JP2013038552A - Information transmission and reception system - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide an information transmission and reception system which avoids information leakage by preventing leakage of an encryption key that encrypts information.SOLUTION: An information transmission and reception system comprises an information transmission device 103, an information reception device 101, and an encryption key encrypting device 102 which encrypts an original encryption key 106 provided by an administrator of the information reception device 101 as a second encryption key 107 and provides the second encryption key 107 for the information transmission device 103. The information transmission device 103 comprises a decryption component which decrypts the second encryption key 107 provided by the encryption key encrypting device 102 into the original encryption key 106, and an encryption component which encrypts information to be transmitted by using the decrypted original encryption key 106. The information reception device comprises a decryption component which, on receiving the encrypted information, decrypts the received information by using the original encryption key 106 held by itself.

Description

  The present invention relates to an information transmission / reception system, and more particularly to an information transmission / reception system in which information is not leaked even when an encryption key is leaked.

  Generally, in order to exchange information between systems via a network such as the Internet, it is necessary to encrypt the information to be transmitted. When encrypting, the encryption (common) key agreed between the two systems that exchange information is used. However, if the encryption key leaks, it will lead to information leakage. Is indispensable. In PCIDSS, which is a security standard in the card industry, it is assumed that encryption keys are managed safely.

  As a conventional technique related to the present invention, a technique related to a file security system by encrypting information is described in, for example, Patent Document 1 and the like.

JP-A-3-273501

  In general, there is information transmission / reception via the Internet line as a means for exchanging information when using information to be transmitted / received or receiving provision of necessary information. In such information transmission / reception, when transmitting information, the information providing side encrypts the information to be transmitted by using the encryption key, transmits the encrypted information, and the information receiving side transmits the same encryption. In general, the received information is decrypted using a key.

  As described above, by transmitting information with encryption, even if transmission information leaks from the Internet as a communication medium, the information cannot be decrypted unless there is an encryption key, and the information is illegal. Can't get into.

  The encryption key is shared between the information transmitting side and the information receiving side, and as described above, it is used for encryption on the information transmitting side and decrypted on the information receiving side. Used for. For this reason, it is necessary to strictly manage the encryption key on both the transmission side and the reception side.

  However, encryption keys are generally managed in plain text, and there is a risk of leakage. In particular, when an encryption key is leaked from the sending side, the information sent by corner encryption is decrypted and leaked. It will end up.

  An object of the present invention is to provide an information transmission / reception system that prevents the leakage of an encryption key for encrypting information and prevents the leakage of the information in view of the risk of the leakage of the encryption key as described above. There is.

  According to the present invention, an object of the present invention is to provide an information transmission / reception system that includes an information transmission device and an information reception device, and exchanges information between the information transmission device and the information reception device. An encryption key encryption device that encrypts an original encryption key from a user to form a secondary encryption key and provides the secondary encryption key to the information transmission device, and the information transmission device includes the encryption key encryption device A decryption component for decrypting the secondary encryption key provided from the original encryption key, and an encryption component for encrypting information to be transmitted using the decrypted original encryption key. This is accomplished by providing a decryption component that decrypts the received information using the original encryption key held by itself.

  ADVANTAGE OF THE INVENTION According to this invention, the leakage of the encryption key which encrypts information can be prevented, and the leakage of information can be prevented.

It is a block diagram which shows the structural example of the information transmission / reception system by one Embodiment of this invention. It is a block diagram which shows the structural example of an information transmitter. It is a block diagram which shows the structural example of an information receiver. It is a block diagram which shows the structural example of an encryption key encryption apparatus. It is a figure explaining the structural example of the credit card withdrawal account management system which is an example of use of this invention, and its processing sequence. It is a figure explaining the content of the screen displayed when registering a credit card withdrawal account using a member's terminal. It is a figure explaining the content of the table with which an account management apparatus and a card information processing apparatus are provided. It is a flowchart explaining operation | movement of the login process in the card information processing apparatus at the time of login from a member's terminal. It is a flowchart explaining the operation | movement of the delivery process of the debit account designation | designated screen in a card information processing apparatus when there exists a request | requirement of debit account designation from a member's terminal. It is a flowchart explaining the operation | movement of the encryption process in a card | curd information processing apparatus when the account designation | designated information which specified the branch number and the account number from the member's terminal is transmitted. It is a flowchart explaining operation | movement of the result taking process in a card | curd information processing apparatus when the result of an account inquiry process is transmitted from the account management apparatus. It is a flowchart explaining the processing operation | movement of the delivery data decoding in the account management apparatus when the encrypted customer information transmitted from the card information processing apparatus is received. It is a flowchart explaining the processing operation | movement in the account inquiry process part of the account management apparatus which received the customer data which is the delivery data decoded from the delivery data decoding process part. It is a flowchart explaining the processing operation in the determination result transmission process part of the account management apparatus which received the determination result and customer information of the inquiry from the account inquiry process part.

  Embodiments of an information transmission / reception system according to the present invention will be described below in detail with reference to the drawings.

  FIG. 1 is a block diagram showing a configuration example of an information transmission / reception system according to an embodiment of the present invention.

  The information transmission / reception system according to the embodiment of the present invention shown in FIG. 1 encrypts information 104 including personal information (hereinafter simply referred to as personal information) 104 input via a communication network such as the Internet 111 and encrypts the information. Information transmitting apparatus 103 that transmits the personal information 105 to the communication network such as the Internet 112, and the encrypted personal information 105 transmitted from the information transmitting apparatus 103 to the communication network such as the Internet 112, and the received personal information 105 is decrypted into plaintext personal information, and the plaintext personal information is encrypted and stored in the table 110 as personal information 109. The information receiving apparatus 101 is connected to the information transmitting apparatus 103 and is connected to the information receiving side. The encryption key 106 (hereinafter referred to as the original encryption key) provided by the person in charge of No. key 107 generates, and is composed of an encryption key encrypting device 102 which provides the secondary encryption key 107 to the information transmitting apparatus 103.

  In the foregoing, the information transmission / reception system according to the embodiment of the present invention is shown as being configured to include the two Internets 111 and 112, but these may be one Internet.

  In the information transmission / reception system according to the embodiment of the present invention configured as described above, the encryption key encryption device 102 is a paper or the like on which the person in charge of receiving information describes the encryption key 106, as will be described in detail later. The original encryption key 106 input by bringing the medium is encrypted to generate a secondary encryption key 107, which is provided to the information transmitting apparatus 103.

  Then, the information transmitting apparatus 103 stores the secondary encryption key 107 provided from the encryption key encryption apparatus 102 in the table 108 in the storage apparatus that is once connected to the information transmission apparatus 103, and then, as will be described later, the storage apparatus The secondary encryption key 107 stored in the table 108 is decrypted to the original encryption key 106 provided from the receiving side, and is input via a network such as the Internet 111 using the decrypted original encryption key 106. The personal information 104 is encrypted to generate the encrypted personal information 105, and the encrypted personal information 105 is transmitted to the information receiving apparatus 101 via a network such as the Internet 112.

  In addition, when the information receiving apparatus 101 receives the encrypted personal information 105 transmitted via a network such as the Internet 112, the information receiving apparatus 101 receives the received information using the original encryption key 106 held therein. The personal information 105 is decrypted into the personal information 104 in plain text. After that, the information receiving apparatus 101 performs encryption unique to the information receiving apparatus 101 side of the information decrypted into the plain text information 104 to generate encrypted second personal information 109, and this encryption The stored second personal information 109 is stored in the table 110 in the storage device connected to itself.

  FIG. 4 is a block diagram illustrating a configuration example of the encryption key encryption apparatus 102.

  The illustrated encryption key encryption apparatus 102 encrypts the tables 401 and 402 in its own memory that holds the original key 106 and the secondary encryption key 107 defined by the information receiving side, and the original key 106 to 2 And an encryption component 403 for generating the next encryption key 107.

  In the encryption key encryption apparatus 102 configured as described above, the person in charge on the information reception side is connected to the information transmission apparatus 103 for transmitting information with the encryption key 106 described on paper or the like. Go to the place where the encryption key encryption device 102 is installed, and store the encryption key 106 in the table 401 in the encryption key encryption device 102. The encryption component 403 in the encryption key encryption apparatus 102 encrypts the original encryption key 106 stored in the table 401 to create a secondary encryption key 107 and stores it in the table 402.

  FIG. 2 is a block diagram illustrating a configuration example of the information transmission apparatus 103.

  The illustrated information transmission apparatus 103 includes a decryption component 203 and an encryption component 205. The decryption component 203 of the information transmitting apparatus 103 is provided from the encryption key encryption apparatus 102 described with reference to FIG. The secondary encryption key 107 is input, and the secondary encryption key 107 is decrypted to generate the original encryption key 106. Also, the encryption component 205 receives the decrypted original encryption key 106, and encrypts the personal information 104 input from the network such as the Internet 111 to the information transmitting apparatus 103 using the original encryption key 106. Information 105 is generated. The encrypted personal information 105 is transmitted to the information receiving apparatus 101 via a network such as the Internet 112.

  FIG. 3 is a block diagram illustrating a configuration example of the information receiving apparatus 101.

  The illustrated information receiving apparatus 101 includes a decryption component 303 and an encryption component 306. When the information receiving apparatus 101 receives the encrypted personal information 105 transmitted from the receiving transmitting apparatus 103 via the network such as the Internet 112, the decrypting component 303 of the information receiving apparatus 101 receives the information receiving apparatus 101. The personal information 105 received using the original encryption key 106 held within itself is decrypted into the personal information 104 in plain text. The personal information 104 decrypted into this plaintext is input to the encryption component 306. The encryption component 306 encrypts the input personal information 104 on the information receiving apparatus 101 side to generate the encrypted second personal information 109, and the encrypted second personal information 109. Are stored in the table 110 in the storage device shown in FIG.

  In the information transmission / reception system according to the above-described embodiment of the present invention, a cryptographic component that generates the secondary cryptographic key 107 by encrypting the original key 106 defined by the information receiving side in the cryptographic key encryption device 102 shown in FIG. Reference numeral 403 denotes a programmed encryption device that does not have an encryption key. The tables 401 and 402 for storing the original key 106 and the secondary encryption key 107 are created in a memory such as a DRAM. When the table 401 or 402 is input to the encryption component 403, the information transmission apparatus 103 side The original key 106 and the secondary encryption key 107 that are held are deleted, or the encryption key encryption device 102 is turned off after the processing is completed by turning off the power of the encryption key encryption device 102. The original key 106 and the secondary encryption key 107 do not remain in it.

  Further, the processing in the information transmitting apparatus 103 is a process performed on a memory, and the power of the information transmitting apparatus 103 is turned off after the processing is completed. Therefore, the original key 106 and the secondary encryption are stored in the information transmitting apparatus 103. The key 107 never remains. The cryptographic component 306 in the information receiving apparatus 101 is a programmed cryptographic apparatus and has no cryptographic key, like the cryptographic component 403 that generates the secondary cryptographic key 107 described above.

  According to the above-described embodiment of the present invention, since the secondary encryption key obtained by secondarily encrypting the original encryption key used at the time of information encryption is managed, the paper on which the original encryption key 106 is described. If the original encryption key 106 is not leaked from the original issuer of the original encryption key 106, the original encryption key 106 is not leaked, and the third party Even if the secondary encryption key is obtained, the secondary encryption key itself is a character string that does not make sense, so the information cannot be decrypted, and information leakage can be prevented.

  Next, specific usage examples of the information transmitting / receiving system according to the embodiment of the present invention as described above will be described with reference to the drawings. A system as an example of use described below is an example of a credit card withdrawal account management system.

  FIG. 5 is a diagram for explaining a configuration example of a credit card withdrawal account management system and its processing sequence as an example of use of the present invention, and FIG. 6 is a case where a credit card withdrawal account is registered using a member terminal 501. FIG. 7 is a diagram for explaining the contents of a table provided in the account management device 506 and the card information processing device 512.

  The debit account management system shown in FIG. 5 includes a plurality of member terminals 501 used by each credit card member, an account management apparatus 506 for managing the debit account of the member, and the members transmitted from the member terminal 501. A card information processing apparatus 512 that receives information about a card including a password and performs various processes is connected via a network such as the Internet (not shown). The account management device 506 and the card information processing device 512 described above correspond to the information reception device 101 and the information transmission device 103 according to the embodiment of the present invention described with reference to FIGS.

  Although not shown in FIG. 5, the card information processing apparatus 512 corresponding to the information transmitting apparatus is connected to an encryption key encryption apparatus having the same configuration as that described with reference to FIG. The encryption key 107 is provided to the card information processing apparatus 512.

  In the debit account management system configured as described above, the member terminal 501 may be an information processing device represented by a PC, a storage device such as a CPU, memory, HDD, an input device such as a keyboard, a mouse, And it is provided with a display device. When a credit card member registers a credit card withdrawal account using the member's terminal 501, a “login screen” 502, “TOP screen” 503, “debit account designation screen” 504, “ A “result screen” 505 is displayed. The contents of these screens are shown in FIG. 6 and will be described later together with the processing operation.

  Further, the account management device 506 as an information receiving device is also an information processing device configured to include a storage device such as a CPU, a memory, and an HDD, an input device such as a keyboard and a mouse, and a display device, as described above. The input device and the display device are used by an administrator. As described with reference to FIG. 3, the account management apparatus 506 includes a decryption component 303 and an encryption component 306, performs decryption processing on the received information, performs original encryption processing on the decrypted information, The application includes a delivery data decryption processing unit 507, an account introduction processing unit 508, and a determination result device processing unit 509, and further includes an encryption key management table 510 and a customer information table 511 as databases. .

  Also, the card information processing apparatus 512 as an information transmitting apparatus is an information processing apparatus configured to include a storage device such as a CPU, a memory, and an HDD, an input device such as a keyboard and a mouse, and a display device as described above. Yes, the input device and the display device are used by the administrator. The card information processing apparatus 512 includes the decryption component 203 and the encryption component 205 as described with reference to FIG. 2, and is based on the secondary encryption key 107 input from the encryption key encryption apparatus 102 described with reference to FIG. The encryption key 106 is decrypted and the input information is encrypted using the original encryption key 106. Here, the personal information 104 input from the member terminal 501 is encrypted, and the information receiving apparatus is used as the information receiving apparatus. In addition to performing processing to be transmitted to the account management device 506, the application includes a login processing unit 513, a debit account designation screen distribution processing unit 514, a received data encryption processing unit 515, and a result capturing processing unit 516, and As a database, customer reception table 517, encryption key management table 518, account information table And a table 519.

  The contents of the table provided in the account management device 506 and the card information processing device 512 are shown in FIG. 7 and will be described later together with the processing operation.

  Next, with reference to FIG. 5 to FIG. 7, a debit account designation processing sequence in the credit card debit account management system, which is an example of use of the present invention, will be described.

(1) When a credit card member activates the member's terminal 501 to designate a debit account when using a credit card and starts the process, a display device (not shown) as shown in FIG. A login screen 502 is displayed. When the member inputs a predetermined login ID and password on the login screen 502 and presses the login button (clicks with the mouse), the login ID and password are transmitted to the card information processing apparatus 512 (transition). 01).

(2) When the card information processing apparatus 512 receives the login ID and password from the member, the login processing unit 513 refers to the customer information table 517 as shown in FIG. The customer information table 517 stores a plurality of records, each of which includes a login ID, password, name of Kana, and date of birth for each customer who is a member. The login processing unit 513 searches the customer information table 517 based on the input login ID and password, and if the correct login ID and password are input from a member who is a customer and there is a record in the customer information table 517. Then, the TOP screen of the corresponding member is generated and distributed to the member terminal 501 (transition 02).

(3) The member terminal 501 receives the distributed TOP screen 503 and displays it on the display device. As shown in FIG. 6B, the TOP screen 503 informs that the debit account can be designated. When the member presses the debit account designation button on the TOP screen 503, the debit account is designated. Request information for specifying an account is transmitted to the card information processing apparatus 512 (transition 03).

(4) When the card information processing apparatus 512 receives the information requesting the debit account designation from the member, the debit account designation screen distribution processing unit 514 receives the request and generates a debit account designation screen to generate the member terminal. 501 is delivered (transition 04).

(5) The member terminal 501 receives the debit account designation screen 504 that has been distributed, and displays the screen on the display device. As shown in FIG. 6C, the withdrawal account designation screen 504 is used for allowing a member to input a branch number and an account number of a financial institution or the like, which is information on the withdrawal account. When the member inputs a branch number and an account number on the debit account designation screen 504 and presses the application button, the branch number and the account number are transmitted to the card information processing apparatus 512 (transition 05).

(6) When the card information processing apparatus 512 receives the branch number and the account number, which are information on the debit account from the member, the delivery data encryption processing unit 515 receives the information, and the customer information table described above When the customer information is acquired from 517, the secondary encryption key is acquired from the encryption key management table 518. In the encryption key management table 518, as shown in FIG. 7D, the secondary encryption key encrypted by the encryption key encryption device 102 according to the embodiment of the present invention described with reference to FIG. 4 is stored. . The delivery data encryption processing unit 515 encrypts the login ID, the name of Kana, the date of birth, the received branch number, and the account number, which are customer information acquired from the customer information table 517, and transmits the encrypted information to the account management apparatus 506. The encryption process here is performed according to the encryption process in the information transmitting apparatus 103 according to the embodiment of the present invention described with reference to FIG. 2 (transition 06).

(7) When the account management apparatus 506 receives the encrypted customer information transmitted from the card information processing apparatus 512, the delivery data decryption processing unit 507 receives the information. Then, the delivery data decryption processing unit 507 obtains the encryption key from the encryption key management table 510, decrypts the encrypted customer information, passes the customer information to the account inquiry processing unit 508, and performs the account inquiry. The processing is shifted to the processing unit 508. As shown in FIG. 7B, the encryption key management table 510 holds encryption keys. This encryption key is the same as the original encryption key 106 input to the encryption key encryption device 102 by the administrator of the information receiving device 101 corresponding to the account management device 506 in the embodiment of the present invention described with reference to FIGS. The same encryption key (transition 07).

(8) Upon receiving the decrypted customer information, the account inquiry processing unit 508 refers to the customer information table 511, and receives all of the received customer information, such as login ID, name of kana, date of birth, branch number, and account number. The customer information received together with the determination result is passed to the determination result transmission processing unit 509, and the process is transitioned to the determination result transmission processing unit 509 (transition 08).

(9) The determination result transmission processing unit 509 is the customer ID received from the account inquiry processing unit 508, such as login ID, name, date of birth, branch number, account number, and determination processing result in the account inquiry processing unit 508 Is encrypted using the original encryption key held in the account management apparatus 506 and transmitted to the card information processing apparatus 512 (transition 09).

(10) The card information processing apparatus 512 determines the login ID, name, date of birth, branch number, account number, and account inquiry processing unit 508 transmitted from the determination result transmission processing unit 509 of the account management device 506. When the processing result is received, the result fetch processing unit 516 receives the information. Then, the result fetching processing unit 516 decrypts the received encrypted information and sets the branch number and the account number value in the member record in the account information table 519 shown in FIG. Create a result screen and distribute the created result screen to the member's terminal. The process of decrypting the received information by the result fetching processing unit 516 is performed using the original encryption key 106 obtained by decrypting the secondary encryption key 107 held inside the card information processing apparatus 512 ( Transition 10).

(11) The member terminal 501 receives the distributed result screen 505 and displays the screen on the display device. As shown in FIG. 6D, the result screen 505 indicates that the account designating process such as application has been completed is completed.

  FIG. 8 is a flowchart for explaining the operation of the login process in the card information processing apparatus 512 at the time of login from the member terminal. Next, this will be described.

(1) When the card information processing apparatus 512 is logged in from the member terminal 501 and the login ID and password are transmitted, the card information processing apparatus 512 logs in based on the login ID and password values input and transmitted from the terminal 501. The processing unit 513 searches the customer information table 517 and determines whether or not a record exists in the customer information table 517 (steps 801 and 802).

(2) If it is determined in step 802 that a record exists, the corresponding member's TOP screen 503 as shown in FIG. 6B is created and distributed to the member's terminal 501, and the record exists. If not, a login screen including a message prompting re-entry because the input login ID and password are incorrect is created and distributed to the member terminal 501 (steps 803 and 804).

  FIG. 9 is a flowchart for explaining the operation of distribution processing of the debit account designation screen in the card information processing apparatus when a debit account designation request is received from the member terminal 501. Next, this will be described.

  In this processing, the debit account designation screen distribution processing unit 514 receives a debit account designation request using the TOP screen 503 from the member, and creates a debit account designation screen 504 as shown in FIG. And distributing to the terminal 501 of the member.

  FIG. 10 is a flowchart for explaining the operation of the encryption processing in the card information processing apparatus when the account designation information specifying the branch number and the account number is transmitted from the member terminal 501. Will be described.

(1) When the card information processing apparatus 512 receives a branch number and an account number, which are information of a debit account from a member, the delivery data encryption processing unit 515 receives the information and the encryption key management table 518-2 The next encryption key 107 is acquired, and the secondary encryption key 107 is decrypted into the original encryption key 106 (step 1001).

(2) Next, the delivery data encryption processing unit 515 obtains the branch number and account number values transmitted from the member's terminal, the login ID, the kana name, and the date of birth taken out from the customer information table 517. The encrypted information is encrypted using the original encryption key 106, and the encrypted information is transmitted to the account management apparatus 506 (steps 1002 and 1003).

  FIG. 11 is a flowchart for explaining the operation of the result fetching process in the card information processing apparatus when the result of the account inquiry process is transmitted from the account management apparatus 506. Next, this will be described.

(1) The card information processing apparatus 512 receives the login ID, name, date of birth, branch number, account number, and account reference processing unit 508, which is the delivery data encrypted and transmitted from the account management apparatus 506. When the determination processing result is received, the result fetching processing unit 516 decrypts the received delivery data, and extracts the data of the login ID, the processing result, the branch number, and the account number from the decrypted delivery data. The process of decrypting the received information by the result fetching processing unit 516 is not shown, but the original encryption key 106 obtained by decrypting the secondary encryption key 107 held inside the card information processing apparatus 512 is not shown. (Step 1101).

(2) Next, the result fetch processing unit 516 determines whether or not the information of the processing result of the extracted data indicates normality. The account information table 519 shown in FIG. 5 is retrieved, and the branch number and account number extracted in the processing of step 1101 are set in the branch number and account number of the hit record (steps 1102 and 1103).

(3) If it is determined in step 1102 that the processing result is not normal but abnormal, or after the processing in step 1103, the result capturing processing unit 516 creates a result screen and distributes it to the member terminal 501. . Here, the result screen to be created and distributed is a result screen 505 informing that the processing result is OK when the processing result is normal, as shown in FIG. 6D, and the processing result is abnormal. This is a result screen notifying that the processing result is NG (step 1104).

  FIG. 12 is a flowchart for explaining the delivery data decryption processing operation in the account management apparatus 506 when the encrypted customer information transmitted from the card information processing apparatus 512 is received. .

(1) When the account management apparatus 512 receives the encrypted customer information transmitted from the card information processing apparatus 512, the delivery data decryption processing unit 507 receives the information. Then, the delivery data decryption processing unit 507 acquires the encryption key from the encryption key management table 510. As shown in FIG. 7B, the encryption key management table 510 is an encryption key of the information receiving apparatus 101 corresponding to the account management apparatus 506 in the embodiment of the present invention described with reference to FIGS. The administrator holds the same encryption key as the original encryption key 106 input to the encryption key encryption apparatus 102 (step 1201).

(2) Next, the delivery data decryption processing unit 507 decrypts the data including the name and date of birth extracted from the customer information, which is the received delivery data that has been encrypted, using the acquired encryption key. Then, the customer information is transferred to the account inquiry processing unit 508, and the account inquiry processing unit 508 shifts the processing (step 1202).

  FIG. 13 is a flowchart for explaining the processing operation in the account inquiry processing unit 508 of the account management apparatus 506 that has received the customer data which is the delivery data decrypted from the delivery data decryption processing unit 507. explain.

(1) Upon receiving the customer information as decrypted delivery data, the account inquiry processing unit 508 searches the customer information table 511 using the branch number and account number of the delivery data, and receives the branch number and account number of the received customer information. It is determined whether there is a record that matches (steps 1301 and 1302).

(2) If it is determined in step 1302 that there is a record that matches the branch number and the account number, the name and date of birth in the record match those included in the customer information as delivery data. If it matches, the OK is set in the processing result of the delivery data, the customer information received together with the determination result is passed to the determination result transmission processing unit 509, and the processing is performed as a determination result transmission process. Transition to the unit 509 (steps 1303, 1304).

(3) If there is no record that matches the branch number or account number in the determination in step 1302, or the determination in step 1303, the name and date of birth in the record are customer information as delivery data. If the result does not match that contained in the received data, NG is set in the processing result of the delivery data, the customer information received together with the determination result is passed to the determination result transmission processing unit 509, and the processing is performed. A transition is made to 509 (step 1305).

  FIG. 14 is a flowchart for explaining the processing operation in the judgment result transmission processing unit 509 of the account management apparatus 506 that has received the inquiry judgment result and customer information from the account inquiry processing unit 508. Next, this will be described.

  In this processing, the determination result transmission processing unit 509 uses the customer ID received from the account inquiry processing unit 508 as login ID, kana name, date of birth, branch number, and account number. Although the processing result of the determination is added and not shown in the figure, the processing is encrypted using the original encryption key held in the account management apparatus 506 and transmitted to the card information processing apparatus 512.

  According to the use example of the present invention described above, it is possible to prevent leakage of an encryption key used for information exchange between a card information processing apparatus as an information transmission apparatus and an account management apparatus as an information reception apparatus. As a result, leakage of personal information including the branch number, account number, etc. of the withdrawal destination of the credit card member can be prevented.

DESCRIPTION OF SYMBOLS 101 Information receiving apparatus 102 Encryption key encryption apparatus 103 Information transmission apparatus 104 Input personal information 105 Encrypted personal information 106 Original encryption key 107 Secondary encryption key 108, 110 Table 109 Encrypted personal information 111, 112 Internet 203 Decryption Component 205 Cryptographic Component 303 Decryption Component 306 Cryptographic Component 401, 402 Table 403 Cryptographic Component

Claims (2)

In an information transmission / reception system comprising an information transmission device and an information reception device, wherein information is exchanged between the information transmission device and the information reception device,
An encryption key encryption device for encrypting an original encryption key from an administrator on the information reception device side to obtain a secondary encryption key, and providing the secondary encryption key to the information transmission device;
The information transmitting apparatus includes a decryption component that decrypts a secondary encryption key provided from the encryption key encryption apparatus into an original encryption key, and an encryption that encrypts information to be transmitted using the decrypted original encryption key. With components,
When the information receiving apparatus receives encrypted information, the information receiving apparatus includes a decryption component that decrypts the received information using the original encryption key held by itself.   2. The information transmission / reception according to claim 1, further comprising: an encryption component that performs encryption unique to the information reception apparatus with respect to the decrypted information, and holds the information that has been uniquely encrypted. system.

Images