JP2019215856A - Credit card information processing system, credit card information processing server, and credit card information processing program - Google Patents

Abstract

To reduce a burden on and make efficient an operator's input processing related to credit card settlement, and ensure security.SOLUTION: An embodiment relates to a credit card information processing system. The credit card information processing system comprises: a specification unit that receives input of authentication information for accessing an authorization information creation program, and on the basis of affiliated store information related to the authorization information, specifies a settlement proxy company corresponding to the affiliated store information from a storage unit; and a control unit that associates the created authorization information with settlement proxy company information on the specified settlement proxy company.SELECTED DRAWING: Figure 1

Description

  The present invention relates to a credit card information processing system, a credit card information processing server, and a credit card information processing program.

2. Description of the Related Art Conventionally, many credit card transactions are performed. The credit card business has concluded a franchise agreement with a business that sells products and provides services (hereinafter referred to as “merchant”), and has established a mechanism that allows credit card settlement at the franchisee. Have been.

A credit card user (consumer; hereinafter, sometimes simply referred to as a "card member") receives a credit card by making a credit card membership contract with a card issuing company called Issuer. The member pays for the goods or services at the member store, but by using a credit card, the member can pay so-called postpaid to the member store without directly giving money to the member store at that time.

The affiliated store receives the advance payment for the member from a credit card company such as Acquirer (a member store management company that acquires and manages the affiliated store) or Issuer.
Among the credit card companies, Acquirer will receive payment for the advance payment from Issuer. Issuer will receive payment for the advance paid by the member. In the following description, the term “credit card company” refers to either an acquirer or an issuer, unless otherwise specified.

Conventionally, a payment service provider (Payment Service Provider; hereinafter, referred to as “PSP”) generally enters between a member store and a credit card business. The PSP acts for the settlement procedures to be performed by the member store and the construction or operation of the settlement system (Business Process Outsourcing; hereinafter, referred to as “BPO”). By using the BPO, franchisees can outsource the system construction and processing for each credit card company and the agency for settlement procedures to the PSP, thereby unifying contracts, management, and operations. . That is, a large work cost can be reduced by the BPO.

As one form of credit card payment, a payment terminal (for example, PO
The terminal on the S system) may read a credit card presented by the member and make payment. As another case, there is a form in which a credit card payment is used as payment for a sales contract or a service provision contract (so-called mail-order sales) for a product of a business that is not an actual store.

There are various forms of mail-order sales, and merchants can advertise on newspapers, magazines, televisions, homepages on the Internet (including internet auction sites),
Inform consumers of their products and services through direct mail, flyers, etc. Members who are consumers (consumers) of such mail-order sales can send mail, telephone, facsimile,
Applications for purchase may be made on the Internet or the like.

Members are not limited to mail-order sales, but also pay for utilities such as electricity and water, and payment for infrastructure-related services, including telecommunications. Members can send mail, telephone, facsimile, In some cases, applications for purchase may be made.

At this time, in a purchase application by mail order using credit card settlement, personal identification information such as a credit card number, a name, and an expiration date of the card are presented. In credit card settlement, each member of the credit card is identified by these individual identification information. In principle, the person who presented the identification information, that is, the applicant is the member himself, and reimbursement for subsequent payment And so on.

This means that in mail-order sales and other cases, payment can be made only with personal identification information without a credit card body. Therefore, this identification information needs to be exchanged in a state where confidentiality is secured, and if such information is leaked and misused, an unexpected loss will occur to the member or the credit card company.

In credit card settlement in mail-order sales, etc., in principle, members should fill out and provide at least one of security code, card expiration date, etc. that can be grasped without referring to individual credit cards managed only by the member himself By receiving
This is one of the security measures.

However, once these PANs are leaked, they will not be a security measure, so after the member presents identification information, card-specific information, etc. to the credit card company or PSP, the identification information and purchaser's It is necessary to take measures to prevent personal information from leaking.

In this regard, in an application for purchase over the Internet using credit card payment, personal identification information such as credit card number, name, card expiration date, security code, etc., on the Internet, and electronic commerce (Electronic Commerce) (Hereinafter referred to as "EC business") via a website or Internet line. In this case, information leakage countermeasures at the time of communication and information leakage countermeasures when each carrier holds identification information are taken.

One of such measures, that is, information processing regarding the security of credit card numbers, includes tokenization of credit card numbers (Tokenization: Tokenizati
on).

In tokenization, the information processing apparatus generates partial information in which a part of a credit card number is missing, for example, and transmits the partial information to an information processing apparatus that performs a settlement procedure. The information processing apparatus stores the partial information in association with the user information, and replaces the missing part with meaningless information (for example, Patent Document 1).

JP-A-2017-151881

However, credit card settlement by mail order as described above is not limited to transactions via the website of an EC company. There are cases where a paper on which credit card identification information and personal information are written is mailed, faxed, and such information is exchanged by telephone.

In these cases, in a PSP or another credit card settlement agency that accepts a BPO, an operator or the like of the agency once inputs identification information or the like so as to convert the data into data. Under such circumstances, no technology has been proposed so far that considers the efficiency and security of the business concerned.

The present invention has been made in view of the above problems, and an object of the present invention is to reduce the burden and efficiency of input processing by an operator for credit card settlement and to ensure security.

The embodiment is a credit card information processing system. The credit card information processing system receives the input of the authentication information for accessing the creation program of the authorization information, and, based on the member store information related to the authorization information, the payment agency business corresponding to the member store information from the storage unit. And a control unit that associates the created authorization information with the payment agent information of the specified payment agent.

ADVANTAGE OF THE INVENTION The credit card processing system by this invention can reduce the burden of the operator regarding a credit card payment, and can make the input processing efficient and secure security.

Functional block diagram of the credit card information processing system of the first embodiment Diagram showing the outline of the input screen showing the concept of the input form Diagram showing the outline of the input screen showing the concept of the input form Processing flowchart of the first embodiment Functional block diagram of the credit card information processing system of the second embodiment Processing flowchart of the second embodiment Diagram showing the outline of the input screen showing the concept of the input form Diagram showing the outline of the input screen showing the concept of the input form Diagram showing an overview of basic credit card usage examples The figure which shows the outline of the use example of BPO Diagram showing the outline of the business flow of Example 1 Diagram showing the outline of the business flow of Example 2 Diagram showing the outline of the business flow of Example 3

[About credit cards]
(Basic aspect)
Before describing each embodiment, refer to FIG. 9 for the relationship between a credit card company, a member store that provides goods and services, and a card user who receives provision of goods and services using a credit card. Will be explained. In the following description, description of a so-called international brand of credit card is omitted. Also, if the issuer is also an acquirer,
It is described as "credit card company" without distinction from the case of being independent.

First, refer to FIG. The member store directly or indirectly makes a contract with a credit card business (such as an acquirer) (FIG. 9; 1. Member store contract). This is to attract customers by making payment by credit card available as one means of receiving payment for the provision of own goods and services.

Apart from the contract between the credit card operator and the merchant, the credit card operator
A demand is made for a customer who uses a credit card (“card member” in FIG. 9). On the other hand, the consumer (expected card member) applies for a credit card issuance in response to the solicitation of a credit card company for issuing a credit card (FIG. 9; 2. Application for a card). The credit card company investigates the credit information, the ability to pay, and the like of the applicant, and examines whether the credit card issued by the applicant can be issued to the applicant. If the result of the examination is good, the credit card company issues a credit card to the applicant (FIG. 9; 3. Issue a card). By applying for a credit card, the applicant becomes a card member.

When providing merchandise or services to a customer, the merchant can select cash payment or credit card payment as a payment method from the customer. The card member indicates the purchase or the like to the member store in order to purchase products or provide services from the member store (FIG. 9; 4.
Application), and receive the provision of goods or services from the member store (Fig. 9; 5. Provision of goods and services). At this time, if the card member selects a credit card (the credit card of the credit card company) as a payment method, the credit is not issued directly from the card member to the member store, and the credit card is settled after the credit card settlement procedure is completed. The payment is paid out to the member store from the card company (FIG. 9; 6. Payment).

The card member pays the paid money to a credit card business (such as an issuer) (FIG. 9; 7. Payment of the money). As described above, the basic flow is that the card member pays the price using the credit card issued by the credit card company at the member store.

(Specific embodiment)
However, payment by credit card includes the merchant's business type,
There are numerous modes depending on the characteristics of the card member. Therefore, it is very difficult for a member store, a credit card company, and a consumer who can become a card member to grasp all the modes and appropriately respond to each mode.

In accordance with each of the three aspects, a payment agent or BPO commissioned BPO to prepare various contracts, system construction, information processing (payment processing, etc.), and other necessary environment for smooth use of credit card. An intermediary agency called PSP is required.

In the case of a settlement agency or a PSP, as a definition, a comprehensive franchise-type business that enters into a comprehensive franchise agreement with Acquirer and individually contracts with each franchisee (hereinafter referred to as a “general franchise Type settlement agency "). The comprehensive member store-type settlement agency business comprehensively performs these services, as well as mediation services, payment processing services, and other information processing services. Apart from this, there are also businesses that perform only at least one of the information processing business and the mediation business (hereinafter, sometimes referred to as “PSP” to distinguish from the comprehensive member store type payment agency business). Here, an intermediary that performs an information processing operation that does not perform final settlement processing in credit card settlement is referred to as “PSP”, and an intermediary that performs the settlement processing is referred to as “settlement agency”.

As shown in FIG. 10, the card member concludes a sales contract for products and services provided by the member store,
When a credit card is settled, the payment is largely divided into patterns of Examples 1 to 4.
In Example 1, the authorization information (information for identifying a customer,
This is a pattern in which transaction information, credit card-related information, and the like; described later) and member store / member store group information (described later) arrive at the PSP that performs information processing as a BPO business via the member store.

<Example 1; FIG. 11>
Example 1 will be described with reference to the flowchart in FIG. In Example 1, as shown in FIG. 11, at least one of the transaction information between the credit card member and the member store and the attribute information (credit card number, personal information, etc.) of the credit card member is the member store. Via the PSP. This information is sent to the PSP by any method, such as electronic data, by telephone via a call center agent, by fax, or by mail.

In the PSP, in the case of telephone interrogation, facsimile, mailing, or the like, the acquired information is input by an operator. The input data is sent to the settlement agency as authorization information, and the settlement agency processes the settlement agency. If the settlement agency processing based on the authorization information is appropriate, the settlement agency notifies the PSP of the fact.

If the payment processing result is appropriate, the PSP creates a report of the payment processing result and sends it to the member store. On the other hand, if the settlement processing result is inappropriate, the settlement agency notifies P
The information is sent to the SP, and the PSP reacquires transaction information, attribute information, and the like. The above is the example 1, ie, the business flow of the credit card settlement via the member store, the PSP, the settlement agency, and the credit card operator.
<Example 2; FIG. 12>
Example 2 will be described with reference to the flowchart in FIG. In Example 2, as shown in FIG. 12, at least one of the transaction information between the credit card member and the member store and the attribute information of the credit card member is transmitted to the settlement agency via the member store. Sent.

In the settlement agency, in the case of telephone agency, FAX, mail, or the like, the acquired information is input by an operator. The input data is used as authorization information.
On the basis of the authorization information, the settlement agency performs a settlement agency process.

If the settlement processing based on the authorization information is appropriate, a report of the settlement processing result is created, and the settlement agency notifies the member store to that effect. On the other hand, if the settlement processing result is inappropriate, the settlement agency reacquires transaction information, attribute information, and the like. The above is the example 2, that is, the business flow of the credit card settlement via the member store, the settlement agency, and the credit card company.

<Example 3; FIG. 13>
Example 3 will be described with reference to the flowchart in FIG. In Example 3, as shown in FIG. 13, at least one of the transaction information between the credit card member and the member store and the attribute information of the credit card member is sent to the PSP via the member store.

In the PSP, in the case of telephone interrogation, facsimile, mailing, or the like, the acquired information is input by an operator. The input data is used as authorization information. The PSP sends the authorization information to the credit card operator. The credit card business performs settlement processing based on the authorization information.

If the settlement processing based on the authorization information is appropriate, the credit card company notifies the PSP of that fact. The PSP creates a report of the settlement processing result and sends it to the member store. On the other hand, if the payment processing result is incorrect, the credit card
And the PSP reacquires transaction information, attribute information, and the like. Example 3 above
That is, this is a business flow of credit card settlement via a member store, a PSP, and a credit card company.

<Example 4>
Example 4 is a case in which a PSP and a settlement agency are not interposed. As described above, the credit card business acquires transaction information, attribute information, and the like, inputs data of authorization information as appropriate according to the situation, and performs settlement processing. For example, when a member store and a credit card member conclude a service provision contract (insurance, etc.), a type in which clerical work is performed at the member store itself, irrespective of the PSP or the settlement agency, is applicable.

<Example 5>
Example 5 is given as an example not shown in FIG. Example 5 corresponds to any one of the above Examples 1 to 4, wherein the transaction information and the attribute information are provided to the PSP, the payment agent, or the credit card by the credit card member without going through the member store without going through the member store. Etc. is the type that is sent.

(Summary)
The mode of payment processing by credit card differs depending on the attributes of credit card members, the attributes of merchants, the attributes of transactions to be settled, and the attributes of intermediaries, and the number of these combinations is Very much. Therefore, the operator makes an input according to the situation among many combinations. An embodiment that appropriately solves a problem that may occur in such a situation will be described below.

[First Embodiment]
The overall configuration of the first embodiment will be described with reference to FIGS. Although FIG. 1 shows a terminal device such as an operator terminal 1000 and a network including the first server 100, the second server 120, and the third server 130, this is one of a plurality of modes for carrying out the present invention. This is an example. That is, the present invention can be implemented not only in each of the modified examples described in the description of the first embodiment and the second and subsequent embodiments described later but also in various other forms.

(First server 100)
The first server 100 includes an authentication unit 101, a first storage unit 103, a specifying unit 105, and a control unit 10.
7, including the creation unit 109 and the second storage unit 111. This first server 100
First, an outline will be described. Upon receiving the authentication information input at the operator terminal 1000, the authentication unit 101 performs authentication processing and determines whether to permit access to the authorization information creation program.

As a result of the authentication by the authentication unit 101, if the access is permitted, the specifying unit 105 establishes a connection from the operator terminal 1000 to the authorization information creation program stored in the second storage unit 111. As a result, for example, FIG.
Alternatively, an input screen for the authorization information as shown in FIG. 3 is displayed.

When the transaction information or the settlement information is input via the input unit I of the operator terminal 1000, the member store information in the transaction is specified. The member store information may be member store group information including the member store. The specifying unit 105 stores the first storage unit 1 based on the specified member store information.
The corresponding payment agency information is identified from the correspondence DB stored in the storage unit 03. Correspondence D
The settlement agency information in B may be payment agency group information including the settlement agency.

In addition, the creation unit 109 creates authorization information via an input from the operator terminal 1000. When the creation of the authorization information is completed, the control unit 107 determines a connection destination to which the authorization information is to be transmitted based on the settlement agency information identified by the identifying unit 105, and associates the connection destination with the authorization information. The control unit 107 transmits the authorization information to the settlement agency server A via the third server 130. In addition, the control unit 107 temporarily stores the authorization information in the second server 120. Although only one operator terminal 1000 is shown in FIG. 1, a plurality of operator terminals may be provided. Further, the information associated with the member store information or the member store group information may be a credit card company or a credit card company group information in addition to the settlement agent company information.

<Authentication department>
The authentication unit 101 performs logon processing, account management, business selection processing, and the like. In the logon process, connection authentication from the operator terminal 1000 to the first server 100 and an IP address that can access the first server 100 are restricted by a predetermined authentication method. As the predetermined authentication method, for example, operator identification information (hereinafter, referred to as “operator ID”),
And a combination of passwords corresponding thereto. In addition, it is possible to adopt an arbitrary method such as authentication using an IC card lent to an operator, biometric authentication, a security token, and the like. It is also possible to adopt a multi-factor authentication scheme combining these. Further, it may be configured such that a risk determination regarding impersonation is performed based on an access history or the like of each operator ID, and when it is determined that the risk is high, an authentication method different from authentication that is normally performed is additionally obtained. . Hereinafter, an example will be described in which logon processing is executed by authentication using an operator ID and a password.

≪Authentication process≫
Upon receiving a connection request from the external device to the first server 100, the authentication unit 101 first performs first connection authentication based on the IP address of the external device (such as the operator terminal 1000). For example, a storage unit (not shown) stores a list of IP addresses permitted to access the first server 100. By referring to the list, the authentication unit 101 determines whether the IP address of the external device that has performed the connection request is permitted to access. If the authentication unit 101 is not permitted, the authentication unit 101 rejects the connection or blocks the connection.

In parallel with or before or after the IP address restriction process, the authentication unit 101 receives the operator ID and the password input via the input unit I of the operator terminal 1000 and performs an authentication process (second connection authentication). If the result of the authentication processing indicates that the combination is correct, the authentication unit 101 determines that the authentication processing is appropriate. Note that a directory service system such as an active directory may be used to make the authentication process more efficient.

≪Business selection processing≫
Next, the second storage unit 111 will be described when describing the job selection processing of the authentication unit 101. The second storage unit 111 stores a program for creating authorization information. The authorization information creation program has a function of displaying an authorization information input screen (see FIGS. 2 and 3) on the display unit D of the operator terminal 1000 or the like. Also,
It has a function of creating authorization information in accordance with an input to a predetermined item of the input form.

≪Input form; by member store≫
There are a plurality of modes of the authorization information creation program (hereinafter, sometimes simply referred to as “creation program”), and some examples are given. First, in the creation program, there are a plurality of input forms for each member store information. The member store information is a member store ID for identifying each member store in one example. As shown in the examples of FIG. 2 and FIG. 3, the contents of the required information are different for each member store and settlement agent. In both FIG. 2 and FIG. 3, the customer name of the consumer, its reading, and alphabetical notation, postal code, address, member store code, product name, product code, transaction date, purchase price, And credit card information are common input items. However, the telephone number, the member store name, and the business operator code (for example, the identification information of the payment agent (PSP or the like)) need not be entered on one side (FIG. 2), whereas on the other side (FIG. 3). Is required. As described above, since the contents of the required information differ depending on the member store or the settlement agency, a plurality of types of input forms are prepared for each member store.

≪Input form; by application method≫
In addition, in the case of a business operator using the present embodiment, when receiving an application for credit card settlement using a telephone, when receiving an application for credit card settlement by mailing a form filled in with necessary information, A case in which an application for credit card settlement by a method of facsimile the filled-in document is assumed. These information are input as authorization information by the operator using the creation program of the present embodiment,
An input form may be provided for each method. In that case, a plurality of types of input forms are prepared for each method in addition to the types for each member store.

As described above, the input form in the creation program may be created by a combination of each member store and each application method.

≪Privilege management≫
In the present embodiment, the authentication unit 101 may have a function of managing the authority (range) of accessing the input form of the creation program for each operator ID. For example, the operator X1 can access only the input form of the telephone application of the member store A associated with his / her ID. On the other hand, the operator X2 can access the input forms of the FAX application and the mail application of the member store A. Another operator Y1 is a member store B
, A fax application and a mail application input form can be accessed. This is an example of authority management.

If there is no input form for each member store but only an input form for each member store, the operator ID can access the input form for each member store. In addition,
The method of authority management is arbitrary, and depending on the operator ID, the associated input forms are associated with the input forms of two or more member stores, such as the input form for member store A, the input form for member store B, and are accessible. May be done.

In order to perform such authority management, the second storage unit 111 stores an accessible operator ID in association with each input form of the creation program. In addition, this authority management may be configured such that the authority to change the setting can be given by a privilege ID or the like for each operator ID.

As described above, the authentication unit 101 identifies an operator and an IP address for executing a connection request by a predetermined authentication method. The authentication unit 101 determines the first server 100 based on the identification result.
And a process for permitting access to a specific input form of the creation program.

≫Connection to the creation program≫
The identification unit 105 establishes a connection from the operator terminal 1000 to the authorization information creation program stored in the second storage unit 111 when the authentication unit 101 authenticates the access permission of the first server 100 and the authorization information. I do. As a result, on the display unit D of the operator terminal 1000, for example, an input screen of the authorization information as shown in FIG. 2 or FIG. 3 is displayed.

In the operator terminal 1000, for example, in a state where the input screen of the authorization information of the member store A as shown in FIG. 2 is displayed, the operator inputs the customer name, its reading, and the alphabet to predetermined items via the input unit I. Notation, postal code, address, member store code, product name, product code, transaction date, purchase price, and credit card related information are input. These are examples, and include at least the credit card related information, the information specifying the customer, and the information specifying the affiliated store involved in the processing as input items of the authorization information. In addition, if the situation of using the present embodiment is not a confirmation of the validity of a credit card, a mere use of a quota, but a settlement,
As at least the included items, information (such as a product code and a quantity) for specifying transaction details is also included.

≫Specification of connection destination of payment agency 事業
In addition, the specifying unit 105 refers to the correspondence DB in the first storage unit 103 based on the input member store information (for example, member store ID), and sets up a payment agent such as a PSP associated with the member store. (Including franchisees) Here, it is assumed that a combination of the member store information and the payment agent is stored in the first storage unit 103 (a combination of the credit card company and the member store information may be stored). The specifying unit 105 specifies a connection destination (such as an IP address) of the specified payment agent. For example, connection destination information may be attached to the payment agency information in the correspondence DB of the first storage unit 103, or the payment agency information in the correspondence DB may include the connection information.

の Creating authorization information≫
The creation unit 109 receives the above items input at the operator terminal 1000 and associates the items with predetermined items of the input form. For example, if there is an input in the customer name input item in the credit card-related information, the input value is associated with the authorization information item such as the first name and the last name. When PAN data (Primary Account Number; for example, a credit card number or the like; hereinafter, referred to as a "credit card number"), the creation unit 109 performs tokenization. For example, the creating unit 109 generates partial information in which a part of the credit card number is omitted as tokenization. The creating unit 109 replaces the partial information with meaningless information for the missing part and creates the authorization information. Alternatively, the creating unit 109 replaces a part of the credit card number with meaningless information without dropping a part. Also in this case, the creation unit 109 creates, as the authorization information, the credit card number change information with a part thereof replaced.

The situation where the first server 100 transmits the authorization information to the settlement agent server A is performed by confirming the validity of the credit card, securing the credit card usage limit, and executing all the settlement of the credit card transaction. There is a case where one of them is executed, a case where only one of them is executed, or a case where a combination of the two is executed. The creating unit 109 may be configured to change the contents of the authorization information according to these situations. However, in any case, the authorization information includes information that can be referred to the status of the credit card, such as partial information and credit card number change information.

の Send Authorization Information≫
The control unit 107 transmits the authorization information created by the creation unit 109 to the settlement agent company server A via the transfer unit of the third server 130 to the connection destination of the settlement agent company identified by the identification unit 105. Further, the control unit 107 associates the authorization information with the information specifying the customer and stores the information in the payment information DB of the second server 120.

In addition, the control unit 107 receives the authorization result from the settlement agent company such as the settlement agent server A. The control unit 107 transmits the authorization result and the second server 12
The information stored in the payment information DB of No. 0 is associated with the partial information or the credit card number change information, etc., and transmitted to a server (not shown) on the member store side.

(Hardware configuration; operator terminal)
The input unit I of the operator terminal 1000 is a device that receives external inputs such as voice and character input signals. For example, a device that detects voice (such as a microphone) or a device that performs character input (such as a software keyboard or a hardware keyboard or a touch pen) may be used.

The display unit D displays various images related to execution of the creation program, for example, an input screen for authorization information, a setting screen, and the like. The display unit D may include various display devices such as a touch panel provided on the housing of the operator terminal 1000. The display unit D may be configured independently or integrally with the input unit I. For example, a device in which a display function and an operation function are integrated, such as a touch panel, can be used. In that case, the input unit I and the display unit D are configured to include a touch panel and a computer program for executing the touch panel.

In any configuration, the operation content for the input unit I is input as an electric signal to a control unit (not shown) of the operator terminal 1000. Further, operations and information input may be performed using the graphical user interface (GUI) displayed on the display unit D and the input unit I.

The display unit D is a CRT (Cathode Ray Tube) or a liquid crystal display (LCD).
Liquid Crystal Display), Plasma Display (Plasm);
aDisplayPanel), organic EL (OELD; Organic Electro-
Luminescence), FED (Field Emission Display);
Any display device, such as a field emission display, can be used. In the case where a touch panel is used, any detection method such as a resistance film method, a capacitance method, an ultrasonic surface acoustic wave method, an infrared optical imaging method, and an electromagnetic induction method can be adopted.

(Hardware configuration; server)
The processing of each unit in the above description has been described as being executed as each functional block processing shown in FIG. 1 for convenience of description. These functional blocks include, for example, a CPU (Centra
l Processing Unit), GPU (Graphics Processes)
ng Unit) or Application Specific Integrated Circuit (Application Spec)
It may be configured to include a single circuit or a plurality of circuits, such as an integrated circuit (ASIC). Also, the functions are realized by reading and executing, for example, a program for creating authorization information stored in a memory. Note that instead of storing the program in the memory, the program may be directly incorporated in the circuit. In this case, the function is realized by reading and executing a program incorporated in the circuit. Note that each functional block is not limited to being configured as a single circuit, but may be configured as one processor by combining a plurality of independent circuits to realize its function. Furthermore, a plurality of components (for example, the authentication unit 101, the specifying unit 105,
At least two of the creation unit 109 and the control unit 107) may be integrated into one processor to realize the function.

(motion)
FIG. 4 is a flowchart illustrating a flow of a process of creating authorization information by an authorization information creation program according to the embodiment. For example, each functional block executes an authorization information creation program indicating the following operation. For example, the following processing is performed as a premise of the following operations (S001 to S010). At the operator terminal 1000, the user is logged on with the operator ID assigned the privilege ID, and the first
When a start operation of the authority management program stored in the first storage unit 103 or the like of the server 100 is performed, a control unit (not shown) of the first server 100 reads the authority management program stored in the first storage unit 103, and Execute. The control unit displays an authority management setting screen (not shown) on the display unit D of the operator terminal 1000 based on the screen data of the authority management program. Next, when a new operator ID and a password associated with the new operator ID are registered via the input unit I, an operator ID that can access the creation program is registered in the first storage unit 103. Further, the range of the input form that can be accessed for each operator ID can be changed by this authority management program. That is, a list (not shown) storing the correspondence between the operator ID and the type of the input form can be changed. Similarly, processing such as deletion of an operator ID and a password and change of a password are also possible.

Step S001: The authentication unit 101 sends the operator ID from the operator terminal 1000
And a password, and a connection request to the first server 100.

Step S002: The authentication unit 101 performs first connection authentication based on the IP address of the operator terminal 1000 or the like. For example, the authentication unit 101 refers to a list in a storage unit (not shown) and determines whether the IP address of the operator terminal 1000 that has executed the connection request is permitted to access the list of IP addresses.

Step S003: In step S002, the IP address of the operator terminal 1000
When it is determined that the address is permitted to be accessed (Step S002; Yes), the authentication unit 101 performs the second connection authentication based on the operator ID and the password in parallel with or before or after the IP address restriction processing. If the combination is correct as a result of the second authentication processing, the authentication unit 101 determines that the authentication processing is appropriate.

Step S004: In step S003, when authentication for permitting access to the first server 100 and the authorization information is performed (step S003; Yes), the specifying unit 105 displays an authorization information input screen on the display unit D of the operator terminal 1000. Display.

Step S005: In the operator terminal 1000, a predetermined item is input while an input screen for authorization information is displayed. The creating unit 109 associates an input item with an input value corresponding to the input item. Regarding the credit card number, at least six digits are replaced with meaningless information.

Step S006: The specifying unit 105 also inputs the member store information (for example, member store ID)
Is referred to the correspondence DB in the first storage unit 103, and a settlement agency such as a PSP associated with the member store is specified.

Step S007: When the input to all the items of the authorization information is completed (for example, a completion instruction is input), the creating unit 109 completes the authorization information.

Step S008: The control unit 107 transmits the completed authorization information to the settlement agent company server A via the third server 130 to the connection destination of the settlement agent company specified in step S006. Further, the control unit 107 associates the authorization information with the information specifying the customer and stores the information in the payment information DB of the second server 120.

Step S009: The control unit 107 receives the authorization result from the settlement agent company such as the settlement agent server A. The control unit 107 associates the authorization result with the information stored in the payment information DB of the second server 120 based on the partial information or the credit card number change information and the like, and associates the result with a server (not shown) on the member store side. Send.

Step S010: If the IP address for connection is not permitted in step S002 (S002; No), the authentication unit 101 rejects connection of the operator terminal 1000 or the like or blocks connection. In step 003, the authentication unit 101 determines that at least one of the operator ID and the password is not registered in the list (S003;
No), the connection of the operator terminal 1000 or the like is refused or the connection is cut off. An error message may be output at the same time.

(Action / Effect)
According to the authentication processing and the creation program of the authorization information of the first embodiment,
The selection range of the input form for each member store or credit card processing application system is limited for each operator ID. Further, when the member store information is selected, the transmission destination of the authorization information is specified in the program.

According to such a configuration, firstly, it is possible to prevent a serious information leakage in which an operator mistakes a combination of a member store and a payment agent in a transaction. In addition, it is possible to prevent an incorrect input item for each member store or payment agent, thereby delaying the authorization.

Also, since there are many combinations of franchisees and payment agents, and different entry forms for franchisees and payment agents, the burden on operators to remember and select the correct one is greatly reduced. . In addition, it is possible to achieve an unprecedented effect that the work efficiency can be improved by reducing the burden, and other security aspects can be considered.

[Second embodiment]
A second embodiment will be described with reference to FIGS. In the following description, the first
The description overlapping with the embodiment is omitted. Note that FIG. 5 shows a network including terminal equipment such as an operator terminal 2000 and a first server 200, a second server 220, and a third server payment agent server A, which embody the present invention. It is an example of a plurality of forms. That is, not only the modifications described in the description of the second embodiment, but also various other embodiments are possible.

(First server 200)
The first server terminal 200 in the second embodiment authenticates access permission and the like and specifies a payment agent based on member store information. However, unlike the first embodiment, the creation of authorization information is performed by the payment agent server. Executed on the A side. As shown in FIG. 5, the first server 200 includes an authentication unit 201, a transmission / reception unit 201A, a first storage unit 203, and a specification unit 205.

The authentication unit 201 in the first server 200 executes logon processing, account management, business selection processing, and the like. Of these, the parts different from the first embodiment will be described in detail,
Others will be briefly described or omitted.

{First authentication; IP address restriction}
The authentication unit 201 refers to an IP address list in a storage unit (not shown) based on an IP address from the operator terminal 2000 or the like. As a result of the introduction, the authentication unit 201 determines whether the IP address of the external device (the operator terminal 2000 or the like) that has executed the connection request is permitted to access. If the authentication is not permitted, the authentication unit 201 rejects the connection or cuts off the connection.

≪Second authentication: Authentication by identification information (operator ID) etc.≫
The authentication unit 201 receives the operator ID and the password from the operator terminal 2000 in parallel with or before or after the IP address restriction process, and performs the authentication process. As described above, the authentication process may be performed in another method or in multiple stages, and the active directory may be used. If the combination is correct as a result of the authentication processing, the authentication unit 201 determines that the authentication processing is appropriate.

≫Specification of connection destination of payment agency 事業
When the first authentication and the second authentication are performed by the authentication unit 201, the identification unit 205 requests input of member store information related to the authorization information to be input to the operator terminal 2000. On the display unit D of the operator terminal 2000, an input screen for allowing entry of member store information related to the authorization information and a message urging the operator to input member store information are displayed (both are not shown). When the operator inputs the member store information (member store ID or the like) for settlement via the input device I, the first server 200 receives the member store information.

When the first server 200 receives the member store information, the specifying unit 205 refers to the correspondence DB of the first storage unit 203 based on the input member store information (for example, member store ID), and Identify the associated payment agent, such as a PSP. Here, it is assumed that the settlement agency server A2 is specified.

≫Connection to the creation program≫
When the authentication by the authentication unit 101 and the identification of the payment agency server are performed, the identification unit 205 establishes a connection to the authorization information creation program. as a result,
On the display unit D of the operator terminal 1000, for example, an input screen of the authorization information as shown in FIG. 2 or FIG. 3 is displayed. Note that the program for creating the authorization information is stored in the second storage unit 111 of the payment agent server A2. The connection from the operator terminal 2000 to the authorization information creation program is executed via the first server 200.

(Settlement agency server A2)
Unlike the first embodiment, the settlement agency server A2 in the second embodiment is different from the control unit 2 in the first embodiment.
07, a creation unit 209, and a second storage unit 211. In addition, the settlement agency server A2 executes an authorization process (judgment of validity of a credit card, reservation of a credit card usage frame, a credit card settlement process, etc.) based on the authorization information.

の Creating authorization information≫
Display of an authorization information input screen (see FIG. 2 or FIG. 3) or an input device I
The inputting of each item of the authorization information via is similar to that of the first embodiment. However, the creation program is stored in the second storage unit 211 of the server. Therefore, the payment is sent from the settlement agency server A2 to the operator terminal 2000 via the first server 200. The input data to each item from the operator terminal 2000 is the first
The data is sent to the control unit 207 via the server 200 and sent to the creation unit 209. In the present embodiment, since the franchise information is input first when the franchise information is specified, the input of the franchise information is omitted in the creation of the authorization information, thereby reducing the operator's work load and increasing the efficiency. It is possible to achieve.

Since the input form of the authorization information creation program is stored in advance in the second storage unit 211 for each member store information, in that case, the member form information may be attached to or embedded in the input form. Alternatively, the configuration may be such that the creation unit 209 automatically inputs the member store information input at the time of specifying the member store information (settlement agency server) into the input form. In this case, the entry items of the member store information such as the “member store code” may be excluded from the authorization information input forms as shown in FIGS.

In the above description, the configuration in which the member store information is input after the first authentication and the second authentication has been described. However, the member server information is stored in the first server 200 together with the information of the second authentication (for example, ID and password). May be input.

(motion)
FIG. 6 is a flowchart illustrating a flow of a process of creating authorization information by an authorization information creation program according to the second embodiment.

Step S201: The authentication unit 201 sends the operator ID from the operator terminal 2000.
And a password, and a connection request to the payment agent server A2.

Step S202: The authentication unit 201 performs the first connection authentication based on the IP address of the operator terminal 2000 or the like. For example, the authentication unit 201 refers to a list in a storage unit (not shown) and determines whether the IP address of the operator terminal 2000 that has executed the connection request in the list of IP addresses is permitted to access.

Step S203: In step S202, the IP address of the operator terminal 2000
When it is determined that the address is permitted to be accessed (Step S202; Yes), the authentication unit 201 performs the second connection authentication based on the operator ID and the password in parallel with or before or after the IP address restriction process. If the combination is correct as a result of the second authentication processing, the authentication unit 201 determines that the authentication processing is appropriate.

Step S204: If authentication for permitting access to the first server 200 and the authorization information is performed in step S203 (step S203; Yes), the specifying unit 205 prompts for entry of member store information (for example, member store ID). When the member store information is input, the correspondence DB of the first storage unit 203 is referenced based on the information, and a settlement agency such as a PSP associated with the member store is specified.

Step S205: When the payment agent server is specified, the specifying unit 205 connects the operator terminal 2000 via the first server 200 and the payment agent server (for example, A2).
Establish a connection with The control unit 207 and the creation unit 209 of the payment agency server A2 cause the display unit D of the operator terminal 2000 to display an input interface based on the input form of the authorization information.

Step S206: In the operator terminal 2000, a predetermined item is input while the input screen for the authorization information is displayed. The creating unit 209 associates an input item with an input value corresponding to the input item. Regarding the credit card number, at least six digits are replaced with meaningless information.

Step S207: The creation unit 209 completes the authorization information when the input to all the items of the authorization information is completed (for example, a completion instruction is input).

Step S208: The control unit 207 executes authorization information processing based on the completed authorization information. For example, the authorization information processing includes at least one of the determination of the validity of a credit card, the securing of a credit card usage frame, and the credit card settlement processing. Further, the control unit 207 associates the authorization information with the information specifying the customer before or after the authorization information processing, or at the same time, and stores the information in the payment information DB of the second server 220.

Step S209: The settlement agent company control unit 207, such as the settlement agent company server A,
The result based on the authorization information processing is sent to the first server 200. First server 2
00, the control unit (not shown) associates the authorization result with the information stored in the payment information DB of the second server 220 based on the partial information or the credit card number change information, etc. Send to server etc.

Step S210: If the IP address for connection is not permitted in step S202 (S202; No), the authentication unit 201 rejects connection of the operator terminal 2000 or the like or blocks connection. In step S203, the authentication unit 201 determines that at least one of the operator ID and the password is not registered in the list (S203;
No), the connection of the operator terminal 2000 or the like is refused or the connection is cut off. An error message may be output at the same time.

(Action / Effect)
According to the authentication processing of the second embodiment and the program for creating the authorization information,
The selection range of the input form for each member store or credit card processing application system is limited for each operator ID. Further, when the member store information is selected, the transmission destination of the authorization information is specified in the program.

According to such a configuration, firstly, it is possible to prevent a serious information leakage in which an operator mistakes a combination of a member store and a payment agent in a transaction. In addition, it is possible to prevent an incorrect input item for each member store or payment agent, thereby delaying the authorization.

Also, since there are many combinations of franchisees and payment agents, and different entry forms for franchisees and payment agents, the burden on operators to remember and select the correct one is greatly reduced. . In addition, it is possible to achieve an unprecedented effect that the work efficiency can be improved by reducing the burden, and other security aspects can be considered.

Further, according to the second embodiment, by accessing the server of the payment agent after authentication by, for example, the API connection as described above, different PAN data or credit card member data (PAN, Expiration date, member name, service code, etc.) or sensitive authentication data (magnetic stripe data, security code, P
IN, etc.). In addition, the result of the authorization can be quickly incorporated. Further, the API connection makes it possible to improve the processing speed, prevent a data fetch error, and prevent data loss during data transmission.

[Third Embodiment]
A third embodiment will be described with reference to FIGS. The third embodiment is to further reduce the work load of the operator of the credit card information processing system and the efficiency of the credit card information processing system according to the first embodiment or the second embodiment, and further improve the prevention of input errors. The description of the third embodiment is based on the second embodiment, and a description overlapping with the second embodiment will be omitted.

(First server 200)
As in the second embodiment, the first server terminal 200 in the third embodiment performs authentication such as access permission, specifies a payment agency based on member store information, and performs creation of authorization information on the payment agency server. Execute on A side. As shown in FIG. 5, the first server 20
0 has an authentication unit 201, a transmission / reception unit 201A, a first storage unit 203, and a specification unit 205.

(Settlement agency server A2)
The settlement agency server A2 in the third embodiment includes a control unit 2 similar to the second embodiment.
07, a creation unit 209, and a second storage unit 211. Also, as in the second embodiment, the settlement agency server A2 performs an authorization process (based on the authorization information).
Judgment of the validity of the credit card, securing of the credit card usage frame, credit card settlement processing, etc.).

補助 Auxiliary function of creation program≫
The second storage unit 211 stores an authorization information creation program as in the above-described embodiment. The creation program according to the third embodiment has an auxiliary function for assisting an operator in inputting authorization information.

For example, as one of the auxiliary functions of the creation program, the creation program has a marking function in the creating unit 209 for input location determination. This marking function will be described with reference to FIGS. The creation program is executed by the operator terminal 2 via the creation unit 209.
An authorization information input screen is displayed on the display unit D of 000. Here, in the marking function of the creation program, when an input area of a predetermined item is selected via the input unit I, the area is emphasized with respect to another screen area and displayed so as to be identifiable.

For example, as shown in FIGS. 7 and 8, the area of the current input item is displayed in a normal color or 100% transparency, and the other parts are shaded in a dark color or the opacity is increased. Display format. In this way, the operator's work load is reduced, work efficiency is improved, input errors are prevented, and input errors are eliminated It is possible to prevent it.

For example, as another example of the auxiliary function of the creation program, the creation program
Has a function of determining whether an input has been made in accordance with the input rules. Operator terminal 2
The creation program executes this determination function in response to the display of the input screen for the authorization information being displayed on the display unit D of 000. In the judgment function of the creation program, an input logic check is executed. Here, it is assumed that an arbitrary storage unit such as the second storage unit 211 stores a data table for input logic check.

In this table, input form identification information for identifying an input form, item identification information for identifying an input item included in the input form for each item, and input rules for each input item (character type (half-width / double-width characters, numerals) / Japanese character / alphabet, symbol) etc.)
And the number of input digits that may be specified for each input item.

When the input form for each member store information is determined, the creation program executes
Then, an input screen for the authorization information is displayed on the display unit D of 00. Further, when each item in the input form is selected, the creating unit 209 refers to the table. That is, when the input item “credit card number” of the member store A is input, the auxiliary function obtains “input digit number” and “character type” required by the input item in the input form from the table and sets the input rule. And

The auxiliary function causes the creating unit 209 to perform a logic check on whether data input via the input unit I conforms to the acquired input rule. As other input logic checks, refer to the table to "check whether the number of digits in the phone number is sufficient or not based on the set value"
It is also possible to determine whether "the first four digits of the input credit card number indicate a number corresponding to the member information within the business range selected in the business selection". The timing of the input logic check or the like may be when an input signal is received via the input unit I or when a signal indicating completion of input to the input form is input. Alternatively, the input logic of the item before the transition may be checked at the timing of transition from the input of the predetermined item to another item (for example, when another input area is selected after receiving an input signal).

By performing the input logic check in this way, it is possible to reduce the work load on the operator, improve the work efficiency, prevent input errors, prevent input data format inconsistency, and prevent input omissions. For the operator, controls that output an error message that can be visually recognized, audio output indicating an error such as a beep sound or an alert sound, and vibrations to an input device, etc., output that can be tactilely recognized by the operator. May be executed by the creation unit. For example, business identification information (member store ID, member store group ID, payment agent company ID, payment agent company group ID, credit card company ID, credit card company group ID, and ID indicating other service providers, etc. And the like, and an input error is determined, and if the determination result is an error, a predetermined output is output to the operator in a manner recognizable to the operator.

(Action / Effect)
According to the authentication processing and the creation program of the authorization information of the third embodiment,
The selection range of the input form for each member store or credit card processing application system is limited for each operator ID. Further, when the member store information is selected, the transmission destination of the authorization information is specified in the program.

According to such a configuration, firstly, it is possible to prevent a serious information leakage in which an operator mistakes a combination of a member store and a payment agent in a transaction. In addition, it is possible to prevent an incorrect input item for each member store or payment agent, thereby delaying the authorization.

Also, since there are many combinations of franchisees and payment agents, and different entry forms for franchisees and payment agents, the burden on operators to remember and select the correct one is greatly reduced. . In addition, it is possible to achieve an unprecedented effect that the work efficiency can be improved by reducing the burden, and other security aspects can be considered.

Further, according to the third embodiment, the input assist function of the creation program stored in the second storage unit 211 reduces the work load of the operator, improves the work efficiency, prevents input mistakes, makes the input data format incompatible, Input leakage can be prevented.

[Fourth Embodiment]
A fourth embodiment will be described. The fourth embodiment further improves the security of the credit card information processing system according to the first embodiment, the second embodiment, or the third embodiment. The description of the fourth embodiment will be based on the second embodiment, and a description overlapping with the second embodiment will be omitted.

(Operator terminal 2000)
In the fourth embodiment, the operator terminal 2000 is configured to delete an input log. As an example, a deletion unit (not shown) is provided. This deletion process may be executed immediately upon input, or after a preset time has elapsed after the input process. Further, the log deletion process may be executed separately from the input process, for example, with a predetermined sense, without being linked to the input process. It is sufficient that the input log does not remain in the operator terminal 2000 and may be at least temporarily stored in the first server or the like.

(Creation unit 209)
In the fourth embodiment, the creation unit 209 encrypts the created authorization information.

(Action / Effect)
According to the fourth embodiment, the authorization information is encrypted, transmitted, and stored without leaving a log in the terminal used by the operator.

According to such a configuration, it is possible to improve security regarding the creation of the authorization.

Although the embodiments of the present invention have been described, the above embodiments have been presented by way of examples and are not intended to limit the scope of the invention. These novel embodiments can be implemented in various other forms, and various omissions, replacements, and changes can be made without departing from the spirit of the invention. These embodiments and modifications thereof are included in the scope and gist of the invention, and are included in the invention described in the claims and the equivalents thereof.

100, 200 First server 101, 201 Authentication unit 103, 203 First storage unit 105, 205 Identification unit 107, 207 Control unit 109, 209 Creation unit 111, 211 Second storage unit 120, 220 Second server 130 Third server A, A2 Settlement agency server

Claims (14)

A storage unit for storing a combination of the merchant and a credit card payment agent,
A specifying unit that receives input of authentication information for accessing the creation program of the authorization information, and specifies a settlement agency corresponding to the member store information from the storage unit based on the member store information related to the authorization information. ,
A control unit that associates the created authorization information with the payment agent information of the specified payment agent,
Credit card information processing system comprising: An authentication unit that receives input of the first authentication information and executes authentication of access to the authorization information creation program from the input source terminal;
Based on the merchant information related to the authorization information, referring to a combination of a pre-stored merchant and a credit card payment agent, refer to a combination of a specific part that identifies a payment agent corresponding to the member information. ,
A control unit that associates the created authorization information with the payment agent information of the specified payment agent,
Credit card information processing system comprising: 3. The credit card information processing system according to claim 1, wherein the first authentication information includes at least identification information of an operator who creates the authorization information. 4. The control unit is provided in the first server,
The first authentication information includes at least one of IP address restriction of a terminal that transmits and receives data to and from the first server, and password authentication associated with the operator identification information. The credit card information processing system according to claim 1. The credit card information processing system according to any one of claims 1 to 3, wherein the authorization information includes at least credit card related information for confirming a credit card use frame for settlement. . The creation program includes an input form for credit card-related information,
The credit card information processing system according to any one of claims 1 to 4, further comprising a creation unit that creates the authorization information in accordance with input of credit card-related information. The input form includes a credit card company, a credit card company group,
A first entry field, which is a different item for each credit card settlement agency or credit card settlement agency group, and a second entry field, which is a common item, are provided and assigned to each Payment company identification information attached,
The credit card information processing system according to claim 5, wherein the control unit acquires an input form corresponding to the information based on the payment operator identification information. The input form is provided with a third input field which is a different item for each credit card member store or member store group, and a fourth input column which is a common item, and for each member store or member store group. With the merchant identification information of
The credit card information processing system according to claim 5, wherein the control unit acquires an input form corresponding to the member store identification information based on the member store identification information. The creating unit determines whether or not an input to an operator-specific or operator group-specific input field corresponding to the operator identification information meets a prescribed condition,
The credit card information processing system according to claim 5, wherein when it is determined that the input is not suitable, a predetermined output that can be identified by an operator who has made the input is controlled. The credit card information processing system according to any one of claims 1 to 9, wherein the input source terminal used by the operator for creating the authorization information includes a deletion unit for deleting an input log. The credit card information processing system according to any one of claims 1 to 10, further comprising a creation unit that encrypts the created authorization information based on the input. A receiving unit that receives input of the first authentication information from a terminal used for creating the authorization information,
An authentication unit that executes authentication of access to the authorization information creation program from the terminal based on the first authentication information;
When the access is successfully authenticated, referring to the combination of the member store and the credit card payment agent based on the member store information related to the authorization information, the payment agent corresponding to the member store information is referred to. A specific part to specify,
A control unit that associates the created authorization information with the payment agent information of the specified payment agent,
Credit card information processing server equipped with. A credit card information processing program for controlling a server in a credit card company, a credit card company group, a credit card settlement agency or a credit card settlement agency group,
A receiving process of receiving an input of the first authentication information from a terminal used for creating the authorization information;
Based on the first authentication information, an authentication process for executing authentication of access to the authorization information creation program from the terminal;
When the access is successfully authenticated, referring to the combination of the member store and the credit card payment agent based on the member store information related to the authorization information, the payment agent corresponding to the member store information is referred to. Specific processing to specify,
An association process for associating the created authorization information with the payment agent information of the specified payment agent,
And a credit card information processing program for causing the server to execute. A credit card information processing program for controlling a server of a credit card company, a credit card company group, a credit card payment agent company or a credit card payment agent group,
An authentication process in which the server displays an input screen for first authentication information on a terminal used by the operator, and performs authentication based on the input first authentication information;
Acquire the input form of credit card related information on the condition that the authentication has been performed and display it on the terminal,
Creation processing for creating authorization information based on the input to the input form,
To run a credit card information processing program.