JP2019028837A - Financial transaction method, financial transaction system, information processor and financial transaction program - Google Patents

Abstract

To provide a financial transaction system capable of securely performing financial transaction without depending on a specific network.SOLUTION: An ATM 50 having a cash payout function is configured to receive a transaction request from a terminal 40 when the terminal 40 having a near-distance radio communication function is held over the same, and to transmit the received transaction request to a server 100. The server 100 is configured so as to, when receiving the transaction request, transmit a request for transfer of funds in accordance with the transaction request to an IB server 60 that manages funds (accounting server 70) and to instruct the ATM 50 to pay out cash of the amount.SELECTED DRAWING: Figure 1

Description

  The present invention relates to a financial transaction method and the like.

  By using a transaction device such as ATM (Automatic Teller Machine), a user can perform various financial transactions such as withdrawal, transfer, and transfer of cash without going directly to a bank window. For example, when a user performs a financial transaction using ATM, a cash card is inserted into the ATM and a four-digit PIN is entered on the ATM screen. The accounting host system receives PIN information and cash card information input from the user via a dedicated ATM network and performs authentication. If the authentication is successful, the user can input transaction information such as a withdrawal amount and perform various financial transactions.

JP 2009-75752 A JP 2009-205196 A International Publication No. 2013/124290

  However, in the above-described prior art, transaction information such as the transaction amount is individually input to a device (for example, ATM) that performs transactions, and when a user who is slow in operation operates first, There is a problem that it takes time to use. In addition, since a dedicated ATM (Automatic Teller Machine) network is used, there is a problem that a remote transaction system such as Internet banking cannot be effectively used.

  In one aspect, the present invention aims to realize a smooth transaction. Another object of the present invention is to provide a financial transaction method, a financial transaction system, an information processing apparatus, and a financial transaction program using a remote transaction mechanism such as Internet banking.

  In the first proposal, a transaction apparatus having a cash payout function receives a transaction request from a terminal provided with a short-range wireless communication function, and transmits the received transaction request to an information processing apparatus. . The information processing apparatus that has received the transaction request transmits a request for movement of the amount of funds according to the transaction request to the management device that manages the funds, and instructs the transaction device to pay out the amount of cash.

  In one aspect, smooth transactions can be realized. Also, in one aspect, a remote transaction mechanism such as Internet banking can be utilized.

FIG. 1 is a diagram illustrating an example of a configuration of a financial transaction system according to the present embodiment. FIG. 2 is a diagram showing a processing procedure of user registration processing in the financial transaction system. FIG. 3 is a diagram showing a transaction information registration processing procedure in the financial transaction system. FIG. 4 is a diagram showing a processing procedure of a withdrawal process in the financial transaction system. FIG. 5 is a diagram showing a processing procedure (details) for registering transaction information in the financial transaction system. FIG. 6 is a diagram showing a processing procedure (details) of the withdrawal process in the financial system. FIG. 7 is a diagram illustrating the configuration of the terminal according to the present embodiment. FIG. 8 is a diagram illustrating the configuration of the ATM according to the present embodiment. FIG. 9 is a diagram illustrating the configuration of the IB server according to the present embodiment. FIG. 10 is a diagram illustrating the configuration of the billing server according to the present embodiment. FIG. 11 is a diagram illustrating the configuration of the FIDO server according to the present embodiment. FIG. 12 is a diagram illustrating the configuration of the Aus server according to the present embodiment. FIG. 13 is a diagram illustrating the configuration of the management server according to the present embodiment. FIG. 14 is a diagram illustrating an example of a hardware configuration of a computer that realizes the same function as the terminal. FIG. 15 is a diagram illustrating an example of a hardware configuration of a computer that realizes functions similar to those of ATM. FIG. 16 is a diagram illustrating an example of a hardware configuration of a computer that realizes the same function as the IB server. FIG. 17 is a diagram illustrating an example of a hardware configuration of a computer that realizes the same function as the accounting server. FIG. 18 is a diagram illustrating an example of a hardware configuration of a computer that realizes the same function as the server.

  Embodiments of a financial transaction method, a financial transaction system, an information processing apparatus, and a financial transaction program according to the present invention will be described below in detail with reference to the drawings.

  FIG. 1 is a diagram illustrating an example of a configuration of a financial transaction system according to the present embodiment. As shown in FIG. 1, this financial transaction system includes a terminal 40 capable of inputting transaction information, an ATM (Automatic Teller Machine) 50 as an example of a device capable of cash transactions, and an example of an information processing device. An IB (Internet Banking) server 60, an accounting server 70, and a server 100 are included. For example, the server 100 includes a FIDO (Fast IDentity Online) server 200, an Auth server 300, and a management server 400. In the following description, the FIDO server 200, the AUS server 300, and the management server 400 are collectively referred to as the server 100 as appropriate. The server 100 can be realized by a single information processing apparatus, but may be realized by a plurality of information processing apparatuses.

  The ATM 50, the IB server 60, and the server 100 are connected to each other via a network 5 such as the Internet. The IB server 60 and the billing server 70 are connected to each other by a dedicated line or the like. The terminal 40 is connected to the network 5 by wireless communication with a base station (not shown), and is connected to the server 100 via the network 5. The terminal 40 can perform short-range wireless communication with the ATM 50 by a function such as NFC (Near Field Communication) communication.

  The terminal 40 is a terminal device that is operated when a user performs a financial transaction. For example, a smartphone or tablet having a function of short-range wireless communication such as NFC communication or mobile communication (wireless communication) for connecting to the network 5 It corresponds to a terminal, a notebook PC (Personal Computer) and the like. The user operates the terminal 40 and inputs information related to the financial transaction.

  The ATM 50 is a device that performs processing related to various financial transactions. ATM50 is an example of a transaction apparatus. Here, the ATM 50 is used as an example of a transaction apparatus. However, the present invention is not limited to this, and another apparatus capable of cash transactions such as withdrawal may be used. For example, various vending machines, POS (Point of Service) terminals, cash dispensers, and the like can be given as other examples.

  The IB server 60 accepts access from the terminal 40 in the mobile environment via the network 5, and performs processing according to user authentication and a remote financial transaction (account transfer instruction or the like) instruction to the account server 70. This is a transaction management apparatus (hereinafter referred to as an IB server). The IB server 60 is an example of a transaction management device. Further, as will be described later, the IB server 60 can give the management server 400 of the server 100 authorization such as an access right to the IB server 60 and an execution authority regarding an account transfer instruction.

  The account server 70 is a device that moves funds in response to an account transfer instruction from the IB server 60. The transfer of funds includes transfers and transfers. For example, the account server 70 transfers funds from the user's account to the account of the operator of the server 100 when withdrawing money from the user.

  The FIDO server 200 is a device that performs authentication (FIDO authentication) of a user who performs a financial transaction. The authentication server 300 is a device that issues a token to the management server 400 when user authentication and authorization of the IB server 60 are successfully acquired. The management server 400 is a device that registers transaction information and generates a transaction code.

  Next, the user registration process, transaction information registration process, and ATM withdrawal process in the financial system shown in FIG. 1 will be described in order.

  FIG. 2 is a diagram showing a processing procedure of user registration processing in the financial transaction system. As shown in FIG. 2, the terminal 40 sends IB authentication and FIDO registration requests, which are requests for associating the use of financial transactions via the network (in this example, Internet banking) and online authentication using the terminal, to the server. 100 (step S10). The IB authentication and the FIDO registration request include the user ID and password related to Internet banking input by the user.

  When the server 100 accepts the IB authentication and the FIDO registration request, the user ID is set as a target that allows the execution of the transaction by the internet banking by the success of the online authentication (here, the FIDO authentication) using the terminal with the server 100. The IB server 60 is notified of the password and the password, and an IB authentication request is made (step S11). The IB server 60 authenticates the user by using the user ID and password, and when the authentication is successful, the user ID allows a transaction based on the notification of the user ID by the success of the FIDO authentication by the server 100. (Step S12). The IB server 60 transmits the result of the authentication process to the server 100 (step S13).

  The server 100 receives the result of the authentication process from the IB server 60, and performs FIDO registration when the received result of the authentication process indicates success (step S14). When the result of the authentication process indicates failure, the terminal 40 is notified that the IB authentication and the FIDO registration request are rejected, and the process is completed. The server 100 stores information in which the FIDO-ID is associated with the IB-ID (Step S15). Here, the FIDO-ID is information for uniquely identifying user information used in the FIDO authentication. The IB-ID is an ID included in the IB authentication and FIDO registration request transmitted from the terminal 40 in step S10. Note that in response to the completion of the FIDO registration, the IB server 60 may be notified that the association with the FIDO has been normally completed for the user ID notified in S11. In this case, if this notification is not made, even if the authentication is successful in S12, the IB server 60 invalidates (does not accept) the transaction instruction by the notification of the user ID due to the succeeding FIDO authentication for that user ID. Also good.

  The server 100 transmits a user registration completion notification to the terminal 40 (step S16). The terminal 40 receives the user registration completion notification and displays the notification on the display screen (step S17).

  Here, an example of the FIDO registration shown in step S14 of FIG. 2 will be described. Although description is omitted in FIG. 2, the FIDO registration is performed by the cooperation of the FIDO client operating on the terminal 40 and the FIDO server 200 included in the server 100, for example, the following processing (1A) to processing (5A): Execute.

Process (1A): The FIDO server 200 of the server 100 makes a registration request to the FIDO client of the terminal 40.
Process (2A): The FIDO client makes a registration request to the biometric authentication module (Authenticator) of the terminal 40.
Process (3A): The biometric authentication module requests biometric information (biometric information such as iris, vein pattern, fingerprint) from the user, and compares the biometric information presented by the user with the registered biometric information. And verify the user.
Process (4A): When the biometric authentication module succeeds in the verification of the user, the biometric authentication module generates a pair of the user's private key and public key for use in the authentication phase. The biometric authentication module adds a necessary counter value and generates KRD (Key Registration Data). The FIDO client digitally signs the KRD with the registration private key, and transmits the KRD with the digital signature to the FIDO server 200 as a registration result.
Process (5A): The FIDO server 200 verifies the digital signature of the KRD, stores the KRD information, and assigns a FIDO-ID that uniquely identifies the KRD information. For example, the KRD information includes AAID that uniquely identifies the biometric authentication module of the terminal 40 and information on the user's secret key (KeyID).
Although FIDO authentication is used here, other online authentication can also be used.

  FIG. 3 is a diagram showing a transaction information registration processing procedure in the financial transaction system. As shown in FIG. 3, the terminal 40 transmits the FIDO authentication and the balance request to the server 100 (step S20). Here, the balance request is a request to display the balance of the user's account. The server 100 performs the FIDO authentication process (step S21).

  If the FIDO authentication is successful, the server 100 transmits an IB authentication and a balance request to the IB server 60 (step S22). For example, the IB authentication and the balance request include information indicating that the FIDO authentication is successful and a user ID. If the server 100 fails in the FIDO authentication, the server 100 notifies the terminal 40 that the balance inquiry is impossible due to the failure of the FIDO authentication.

  When the IB server 60 receives the IB authentication and the balance request from the server 100, the IB server 60 includes information indicating that the FIDO authentication has been successful. The request is transmitted to the accounting server 70 (step S23). In addition, when it is not the user ID of the object which accepts a transaction by the success of FIDO authentication, the IB server may notify the terminal 40 via the server 100 so as to perform the registration process shown in FIG.

  When receiving the balance request from the IB server 60, the billing server 70 checks the balance of the account corresponding to the user ID (step S24). The billing server 70 transmits a balance response to the IB server 60 (step S25). The IB server 60 transfers the balance response to the server 100 (step S26).

  The server 100 receives the balance response and sends a balance notification to the terminal 40 (step S27). Upon receiving the balance notification, the terminal 40 displays the balance. Moreover, the terminal 40 receives transaction information (step S28). For example, the transaction information is information related to financial transactions such as cash withdrawal, transfer, and transfer.

  The terminal 40 transmits transaction information and performs FIDO authentication (step S29). The server 100 receives the transaction information and registers an access token in cooperation with the IB server (step S30). The server 100 issues a transaction code and transmits the transaction code to the terminal 40 (step S31). The transaction code and transaction information are associated with the access token and stored in the storage unit of the server 100. For example, in step S31, the server 100 calculates a hash value of transaction information using a hash function, and uses information obtained by combining the calculated hash value and transaction information as a transaction code. In addition to the hash value, identification information that can identify the transaction can be used.

  The terminal 40 receives the transaction code and stores the transaction code (step S32).

  Here, an example of the FIDO authentication shown in steps S20, S21, and S29 of FIG. 3 will be described. Although description is omitted in FIG. 3, in the FIDO authentication, for example, the following processes (1B) to (4B) are executed in cooperation with the FIDO client operating on the terminal 40 and the FIDO server 200.

Process (1B): Upon receiving a request for FIDO authentication from the terminal 40, the FIDO server 200 makes an authentication request to the FIDO client of the terminal 40.
Process (2B): The biometric authentication module of the terminal 40 requests biometric information from the user, compares the biometric information presented by the user with the registered biometric information, and verifies the user.
Process (3B): When the verification of the user is successful, the biometric authentication module generates a pair of the user's private key and public key for use in the authentication phase. The biometric authentication module adds necessary counter values and generates SD (Signed Data). The FIDO client digitally signs the SD with the user's private key, and transmits the SD with the digital signature to the FIDO server 200 as an authentication result.
Process (4B): The FIDO server 200 verifies the digital signature of the SD, and when the verification is successful, completes the FIDO authentication for the user.

  FIG. 4 is a diagram showing a processing procedure of a withdrawal process in the financial transaction system. As shown in FIG. 4, the terminal 40 transmits a transaction code to the ATM 50 by NFC communication (step S40). For example, a unit for NFC communication is mounted on ATM, and NFC communication is executed when the user holds the terminal 40 over the unit mounting portion. It should be noted that other communication methods for performing direct wireless communication at a short distance with the terminal 40 such as infrared communication can also be used. The ATM 50 takes in the transaction code (step S41). The ATM 50 transmits the transaction code to the server 100 (step S42).

  The server 100 verifies the validity of the transaction code (step S43). When the transaction code is valid, the server 100 reads the access token and transaction information stored in the storage unit in association with the transaction code, and sends the IB authentication and account transfer request including the read access token and transaction information to the IB It performs with respect to the server 60 (step S44). The validity of the transaction code can be verified by, for example, checking whether the server 100 has stored the transaction code in the storage unit. The IB server 60 performs authentication based on the access token from the server 100. If the authentication is successful, the IB server 60 executes an account transfer instruction included in the transaction information to the account server 70 (step S45). For example, the account transfer instruction includes information for identifying a user who performs a transaction and transaction information input by the user.

  The billing server 70 performs an account transfer process (step S46). For example, in step S <b> 46, the account server 70 moves the amount corresponding to the transaction information from the user's account to the account of the operator of the server 100. The billing server 70 transmits an account transfer completion notification to the IB server 60 (step S47).

  When receiving the account transfer completion notification, the IB server 60 transmits transfer completion information to the server 100 (step S48). The server 100 instructs the execution of the transaction by transmitting the transaction information to the ATM 50 (step S49).

  The ATM 50 receives the transaction information (Step S50). ATM50 performs the cash withdrawal process according to transaction information (step S51). Although illustration is omitted, the user takes out the cash withdrawn in step S51. When the cash is taken out, the ATM 50 transmits a transaction completion notification to the server 100 (step S52). When the server 100 receives the transaction completion notification, the server 100 completes the transaction (step S53).

  Next, an example of the transaction information registration process shown in FIG. 3 will be described. FIG. 5 is a diagram showing a processing procedure (details) for registering transaction information in the financial transaction system. As shown in FIG. 5, the terminal 40 transmits a transaction start request and transaction information to the management server 400 of the server 100 (step S60).

  The management server 400 registers transaction information (step S61). The management server 400 transmits an authorization request for the IB server 60 to the Aus server 300 (step S62). Upon receiving the authorization request, the Aus server 300 transmits a user authentication confirmation to the IB server 60 (step S63).

  When the IB server 60 receives a request for user authentication confirmation, the terminal 40, the IB server 60, and the FIDO server 200 execute an authentication process (step S64). For example, in step S64, when the IB server 60 makes a request for FIDO authentication to the FIDO server 200, the above-described processing (1B) to processing (1B) is performed between the FIDO server 200 and the FIDO client of the terminal 40. 4B) is executed. The FIDO server 200 transmits the result of the FIDO authentication to the IB server 60.

  If the FIDO authentication is successful, the IB server 60 sends a notification to the authorization server 300 that authorization is given to the management server 400 (step S65). Upon receiving the notification of granting authorization, the Aus server 300 issues an access token (access token to the IB server 60) to the management server 400 (step S66).

  When the access token is issued, the management server 400 generates a transaction code (step S67). The access token and the generated transaction code are stored in the storage unit of the management server 400 in association with the registered transaction information. The management server 400 issues a transaction code to the terminal 40 (step S68), and the terminal 40 stores the transaction code (step S69).

  Next, an example of the withdrawal process shown in FIG. 4 will be described. FIG. 6 is a diagram showing a processing procedure (details) of the withdrawal process in the financial system. As shown in FIG. 6, the terminal 40 transmits a transaction code to the ATM 50 using non-contact communication or the like at a short distance such as NFC communication (step S70). The ATM 50 transmits the transaction code to the management server 400 (step S71).

The management server 400 verifies the validity of the transaction code (step S72). For example, in step S72, the management server 400 determines that the transaction code is valid when the following conditions 1 and 2 are satisfied. It is not necessary to use both conditions.
Condition 1: Within a predetermined period from the time when the transaction code is issued.
Condition 2: The same transaction code as the transaction code acquired from the ATM 50 is held in the transaction code table of the management server 400.

  When the transaction code is valid, the management server 400 calls an API using an access token and transmits a request (transaction information and transfer instruction) to the IB server 60 (step S73).

  The IB server 60 transmits an account transfer instruction to the account server 70 (step S74). The account server 70 executes an account transfer process (step S75). The billing server 70 transmits an account transfer completion notification to the IB server 60 (step S76).

  When receiving the account transfer completion notification, the IB server 60 transmits the account transfer completion information to the management server 400 (step S77). The management server 400 instructs transaction execution by transmitting transaction information to the ATM 50 (step S78).

  When the ATM 50 receives the transaction information, the ATM 50 executes a cash withdrawal process according to the transaction information (step S79). Although illustration is omitted, the user takes out the cash withdrawn in step S79. When the cash is taken out, the ATM 50 transmits a transaction completion notice to the management server 400 (step S80). Upon receiving the transaction completion notification, management server 400 transmits information on the transaction completion screen to terminal 40 (step S81).

  When the terminal 40 receives the transaction completion screen information, the terminal 40 displays the transaction completion screen (step S82) and ends the process.

  As described above, in the financial transaction system according to the present embodiment, a cash withdrawal transaction or the like can be performed by holding the terminal 40 over a transaction apparatus (for example, ATM), and a smooth transaction can be realized. . In the above-described example, transaction details are registered in advance, but for simplicity, transaction details are input in advance to the terminal 40 and stored in the storage unit of the terminal 40. The transaction information stored in the storage unit (information specifying the account of the funds transfer source, the amount of money transfer) is stored in the transaction device by performing short-range wireless communication (for example, NFC communication) over the ATM 50) Then, the transaction apparatus transmits the received transaction information to the IB server via the server 100 so as to execute the fund transfer, and the transaction apparatus can perform the cash withdrawal according to the transaction content. . At this time, the transaction apparatus and the server 100 may require the terminal 40 to perform authentication, and execute such processing on condition that proper authentication (including FIDO authentication) is performed. In addition, a series of authentications for conducting financial transactions is performed by exchanging FIDO authentication using a terminal 40 (smartphone or the like) owned by the user and a unique and time-limited “transaction code” for each transaction. This makes it possible to easily realize a withdrawal transaction by diverting the mechanism of net banking.

  In the financial transaction system according to this embodiment, the user operates the terminal 40 to input transaction information, and the input transaction information is stored in the management server 400. The management server 400 generates a unique and time-limited transaction code using the transaction information. By using this transaction code, a secure financial transaction can be realized.

  In the financial transaction system according to the present embodiment, the ATM 50 reads the transaction code by NFC communication and notifies the management server 400 of the transaction code. The management server 400 obtains authorization for accessing the IB server 60 in advance, and requests the IB server 60 for a financial transaction based on the transaction information associated with the transaction code. The authorization is issued from the IB server 60 when the management server 400 receives the transaction information from the terminal 40 and succeeds in the FIDO authentication for the user. For this reason, the financial transaction using a transaction code can be realized securely.

  In the financial transaction system according to the present embodiment, when performing the user registration process, the server 100 associates the FIDO-ID with the IB-ID. The server 100 performs the FIDO authentication, and notifies the IB server 60 that the FIDO authentication has been successful, so that the IB server 60 considers that the IB authentication has succeeded, and the IB server 60 receives the server from the user account. Transfer to 100 accounts. Thereby, the exchange of data between the existing IB server 60 and the billing system 70 can be simplified.

  In the financial transaction system according to the present embodiment, online communication with the accounting server 70 can be executed via the network 5 through the IB server 60.

  Next, functional configurations of the terminal 40, the ATM 50, the IB server 60, the accounting server 70, the FIDO server 200, the Aus server 300, and the management server 400 illustrated in FIG. 1 will be described in order.

  FIG. 7 is a diagram illustrating the configuration of the terminal according to the present embodiment. As illustrated in FIG. 7, the terminal 40 includes a communication unit 41, an NFC communication unit 42, a biological information reader 43, an input unit 44, a display unit 45, a storage unit 46, and a control unit 47. .

  The communication unit 41 is a processing unit that connects to the network 5 via a base station or the like and executes data communication with the server 100. The communication unit 41 corresponds to a communication device. A control unit 47 described later exchanges data with the server 100 via the communication unit 41.

  The NFC communication unit 42 is a processing unit that performs close proximity wireless communication with the NFC-compatible ATM 50. The communication area of the NFC communication unit 42 is about several centimeters, and the user holds the terminal 40 over the ATM 50 to execute NFC communication. The control unit 47 described later notifies the ATM 50 of the transaction code via the NFC communication unit 42.

  The biometric information reader 43 is a device that reads the biometric information of the user. For example, the user's biometric information corresponds to information such as the user's fingerprint and iris.

  The input unit 44 is an input device for the user to input various information to the terminal 40. For example, the input unit 44 corresponds to a touch panel, an input button, a keyboard, and the like. The user operates the input unit 44 to input an ID, password, transaction information, and the like.

  The display unit 45 is a display device that displays information output from the control unit 47. For example, the display unit 45 corresponds to a touch panel or a liquid crystal display. The display unit 45 displays information such as the balance of the user's account and the result of the transaction.

  The storage unit 46 includes secure information 46a and a transaction code 46b. The storage unit 46 corresponds to a semiconductor memory device such as a random access memory (RAM), a read only memory (ROM), and a flash memory, and a storage device such as a hard disk drive (HDD).

  The secure information 46a is information used when performing FIDO authentication. For example, the secure information 46a includes user biometric information and information on the user's private key (a pair of a private key and a public key) for use in the authentication phase. The secure information 46a is stored in a secure area of the storage unit 46.

  The transaction code 46b is a transaction code notified from the management server 400.

  The control unit 47 includes an application processing unit 47a, a FIDO client 47b, and a biometric authentication module 47c. The control unit 47 can be realized by a CPU (Central Processing Unit), an MPU (Micro Processing Unit), or the like. The control unit 47 can also be realized by a hard wired logic such as an application specific integrated circuit (ASIC) or a field programmable gate array (FPGA).

  The application processing unit 47a is a processing unit that receives user registration and various financial transaction instructions from the user via the input unit 44, and executes various processes according to the instructions.

  An example of processing executed when the application processing unit 47a receives an instruction for user registration processing from the user will be described. When receiving the user registration processing instruction, the application processing unit 47 a transmits an IB authentication and a FIDO registration request to the FIDO server 200. The IB authentication and FIDO registration request includes the user ID and password input from the input unit 44 or the like. When IB authentication is successful on the server 100 side, data is exchanged between the FIDO server 200 and an FIDO client 47d described later, and FIDO registration is performed.

  An example of processing executed when the application processing unit 47a receives a balance inquiry from the user will be described. When the application processing unit 47 a receives a balance inquiry instruction from the user, the application processing unit 47 a transmits the FIDO authentication and the balance request to the server 100. The IB authentication and the balance request include the user ID (IB-ID). Thereafter, data is exchanged between the FIDO server 200 and an FIDO client 47d described later, and when the FIDO authentication is successful, the server 100 notifies the balance. The application processing unit 47a causes the display unit 45 to display the notified balance information.

  When the application processing unit 47a displays balance information on the display unit 45, the user inputs transaction information. The transaction information includes information related to financial transactions such as cash withdrawal, transfer, and transfer. Here, as an example, a case where the user inputs cash withdrawal as transaction information will be described. When receiving the transaction information from the input unit 44, the application processing unit 47a transmits the transaction information and the FIDO authentication to the server 100. Thereafter, data is exchanged between the FIDO server 200 and an FIDO client 47d described later, and when the FIDO authentication is successful, a transaction code is issued from the server 100. The application processing unit 47 a receives the transaction code from the server 100 and stores it in the storage unit 46. The transaction code stored in the storage unit 46 is referred to as a transaction code 46b.

  A process of the application processing unit 47a when the user holds the terminal 40 over the ATM 50 will be described. The application processing unit 47a acquires the transaction code 46b from the storage unit 46, and transmits the acquired transaction code 46b to the ATM 50 via the NFC communication unit 42. When the application processing unit 47a receives information on the transaction completion screen from the server 100, the application processing unit 47a displays the transaction completion screen on the display unit 45.

  The FIDO client 47b is a processing unit that exchanges information with the FIDO server 200 and executes the user's FIDO registration and FIDO authentication. When performing FIDO registration, the FIDO client 47b performs the above-described processing (1A) to processing (5A) with the FIDO server 200. When performing the FIDO authentication, the FIDO client 47b executes the above-described processing (1B) to processing (4B) with the FIDO server 200.

  In response to a request from the FIDO client 47b, the biometric authentication module 47c registers the biometric information of the user and verifies the biometric information. The biometric authentication module 47 c acquires the biometric information of the user using the biometric information reader 43. For example, the biometric authentication module 47c performs the above processing (3A) and processing (4A) when registering the biometric information of the user. The biometric authentication module 47c performs the above processing (2B) and processing (3B) in response to a request from the FIDO client 47b when performing FIDO authentication between the FIDO client 47b and the FIDO server 200. To do.

  FIG. 8 is a diagram illustrating the configuration of the ATM according to the present embodiment. As illustrated in FIG. 8, the ATM 50 includes a communication unit 51, an NFC communication unit 52, an input operation unit 53, a storage unit 54, a mechanism unit 55, and a control unit 56.

  The communication unit 51 is a communication device that performs data communication with the server 100 via the network 5. The control unit 56 described later exchanges data with the server via the communication unit 51.

  The NFC communication unit 52 is a communication device that exchanges data with the terminal 40 by short-range wireless communication.

  The input operation unit 53 is an input device for the user to input various information to the ATM 50. For example, the input operation unit 53 corresponds to an input button, a touch panel, or the like.

  The memory | storage part 54 is a memory | storage device which memorize | stores the information utilized when performing various transaction processing. The storage unit 54 corresponds to a semiconductor memory element such as a RAM, a ROM, and a flash memory, and a storage device such as an HDD.

  The mechanism unit 55 is a device that processes cards, cash, and the like used when performing various financial transactions. Although illustration is omitted, for example, the mechanism unit 55 includes a card reading unit, a statement slip printing unit, a bill processing unit, a passbook printing unit, a coin processing unit, and a biometric authentication unit. The card reading unit is a device that acquires information on an IC (Integrated Circuit) card. The statement slip printing unit is a device that prints a statement slip. The banknote processing unit is a device that executes various processes related to banknotes, and performs, for example, withdrawal.

  The control unit 56 includes a transaction code notification unit 56a and a transaction execution unit 56b. The control unit 56 can be realized by a CPU, MPU, or the like. The control unit 56 can also be realized by a hard wired logic such as ASIC or FPGA.

  The transaction code notification unit 56 a is a processing unit that acquires a transaction code from the terminal 40 via the NFC communication unit 52. The transaction code notification unit 56a notifies the management server 400 of the transaction code acquired from the terminal 40.

  The transaction execution unit 56b is a processing unit that executes various financial transactions. For example, when the transaction execution unit 56b receives a transaction execution instruction from the management server 400, the transaction execution unit 56b performs a process according to the transaction execution instruction. For example, when the transaction execution instruction is a withdrawal of a predetermined amount, the transaction execution unit 56b outputs information indicating that the predetermined amount is withdrawn to the mechanism unit 55.

  FIG. 9 is a diagram illustrating the configuration of the IB server according to the present embodiment. As illustrated in FIG. 9, the IB server 60 includes a communication unit 61, a storage unit 62, and a control unit 63.

  The communication unit 61 performs data communication with the server 100 via the network 5. In addition, the communication unit 61 performs data communication with the billing server 70 via a dedicated line or the like. A control unit 63 described later exchanges data with the billing server 70 and the server 100 via the communication unit 61.

  The memory | storage part 62 is a memory | storage device which memorize | stores the information utilized when performing various transaction processing. The storage unit 62 corresponds to a semiconductor memory element such as a RAM, a ROM, and a flash memory, and a storage device such as an HDD.

  The control unit 63 includes an authentication processing unit 63a, an authorization issuing unit 63b, and a financial transaction unit 63c. The control unit 63 can be realized by a CPU, MPU, or the like. The control unit 63 can also be realized by a hard wired logic such as ASIC or FPGA.

  The authentication processing unit 63 a is a processing unit that performs IB authentication of a user when a request for IB authentication of the user of the terminal 40 is received from the server 100. For example, the authentication processing unit 63a acquires a set of a user ID and a password from the server 100. The authentication processing unit 63a determines that the authentication is successful when the combination of the acquired user ID and password exists in an authentication table (not shown) of the storage unit 62. On the other hand, the authentication processing unit 63a determines that the authentication has failed when the pair of the acquired user ID and password does not exist in the authentication table. The authentication processing unit 63a transmits the result of IB authentication to the server 100.

  When the authorization issuing unit 63b receives a request for access authority (authorization) from the management server 400 to the IB server 60 from the author server 300, the authorization issuing unit 63b requests the FIDO server 200 to perform FIDO authentication for the user of the terminal 40. When the authorization issuing unit 63b receives a response from the FIDO server 200 indicating that the FIDO authentication for the user of the terminal 40 has been successful, the authorization issuing unit 63b includes information indicating that the management server 400 grants access authority (authorization) to the IB server 60. Transmit to the Aus server 300.

  The financial transaction unit 63 c is a processing unit that executes various financial transactions via the network 5. For example, when the financial transaction unit 63c receives an API call from the management server 400 to which the access authority is given and receives transaction information, the financial transaction unit 63c transmits information on a financial transaction instruction corresponding to the transaction information to the account server 70. It is a processing unit.

  FIG. 10 is a diagram illustrating the configuration of the billing server according to the present embodiment. As illustrated in FIG. 10, the billing server 70 includes a communication unit 71, a storage unit 72, and a control unit 73.

  The communication unit 71 is a processing unit that performs data communication with the IB server 60 via a dedicated line or the like. The communication unit 71 corresponds to a communication device. The control unit 73 described later exchanges data with the IB server 60 via the communication unit 71.

  The storage unit 72 is a storage device that stores various types of information regarding each user, the account of the operator of the server 100, and the like. The storage unit 72 corresponds to a semiconductor memory element such as a RAM, a ROM, and a flash memory, and a storage device such as an HDD.

  The control unit 73 includes a financial transaction execution unit 73a. The control unit 73 can be realized by a CPU, MPU, or the like. The control unit 73 can also be realized by a hard wired logic such as ASIC or FPGA.

  The financial transaction execution unit 73 a is a processing unit that executes various financial transactions in accordance with instructions from the IB server 60. For example, when the financial transaction execution unit 73a receives a balance request from the IB server 60, the financial transaction execution unit 73a checks the balance based on the user ID included in the balance request. The financial transaction execution unit 73a transmits a balance response to the IB server 60.

  When the financial transaction execution unit 73a receives an account transfer instruction from the IB server 60, the financial transaction execution unit 73a specifies user account information based on the user ID and the like included in the account transfer instruction. The financial transaction execution unit 73a transfers the transfer target amount according to the account transfer instruction from the user's account to the account of the operator of the server 100, and transmits an account transfer completion notification to the IB server 60.

  FIG. 11 is a diagram illustrating the configuration of the FIDO server according to the present embodiment. As illustrated in FIG. 11, the FIDO server 200 includes a communication unit 210, a storage unit 220, and a control unit 230.

  The communication unit 210 is a processing unit that performs data communication with the terminal 40 and the IB server 60 via the network 5. In addition, the communication unit 210 performs data communication with the AUS server 300. The communication unit 210 corresponds to a communication device. A control unit 230 described later exchanges data with the terminal 40, the IB server 60, and the aus server 300 via the communication unit 210.

  The storage unit 220 is a storage device that stores various types of information used when the FIDO server 200 authenticates the user of the terminal 40 by FIDO. The storage unit 220 corresponds to a semiconductor memory element such as a RAM, a ROM, and a flash memory, and a storage device such as an HDD.

  The control unit 230 includes a FIDO authentication unit 230a. The control unit 230 can be realized by a CPU, MPU, or the like. The control unit 230 can also be realized by a hard wired logic such as ASIC or FPGA.

  The FIDO authentication unit 230a is a processing unit that exchanges information with the FIDO client 47b operating on the terminal 40, and executes the user's FIDO registration and FIDO authentication. When performing FIDO registration, the FIDO authentication unit 230a executes the above-described processing (1A) to processing (5A) with the FIDO client 47b. When performing the FIDO registration, the FIDO authentication unit 230a registers information in which the FIDO-ID and the IB-ID are associated with each other in the storage unit 220.

  When performing FIDO authentication, the FIDO authentication unit 230a performs the above-described processing (1B) to processing (4B) with the FIDO client 47b. For example, when FIDO authentication is requested from the IB server 60, the FIDO authentication unit 230a executes the FIDO authentication and transmits the result of the FIDO authentication to the IB server 60.

  FIG. 12 is a diagram illustrating the configuration of the Aus server according to the present embodiment. As illustrated in FIG. 12, the AUS server 300 includes a communication unit 310, a storage unit 320, and a control unit 330.

  The communication unit 310 is a processing unit that performs data communication with the FIDO server 200 and the management server 400. The communication unit 310 corresponds to a communication device.

  The storage unit 320 is a storage device that stores various types of information. The storage unit 320 corresponds to a semiconductor memory element such as a RAM, a ROM, and a flash memory, and a storage device such as an HDD.

  The control unit 330 includes an authentication request unit 330a and a token issue unit 330b. The control unit 330 can be realized by a CPU, MPU, or the like. The control unit 330 can also be realized by a hard wired logic such as ASIC or FPGA.

  The authentication request unit 330 a is a processing unit that transmits a user authentication request to the IB server 60 when an authorization request from the management server 400 to the IB server 60 is received.

  The token issuing unit 330b is a processing unit that receives a response to a user authorization request from the IB server 60 and issues a token (authorization) to the management server 400 according to the user authentication result. For example, the token issuing unit 330b issues a token to the management server 400 when receiving a notification from the IB server 60 that the authorization is given to the management server 400.

  FIG. 13 is a diagram illustrating the configuration of the management server according to the present embodiment. As illustrated in FIG. 13, the management server 400 includes a communication unit 410, a storage unit 420, and a control unit 430.

  The communication unit 410 performs data communication with the terminal 40 via the network 5. The communication unit 410 performs data communication with the author server 300. The communication unit 410 corresponds to a communication device.

  The storage unit 420 includes transaction information 420a and a transaction code table 420b. The storage unit 420 corresponds to a semiconductor memory element such as a RAM, a ROM, and a flash memory, and a storage device such as an HDD.

  The transaction information 420a is information related to transactions transmitted from the terminal 40, and includes information related to financial transactions such as cash withdrawal, transfer, and transfer, and information related to user accounts. Further, the transaction information 420a is associated with the information of the transmission source terminal 40 and the user ID.

  The transaction code table 420b is a table that holds information in which a transaction code generated by a transaction code generation unit 430c, which will be described later, is associated with a time when the transaction code is generated.

  The control unit 430 includes a reception unit 430a, an authorization request unit 430b, a transaction code generation unit 430c, a transaction code verification unit 430d, and an instruction unit 430e. The control unit 430 can be realized by a CPU, MPU, or the like. The control unit 430 can also be realized by a hard wired logic such as an ASIC or FPGA.

  The accepting unit 430a is a processing unit that accepts transaction information from the terminal 40. The reception unit 430a registers the received transaction information in the storage unit 420 as the transaction information 420a.

  The authorization request unit 430 b is a processing unit that transmits an authorization request for the IB server 60 from the management server 400 to the Aus server 300 when transaction information is registered in the storage unit 420.

  The transaction code generation unit 430c is a processing unit that generates a transaction code based on the transaction information 420a. For example, the transaction code generation unit 430c calculates a hash value of the transaction information 420a using a predetermined hash function. The transaction code generation unit 430c generates information combining the hash value of the transaction information 420a and the transaction information 420a as a transaction code.

  The transaction code generation unit 430c acquires the time when the transaction code is generated from a timer (not shown). The transaction code generation unit 430c associates the transaction code with the time when the transaction code was generated and registers it in the transaction code table 420b. Further, the transaction code generation unit 430c transmits the generated transaction code to the terminal 40.

  The transaction code verification unit 430d is a processing unit that acquires the transaction code stored in the terminal 40 via the ATM 50 and verifies the validity of the transaction code. For example, the transaction code verification unit 430d compares the acquired transaction code with the transaction code table 420b and determines that the transaction code is valid when the above condition 1 and condition 2 are satisfied. The transaction code verification unit 430d outputs the verification result to the instruction unit 430e.

  The transaction code verification unit 430d determines that the condition 1 is satisfied when the acquired transaction code exists in the transaction code table 420b. The transaction code verification unit 430d determines that the condition 2 is satisfied when the time interval calculated by Expression (1) is less than the predetermined time interval.

  Time interval = Reception time of the first transaction code−Generation time of the second transaction code (1)

  In the formula (1), the first transaction code is a transaction code acquired from the terminal 40 by the transaction code verification unit 430d via the ATM 50. The reception time is the time when the transaction code verification unit 430d receives the first transaction code.

  In the formula (1), the second transaction code is a transaction code generated by the transaction code generation unit 430c. The generation time is the time when the transaction code generation unit 430c generates the second transaction code.

  The instruction unit 430e is a processing unit that transmits an instruction (account transfer instruction or the like) corresponding to the transaction information 420a to the IB server 60 when it is determined that the transaction code is valid. For example, the transaction code includes transaction identification information, and the instruction unit 430e acquires the transaction information 420a corresponding to the transaction identification information, and gives an instruction corresponding to the acquired transaction information 420a to the IB server 60. Send. When instructing the IB server 60, the instruction unit 430e makes an API call to the IB server 60 using the access token issued to the IB server 60.

  When the instruction unit 430e receives an instruction completion notification corresponding to the transaction information 420a from the IB server 60, the instruction unit 430e instructs the ATM 50 to execute a financial transaction according to the transaction information 420a. When the instruction unit 430 e receives a transaction completion notification from the ATM 50, the instruction unit 430 e transmits information on the transaction completion screen to the terminal 40 via the network 5.

  Next, the effect of the financial transaction system according to the present embodiment will be described. In the financial transaction system, the ATM 50 receives a transaction code from the terminal 40 by NFC communication, and transmits the received transaction code to the server 100. The server 100 transmits a request for transferring funds corresponding to the received transaction code to the IB server 60 (accounting server 70) and instructs the ATM 50 to pay out an amount of cash corresponding to the transaction code. Do. Thereby, a smooth transaction can be realized.

  The transaction code includes transaction identification information, and the management server 400 acquires the transaction information 420a corresponding to the transaction identification information, and gives an instruction corresponding to the acquired transaction information 420a to the IB server 60. Send. Thereby, when the transaction code is valid, the financial transaction associated with the transaction code can be executed securely.

  Further, an expiration date is set for the transaction code, and when the management server 400 acquires an expired transaction code, the management server 400 prevents a financial transaction associated with the transaction code from being performed. Therefore, reliability can be improved.

  Next, an example of a hardware configuration of a computer that realizes the same function as the terminal 40 described in the above embodiment will be described. FIG. 14 is a diagram illustrating an example of a hardware configuration of a computer that realizes the same function as the terminal.

  As illustrated in FIG. 14, the computer 500 includes a CPU 501 that executes various arithmetic processes, an input device 502 that receives input of data from a user, and a display 503. The computer 500 includes a reading device 504 that reads a program and the like from a storage medium, and an interface device 505 that exchanges data with other computers. The computer 500 includes a communication device 506 that exchanges data with other computers via the network 5 and an NFC communication device 507 that exchanges data with other computers by proximity wireless communication. The computer 500 has a biological information reader 508. The computer 500 also includes a RAM 509 that temporarily stores various types of information and a storage device 510. The devices 501 to 510 are connected to the bus 511.

  The storage device 510 includes an application program 510a, a FIDO client program 510b, and a biometric authentication program 510c. The CPU 501 reads the application program 510a, the FIDO client program 510b, and the biometric authentication program 510c and expands them in the RAM 509.

  The application program 510a functions as an application process 509a. The FIDO client program 510b functions as the FIDO client process 509b. The biometric authentication program 510c functions as a biometric authentication process 509c.

  The process of the application process 509a corresponds to the process of the application processing unit 47a. The processing of the FIDO client process 509b corresponds to the processing of the FIDO client 47b. The process of the biometric authentication process 509c corresponds to the process of the biometric authentication module 47c.

  Note that the programs 510a to 510c are not necessarily stored in the storage device 510 from the beginning. For example, each program is stored in a “portable physical medium” such as a flexible disk (FD), a CD-ROM, a DVD disk, a magneto-optical disk, and an IC card inserted into the computer 500. Then, the computer 500 may read and execute each of the programs 510a to 510c.

  Next, an example of a hardware configuration of a computer that realizes the same function as the ATM 50 shown in the above embodiment will be described. FIG. 15 is a diagram illustrating an example of a hardware configuration of a computer that realizes functions similar to those of ATM.

  As illustrated in FIG. 15, the computer 600 includes a CPU 601 that executes various arithmetic processes, an input device 602 that receives input of data from a user, and a display 603. The computer 600 also includes a reading device 604 that reads a program and the like from a storage medium, and an interface device 605 that exchanges data with other computers. The computer 600 includes a communication device 606 that performs data communication with the server 100 via the network 5 and an NFC communication device 607 that exchanges data with the terminal 40 by short-range wireless communication. In addition, the computer 600 includes a mechanism unit 608. The mechanism unit 608 is a device that performs card reading, statement slip printing, banknote processing, bankbook printing, coin processing, biometric authentication, and the like. The computer 600 also includes a RAM 609 that temporarily stores various types of information and a storage device 610. Each device 601 to 610 is connected to a bus 611.

  The storage device 610 includes a transaction code notification program 610a and a transaction execution program 610b. The CPU 601 reads the transaction code notification program 610 a and the transaction execution program 610 b and expands them in the RAM 609.

  The transaction code notification program 610a functions as a transaction code notification process 609a. The transaction execution program 610b functions as a transaction execution process 609b.

  The process of the transaction code notification process 609a corresponds to the process of the transaction code notification unit 56a. The process of the transaction execution process 609b corresponds to the process of the transaction execution unit 56b.

  Note that the programs 610a to 610b are not necessarily stored in the storage device 610 from the beginning. For example, each program is stored in a “portable physical medium” such as a flexible disk (FD), a CD-ROM, a DVD disk, a magneto-optical disk, or an IC card inserted into the computer 600. Then, the computer 600 may read and execute each of the programs 610a to 610b.

  Next, an example of a hardware configuration of a computer that realizes the same function as the IB server 60 described in the above embodiment will be described. FIG. 16 is a diagram illustrating an example of a hardware configuration of a computer that realizes the same function as the IB server.

  As illustrated in FIG. 16, the computer 700 includes a CPU 701 that executes various arithmetic processes, an input device 702 that receives input of data from a user, and a display 703. The computer 700 also includes a reading device 704 that reads a program and the like from a storage medium, and an interface device 705 that exchanges data with other computers. The computer 700 includes a communication device 706 that performs data communication with the server 100 and the billing server 70. The computer 700 includes a RAM 707 that temporarily stores various information and a storage device 708. Each device 701 to 708 is connected to a bus 709.

  The storage device 708 includes an authentication processing program 708a, an authorization issuance program 708b, and a financial transaction program 708c. The CPU 701 reads the authentication processing program 708a, the authorization issuance program 708b, and the financial transaction program 708c and develops them in the RAM 707.

  The authentication processing program 708a functions as an authentication processing process 707a. The authorization issue program 708b functions as an authorization issue process 707b. The financial transaction program 708c functions as a financial transaction process 707c.

  The processing of the authentication processing process 707a corresponds to the processing of the authentication processing unit 63a. The process of the authorization issuance process 707b corresponds to the process of the authorization issuance unit 63b. The financial transaction process 707c corresponds to the processing of the financial transaction unit 63c.

  Note that the programs 708a to 708c are not necessarily stored in the storage device 708 from the beginning. For example, each program is stored in a “portable physical medium” such as a flexible disk (FD), a CD-ROM, a DVD disk, a magneto-optical disk, and an IC card inserted into the computer 700. Then, the computer 700 may read and execute each of the programs 708a to 708c.

  Next, an example of a hardware configuration of a computer that realizes the same function as the billing server 70 shown in the above embodiment will be described. FIG. 17 is a diagram illustrating an example of a hardware configuration of a computer that realizes the same function as the accounting server.

  As illustrated in FIG. 17, the computer 800 includes a CPU 801 that executes various arithmetic processes, an input device 802 that receives input of data from a user, and a display 803. The computer 800 also includes a reading device 804 that reads a program and the like from a storage medium, and an interface device 805 that exchanges data with other computers. The computer 800 includes a communication device 806 that performs data communication with the IB server 60. The computer 700 includes a RAM 807 that temporarily stores various information and a storage device 808. Each device 801 to 808 is connected to a bus 809.

  The storage device 808 has a financial transaction execution program 808a. The CPU 801 reads the financial transaction execution program 808a and expands it in the RAM 807. The financial transaction execution program 808a functions as a financial transaction execution process 807a. The process of the financial transaction execution process 807a corresponds to the process of the financial transaction execution unit 73a.

  Next, an example of a hardware configuration of a computer that realizes the same function as the server 100 described in the above embodiment will be described. FIG. 18 is a diagram illustrating an example of a hardware configuration of a computer that realizes the same function as the server.

  As illustrated in FIG. 18, the computer 900 includes a CPU 901 that executes various arithmetic processes, an input device 902 that receives input of data from a user, and a display 903. The computer 900 includes a reading device 904 that reads a program and the like from a storage medium, and an interface device 905 that exchanges data with other computers. The computer 900 includes a communication device 906 that performs data communication with the terminal 40, the ATM 50, and the IB server 60. The computer 900 includes a RAM 907 that temporarily stores various information and a storage device 908. Each device 901 to 908 is connected to a bus 909.

  The storage device 908 includes a FIDO program 908a, an Aus program 908b, and a management program 908c. The CPU 901 reads the FIDO program 908a, the Aus program 908b, and the management program 908c and expands them in the RAM 907.

  The FIDO program 908a functions as the FIDO process 907a. The Aus program 908b functions as an Aus process 907b. The management program 908c functions as a management process 907c.

  The processing of the FIDO process 907a corresponds to the processing executed by the FIDO server 200. The process of the Aus process 907b corresponds to the process executed by the Aus server 300. The process of the management process 907c corresponds to the process executed by the management server 400.

  In FIG. 18, as an example, the case where the FIDO program 908a, the Aus program 908b, and the management program 908c are stored in the same computer, and the FIDO program 908a, the aus program 908b, and the management program 908c are executed on the same computer will be described. However, the present invention is not limited to this. For example, the FIDO program 908a, the AUS program 908b, and the management program 908c may be stored in different computers, and the FIDO program 908a, the AUS program 908b, and the management program 908c may be executed separately.

  The following supplementary notes are further disclosed with respect to the embodiments including the above examples.

(Supplementary Note 1) A transaction apparatus having a cash payout function receives a transaction request from the terminal over a terminal having a short-range wireless communication function, and transmits the received transaction request to the information processing apparatus.
The information processing apparatus that has received the transaction request transmits a request for moving an amount of funds according to the transaction request to a management device that manages the funds, and also pays out the amount of cash. Instruct
A financial transaction method characterized by that.

(Additional remark 2) The said transaction request | requirement contains the transaction information registered beforehand, The financial transaction method of Additional remark 1 characterized by the above-mentioned.

(Additional remark 3) The said transaction request | requirement contains transaction identification information, The said information processing apparatus produces | generates the said request | requirement based on the account information memorize | stored in the memory | storage part in association with this transaction identification information, and the amount of cash payments The financial transaction method according to appendix 1 or 2, wherein:

(Additional remark 4) Information processing apparatus is the said remote financial transaction regarding a specific user between transaction management apparatuses which receive the remote financial transaction about the specific financial institution via a network according to the request | requirement from a terminal. When the transaction information regarding the remote financial transaction is received from the terminal when the authentication is successful, an authorization request for requesting the transaction authority regarding the specific user is transmitted with respect to the transaction management device. ,
A transaction apparatus having a cash payout function receives a transaction request from the terminal by short-range wireless communication, transmits the received transaction request to the information processing apparatus,
The information processing device that has received the transaction request uses the authority acquired in response to the authorization request to request the transaction management device to transfer an amount of funds in accordance with the transaction request, and to receive the amount of cash. Instructing the transaction device to pay,
A financial transaction method characterized by that.

(Supplementary note 5) The financial transaction method according to supplementary note 4, wherein the remote financial transaction is a financial transaction by Internet banking.

(Additional remark 6) The said transaction management apparatus permits grant to the said information processing apparatus of the said authority according to the said authorization request | requirement on condition that the predetermined | prescribed authentication process using the said terminal was successful. The financial transaction method according to Appendix 4.

(Supplementary note 7) The supplementary note 4 is characterized in that the instruction to pay out the amount of cash to the transaction apparatus is performed after receiving a notification of acceptance or completion from the transaction management apparatus with respect to a request to transfer the amount of funds. The financial transaction method described.

(Supplementary note 8) When the information processing apparatus receives a request for withdrawal of a specific amount for a specific account from the terminal, the information processing apparatus transmits identification information of a transaction associated with the request to the terminal,
The transaction device having a cash payout function transmits the transaction identification information to the information processing device in response to reception of the transaction identification information from the terminal,
The information processing apparatus that has received the transaction identification information transmits a request to transfer the amount of funds from the specific account associated with the transaction identification information to a transaction management apparatus that manages the funds. Instructing the transaction device to pay out the amount of cash;
A financial transaction method characterized by that.

(Supplementary note 9) The transaction identification information is restricted from being transmitted to the transaction device as time passes, or is treated as invalid in the transaction device as time passes. The financial transaction method according to 8.

(Additional remark 10) The said information processing apparatus transmits the information of the period when the identification information of the said transaction is effective with respect to the said terminal, The financial transaction method of Additional remark 8 or 9 characterized by the above-mentioned.

(Additional remark 11) In a financial transaction system provided with the transaction apparatus provided with the cash payment function, and an information processing apparatus,
The transaction device
A first communication unit that receives a transaction request from the terminal by being held over a terminal having a short-range wireless communication function;
A second communication unit that transmits the received transaction request to the information processing apparatus;
With
When the information processing apparatus receives the transaction request from the transaction apparatus, the information processing apparatus transmits a request for moving an amount of funds according to the transaction request to a transaction management apparatus that manages the funds, and pays out the amount of cash. A control unit for instructing the transaction apparatus,
A financial transaction system characterized by comprising:

(Additional remark 12) The said transaction request | requirement is the information which designates the transaction content registered beforehand, The financial transaction system of Additional remark 11 characterized by the above-mentioned.

(Supplementary note 13) The financial transaction system according to supplementary note 11 or 12, wherein the transaction request includes information specifying a fund transfer source account and a fund transfer amount.

(Supplementary note 14) Communication section;
A control unit;
With
The controller is
In response to a request from the terminal, the remote financial transaction authentication process for a specific user is executed with a transaction management apparatus that accepts a remote financial transaction for a specific financial institution via the network, and authentication is performed. When the transaction information regarding the remote financial transaction from the terminal is received using the communication unit when successful, the communication unit is used to request an authorization request for the transaction regarding the specific user with respect to the transaction management device. Control to send and
When the transaction request is received by the communication unit from a transaction apparatus having a cash payout function that has received a transaction request from the terminal by short-range wireless communication, the transaction management is performed using the authority acquired according to the authorization request. Requesting the apparatus to transfer an amount of funds in accordance with the transaction request and instructing the transaction apparatus to pay out the amount of cash;
A financial transaction system characterized by

(Supplementary note 15) The financial transaction system according to supplementary note 14, wherein the remote financial transaction is a financial transaction by Internet banking.

(Supplementary Note 16) The transaction management device permits granting of the authority to the information processing device in response to the authorization request on condition that a predetermined authentication process using the terminal is successful. The financial transaction system according to appendix 14 or 15,

(Supplementary Note 17) Communication Department;
A control unit;
With
The controller is
When receiving a request for withdrawal of a specific amount for a specific account from a terminal by the communication unit, control for transmitting transaction identification information associated with the request to the terminal by the communication unit;
When receiving the transaction identification information by the communication unit from a transaction apparatus having a cash payout function that has received the transaction identification information from the terminal, from the specific account associated with the transaction identification information. A control for instructing the transaction apparatus by the communication unit to send the request for movement of the amount of money to the transaction management apparatus managing the funds by the communication unit, and to pay out the amount of cash;
An information processing apparatus characterized by executing

(Supplementary note 18)
The transaction request is received from a cash transaction apparatus that has received the transaction request from the terminal over a terminal having a short-range wireless communication function,
A request to move the amount of funds according to the received transaction request is sent to a transaction management device that manages the funds, and instructs the transaction device to pay out the amount of cash;
A financial transaction program characterized by causing processing to be executed.

(Supplementary note 19) The financial transaction program according to supplementary note 18, wherein the transaction request is information specifying transaction contents registered in advance.

(Supplementary note 20) The financial transaction program according to supplementary note 18, wherein the transaction request includes information specifying a fund transfer source account and a fund transfer amount.

(Supplementary note 21)
In response to a request from the terminal, the remote financial transaction authentication process for a specific user is executed with a transaction management apparatus that accepts a remote financial transaction for a specific financial institution via the network, and authentication is performed. If successful, upon receiving transaction information relating to the remote financial transaction from the terminal, send an authorization request for transaction authority relating to the particular user with respect to the transaction management device;
When the transaction request is received from a transaction apparatus having a cash payout function that has received the transaction request from the terminal by short-range wireless communication, the transaction management apparatus uses the authority acquired in response to the authorization request. Request the transfer of the amount of funds according to the request and instruct the transaction device to pay out the amount of cash;
A financial transaction program characterized by causing processing to be executed.

(Supplementary note 22) The financial transaction program according to supplementary note 21, wherein the remote financial transaction is a financial transaction by Internet banking.

(Additional remark 23) The said transaction management apparatus permits the provision to the said information processing apparatus of the said authority according to the said authorization request | requirement on condition that the predetermined | prescribed authentication process using the said terminal was successful. The financial transaction program according to appendix 21.

(Supplementary note 24) The supplementary note 21 is characterized in that an instruction to pay out the amount of cash to the transaction apparatus is made after receiving a notification of acceptance or completion from the transaction management apparatus with respect to a request to transfer the amount of funds. The described financial transaction program.

(Supplementary note 25)
Upon receipt of a specific amount withdrawal request for a specific account from the terminal, the transaction identification information associated with the request is transmitted to the terminal,
When the transaction identification information is received from a transaction apparatus having a cash payout function that has received the transaction identification information from the terminal, the amount of funds from the specific account associated with the transaction identification information A request to move the transaction to the transaction management device that manages the funds, and instructs the transaction device to pay out the amount of cash,
A financial transaction program characterized by that.

(Supplementary note 26) The identification information of the transaction is regulated to be transmitted to the transaction device as time passes or is treated as invalid in the transaction device as time passes. The financial transaction program according to 25.

(Additional remark 27) The said information processing apparatus transmits the information of the period when the identification information of the said transaction is effective with respect to the said terminal, The financial transaction program of Additional remark 25 or 26 characterized by the above-mentioned.

40 terminals 50 ATM
60 IB Server 70 Account Server 100 Server 200 FIDO Server 300 Aus Server 400 Management Server

Claims (16)

A transaction apparatus having a cash payout function receives a transaction request from the terminal over a terminal having a short-range wireless communication function, and transmits the received transaction request to the information processing apparatus.
The information processing apparatus that has received the transaction request transmits a request for movement of an amount of funds in accordance with the transaction request to a transaction management apparatus that manages the funds, and the transaction so as to pay out the amount of cash. Instruct the device,
A financial transaction method characterized by that.   The financial transaction method according to claim 1, wherein the transaction request is information specifying transaction contents registered in advance.   The financial transaction method according to claim 1, wherein the transaction request includes information specifying an account of a fund transfer source and a fund transfer amount. The information processing apparatus performs authentication processing of the remote financial transaction related to a specific user with a transaction management apparatus that accepts a remote financial transaction for a specific financial institution via the network in response to a request from the terminal. If the transaction information related to the remote financial transaction from the terminal is received when the authentication is successful, an authorization request for requesting the transaction authority regarding the specific user with respect to the transaction management device is transmitted.
A transaction apparatus having a cash payout function receives a transaction request from the terminal by short-range wireless communication, transmits the received transaction request to the information processing apparatus,
The information processing device that has received the transaction request uses the authority acquired in response to the authorization request to request the transaction management device to transfer an amount of funds in accordance with the transaction request, and to receive the amount of cash. Instructing the transaction device to pay,
A financial transaction method characterized by that.   The financial transaction method according to claim 4, wherein the remote financial transaction is a financial transaction by Internet banking.   The transaction management device permits granting of the authority in response to the authorization request to the information processing device on condition that a predetermined authentication process using the terminal is successful. 4. The financial transaction method according to 4.   5. The finance according to claim 4, wherein the instruction for paying out the amount of cash to the transaction apparatus is performed after receiving a notification of acceptance or completion from the transaction management apparatus for a request to transfer the amount of funds. Transaction system. When the information processing apparatus receives a request for withdrawal of a specific amount for a specific account from the terminal, the information processing apparatus transmits transaction identification information associated with the request to the terminal,
The transaction device having a cash payout function transmits the transaction identification information to the information processing device in response to reception of the transaction identification information from the terminal,
The information processing apparatus that has received the transaction identification information transmits a request to transfer the amount of funds from the specific account associated with the transaction identification information to a transaction management apparatus that manages the funds. Instructing the transaction device to pay out the amount of cash;
A financial transaction method characterized by that.   9. The identification information of the transaction is regulated to be transmitted to the transaction device as time passes or is treated as invalid in the transaction device as time elapses. Financial transaction methods.   10. The financial transaction method according to claim 8, wherein the information processing apparatus transmits information of a period in which the transaction identification information is valid to the terminal. In a financial transaction system including a transaction apparatus having a cash payout function and an information processing apparatus,
The transaction device
A first communication unit that receives a transaction request from the terminal by being held over a terminal having a short-range wireless communication function;
A second communication unit that transmits the received transaction request to the information processing apparatus;
With
When the information processing apparatus receives the transaction request from the transaction apparatus, the information processing apparatus transmits a request for moving an amount of funds according to the transaction request to a transaction management apparatus that manages the funds, and pays out the amount of cash. A control unit for instructing the transaction apparatus,
A financial transaction system characterized by comprising: A communication department;
A control unit;
With
The controller is
In response to a request from the terminal, the remote financial transaction authentication process for a specific user is executed with a transaction management apparatus that accepts a remote financial transaction for a specific financial institution via the network, and authentication is performed. When the transaction information regarding the remote financial transaction from the terminal is received using the communication unit when successful, the communication unit is used to request an authorization request for the transaction regarding the specific user with respect to the transaction management device. Control to send and
When the transaction request is received by the communication unit from a transaction apparatus having a cash payout function that has received a transaction request from the terminal by short-range wireless communication, the transaction management is performed using the authority acquired according to the authorization request. Requesting the apparatus to transfer an amount of funds in accordance with the transaction request and instructing the transaction apparatus to pay out the amount of cash;
A financial transaction system characterized by A communication department;
A control unit;
With
The controller is
When receiving a request for withdrawal of a specific amount for a specific account from a terminal by the communication unit, control for transmitting transaction identification information associated with the request to the terminal by the communication unit;
When receiving the transaction identification information by the communication unit from a transaction apparatus having a cash payout function that has received the transaction identification information from the terminal, from the specific account associated with the transaction identification information. A control for instructing the transaction apparatus by the communication unit to send the request for movement of the amount of money to the transaction management apparatus managing the funds by the communication unit, and to pay out the amount of cash;
An information processing apparatus characterized by executing On the computer,
The transaction request is received from a cash transaction apparatus that has received the transaction request from the terminal over a terminal having a short-range wireless communication function,
A request to move the amount of funds according to the received transaction request is sent to a transaction management device that manages the funds, and instructs the transaction device to pay out the amount of cash;
A financial transaction program characterized by causing processing to be executed. On the computer,
In response to a request from the terminal, the remote financial transaction authentication process for a specific user is executed with a transaction management apparatus that accepts a remote financial transaction for a specific financial institution via the network, and authentication is performed. If successful, upon receiving transaction information relating to the remote financial transaction from the terminal, send an authorization request for transaction authority relating to the particular user with respect to the transaction management device;
When the transaction request is received from a transaction apparatus having a cash payout function that has received the transaction request from the terminal by short-range wireless communication, the transaction management apparatus uses the authority acquired in response to the authorization request. Request the transfer of the amount of funds according to the request and instruct the transaction device to pay out the amount of cash;
A financial transaction program characterized by causing processing to be executed. On the computer,
Upon receipt of a specific amount withdrawal request for a specific account from the terminal, the transaction identification information associated with the request is transmitted to the terminal,
When the transaction identification information is received from a transaction apparatus having a cash payout function that has received the transaction identification information from the terminal, the amount of funds from the specific account associated with the transaction identification information A request to move the transaction to the transaction management device that manages the funds, and instructs the transaction device to pay out the amount of cash,
A financial transaction program characterized by that.

Images