and The encrypted primary key is decrypted using the common key.

    Further, the program storage unit 114 stores an accounting module for checking and updating the balance of the account management table, and an authentication module for generating and checking the one-time password. Each of the above modules is read and executed from the settlement processing program 147a and the increase processing program 147b.

    Next, the configuration of each table of the information DB 12 will be described with reference to FIGS. FIG. 7 is a configuration diagram of the account management table 121, FIG. 8 is a configuration diagram of the payment history table 122, FIG. 9 is a configuration diagram of the payment history table 123, and FIG. FIG. 11 is a configuration diagram of the session table 125.

In the information DB 12, the account management table 121 is a table for managing an account in the electronic cash in association with the ID of the USB key. As shown in FIG. 7, the account management table 121 includes items of key number (USB key ID), current key number (USB key primary key or one-time password), balance, and status (category information). have.
The item of the state in FIG. 7 indicates category information about the user of the USB key.

The payment history table 122 is a table for managing the payment history of the electronic cash in association with the USB key ID. As shown in FIG. 8, the payment history table 122 has items of a key number, a payment amount, a balance, and a payment ID.
The deposit ID in FIG. 8 is a transaction ID in the cash increase processing. The deposit ID is uniquely assigned each time a deposit process is performed.

The purchase history table 123 is a table that manages the purchase history of a product or service in association with the USB key ID. As shown in FIG. 9, the purchase history table 123 has items of a key number, a transaction ID (transact ID in the figure), a store number, a price, a purchased item, a purchase date and time, and a state. ing.
The item of the state in FIG. 9 indicates the category information on the purchased item.

The transaction management table 124 is a table for managing information related to a transaction ID for identifying the content of an operation. As shown in FIG. 10, the transaction management table 124 has items of transaction ID (transaction ID in the figure), issue date and time, type, session ID, serial, and status.
The serial in FIG. 10 indicates the number of times of processing for the same transaction ID. The status indicates the history of the processing operation. By referring to the status, the cash center server 11 performs the processing operation in a prescribed order (for example, the balance inquiry cannot be performed before login). Can be controlled.

    The session table 125 is a table for managing information on a session ID for identifying a group of processes. As shown in FIG. 11, the session table 125 has items of a session ID, a key number, a start time, a store number, a price, user data, and a state. The user data is data used when returning from the payment screen to the sales screen of a product or the like.

Next, the configuration of the service site server 13 will be described with reference to FIG. FIG. 12 is a configuration block diagram of the service site server 13.
As shown in FIG. 12, the service site server 13 includes a CPU 131, a communication I / F 132, a data storage unit 133, and a program storage unit 134. The program storage unit 134 has a Web display A program 134a, a product / service providing program 134b, and a settlement processing program 134c are stored.

    In the service site server 13, the CPU 131 and the communication I / F 132 are basically the same as the corresponding configuration of the cache center server 11, and the description is omitted. However, since the service site server 13 does not manage the DB, the CPU 131 does not read and write data in the information DB 12 unlike the CPU 111 of the cache center server 11.

The data storage unit 133 stores data necessary for a product / service providing process and a settlement process. The data required for the product / service providing process and the settlement process include information (product name, price, etc.) on the provided product / service, an encrypted USB key ID, and user data on the USB key user. Applicable.
The program storage unit 134 stores a program used in the payment processing. The data storage unit 133 and the program storage unit 134 are, for example, HD (Hard
Disk).

In the program storage unit 134, the Web display program 134a is a program for enabling display of a site that provides goods or services on the Web. In communication with the user PC 14, the Web display program 134a performs communication by encrypting data using, for example, SSL.
The product / service providing program 134b is a program for providing a product / service, reads information on a product or service stored in the data storage unit 133, and further executes and reads the Web display program 134a. There are provided a product / service providing means for displaying information on a site, and a payment transfer means for transferring to a payment processing program 134c described later when a purchase request for a product / service is received from the user PC 14.

    The settlement processing program 134c is a program for settlement processing of goods / services, and transmits an instruction (a connection instruction, a login instruction, a history update instruction, etc.) relating to the settlement processing to the cash center server 11 or the user PC 14, and An instruction processing means for performing data processing on information (processing result of the instruction) from the server 11 or the user PC 14 and returning an output to the user PC 14 or the cache center server 11 is provided.

Next, the configuration of the user PC 14 will be described with reference to FIG. FIG. 13 is a configuration block diagram of the user PC 14.
As shown in FIG. 13, the user PC 14 includes a CPU 141, an input unit 142, a display unit 143, a communication I / F 144, a data storage unit 145, a USB port 146, and a program storage unit 147. The program storage unit 147 stores a USB driver 147a, a dedicated program 147b, and a Web browser program 147c.

In the user PC 14, the CPU 141 controls operation processing (collation, update, etc.) in the user PC 14. Specifically, the CPU 11 reads out and executes the program stored in the program storage unit 147 to execute the operation of each of the above processes.
The CPU 141 performs operation processing based on information and instructions input from the input unit 142, and displays the operation processing result on the display unit 143.

The input unit 142 is for inputting information, instructions, and the like (such as password input) necessary for the operation processing of the user PC 14. The input unit 142 can be realized by, for example, a keyboard or a mouse.
The display unit 143 displays an operation processing result (error notification or the like) in the CPU 141 under the control of the CPU 141. The display unit 143 is, for example, a CRT (Cathode
Ray Tube) display or liquid crystal display.
Further, the communication I / F 144 has basically the same configuration as the communication I / Fs 112 and 132 in the cache center server 11 and the service site server 13, and thus the description is omitted.

The data storage unit 145 stores data necessary for operation processing of the user PC 14. Here, the data necessary for the operation processing of the user PC 14 corresponds to a transaction ID or the like.
The USB port 146 is a port connector for inserting a USB key. When a USB key is inserted into the USB port 146, electricity is supplied to the USB key, and data communication with the user PC 14 becomes possible.
The program storage unit 147 stores a program used in the operation processing of the user PC 14. The data storage unit 145 and the program storage unit 147 are, for example, HD (Hard
Disk).

In the program storage unit 147, a USB driver 147a is a program for performing data communication with a USB key.
The dedicated program 147b is a program for performing a settlement process using a USB key, and includes an instruction processing unit, a data storage unit, a collation unit, a display control unit, a system check unit, an authentication unit, an installation unit. And
The Web browser program 147c is a program for realizing a Web browser function for browsing a Web site.

Here, each means in the dedicated program 147b will be described.
The command processing means transmits a command (a connection command, a login command, a history update command, and the like) related to the payment processing command to the service site server 13 or the USB key 16, and receives information from the service site server 13 (processing result of the command) Means for performing data processing and outputting the processing result to the display unit 143 or the USB key 16. The command processing means communicates with the USB key 16 according to the encrypted protocol.
The data storage unit is a unit that stores information (such as category information) received from the service site server 13 or the USB key in the data storage unit 145.
The collating means is a means for collating information received from the service site server 13 or the USB key 16.
The display control unit is a unit that displays on the display unit 143 a processing result of a command related to a payment process and a screen that prompts a password input.

The system checker checks whether the functions of the dedicated program 147b, such as the communication function with the cache center server 11 and the service site server 13, operate correctly when the USB key 16 is inserted into the USB port 146 and activated. Means.
The authentication unit is a unit that performs authentication with the USB key 16, the cache center server 11, and the service site server 13.
The installation unit is a unit that installs software having an identifier corresponding to the USB ID and category information. The software installed by the installation unit includes, for example, software that prevents browsing a service site that handles a product or the like that does not match the category information.

Next, the configuration of the cache registration PC 15 will be described with reference to FIG. FIG. 14 is a configuration block diagram of the cache registration PC 15.
As illustrated in FIG. 14, the cache registration PC 15 includes a CPU 151, an input unit 152, a display unit 153, a communication I / F 154, a data storage unit 155, a USB port 156, and a program storage unit 157. The program storage unit 157 stores a USB driver 157a, a dedicated program 157b, and a Web browser program 157c.

In the cache registration PC 15, since the CPU 151 to the USB port 156 are basically the same as the corresponding configuration of the user PC 14, the description is omitted.
The program storage unit 157 stores a program used in the operation processing of the cache registration PC 15.

In the program storage unit 157, a USB driver 157a is a program for performing data communication with the USB key 16.
The dedicated program 157b is a program for performing a cache increase process using the USB key 16, and includes an instruction processing unit, a display control unit, a system check unit, and an authentication unit.
The Web browser program 157c is a program for realizing a Web browser function for browsing a Web site.

Here, each means in the dedicated program 157b will be described.
The command processing means transmits a command (a connection command, a login command, a history update command, etc.) relating to the cash increase processing command to the cache center server 11 or the USB key 16 and transmits the information (the processing result of the command) from the cache center server 11. This is a means for performing data processing on the data and outputting the processing result to the display unit 153 or the USB key 16.
The display control unit is a unit that displays on the display unit 153 a processing result of a command related to a payment process and a screen that prompts a password input.
The system check unit is a unit that checks whether the communication function with the cache center server 11 operates correctly when the USB key 16 is inserted into the USB port 156 and activated.
The authentication unit is a unit that performs authentication with the USB key 16 and the cache center server 11. This authentication will be described later.

Next, the configuration of the USB key 16 will be described with reference to FIG. FIG. 15 is a configuration block diagram of the USB key 16.
As shown in FIG. 15, the USB key 16 includes an interface 161, a CPU 162, and a memory 163.

In the USB key 16, an interface 161 exchanges data between the CPU 162 and a PC whose USB key 16 is connected to a USB port. Further, the interface 161 supplies electricity from the PC to the CPU 162.
The CPU 162 controls an operation process of an operation (data update, password issuance, etc.) based on a command from the PC, and is activated when electricity is supplied from the interface 161. Specifically, the CPU 11 performs an operation process by reading and executing an operation program stored in the memory 163.

The memory 163 stores data necessary for operation processing of the USB key 16.
The memory 163 is divided into a rewritable area and a rewritable area. A serial number (device ID) is stored in the rewritable area, and an operation program, a common key (common key), and a primary key are stored in the rewritable area. (Transaction ID), category information, and history information are stored.

Here, each data stored in the memory 163 will be described.
The serial number is a unique ID of the USB key. Since the serial number is stored in the non-rewritable area of the memory 163 before distributing the USB key 16q, it cannot be falsified.
The operation program is a program for processing the operation of the USB key 16, and includes an updating unit for updating data in the rewritable area, and an encryption / transmission unit for encrypting and transmitting only the serial number and the primary key using the common key. Is provided.
The common key is an electronic key used when encrypting and decrypting the data of the USB key 16. The common key is unique to the USB key, and is also stored in the data storage unit 113 of the cache center server 11 in advance.
The primary key is used for data collation with the cache center server 11, and stores a transaction ID issued from the cache center server 11.

The category information is information relating to the use of the electronic cash for the user of the USB key 16 and is collated with the category information in the service site server 13 in the settlement processing of the present system.
The history information is information relating to the usage history of the settlement processing using the USB key 16 and the cash increase processing, and stores the history information transmitted from the cash center server 11. The history information deals with a history that is shorter than the history information in the payment history table 122 and the purchase history table 123 managed by the cash center server 11, and when the settlement process and the cash increase process are started, the above-described history information is used. The information is displayed on the user PC 14 or the cache registration PC 15 by being collated with the history information of each table.
Further, the user PC 14 or the cache registration PC 15 can read out the history information from the USB key 16 and display the history information without going through the cache center server 11.

Next, the overall flow of the second system will be described with reference to FIG.
First, the user purchases the USB key 16 from an electronic cash management company. At the time of purchase, the investment company obtains user attributes by conducting a questionnaire or the like to the user, and registers this as user category information.
Then, the USB key 16 provided by the management company in which the category information of the user is stored is distributed to the user. The category information of the user is also registered in the account management table 121 of the cash center server 11. The common key of the USB key 16 is also stored in the data storage unit 113 of the cache center server 11.

Upon obtaining the USB key 16, the user then increases the amount of the electronic cash in order to use the USB key 16 as a prepaid electronic cash.
The increase in the cash is a process of adding funds to the account of the management company according to the user's instruction through the cash registration PC 15. For the added funds, the cash center server 11 adds the amount to the amount available to the user. It should be noted that the amount that can be increased may be determined in advance by the management company to be a specific amount, such as a small amount of funds such as 10,000 yen, 30,000 yen, and 50,000 yen.
The operation at the time of the cash increase processing in the second system will be described later.

    When the USB key 16 becomes available as an electronic cash and the user accesses the Web site of the service site server 13 using the user PC 14 and makes an application for purchase of a product or the like, the cash center server 11 The category information is transmitted to the user PC 14. The user PC 14 collates the category information of the product or the like with the category information of the USB key 16, and shifts to the settlement process when the category information matches.

In the settlement process, the service site server 13 inquires of the cash center server 11 whether or not the funds required for purchasing a product or the like are sufficient, and if the purchase funds are sufficient, executes a business transaction for purchasing the product or the like. If the purchase fund is not enough, the commercial transaction is stopped, and a notification that the purchase fund is insufficient is given.
The settlement is made by the establishment of the commercial transaction, and the money is deducted from the balance of the user's electronic cash managed by the cash center server 11.
The specific operation of the settlement process in the second system will be described later.

Next, the operations of the settlement processing and the cash increase processing in the second system will be described.
First, the operation of the settlement process will be described with reference to FIGS. FIG. 16 and FIG. 17 are flowcharts of the settlement processing of the electronic cash system according to the second embodiment of the present invention.
The outline of the settlement processing of the second system is as follows. When logging in to the settlement screen, the user PC 14 checks the category information of the purchased item with the category information of the USB key 16, and if they match, performs settlement and caches. The history information of the center server 11 and the USB key 16 is updated.

Hereinafter, the settlement processing will be specifically described.
In using the electronic cash, the user first inserts the USB key 16 into the USB port 146 of the activated user PC 14, or activates the user PC 14 with the USB key 16 inserted into the USB port 146.
Then, power is supplied to the USB key 16 from the USB port 146 via the interface 161 to the CPU 162, and the CPU 162 is activated.

    Upon reading the operation program in the memory 163, the CPU 162 transmits a signal to the effect that the CPU 141 of the user PC 14 has started. Upon receiving the signal, the CPU 141 of the user PC 14 reads and executes the dedicated program 147b from the program storage unit 147.

Then, the CPU 141 displays a pop-up window on the display unit 143 for prompting the input of the password. The password input here is unique to the dedicated program 147b, and is stored in the data storage unit 145.
The CPU 141 of the user PC 14 determines whether or not the password input by the user via the input unit 142 is correct. If a valid password has not been input, the processing of the dedicated program 147b ends, and Stop using it.
When determining that a valid password has been input, the CPU 141 executes each process of “system check”, “self-check of authentication contents”, and “software installation” as self-diagnosis.

The password of the dedicated program 147b is stored in the memory 163 of the USB key 16 in advance, and when the USB key 16 is inserted, the CPU 141 of the user PC 14 reads the password from the USB key 16 and stores the password in the data storage unit 145. It may be determined whether the password matches the password.
By adopting such a configuration, the user can save the trouble of inputting the password, and can use the electronic cash even if the password is forgotten. Therefore, the convenience is improved, and the specific user PC 14 having the same password is used. Since it can be used only in the system, the security of the system can be improved.

Next, each process as a self-diagnosis will be described.
In the “system check”, the CPU 141 checks whether the function of the dedicated program 147b operates normally. Specifically, the communication function is checked by performing data communication with the cache center server 11 and the service site server 13, and the like.

    In the “self-check of authentication contents”, the authentication unit authenticates whether the contents of the memory 163 of the USB key 16 have been rewritten up to the previous time. For example, it is checked whether or not the transaction ID stored in the data storage unit 145 of the user PC 14 matches the primary key (transaction ID) stored in the USB key 16. It is determined that the electronic cash has not been used by the user PC 14, and a message or the like is displayed on the display unit 143.

In the “software installation”, software having an identifier corresponding to the serial number and the category information is installed by the installation unit based on the serial number (ID) of the USB key 16 and the category information.
This software is installed on the user PC 14 in accordance with the category information of the USB key 16, and includes, for example, software that prevents browsing a service site that handles a product or the like that does not match the category information. Further, the software may be read from a storage medium such as a CD-ROM or downloaded from a specific site.

    If an error occurs in the self-diagnosis, the CPU 141 determines that the electronic cache cannot be used, ends the processing by the dedicated program 147b, and stops using the electronic cache. If there is no error and the diagnosis is normal, the electronic cache can be used, and the USB key 16 enters a state of waiting for an instruction from the CPU 141 (standby state).

After the USB key 16 is in the standby state, the user uses the user PC 14 to access the service site operated by the service site server 13 via the Web browser, and selects and purchases a product or service provided by the site. Apply for. When operating the service site, the CPU 131 of the service site server 13 reads and executes the Web display program 134a and the product / service providing program 134b.
When an application for purchase is made from the user PC 14 to the service site, the CA station 17 performs site authentication between the service site server 13 and the user PC 14. As a result of the site authentication, if the user PC 14 determines that the service site is correct, the purchase application is continuously performed.

Further, the CPU 141 of the user PC 14 transmits the balance inquiry command and the serial number of the USB key 16 to the cash center server 11.
Upon receiving the balance inquiry command and the serial number of the USB key 16, the CPU 111 of the cash center server 11 reads the billing module from the program storage unit 114, accesses the account management table 121 of the information DB 12, and reads the decrypted serial number. The balance corresponding to the number is read and transmitted to the user PC 14.
The CPU 141 of the user PC 14 checks the received balance against the balance included in the history information of the USB key 16. If the collation results in a match, the electronic cache can be used continuously. However, if the collation results are different, the CPU 141 of the user PC 14 determines that an error has occurred, stops using the electronic cache, and displays an error message. The information is displayed on the unit 143 to notify the user.

    When receiving the application for the purchase of a product or service, the CPU 131 of the service site server 13 reads the payment processing program 134c, transmits a connection command to the cash center server 11, and prompts a transition to a payment screen (FIG. 16 (1)). ). At this time, along with the connection instruction, the store number, the purchased item, the purchase price of the service site server 13 and the user data for returning from the payment screen to the sales screen are transmitted.

    The CPU 111 of the cash center server 11 reads and executes the control program 114d at the time of startup. When receiving the connection command and information from the service site server 13, the CPU 111 determines that the connection command is for the payment processing, and reads the payment processing program 114a. Execute. The CPU 111 stores the received information in the data storage unit 113.

When the CPU 111 confirms that a service site corresponding to the store number exists in the received information, the CPU 111 issues a session ID as a response to the connection command, transmits the session ID to the service site server 13, and transmits a session ID of the information DB 12. The new session ID information is added to the table 125 (FIG. 16 (2)). The information of the newly added session ID includes information of the store number and the purchase price.
The session ID is an identifier for identifying a set of processes, and the same session ID is assigned to all commands related to the payment process.

When receiving the response to the connection command, the CPU 131 of the service site server 13 reads out the applet of the payment screen stored in the data storage unit 145 and transmits the applet to the user PC 14. The applet is activated on a Web browser running on the user PC 14, a payment screen is displayed on the display unit 143, and transition to the payment screen is performed.
Also, the session ID is transmitted to the user PC 14 via the service site server 13 and stored in the data storage unit 145.

On the payment screen displayed on the Web, a payment method can be selected. When the user selects and determines the “USB key” as the settlement method using the user PC 14, the user PC 14 performs an electronic certificate transaction through the cash center server 11 thereafter.
If the purchased item is a product, the purchaser is prompted to input the address and name of the destination on the payment screen.

    After the “USB key” is selected in the settlement method, the CPU 131 of the service site server 13 requests the user PC 14 for information for settlement login. In response to the request, the CPU 141 of the user PC 14 transmits the login command and the session ID to the cache center server 11 via the service site server 13 (FIG. 16 (3)).

    Upon receiving the login command and the session ID, the CPU 111 of the cache center server 11 accesses the session table 125 of the information DB 12 and checks whether or not the received session ID exists. A transaction ID (transaction ID (1) in the figure) is issued based on the transaction ID. The CPU 111 adds new transaction ID information to the transaction management table 124 in accordance with the issuance of the transaction ID.

    Also, the CPU 111 reads out the category information of the purchased item from the information DB 12, reads out the purchased price and the information of the purchased item from the data storage unit 113, and transmits the information together with the transaction ID as a login processing result (FIG. 16 (4)). . The result of the log-in process is transmitted to the user PC 14 via the service site server 13, and is stored in the data storage unit 145 in the user PC 14.

Next, the CPU 141 of the user PC 14 transmits a data acquisition request to the USB key 16 (FIG. 16 (5)). The CPU 141 transmits the transaction ID (1) issued by the cache center server 11 to the USB key 16 together with the data acquisition request.
Upon receiving the data acquisition request and the transaction ID (1), the CPU 162 of the USB key 16 updates the primary key of the memory 163 with the transaction ID (1). Further, in response to the data acquisition request, the CPU 162 encrypts the updated primary key with the common key, and transmits the updated primary key to the CPU 141 of the user PC 14 together with the unencrypted serial number and category information as a processing result (FIG. 16 (6)). . Further, the CPU 141 stores the processing result in the data storage unit 145.

Upon receiving the processing result, the CPU 141 of the user PC 14 stores the category information of the purchased item or service (the category information received from the cash center server 11) stored in the data storage unit 145 and the category information received from the USB key 16. Is checked against If the category information does not match, the CPU 141 determines that an error has occurred, and transmits a logout command and a session ID to the cache center server 11 (FIG. 16 (7)). Upon receiving the logout command and the session ID, the CPU 111 of the cash center server 11 outputs a logout result and ends the settlement processing (FIG. 17 (17)). In addition, the CPU 141 displays an error message on the display unit 143.
If the category information of the purchased item is content that can be used if judged by the user, the CPU 141 of the user PC 14 asks the user for confirmation, and if judged by the user, the category information is not an error but a category. Judge that they match.

If it is determined that the category information matches (hereinafter, category OK) in the collation of the category information, the CPU 141 of the user PC 14 sends the category OK, the serial number, and the encrypted primary key to the service site server 13. I do. The serial number and the encrypted primary key are stored in the data storage unit 133 in the service site server 13.
Upon being notified of the category OK from the CPU 141, the service site server 13 performs a settlement process with the cash center server 11 thereafter.

When receiving the category OK, the CPU 131 of the service site server 13 transmits a credit command to the cash center server 11 to have the cash center server 11 check the balance of the user and determine whether or not settlement is possible (FIG. 16 (8)). The CPU 131 stores the payment amount, the session ID, and the transaction ID (1) stored in the service site server 13 together with the credit command, the serial number (key serial in the figure) from the USB key 16 and the encrypted primary key. Send.
The CPU 111 of the cache center server 11, which has received the credit instruction and the above information, accesses the session table 125 of the information DB 12 and checks whether or not the received session ID exists. The information of the price of the purchased item is read and stored.

    Then, upon receiving the serial number and the encrypted primary key, the CPU 111 decrypts the encrypted primary key based on the serial number. Specifically, when the CPU 111 reads and executes the decryption processing program, the CPU 111 refers to the common key table of the information DB 12 and specifies the information of the common key corresponding to the received serial number. Then, based on the information on the specified common key, the common key corresponding to the serial number received from the data storage unit 113 is extracted, and the primary key is decrypted using the common key.

    Further, the CPU 111 checks the primary key by referring to the transaction management table of the information DB 12 and confirming whether or not the decrypted primary key exists in the table. When confirming that the primary key is present in the table together with the received serial number, the CPU 111 continues the settlement processing as it is. If the primary key does not exist, the CPU 111 informs the service site server 13 that the primary key is unavailable. Notice. The CPU 131 of the service site server 13 displays that fact on the user PC 14 on the Web, and ends the payment processing.

    If the primary key exists in the transaction management table, the CPU 111 reads the charging module from the program storage unit 114, accesses the account management table 121, refers to the balance corresponding to the obtained serial number, and Determine if the price has exceeded the balance.

When the price exceeds the balance, although not shown, the CPU 111 of the cash center server 11 notifies the service site server 13 that the service cannot be used. The CPU 131 of the service site server 13 displays that fact on the user PC 14 on the Web, and ends the payment processing.
If the price does not exceed the balance, the CPU 111 notifies the service site server 13 that it can be used. At the time of notification, the CPU 111 issues a new transaction ID (transaction ID (2) in the figure) (FIG. 17 (9)).

    If the notification from the cash center server 11 is “available”, the CPU 131 of the service site server 13 transmits a settlement command to the cash center server 11 and requests a change in the balance (FIG. 17 (10)). The CPU 131 transmits the session ID, the transaction ID (1), the serial number, and the encrypted primary key together with the settlement instruction.

    The CPU 111 of the cash center server 11 that has received the settlement instruction and the information described above stores the price information of the purchase target product and the like stored in association with the received session ID in the session table 125, as in the case of the credit instruction. And decrypts the primary key as described above, and confirms whether the primary key exists in the transaction management table. If there is, the CPU 111 reads the charging module and refers to the account management table 121 for the balance corresponding to the serial number.

Then, the CPU 111 updates the balance by subtracting the price of the product to be purchased from the balance corresponding to the serial number. In addition, the CPU 111 accesses the purchase history table 123 and newly adds information on the settled product and the like. At this time, the account management table 121 and the purchase history table 123 are in a state of waiting for confirmation of updated contents.
When the update of the account management table 121 and the purchase history table 123 is completed, the CPU 111 notifies the service site server 13 of the processing completion and the processing result. At the time of notification, the CPU 111 issues a new transaction ID (transaction ID (3) in the figure) (FIG. 17 (11)).

    Upon receiving the notification from the cash center server 11 that the payment processing has been completed, the CPU 131 of the service site server 13 displays the notification on the Web and notifies the user PC 14 of the completion of the work and the transaction content. . Further, the CPU 131 transmits the transaction ID (3) together with the notification.

    Upon receiving the notification and the transaction ID (3), the CPU 141 of the user PC 14 stores the received content in the data storage unit 145 and transmits the received content to the USB key 16, and the CPU 162 of the USB key 16 transmits the received content. The primary key is updated using the transaction ID (FIG. 17 (12)). In the update process, the CPU 162 updates the primary key of the memory 163 with the received transaction ID (3), and updates the history information by adding transaction content information. Therefore, the transaction ID and the transaction content at the time of settlement are stored in the USB key 16 by the update process.

    After the update process, the CPU 162 encrypts the primary key (the updated transaction ID (3)) with the common key, and transmits the primary key together with the serial number to the user PC 14 (FIG. 17 (13)). The CPU 141 of the user PC 14 that has received the serial number and the encrypted primary key reads the session ID and the transaction ID (3) from the data storage unit 145, and transmits them to the service site server 13.

    When receiving the session ID, the transaction ID (3), the serial number, and the encrypted primary key, the CPU 131 of the service site server 13 transmits a settlement confirmation command to the cash center server 11 (FIG. 17 (14)). The CPU 131 transmits the session ID, the transaction ID (3), the serial number and the encrypted primary key (the transaction ID received from the USB key 16) together with the settlement determination command. Then, the CPU 111 decrypts the primary key encrypted by the method described above.

The CPU 111 of the cash center server 11 that has received the settlement confirmation command and the above information specifies the transaction waiting for settlement confirmation based on the serial number and the primary key, and manages the account in a state of waiting for the update content to be confirmed by the settlement command. The contents of the table 121 and the purchase history table 123 are determined, and the transaction contents of the settlement are determined.
When the contents of the account management table 121 and the purchase history table 123 are determined, the CPU 111 transmits a notification of the settlement result to the service site server 13. At the time of notification, the CPU 111 issues a new transaction ID (transaction ID (4) in the figure) (FIG. 17 (15)).

When the settlement result is notified and the settlement is confirmed, the CPU 131 of the service site server 13 transmits a logout command and a session ID to the cash center server 11 (FIG. 17 (16)).
Upon receiving the logout command and the session ID, the CPU 111 of the cash center server 11 performs a logout process of the payment, disconnects the connection with the service site server 13 (FIG. 17 (17)), and completes the payment process.

    In the first payment processing, the service site is accessed, the product or service to be purchased is selected, the category information is collated, and the execution of the payment processing is determined. When accessing the service site, the information can be collated with the category information of the USB key to determine the user's access permission.

Next, the operation of the cash increase processing in the second system will be described with reference to FIGS.
The outline of the cash increase processing in the second system is as follows. When the cache center server 11 issues a transaction ID every time it transmits an instruction in the cash increase processing, and receives an encrypted primary key (transaction ID) from the cache registration PC 15. The primary key is decrypted, collated with the issued ID, and if the key matches, the cache increase processing is performed.

Hereinafter, a specific operation in the cash increase processing will be described.
When increasing the electronic cash, the user inserts the USB key 16 into the USB port 156 of the activated cache registration PC 15 or activates the cache registration PC 15 with the USB key 16 inserted into the USB port 156. I do. Power is supplied to the USB key 16 from the USB port 156 from the interface 161 to the CPU 162, and the CPU 162 is activated.
Hereinafter, as in the case of the user PC 14 in the payment processing, the CPU 151 of the cache registration PC 15 also reads the dedicated program 157b and prompts the user to input a password.

When it is determined that a valid password has been input, the CPU 151 executes each process of “system check”, “self-check of authentication contents”, and “inquiry of history contents”.
"System check" and "self-check of authentication contents" are the same as those in the case of the settlement processing, and therefore description thereof is omitted.

    In “inquiry of history content”, the CPU 151 accesses the cache center server 11, compares history information managed by the server with the content of the history information of the USB key 16, and determines whether there is any difference in the content. . Specifically, this is performed by transmitting the serial number of the USB key 16 to the cash center server 11 and reading history information corresponding to the serial number from the payment history table 122.

    When an error occurs in each of the above processes, the CPU 151 determines that the electronic cache cannot be used, ends the processing by the dedicated program 157b, and stops using the electronic cache. If there is no error and the diagnosis is normal, the electronic cache can be used, and the USB key 16 enters a state of waiting for an instruction from the CPU 151 (standby state).

    After the USB key 16 is in the standby state, the user uses the cash registration PC 15 to access the cash increase site operated by the cache center server 11 via the Web browser, and inputs the increased amount to apply for the increased cash. . When operating the cash increase site, the CPU 111 of the cash center server 11 reads and executes the front end program 114c. When applying for a cash increase, the CA station 17 performs site authentication, and if the cash increase site is correct, the application for the cash increase is continued.

The CPU 111 executing the front-end program 114c requests information for logging in to the cash increase screen from the cash registration PC 15 when the cash increase application is made. The CPU 111 issues a session ID together with the above request, transmits the session ID to the cache registration PC 15, and adds new session ID information to the session table 125 of the information DB 12.
In response to the request, the CPU 151 of the cache registration PC 15 transmits a login command and a session ID to the cache center server 11.

Upon receiving the login command and the session ID, the CPU 111 of the cache center server 11 accesses the session table 125 of the information DB 12 and checks whether or not the received session ID exists. A transaction ID is issued based on the transaction ID. The CPU 111 adds new transaction ID information to the transaction management table 124 in accordance with the issuance of the transaction ID.
Further, the CPU 111 transmits the result of the login process together with the transaction ID. The result of the login processing is transmitted to the cache registration PC 15 and stored in the data storage unit 145 in the user PC 15.

Next, the CPU 151 of the cache registration PC 15 transmits a data acquisition request to the USB key 16. The CPU 151 transmits the transaction ID issued by the cache center server 11 to the USB key 16 together with the data acquisition request.
Upon receiving the data acquisition request and the transaction ID (1), the CPU 162 of the USB key 16 updates the primary key of the memory 163 with the transaction ID. Further, in response to the data acquisition request, the CPU 162 encrypts the updated primary key with the common key, and transmits the encrypted primary key and the unencrypted serial number to the CPU 151 of the cache registration PC 15 as a processing result. The CPU 151 stores the processing result in the data storage unit 155.

The CPU 151 of the cache registration PC 15 transmits the serial number and the encrypted primary key to the cache center server 11.
Upon receiving the serial number and the encrypted primary key, the CPU 111 of the cash center server 11 decrypts the encrypted primary key based on the serial number, as in the case of the payment process.

Further, the CPU 111 checks the primary key by referring to the transaction management table of the information DB 12 and confirming whether or not the decrypted primary key exists in the table. When confirming that the primary key is present in the table together with the received serial number, the CPU 111 continues the settlement processing as it is. If the primary key does not exist, the CPU 111 informs the service site server 13 that the primary key is unavailable. Notice. The CPU 131 of the service site server 13 displays this on the user PC 14 on the Web, and ends the increase processing.
If the primary key exists in the transaction management table, the CPU 111 notifies the increase processing program 114b of whether to start using the electronic cache.

When the notification that the use can be started is made, the CPU 111 notifies the increase processing program 114b of the increase amount input at the cash increase site and stored in the data storage unit 113, and inquires whether to use the cache increase.
When the CPU 111 executes the increase processing program 114b, the CPU 111 checks the amount that can be increased with the current balance and the increased amount, and if there is no problem, notifies the front end program 114c of the cash center server 11 that the amount can be increased. If the amount cannot be increased due to the reason of exceeding the range, an error code is notified to the front-end program 114c.

The CPU 111 executing the front-end program 114c reads the charging module and changes the balance if the notification from the increase processing program 114b is “available”. Specifically, it accesses the account management table 121 of the information DB 12, refers to the balance corresponding to the serial number based on the decrypted serial number, and adds the additional amount to update the balance. Further, it accesses the deposit history table 122 and updates the deposit amount corresponding to the serial number by writing the increased amount. When the update processing is completed, the CPU 111 notifies the front end program 114c that the increase processing has been completed.
If the notification from the increase processing program 114b is “unavailable”, the fact is displayed on the Web.

    The CPU 111 executing the front-end program 114c, when the increase processing is completed and the notification is made, displays the fact on the Web, and notifies the cash registration PC 15 of the completion of the work and the transaction content. Further, the CPU 111 of the cache center server 11 issues a transaction ID and transmits it to the cache registration PC 15.

    Upon receiving the notification and the transaction ID, the CPU 151 of the cache registration PC 15 stores the received content in the data storage unit 155 and transmits the received content to the USB key 16, and the CPU 162 of the USB key 16 transmits the transmitted transaction ID. Performs the update processing of the primary key. In the update process, the CPU 162 updates the primary key of the memory 163 with the received transaction ID, and updates the history information by adding transaction content information. Therefore, the transaction ID and the transaction content at the time of settlement are stored in the USB key 16 by the update process.

After the update process, the CPU 162 encrypts the serial number and the primary key (the updated transaction ID) with the common key, and transmits the encrypted key to the user PC 14. The CPU 151 of the cache registration PC 15 that has received the encrypted serial number and the primary key reads the transaction ID from the data storage unit 155 and transmits the transaction ID to the cache center server 11 together.
Upon receiving the encrypted serial number and primary key and the transaction ID, the CPU 111 of the cache center server 11 recognizes that the cache increase processing has been completed, and ends the cache increase processing.
The above is the operation of the cash increase processing in the second system.

    The operation of the cash increase processing in the second system described above is an example, and in actual operation, the cash increase processing is performed in consideration of the user authentication specification in the cache center server and security measures such as session jack. It is desirable to build a flow.

Although the first and second systems use a computer as a device for inserting a USB key to perform an electronic certificate transaction, the present invention is not limited to this. For example, a device having a USB interface such as a third-generation mobile phone If so, it is applicable.
The second system uses a USB with a built-in CPU as an electronic prepaid key device, but any device that can be connected to a PC or a mobile phone and has a built-in CPU can be used.

The electronic cash system of the present invention can be applied to, for example, music distribution.
In other words, by distributing or lending a USB key to a user and transmitting the serial number of the user's USB key in advance to the music data download source at the time of payment, the music distributor uses the user's unique serial number. Since the music data is encrypted and transmitted, and the encrypted music data is reproduced while being decrypted by the serial number, only the specific user having the USB key can enjoy the music data.

Also, the downloaded music data can be decrypted and played back on a PC or mobile phone using the serial number of the USB key, but by preventing the decrypted music data from being stored in a memory or the like, The USB key can be used as a key for music reproduction, and unauthorized reuse of music data can be prevented.
In addition, the electronic cash system of the present invention can be applied to the distribution of still images, moving images, and the like.

    According to the second system, the category information, which is information on the use of the electronic cash for the user, is stored in the USB key, and the category information on the product or service to be purchased and the Since the category information of the USB key is collated and the settlement is permitted if they match, it is possible to easily collate the user who meets the conditions of the product etc. and shift to the settlement, thereby improving the appropriateness of the electronic certificate transaction. There is an effect that can be made.

    Further, according to the second system, using the transaction ID issued from the management company server (cash center server 11) as an identifier of each operation to the USB key, the server in the settlement processing and the cash increase processing is used. Since the authentication between the USB keys is performed, there is an effect that the security of the electronic certificate transaction can be improved by simple control.

    The present invention can improve the convenience and security of commercial transactions in a chargeable prepaid electronic cash system.

1 is a configuration block diagram of an electronic cash system according to a first embodiment of the present invention. FIG. 2 is a diagram illustrating an outline of data contents stored in a database in the electronic cash system according to the first embodiment of the present invention. 4 is a flowchart illustrating a flow of a charging process in the electronic cash system according to the first embodiment of the present invention. It is a flowchart which shows the flow of goods purchase / settlement / payment processing in the management company server 5 in the electronic cash system according to the first embodiment of the present invention. FIG. 9 is a configuration block diagram of an electronic cash system according to a second embodiment of the present invention. FIG. 2 is a configuration block diagram of a cache center server 11 and an information DB 12. 4 is a configuration diagram of an account management table 121. FIG. It is a block diagram of the payment history table 122. It is a block diagram of a money history table 123. FIG. 4 is a configuration diagram of a transaction management table 124. FIG. 3 is a configuration diagram of a session table 125. FIG. 2 is a configuration block diagram of a service site server 13. FIG. 2 is a configuration block diagram of a user PC 14. FIG. 3 is a configuration block diagram of a cache registration PC 15; FIG. 3 is a configuration block diagram of a USB key 16. It is a flow figure of the 1st settlement processing of the electronic cash system concerning a 2nd embodiment of the present invention. It is a flow figure of the 1st settlement processing of the electronic cash system concerning a 2nd embodiment of the present invention.

Explanation of reference numerals

    1, 16: USB key, 2: PC, 3, 18: Internet, 4: Net bank server, 5: Operating company server, 6: DB, 7: Product / service provider company server, 11: Cash center server, 12 ... Information DB, 13 ... Service site server 13, 14 ... User PC, 15 ... Cache registration PC

Claims (8)

An encrypted identifier for charging and using an electronic cash is stored in a USB device connectable to a USB port connector of a computer that can access the Internet,
When the identifier of the USB device, the charge password and the amount available as an electronic cash are stored in association with each user, and when the funds used as the prepaid electronic cash are transferred from the user's bank account to the account of the operating company, Enter the USB device encrypted identifier and charging password obtained by the computer, decrypt the encrypted identifier, and match the corresponding password in the charging password to be stored with the input charging password. An electronic cash system comprising: an operating company server for permitting a transfer of funds, and adding the amount of the funds to an available amount corresponding to the user when the funds are transferred.     2. The electronic cash system according to claim 1, wherein the money amount to be transferred can be selected from preset ones set by the management company.     3. The electronic cash system according to claim 1, wherein an upper limit is set for an amount available to the user.     The management company server stores the identifier of the USB device, the user password, the charging password, and the amount available as an electronic cash in association with each other for each user, and in the electronic commerce, the user of the transaction uses the electronic cash of the USB device. At this time, the encrypted identifier and the user password of the USB device obtained by the computer are input, the encrypted identifier is decrypted, and the corresponding password among the stored user passwords matches the input user password. 4. The electronic cash system according to claim 1, wherein the commercial transaction is established if the commercial transaction is possible within a range of the amount of money available to the user.     When the operating company server transfers funds used as a prepaid electronic cash from the user's bank account to the operating company account, the encrypted identifier of the USB device obtained by the computer, the user password and the charging password are used. Enter and decrypt the encrypted identifier, and the corresponding password among the stored user passwords matches the entered user password, and further, the corresponding password among the stored charging passwords and the entered charging password 5. The electronic cash system according to claim 4, wherein the transfer of funds is permitted when the passwords match. A cash center server that performs payment processing by electronic cash;
A service site server for providing goods or services at a service site on the web,
A user device having a USB port and performing an operation of purchasing the product or service by connecting to the service site server;
A USB device with a USB interface,
The cache center server stores the category information in the service site in a storage unit, and upon receiving a request to start settlement from the service site server, transmits the category information in the service site to the service site server,
The USB device stores category information according to a user in a storage unit, and outputs the category information in response to a request from the user device.
The service site server, when there is an application for use of the service site from the user device, requests the cash center server to start settlement processing, receives the service site category information from the cash center server, Output to the user device,
When the user device applies for the service site with the USB device inserted into a USB port, the user device inputs category information from the service site server and checks the category information with the category information acquired from the USB device. An electronic cash system wherein the settlement processing can be executed if the two match, and the settlement processing is terminated if the two do not match. The cash center server issues a transaction ID every time an instruction in the settlement process is transmitted via the service site server, decrypts the encrypted primary key received via the service site server, and executes the transmitted transaction. If the ID matches, the settlement process is continued, and if not, the settlement process is terminated.
The user device outputs the transaction ID received via the service site server to a connected USB device, and stores the encrypted primary key input from the USB device in the cache via the service site server. Send to the center server,
7. The USB device according to claim 6, wherein the USB device updates a primary key with a transaction ID input from the user device, encrypts the updated primary key with a common key, and outputs the encrypted primary key to the user device. Electronic cash system. The USB device stores the password in the storage unit,
The user device checks the password stored in the storage unit or the password input from the input unit with the password stored in the storage unit of the USB device to be connected, and if the password matches, the user device can execute the payment processing. 8. The electronic cash system according to claim 6, wherein the settlement processing is terminated if not performed.

Images