JP7423703B2 - Credit cards, activation methods, and programs - Google Patents

Description

The present invention relates to a credit card or the like having a security function.

Conventionally, there has been a system that includes an IC card storing personal information and an electronic wallet carried by the user together with the IC card (for example, see Patent Document 1). In this system, the IC card is provided with a timer that is activated when the user leaves the electronic wallet, and a control unit that invalidates the IC card when the time limited by the timer is exceeded.

Japanese Patent Application Publication No. 2001-175824

However, the above-mentioned conventional IC card is valid until the time limit is exceeded even when the user is away from the electronic wallet, so there is a risk that it may be used by an unauthorized user during that period.

Furthermore, even with other conventional credit cards, the risk of being used by an unauthorized user cannot be reduced in some cases.

The credit card of the first invention is in a situation where a credit card identifier for identifying a credit card and a communication device identifier for identifying one communication device are managed as a pair, and the credit card is capable of communicating with one communication device. This is a credit card that can only be used under certain circumstances.

With such a configuration, the credit card cannot be used in a situation where communication with the paired communication device is impossible, so it is possible to reduce the risk of credit card use by an unauthorized user.

Further, in addition to the first invention, the credit card of the second invention includes a card storage section in which a credit card identifier and a communication device identifier are stored, and a card reception section that receives the communication device identifier from the communication device. and a card determination unit that determines whether or not the communication device identifier received by the card reception unit has a predetermined relationship with the communication device identifier in the card storage unit, and the card determination unit determines whether or not the communication device identifier received by the card reception unit has a predetermined relationship. This is a credit card that can only be used if it is determined that the person has the credit card.

With this configuration, since authentication is performed in a situation where communication is possible with the paired communication device, the risk of credit card use by an unauthorized user can be further reduced.

Further, the credit card of the third invention, in contrast to the second invention, further includes a card transmitting section that transmits the credit card identifier in the card storage section to the communication device in which the credit card identifier is stored, The card reception unit receives the authentication result in the communication device in response to the transmission of the credit card identifier, and only when the card judgment unit determines that there is a predetermined relationship and the authentication result is authentication permission. , a credit card that can be used.

With this configuration, mutual authentication is performed in a situation where communication is possible with the paired communication device, so it is possible to further reduce the risk of credit card use by an unauthorized user.

Further, the credit card of the fourth invention is different from the first invention in that it includes a card storage section in which a credit card identifier is stored, a card reception section that receives a communication device identifier from a communication device, and a card storage section. The card receiving section further includes a card transmitting section that transmits the credit card identifier and the communication device identifier received by the card receiving section to the server device, and the card receiving section transmits the credit card identifier and the communication device identifier received by the card receiving section to the server device. This is a credit card that can be used only when the authentication result is received and the authentication result is approved.

With this configuration, when communication is possible with the paired communication device, the communication device identifier is received from the communication device, the communication device identifier and the credit card identifier are sent to the server device, and the result of authentication performed by the server device is received. Therefore, the risk of credit card use by an unauthorized user can be further reduced.

Furthermore, the credit card of the fifth invention is different from the first invention in that it includes a card storage section in which a credit card identifier is stored, and a card transmission section that transmits the credit card identifier in the card storage section to a communication device. Further, the communication device identifier and the credit card identifier stored in the communication device are transmitted to the server device, and the authentication result in the server device storing the pair of the communication device identifier and the credit card identifier is the authentication permission. This is a credit card that can only be used if

With this configuration, in a situation where communication is possible with the paired communication device, the credit card identifier is transmitted to the communication device, the communication device identifier and the credit card identifier are transmitted from the communication device to the server device, and the transaction is carried out by the server device. Since the authentication result is received via the communication device, the risk of credit card use by an unauthorized user can be further reduced.

Further, in the credit card of the sixth invention, in contrast to the first invention, the credit card of the card storage part is provided in the card storage part in which the credit card identifier is stored, and in the communication device in which the credit card identifier is stored. This credit card is equipped with a card transmitter that transmits an identifier, and becomes usable only when a communication device that receives the credit card identifier determines that authentication is permitted in response to the transmission of the credit card identifier.

With this configuration, the credit card identifier is sent to the communication device and the result of the authentication performed by the communication device is received when communication is possible with the paired communication device, thereby reducing the risk of credit card use by an unauthorized user. It is possible to further reduce the

Further, the credit card of the seventh invention is different from any one of the first to sixth inventions in that the stored pair of credit card identifier and communication device identifier can be modified.

With this configuration, it is possible to customize the pair conditions, which are conditions for enabling use and conditions for paired communication devices.

Further, the credit card of the eighth invention is different from the seventh invention in that peripheral conditions, which are conditions other than the pair of credit card identifier and communication device identifier, are managed, and the peripheral conditions can also be modified. It's a card.

With this configuration, it is also possible to customize peripheral conditions, which are conditions for enabling use and conditions other than pair conditions. Additionally, the addition of peripheral conditions makes it possible to further reduce the risk of credit card use by unauthorized users.

Further, the credit card of the ninth invention is different from the eighth invention in that the peripheral conditions include one or more conditions among time, place, date and time.

With this configuration, it is possible to customize one or more of the conditions for use, which are time, place, and date and time. In addition, in addition to the pair condition, it cannot be used unless one or more of the conditions of time, location, and date and time are also met, so even if the communication with the communication device is wide area communication, even if the communication with the communication device is wide-area communication, the credit The risk of using the card can be reduced.

Further, in the credit card of the tenth invention, in contrast to any one of the first to ninth inventions, the communication device is a credit card in the form of an accessory worn by the user.

With this configuration, the risk of credit card use by an unauthorized user can be easily reduced simply by the user wearing the paired communication device as an accessory.

According to the present invention, a credit card is realized that can reduce the risk of credit card use by an unauthorized user.

Block diagram of an information system including a credit card etc. in Embodiment 1 Flowchart explaining how the credit card works Flowchart explaining the operation of the communication device Block diagram of an information system including a credit card etc. in Embodiment 2 Flowchart explaining how the credit card works Flowchart explaining the operation of the server device Data structure diagram of same condition information Block diagram of an information system including a credit card etc. in Embodiment 3 Flowchart explaining how the credit card works Flowchart explaining the operation of the communication device Flowchart explaining the operation of the server device Block diagram of an information system including a credit card etc. in Embodiment 4 Flowchart explaining the operation of the communication device A diagram showing an example of the internal configuration of a computer system that implements a credit card, etc. in each embodiment.

Hereinafter, four embodiments of credit cards and the like will be described with reference to the drawings. Note that in each embodiment, constituent elements with the same reference numerals perform similar operations, and therefore, repeated explanation may be omitted. Furthermore, components that differ only in part of their operations may be given the same number with a subscript, and only the differences will be explained.

Common to the four embodiments, in a situation where a credit card identifier and an identifier of one of two or more communication devices are managed as a pair, in a situation where communication with the one communication device is possible. Describe a credit card that can only be used if it is available.

Note that the management of the pair of credit card identifier and communication device identifier may be performed, for example, by the credit card, by the communication device, by both, or by the server device. I don't care if you get caught.

Furthermore, it can be said that the pair of a credit card identifier and a communication device identifier is one (pair condition) of one or more conditions (usable conditions) under which a credit card can be used. In that case, it is preferable that usability conditions (peripheral conditions) other than the pair conditions are also managed. Note that various conditions will be described later.

Moreover, being usable only requires that it becomes usable as a result, and the entity or process that makes it usable does not matter. In addition, unusableness may mean, for example, that credit card information is not decrypted, that transmission of credit card information is prohibited, or that card information cannot be read by a terminal device. It's okay to be. Furthermore, becoming usable may mean, for example, that credit card information is decrypted, that its transmission is allowed, or that it becomes readable by a terminal.

The main difference between Embodiment 1 and Embodiments 2 to 4 is that in the former, the credit card itself performs authentication based on pair conditions, whereas in the latter, authentication is performed by another device. The point is to use the results of Note that in the first embodiment, it is preferable to perform mutual authentication that also uses the authentication result at the communication device.

Note that authentication using a credit card means, for example, that when a credit card manages pair conditions and receives a communication device identifier from one communication device, the received communication device identifier and the pair conditions managed by the credit card are It may be determined whether or not there is a predetermined relationship (for example, a match) between the communication device identifier and the communication device identifier that constitutes the communication device identifier. Note that the predetermined relationship will be described later.

In addition, authentication by a communication device means that the communication device manages pair conditions, and when a credit card identifier is received from a credit card, the received credit card identifier and the credit card that constitutes the managed pair condition are used. It may be determined whether or not the card identifier has a predetermined relationship. Furthermore, mutual authentication may mean, for example, that the credit card performs the authentication itself and receives the authentication result from the communication device.

Note that the authentication result is information regarding the result of authentication. The authentication result may be, for example, information indicating the determination result. The information indicating the determination result is, for example, information indicating that it has been determined that there is a predetermined relationship, or that it has been determined that there is no predetermined relationship. Alternatively, the authentication result may be information indicating whether or not authentication is possible based on the determination result. Information indicating whether or not authentication is possible in response to the determination result is, for example, "authentication permission" in response to a determination that a predetermined relationship exists, or "authentication permission" in response to a determination that a predetermined relationship does not exist. It may also be a corresponding "authentication not permitted" or the like.

Also, the main difference between Embodiments 2 and 3 and Embodiment 4 is that the former uses the authentication result from the server device, whereas the latter uses the authentication result from the communication device. It is in.

Note that authentication by the server device means that the server device manages pair conditions, and when it receives a credit card identifier and a communication device identifier, it configures the pair conditions that it manages with the received credit card identifier. the received communication device identifier and the communication device identifier forming the pair condition. It may also be to judge.

Furthermore, the main difference between Embodiment 2 and Embodiment 3 is that when using the authentication result on the server device, in the former case, the credit card and the server device are connected directly without going through a communication device. In contrast, in the latter case, communication is carried out via a communication device.

The main difference between Embodiment 1 and Embodiment 4 is that in the former, the credit card itself performs the authentication and the authentication result from the communication device can also be used, whereas in the latter, the credit card The card itself does not perform authentication, but only uses the authentication results from the communication device.

(Embodiment 1)
In this embodiment, a credit card 1 that performs its own authentication will be described. Specifically, the credit card 1 will be described in which the identifier of one communication device 2 is stored in the credit card 1, and becomes usable by receiving the identifier from the one communication device 2.

Also, a credit card 1 that performs mutual authentication with one communication device 2 will be described. Specifically, a credit card 1 will be described in which a credit card identifier is stored in one communication device 2 and becomes usable when mutual authentication is achieved.

Furthermore, regarding the credit card 1 that allows modification of the pairing of the credit card identifier and one communication device identifier (in other words, customization of the pairing conditions, which are the conditions for use and the conditions for the communication device 2 to be paired). explain.

Further, a description will be given of a credit card 1 in which peripheral conditions, which are usable conditions other than pair conditions, can also be customized.

Further, a credit card 1 in which peripheral conditions include one or more of time, place, and date and time will be described.

Furthermore, the credit card 1, in which the paired communication device 2 is an accessory worn by the user, will be described.

FIG. 1 is a block diagram of an information system 100 including a credit card 1 and the like in this embodiment. Information system 100 includes a credit card 1 and one or more communication devices 2 .

The credit card 1 may be, for example, an IC card. An IC card is a card that has an IC chip. An IC chip is composed of a group of elements such as, for example, an MPU, a memory, and a communication module. The communication module may be a module that performs short-range wireless communication, for example. Near field wireless communication includes, for example, NFC, Bluetooth (registered trademark), wireless LAN, etc., but any method may be used as long as it is wireless communication with a short range. It is preferable that the communication module is capable of performing wide area communication via the Internet, a communication line, etc., in addition to short-range wireless communication. However, the communication module may have only a wide area communication function without having a short-range wireless communication function.

Alternatively, the credit card 1 may be a virtual card, for example. A virtual card is a virtual card realized using a computer.

It is particularly preferable that the credit card 1 is a virtual card in a mobile terminal such as a smartphone or a tablet terminal. A mobile terminal also has an MPU, a memory, a communication module, and the like, and can realize functions equivalent to an IC card. The substance of such a virtual card is credit card information stored in the memory of the mobile terminal.

Credit card information is information regarding credit cards. The credit card information includes information such as a credit card identifier, expiration date, and name, for example. A credit card identifier is information that identifies a credit card. The credit card identifier is usually a credit card number, but may also be an ID or any other information that can identify the credit card. However, the content of the credit card information does not matter. The memory of the mobile terminal further stores image information of a real card corresponding to the virtual card, and it is more preferable that the image of the card is displayed on the display of the mobile terminal.

Note that the credit card 1 of this embodiment generally does not include a type of credit card that does not have an IC chip and only has a magnetic stripe (hereinafter sometimes referred to as a magnetic card). However, even if it is a magnetic card, it can be equivalent to the credit card 1 by being attached to a reader equipped with an IC chip that reads information from the magnetic stripe and can also communicate with the communication device 2. It is possible to realize the following functions. Therefore, a magnetic card attached to a reader equipped with an IC chip may also be considered to be included in the credit card 1 of this embodiment.

The communication device 2 may be of any type as long as it is easy to carry and can communicate with the credit card 1. Communication is typically bidirectional, but may be unidirectional. One-way communication may be broadcast. Further, communication with the credit card 1 is usually short-range wireless communication, but wired communication via a connection cable may also be used. Note that the communication with the credit card 1 may be a wide area communication with no restriction on reach, for example, in a situation where surrounding conditions (described later) are further managed.

For example, it is preferable that the communication device 2 has the form of an accessory worn by a user. Accessories can be anything, such as a wristwatch, necklace, or ring. The communication device 2 having the form of an accessory may be, for example, an accessory with an IC chip. However, the communication device 2 does not have to be in the form of an accessory, and may be, for example, an IC card or a mobile terminal.

Note that the communication device 2 in the form of an accessory is suitable for combination with any type of credit card 1, for example, an IC card or a virtual card in a mobile terminal. Other suitable combinations include, for example, a combination of a credit card 1 using an IC card and a communication device 2 using a mobile terminal, a combination of a credit card 1 that is a virtual card in a mobile terminal, and a communication device 2 using an IC card, etc. However, any combination may be used.

Note that it is preferable that each of the credit card 1 and the communication device 2 can also communicate with a server device (not shown), for example. Communication with the server device is usually wide area communication via the Internet, communication lines, etc., but the method does not matter.

The credit card 1 includes a card storage section 11, a card reception section 12, a card processing section 13, and a card transmission section 14. The card processing unit 13 includes a card determination unit 131.

The communication device 2 includes a storage section 21, a reception section 22, a processing section 23, and a transmission section 24. The processing section 23 includes a determining section 231.

The card storage unit 11 that constitutes the credit card 1 can store various types of information. The various types of information include, for example, the credit card identifier described above and the communication device identifier described later. Other information will be explained in due course.

The card storage unit 11 stores, for example, a credit card identifier and a communication device identifier. A communication device identifier is information that identifies a communication device. The communication device identifier is, for example, a MAC address, ID, etc., but any information that can identify the communication device may be used.

The pair of credit card identifier and communication device identifier stored in the card storage unit 11 is one or more conditions under which the credit card 1 can be used, and the communication device 2 paired with the credit card 1 It can be said that it is a condition related to Hereinafter, one or more conditions under which the credit card 1 can be used may be referred to as usable conditions. In addition, a usability condition consisting of a pair of a credit card identifier and a communication device identifier may be referred to as a pair condition.

It is preferable that the card storage unit 11 stores, for example, peripheral conditions in addition to the pair conditions. The peripheral conditions are conditions other than the pair of credit card identifier and communication device identifier. For example, the peripheral condition can be said to be a general term for one or more usable conditions other than the pair condition. Preferably, the surrounding conditions include, for example, one or more of time, location, and date and time.

The time condition may be, for example, that the current time is in a predetermined time zone (for example, 9:00 to 20:00, etc.), or that the current time is in a predetermined time zone (for example, 0:00 to 6:00, etc.). The time condition may be any condition related to time.

Location conditions include, for example, that your current location is within a predetermined range (e.g., the location of your home or workplace, a specific commercial facility, etc.) or that your current location is within a predetermined range (e.g., a specific entertainment district). etc.) may not be present. Note that the location conditions may be expressed, for example, by location information such as latitude and longitude indicating a predetermined range, or may be expressed by facility names, place names, etc. that are associated with the location information. In this way, the location condition may be any condition as long as it is related to the location, and its expression format is not limited.

The date and time condition means, for example, that the current date and time is within a predetermined period (such as from 9:00 on July 1, 2017 to 20:00 on July 31, 2017), or that the current date and time is within a predetermined period. (For example, it may not be after 20:00 on July 31, 2017, etc.). Alternatively, the date and time condition may be, for example, that the current day of the week is a predetermined day of the week (for example, weekdays, etc.) or that it is not a predetermined day of the week (for example, Saturday, Sunday, etc.). The date and time conditions may be any conditions related to date and time.

However, the peripheral condition may be "Null", for example. “Null” is information indicating that the peripheral condition does not exist.

Alternatively, the card storage unit 11 may store, for example, condition information. The condition information is information regarding the conditions under which the credit card 1 can be used. The condition information may be composed of, for example, one or more usability conditions. The condition information in this embodiment may include, for example, a pair condition as described above and a peripheral condition that is one or more usable conditions other than the pair condition.

Further, the card storage unit 11 usually stores credit card information other than credit card identifiers.

The card receiving unit 12 receives various types of information. The various types of information include, for example, a communication device identifier and an authentication result described below.

The card receiving unit 12 receives a communication device identifier from the communication device 2, for example.

The card receiving unit 12 may receive the authentication result from the communication device 2 in response to the transmission of a credit card identifier by the card transmitting unit 14, which will be described later.

The card processing unit 13 performs various processes. The various types of processing include, for example, processing performed by the card determination unit 131, which will be described later. Note that other processing will be explained in due course.

The card determining unit 131 determines whether the communication device identifier received by the card receiving unit 12 has a predetermined relationship with the communication device identifier in the card storage unit 11.

The predetermined relationship is, for example, coincidence. A match usually refers to a complete match, but may also be a partial match. A complete match means that all of the characters match, for example, that all of the sets of one or more characters (including symbols) that make up the communication device identifier (hereinafter sometimes referred to as character strings) match. There may be.

A partial match means that only a part of the communication device identifier matches, and for example, only a part of the character string that can be identified as belonging to the user may match among the character strings that constitute the communication device identifier. Alternatively, a partial match may be, for example, a match between X or more consecutive characters among the character strings that constitute the communication device identifier.

Note that determining whether the communication device identifier received by the card receiving unit 12 has a predetermined relationship with the communication device identifier in the card storage unit 11 usually determines whether the pair condition is satisfied. It's the same thing. That is, the card determining unit 131 may determine that the pair condition is satisfied when the communication device identifier received by the card receiving unit 12 has a predetermined relationship with the communication device identifier of the card storage unit 11.

Further, the above matters regarding the predetermined relationship also apply to the credit card identifier when the credit card 1 performs mutual authentication with the communication device 2. That is, in the communication device 2, the determining unit 231 determines that the pair condition is satisfied when the credit card identifier received by the receiving unit 22 has a predetermined relationship with the credit card identifier in the storage unit 21, and may transmit an authentication result indicating authorization for authentication to the credit card 1.

For example, when the card determining unit 131 determines that the communication device identifier received by the card receiving unit 12 has a predetermined relationship with the communication device identifier of the card storage unit 11 (hereinafter referred to as “communication device identifier”), the credit card 1 If the card determination unit 131 determines that there is no predetermined relationship (hereinafter referred to as "if the determination result regarding the communication device identifier is positive"), the card determination unit 131 determines that there is no predetermined relationship. If the result is negative, it may become unusable.

For example, the card processing unit 13 holds a flag indicating whether or not the credit card 1 can be used, and the card determining unit 131 sets the flag to “usable” when the determination result regarding the communication device identifier is positive. If the determination result regarding the communication device identifier is negative, the flag may be set to "unusable."

Note that instead of switching the flags in this manner, the card determining section 131 may deliver information indicating the determination result to the card processing section 13, and any means for conveying the determination result is not limited. Further, the card determination unit 131 may, for example, deliver the determination result to an external device such as a program or reader that decrypts credit card information, or a program or device that can switch whether or not the credit card 1 can be used. If so, it does not matter who the judgment results are communicated to.

When performing mutual authentication with the communication device 2, the credit card 1 can be used only when, for example, the judgment result of the card judgment unit 131 is positive and the authentication result of the communication device 2 is authentication permission. It may become possible. Note that the case where the authentication result in the communication device 2 is authentication permission is the case where the judgment result regarding the credit card identifier by the judgment unit 231, which will be described later, is positive, and the case where the authentication result is authentication disapproval is the case. This can be said to be a case where the judgment result regarding the credit card identifier is negative.

For example, if the determination result regarding the communication device identifier is positive and the authentication result at the communication device 2 is authentication permission, the card determination unit 131 sets “usable” in the flag and makes a determination regarding the communication device identifier. If the result is negative or the authentication result at the communication device 2 is that the authentication is not permitted, the flag may be set to “unusable”.

It is preferable that the card determination unit 131 performs determination based on peripheral conditions in addition to determination based on such pair conditions. Specifically, if the card determination unit 131 satisfies the pair condition and also satisfies the peripheral conditions, it sets the flag to "usable", and if the pair condition is not satisfied or the peripheral conditions are not satisfied, the card determination unit 131 sets the flag to "usable". You can also set "unusable". Note that if the peripheral condition is "Null", the card determination unit 131 may always determine that the peripheral condition is satisfied.

However, the execution order of the determination based on the pair condition and the determination based on the surrounding condition does not matter. In this embodiment, the card determination unit 131 normally determines whether the pair condition is satisfied, and if the pair condition is satisfied, further determines whether the peripheral condition is satisfied, and if the peripheral condition is also satisfied. In this case, the flag is set to "usable", but for example, it is first determined whether the peripheral conditions are satisfied, and if the peripheral conditions are satisfied, it is further determined whether the pair conditions are satisfied. , the flag may be set to "usable" if the pair conditions are also satisfied.

Furthermore, although the pair condition and the peripheral condition usually have an AND relationship, they may also have an OR relationship. That is, the card determination unit 131 is not limited to the case where both the determination result regarding the pair condition and the determination result regarding the peripheral condition are positive determination results, but the card determination unit 131 may determine whether the determination result regarding the pair condition or the determination regarding the peripheral condition is positive. Even if one of the results is a positive judgment result, the flag is set to “usable”, and both the judgment result regarding the pair condition and the judgment result regarding the peripheral condition are negative judgment results. In some cases, the flag may be set to "unusable."

Or, for example, the pair condition may be the main condition, and the peripheral conditions may be additional conditions that are considered if the pair condition is not met. Specifically, the card determining unit 131 first makes a determination regarding the pair condition, and if the result of the determination is positive, it sets "usable" in the flag, and if the result of the determination is negative. If the result is a positive judgment, further judgment regarding the surrounding conditions is made. Then, if the result of the determination regarding the peripheral conditions is a positive determination result, the card determination unit 131 sets "usable" in the flag, and if the result of determination regarding the peripheral conditions is a negative determination result, the card determination unit 131 sets the flag to "usable". may set the flag to “unusable”.

According to this modification, a user wearing the communication device 2 paired with the credit card 1 can use the credit card 1 regardless of surrounding conditions, while a user who has left the communication device 2 at home, A user who is not wearing the communication device 2, such as a person who found the credit card 1, can use the credit card 1 only if the surrounding conditions are met, so the user can forget the communication device 2 while reducing the risk of unauthorized use. This also reduces the inconvenience of not being able to use the device.

For example, the card processing unit 13 performs payment processing using the credit card information in the card storage unit 11 only when the flag indicates that the card can be used, and performs such payment processing when the flag indicates that the card cannot be used. The credit card 1 may be enabled or disabled depending on whether the credit card 1 is not available or not.

Note that the payment process is a process related to payment. The payment process is not limited to the case where the payment is made by the user himself/herself, but may also include, for example, the process of transmitting credit card information to the server of the financial institution that performs the payment.

Further, the card processing unit 13 may modify, for example, the pair of credit card identifier and communication device identifier stored in the card storage unit 11. The target of modification may be either the credit card identifier or the communication device identifier, or both. That is, the card processing unit 13 can modify the pair conditions that constitute the condition information stored in the card storage unit 11. Furthermore, the card processing unit 13 can also modify the peripheral conditions that constitute the condition information.

For example, when the communication device 2 paired with the credit card 1 is changed, the card processing unit 13 receives a new communication device identifier via an input device such as a touch panel, and updates the stored existing communication device identifier. It may be changed to the new communication device identifier. Similarly, when the credit card 1 is changed, the card processing unit 13 may accept a new credit card identifier and change the stored existing credit card identifier to the new credit card identifier. Alternatively, if both credit card 1 and communication device 2 are changed, a new pair of credit card identifier and new communication device identifier is accepted, and the existing pair stored is changed to the new pair. Good too.

However, it is sufficient that the information in the card storage section 11 is modified as a result, and the entity that makes the modification does not matter. For example, the card receiving unit 12 may receive new information from the communication device 2 or a server device (not shown) and change existing information to the new information.

The card transmitter 14 can transmit various types of information. The various types of information include, for example, credit card identifiers.

For example, the card transmitter 14 may transmit the credit card identifier in the card storage unit 11 to the communication device 2 in which the credit card identifier is stored. Thereby, mutual authentication with the communication device 2 can be performed.

The storage unit 21 that constitutes the communication device 2 can store various types of information. The various types of information include, for example, a communication device identifier and a credit card identifier.

The storage unit 21 stores communication device identifiers. It is preferable that the storage unit 21 stores a credit card identifier and a communication device identifier in pairs. In other words, the pair conditions stored in the card storage section 11 of the credit card 1 may also be stored in the storage section 21.

The receiving unit 22 can receive various types of information. The various information may be, for example, a credit card identifier. When the communication device 2 performs mutual authentication with the credit card 1, the receiving unit 22 normally receives a credit card identifier from the credit card 1.

The processing unit 23 can perform various types of processing. The various types of processing may be, for example, processing by the determination unit 231, which will be described later.

The determining unit 231 determines whether the credit card identifier received by the receiving unit 22 has a predetermined relationship with the credit card identifier in the storage unit 21. The predetermined relationship here is also, for example, coincidence. However, if authentication is performed only on the credit card 1 side and the communication device 2 does not perform mutual authentication with the credit card 1, the processing unit 23 does not need to include the determination unit 231.

The transmitter 24 transmits various types of information. The various types of information include, for example, a communication device identifier and an authentication result.

The transmitting unit 24 transmits the communication device identifier stored in the storage unit 21. For example, the transmitting unit 24 may transmit the communication device identifier to the credit card 1 identified by the credit card identifier stored in the storage unit 21, or may transmit the communication device identifier to an unspecified destination. Or you can broadcast it.

The transmitter 24 may transmit the stored communication device identifier twice or more. Specifically, the transmitting unit 24 holds timing information, and transmits the communication device identifier stored in the storage unit 21 periodically or irregularly at a timing according to the timing information. Good too. Timing information is information indicating the timing of transmission of a communication device identifier. The timing information may be information indicating a cycle such as every 10 seconds or every minute, or may be a set of two or more times.

Further, the transmitting unit 24 transmits an authentication result indicating permission for authentication to the credit card 1, for example, when the determination result regarding the credit card identifier by the determining unit 231 is positive. If the determination result of the determination unit 231 is negative, the transmission unit 24 may transmit an authentication result indicating that the authentication is not permitted to the credit card 1.

For example, a nonvolatile recording medium such as a hard disk or a flash memory is suitable for the card storage section 11 and the storage section 21, but it is also possible to implement a volatile recording medium such as a RAM.

The process by which information is stored in the card storage unit 11 or the like does not matter. For example, information may be stored in the card storage unit 11 etc. via a recording medium, and information transmitted via a network, communication line, etc. may be stored in the card storage unit 11 etc. Alternatively, information input via an input device may be stored in the card storage unit 11 or the like. The input device may be anything, such as a keyboard, mouse, touch panel, etc.

The card receiving section 12 and the receiving section 22 are usually realized by wired or wireless communication means (for example, a communication module such as a NIC (Network Interface Controller) or a modem), but are also realized by means for receiving broadcasts (for example, , broadcast receiving module).

The card processing section 13, the card judgment section 131, the processing section 23, and the judgment section 231 can usually be realized by an MPU, a memory, or the like. The processing procedures of the card processing unit 13 and the like are usually realized by software, and the software is recorded on a recording medium such as a ROM. However, the processing procedure may be realized by hardware (dedicated circuit).

The card transmitter 14 and the transmitter 24 are usually realized by wired or wireless communication means, but may also be realized by broadcast means (for example, a broadcast module).

Next, the operation of the information system 100 will be explained using the flowcharts of FIGS. 2 and 3.

FIG. 2 is a flowchart illustrating the operation of the credit card 1.

(Step S200) The card determining unit 131 sets “unusable” to the flag held by the card processing unit 13.

(Step S201) The card processing unit 13 determines whether the card receiving unit 12 has received the communication device identifier. If the card receiving unit 12 has received the communication device identifier, the process proceeds to step S202, and if it has not received the communication device identifier, the process proceeds to step S204.

(Step S202) The card determination unit 131 determines whether the communication device identifier received in step S201 satisfies a predetermined relationship with the communication device identifier in the card storage unit 11. If the received communication device identifier satisfies a predetermined relationship with the communication device identifier of the card storage unit 11, the process advances to step S203, and if the relationship does not satisfy the predetermined relationship, the process returns to step S201.

(Step S203) The card transmitting unit 14 transmits the credit card identifier of the card storage unit 11 to the communication device 2 identified by the communication device identifier of the card storage unit 11. After that, the process returns to step S201.

(Step S204) The card processing unit 13 determines whether the card receiving unit 12 has received the authentication result. If the card receiving unit 12 has received the authentication result, the process proceeds to step S205, and if it has not received the authentication result, the process proceeds to step S208.

(Step S205) The processing unit 13 determines whether the authentication result received in step S204 indicates authentication permission. If the received authentication result indicates authentication permission, the process advances to step S206; if the received authentication result does not indicate authentication permission, the process returns to step S200.

(Step S206) The card determination unit 131 determines whether the peripheral conditions stored in the card storage unit 11 are satisfied. Note that the peripheral condition "Null" is always determined to be satisfied. If the peripheral conditions are met, the process advances to step S207; if the peripheral conditions are not satisfied, the process returns to step S200.

(Step S207) The card determination unit 131 sets “usable” to the flag held by the card processing unit 13. After that, the process returns to step S201.

(Step S208) The card determining unit 131 determines whether the card receiving unit 12 does not receive the communication device identifier even after a predetermined time has elapsed since the previous reception. If the card receiving unit 12 does not receive the communication device identifier even after a predetermined period of time has passed since the previous reception, it is determined that communication is no longer possible, and the process returns to step S200; otherwise, The process advances to step S209.

(Step S209) The card processing unit 13 determines whether or not to modify the pair conditions. Specifically, when the card processing unit 13 receives one or more of a new communication device identifier or a new credit card identifier through an input device such as a touch panel, the card processing unit 13 corrects the pair conditions. You can judge. If the pair conditions are to be modified, the process advances to step S210; otherwise, the process advances to step S211.

(Step S210) The card processing unit 13 corrects the pair conditions. Specifically, the card processing unit 13 replaces one or more of the existing communication device identifiers or existing credit card identifiers stored in the card storage unit 11 with the new communication device identifier received in step S209 or the existing credit card identifier. It may be changed to one or more of the credit card identifiers. After that, the process returns to step S200.

(Step S211) The card processing unit 13 determines whether or not to modify the peripheral conditions. Specifically, the card processing unit 13 may determine to modify the peripheral conditions when receiving new peripheral conditions, for example, via an input device such as a touch panel. If the surrounding conditions are to be modified, the process advances to step S212; otherwise, the process returns to step S201.

(Step S212) The card processing unit 13 corrects the peripheral conditions. Specifically, the card processing unit 13 may change, for example, the existing peripheral condition stored in the card storage unit 11 to the new peripheral condition received in step S211. After that, the process returns to step S200.

Note that in the flowchart of FIG. 2, the process starts when the credit card 1 is powered on or a program is started, and ends when the power is turned off or an interrupt to end the process occurs. However, the trigger for starting or ending the process does not matter.

FIG. 3 is a flowchart illustrating the operation of the communication device 2.

(Step S301) The transmitter 24 determines whether to transmit the communication device identifier. Specifically, the transmitter 24 holds, for example, timing information, uses this timing information to determine whether or not it is the timing to transmit, and if it is the timing to transmit, determines to transmit; If not, you may decide not to send it.

(Step S302) The transmitting unit 24 transmits the communication device identifier of the storage unit 21. After that, the process returns to step S301.

(Step S303) The processing unit 23 determines whether the receiving unit 22 has received the credit card identifier. If the receiving unit 22 has received the credit card identifier, the process advances to step S304; if the receiving unit 22 has not received the credit card identifier, the process returns to step S301.

(Step S304) The determining unit 231 determines whether the credit card identifier received in step S303 satisfies a predetermined relationship with the credit card identifier in the storage unit 21. If the received credit card identifier satisfies a predetermined relationship with the credit card identifier stored in the storage unit 21, the process advances to step S305; otherwise, the process advances to step S306.

(Step S305) The transmitting unit 24 transmits the authentication result indicating authorization for authentication to the credit card 1 identified by the credit card identifier in the storage unit 21. After that, the process returns to step S301.

(Step S306) The transmitting unit 24 transmits the authentication result indicating that the authentication is not permitted to the credit card 1 identified by the credit card identifier in the storage unit 21. After that, the process returns to step S301.

In the flowchart of FIG. 3, the process starts when the communication device 2 is powered on or a program is started, and ends when the power is turned off or an interrupt to end the process occurs. However, the trigger for starting or ending the process does not matter.

A specific example of the operation of the information system 100 in this embodiment will be described below. In this example, credit card 1 is a virtual card in a smartphone owned by user aa. Furthermore, one of the two or more communication devices 2 (hereinafter simply referred to as the communication device 2) is a communication device owned by the user aa, and is equipped with an IC chip having a short-range wireless communication module such as NFC. It is a necklace.

In the card storage section 11 of the credit card 1, a credit card identifier "XX" and a communication device identifier "AA" are stored as a pair. The card storage unit 11 also stores a peripheral condition “Null”.

In the storage unit 21 of the communication device 2, a communication device identifier “AA” and a credit card identifier “XX” are stored as a pair.

It is assumed that the user aa goes out while carrying a smartphone that implements the credit card 1 and wearing a necklace-type communication device 2 capable of performing short-range wireless communication. For example, the credit card 1 and the communication device 2 can communicate with each other unless the distance between the smartphone and the necklace becomes greater than the short-range wireless communication distance, such as when the user aa leaves the smartphone behind while out and about. in a state. In this state, the credit card 1 and the communication device 2 can perform the following mutual authentication by sending their own identifiers to each other.

In the communication device 2, the transmitter 24 holds timing information "every minute". The transmitter 24 also has a timekeeping function that uses the built-in clock of the MPU to time the elapsed time after transmitting the communication device identifier "AA". The transmitting unit 24 uses the elapsed time since the previous transmission and the held timing information to determine whether or not it is the timing for transmitting. If it is the timing for transmitting, the transmitting unit 24 transmits the communication device identifier “” in the storage unit 21. AA” is sent.

In the credit card 1, the card processing unit 13 determines whether the card receiving unit 12 has received the communication device identifier. When the card receiving unit 12 receives the communication device identifier, the card determining unit 131 determines whether the received communication device identifier “AA” satisfies a predetermined relationship with the communication device identifier “AA” in the card storage unit 11. It is determined whether or not (in this example, whether or not they match).

Here, since the received communication device identifier “AA” and the communication device identifier “AA” of the card storage unit 11 match, the card transmitting unit 14 identifies the device using the communication device identifier “AA” of the card storage unit 11. The credit card identifier "XX" of the card storage unit 11 is transmitted to the communication device 2 that is used.

In the communication device 2, the processing unit 23 determines whether the receiving unit 22 has received the credit card identifier. When the receiving unit 22 receives the credit card identifier, the determining unit 231 determines whether the received credit card identifier “XX” satisfies a predetermined relationship with the credit card identifier “XX” in the storage unit 21 ( In this example, it is determined whether they match or not.

Here, since the received credit card identifier “XX” and the credit card identifier “XX” in the storage unit 21 match, the transmitting unit 24 transmits the credit card identified by the credit card identifier “XX” in the storage unit 21. The authentication result indicating authentication permission is transmitted to card 1.

In the credit card 1, the card processing unit 13 also determines whether the card receiving unit 12 has received the authentication result. When the card receiving unit 12 receives the authentication result, the card processing unit 13 further determines whether the received authentication result indicates authentication permission.

Here, since the received authentication result indicates authentication permission, the card determination unit 131 further determines whether the peripheral conditions stored in the card storage unit 11 are satisfied. Here, the peripheral condition is "Null", and the card determining unit 131 determines that this is satisfied, and sets "usable" to the flag held by the card processing unit 13.

By repeating the above-described processing, the credit card 1 becomes usable only when it is in a situation where it can communicate with the communication device 2.

Therefore, if the user aa wearing the necklace functioning as the communication device 2 uses the credit card 1 in the smartphone, payment processing using the credit card 1 will be executed.

Note that if, for example, the distance between the smartphone and the necklace becomes longer than the short-range wireless communication distance because the user aa leaves the smartphone behind while out and about, the credit card 1 is transferred to the communication device 2. communication becomes impossible. That is, even if the transmitting unit 24 of the communication device 2 transmits the communication device identifier “AA”, the card receiving unit 12 of the credit card 1 cannot receive the communication device identifier “AA”. If the card receiving unit 12 does not receive the communication device identifier even after a predetermined time (for example, 1 minute) has passed since the previous reception, the card determination unit 131 enters a state in which communication with the communication device 2 is disabled. It is determined that the flag held by the card processing unit 13 is set to "unusable". As a result, the credit card 1 becomes unusable.

Therefore, even if another user who finds the smartphone left behind by user aa attempts to fraudulently use the credit card 1 in the smartphone, the payment process will not be executed.

In addition to the necklace-type communication device 2 (hereinafter sometimes referred to as communication device AA), user aa may also use, for example, a wristwatch-type communication device 2 (communication device BB) in which a wristwatch is equipped with an IC chip. I own it. The storage unit 21 of this communication device 2 stores a communication device identifier “BB”.

If user aa goes out wearing this necklace-type communication device 2 instead of the necklace-type communication device 2 described above, the credit card 1 (which may also be referred to as credit card XX) card determination The unit 131 determines whether the communication device identifier “BB” received from the communication device BB and the communication device identifier “AA” of the card storage unit 11 satisfy a predetermined condition. However, since the two do not match and the result of the determination is negative, the flag is set to "unusable" and the credit card 1 is not usable.

Therefore, the user aa can change the communication device 2 paired with the credit card 1 from the communication device AA to the communication device BB by modifying the pair conditions of the card storage unit 11. Specifically, the user aa may input a new communication device identifier "BB" via an input device such as a touch panel, for example.

In the credit card 1, the card processing unit 13 receives the input of a new communication device identifier “BB” and changes the communication device identifier “AA” in the card storage unit 11 to the input communication device identifier “BB”.

In addition to being able to change the pairing conditions regarding the communication device 2 paired with the credit card 1 as described above, the user aa can also You can also change the conditions as follows. For example, user aa inputs new peripheral conditions such as "the current time is between 9:00 and 20:00" and "the current location is within XXX ward of Osaka City" through an input device such as a touch panel. When input, the card processing unit 13 accepts the new peripheral condition and changes the existing peripheral condition “Null” in the card storage unit 11 to the new peripheral condition.

As a result of changing the pair condition and the peripheral conditions in this way, the card storage unit 11 now stores the card identifier "XX" and the communication device identifier "BB" as a pair as the pair condition, and furthermore, the peripheral condition "Current time "is between 9:00 and 20:00" and "the current location is within XXX ward of Osaka City" are also stored. It is assumed that the storage unit 21 of the communication device BB also stores the same information as the above pair condition of the card storage unit 11.

It is assumed that the current date and time is 10:30 on July 10th, and user aa goes out carrying a smartphone that implements credit card 1 and wearing a wristwatch-type communication device BB. In this case as well, the credit card 1 and the communication device 2 are in a communicable state as long as the distance between the smartphone and the wristwatch is not too far.

In the communication device 2, the transmitting unit 24 transmits the communication device identifier “BB” of the storage unit 21 according to the timing information held.

In the credit card 1, the card receiving unit 12 receives the communication device identifier “BB”, and the card determining unit 131 determines whether the received communication device identifier “BB” is the communication device identifier “BB” of the card storage unit 11. Since they match, the card transmitting unit 14 transmits the credit card identifier “XX” of the card storage unit 11 to the communication device BB identified by the communication device identifier “BB” of the card storage unit 11.

In the communication device BB, the receiving unit 22 receives the credit card identifier “XX”, and the determining unit 231 determines that the received credit card identifier “XX” matches the credit card identifier “XX” in the storage unit 21. . Therefore, the transmitting unit 24 transmits the authentication result indicating authorization for authentication to the credit card 1 identified by the credit card identifier “XX” in the storage unit 21.

In the credit card 1, the card receiving unit 12 receives the authentication result, and the card determining unit 131 determines whether the received authentication result satisfies the peripheral conditions stored in the card storage unit 11, since the received authentication result indicates authentication permission. further judgment.

Here, the current time indicated by the built-in clock etc. is 10:30, and the card judgment unit 131 recognizes the time-related condition "the current time is between 9:00 and 20:00" among the stored peripheral conditions. It is determined that it satisfies the requirements. In addition, the current position obtained using a GPS receiver or the like is within the range corresponding to 〇〇 ward in Osaka City, and the card judgment unit 131 determines that the location-related condition “current position is It is determined that the condition “being within ____ ward of Osaka City” is also satisfied.

Since the results of the above three determinations are all positive, the card determination unit 131 sets "usable" in the flag held by the card processing unit 13. Note that if the current time is not between 9:00 and 20:00, or if the current location is not within XXX Ward of Osaka City, "unusable" is set in the flag.

By repeating the above process, credit card 1 is in a situation where it can communicate with communication device BB, the current time is in the time zone from 9:00 to 20:00, and the current location is in Osaka. It can be used only if it is within the 〇〇 ward of the city.

Therefore, when a user aa wearing a wristwatch-type communication device BB receives one of the other peripheral conditions at a time that satisfies one of the peripheral conditions, ``the current time is between 9:00 and 20:00.'' If you use credit card 1 in your smartphone at a location that satisfies the condition that "your current location is within XXX ward of Osaka City," payment processing using credit card 1 will be executed.

After that, if the smartphone and wristwatch become far apart, for example because the smartphone is misplaced, the credit card 1 becomes unable to communicate with the communication device 2, and the flag is set to "unusable". It becomes impossible. Even if another user who finds the smartphone left behind by user aa attempts to use the credit card 1 in the smartphone fraudulently, the payment process will not be executed.

Alternatively, for example, there is a possibility that a smartphone and a watch are stolen together in a burglary, etc., but even in such a case, credit card 1 can only be used if the surrounding conditions are met, so unauthorized use of credit card 1 can reduce the risk of

Note that the card determination unit 131 does not only determine whether all of the above three determinations are positive, but only when the credit card identifier and the communication device identifier (that is, pair condition ) are both positive judgment results, or when the judgment result regarding the surrounding conditions is a positive judgment result, the flag is set to “usable” and the two judgment results regarding the pair conditions are set to “usable”. If one or more of the determination results are negative and the determination results regarding the peripheral conditions are also negative, "unusable" may be set in the flag.

As a result, the user aa wearing the communication device BB can use the credit card 1 regardless of surrounding conditions, while the user aa who has left the communication device BB at home or the person who found the credit card 1 can use the credit card 1 regardless of surrounding conditions. Users who are not wearing device BB can use credit card 1 only if the surrounding conditions are met, so this reduces the risk of unauthorized use and eliminates the inconvenience of not being able to use communication device BB if it is forgotten. can also be reduced.

As described above, according to the present embodiment, the credit card identifier for identifying the credit card 1 and the communication device identifier for identifying the one communication device 2 are managed as a pair, and the one communication device 2 and the communication device identifier are managed as a pair. Since the credit card 1 can be used only when communication is possible, the credit card 1 cannot be used when communication with the paired communication device 2 is impossible, so the risk of use of the credit card 1 by an unauthorized user can be reduced.

The credit card 1 also includes a card storage section 11 in which a credit card identifier and a communication device identifier are stored, receives the communication device identifier from the communication device 2, and the received communication device identifier is used in the communication of the card storage section 11. It is determined whether or not it has a predetermined relationship with the device identifier, and it becomes usable only when it is determined that it has a predetermined relationship, so that it can communicate with the paired communication device 2. Since authentication is performed, the risk of use of the credit card 1 by an unauthorized user can be further reduced.

Further, the credit card 1 transmits the credit card identifier stored in the card storage section 11 to the communication device 2 in which the credit card identifier is stored, and receives the authentication result in the communication device 2 in response to the transmission of the credit card identifier. , when it is determined that there is a predetermined relationship, and only when the authentication result is authentication permission, it can be used, and mutual authentication is performed in a situation where it can communicate with the paired communication device 2. The risk of use of the credit card 1 by an unauthorized user can be further reduced.

Furthermore, since the pair of credit card identifier and communication device identifier stored in the credit card 1 can be modified, it is possible to customize the pair condition, which is the condition for use and the condition for the communication device 2 to be paired. .

In addition, for credit card 1, peripheral conditions that are conditions other than the pair of credit card identifier and communication device identifier are managed, and the peripheral conditions can also be modified. The surrounding conditions, which are conditions, can also be customized. Furthermore, with the addition of the peripheral conditions, it is possible to further reduce the risk of use of the credit card 1 by an unauthorized user.

Further, in the credit card 1, the peripheral conditions include one or more conditions among time, place, and date and time, so they are conditions that allow use, and one or more conditions among time, place, and date and time can be customized. In addition, in addition to the pair condition, the device cannot be used unless one or more of the conditions of time, location, and date and time are also met, so even if the communication with the communication device 2 is wide area communication, even if the communication with the communication device 2 is wide-area communication, The risk of using the credit card 1 can be reduced.

Furthermore, since the communication device 2 has the form of an accessory worn by the user, the user can simply wear the paired communication device 2 as an accessory, and the credit card 1 can be stolen by an unauthorized user. The risks of use can be easily reduced.

Furthermore, the processing in this embodiment may be realized by software. This software may then be distributed by software download or the like. Furthermore, this software may be recorded on a recording medium such as a CD-ROM and distributed. Note that this also applies to other embodiments in this specification.

Note that the software that implements the information processing apparatus in this embodiment is, for example, the following program. In other words, this program is in a situation where a credit card identifier for identifying a credit card 1 and a communication device identifier for identifying a communication device 2 are managed as a pair, and the communication device is capable of communicating with the communication device 2. This is a program for making the credit card 1 usable only under certain circumstances.

Further, the recording medium that can be accessed by the computer of the credit card 1 includes a card storage section 11 in which a credit card identifier and a communication device identifier are stored, and the program allows the computer to communicate with the computer from the communication device 2. a card receiving section 12 that receives a device identifier; and a card determining section 131 that determines whether the communication device identifier received by the card receiving section 12 has a predetermined relationship with the communication device identifier of the card storage section 11. Preferably, the program functions as a credit card and allows the credit card to be used only when the card determining unit 131 determines that the predetermined relationship exists.

Further, the program causes the computer to further function as a card transmitting unit 14 that transmits the credit card identifier of the card storage unit 11 to the communication device 2 in which the credit card identifier is stored, and is a case where the authentication result in the communication device 2 is received in response to the transmission of the credit card identifier, and the card determination unit 131 determines that the predetermined relationship exists, and the authentication result indicates that the authentication is permitted. It is more preferable that the program allows the credit card 1 to be used only when the credit card 1 is used.

(Embodiment 2)
In this embodiment, a credit card 3 that uses the authentication result at the server device 5 will be described. Specifically, a pair condition that is a pair of the identifier of the credit card 3 and the identifier of one communication device 4 is stored in the server device 5, and the authentication is performed from the server device 5 (without going through the communication device 4). A description will be given of the credit card 3 that can be used when the authentication result is obtained and the authentication result indicates authentication permission.

Also, similar to the previous embodiment, a credit card 3 whose pairing conditions can be customized will be described. Further, a credit card 3 whose peripheral conditions can also be customized will be explained. Further, a credit card 3 whose peripheral conditions include one or more conditions among time, place, and date and time will be described. Furthermore, the credit card 3 whose paired communication device 4 is an accessory worn by the user will be described.

FIG. 4 is a block diagram of an information system 200 including a credit card 3 and the like in this embodiment. The information system 200 includes one or more credit cards 3 , one or more communication devices 4 , and a server device 5 . Communication between the credit card 3 and the communication device 4 is normally short-range wireless communication as in the previous embodiment, but wide-area communication may also be used. The credit card 3 can perform wide area communication with the server device 5 via, for example, a network or communication line.

The credit card 3 is, for example, a virtual card in a mobile terminal such as a smartphone, as in the previous embodiment, but it may also be an IC card having an IC chip capable of wide area communication. As in the previous embodiment, the communication device 4 is, for example, an IC chip capable of short-range wireless communication, and is particularly preferably in the form of an accessory such as a necklace or wristwatch worn by the user.

The credit card 3 includes a card storage section 31, a card reception section 32, a card processing section 33, and a card transmission section 34.

The communication device 4 includes a storage section 41, a reception section 42, a processing section 43, and a transmission section 44. However, the communication device 4 does not need to include one or more of the receiving section 42 and the processing section 43.

The server device 5 includes a server storage section 51, a server reception section 52, a server processing section 53, and a server transmission section 54. The server processing section 53 includes a server determination section 531.

Below, differences from the previous embodiment will be mainly explained. Components having the same name may perform operations similar to those of the previous embodiment in addition to the operations described below. Note that this matter also applies to Embodiments 3 and 4, which will be described later.

A credit card identifier is stored in the card storage section 31 that constitutes the credit card 3. The card storage unit 31 usually stores credit card information other than credit card identifiers.

The card receiving unit 32 receives the communication device identifier from the communication device 4 .

The card receiving unit 32 receives an authentication result from the server device 5 in response to a card transmitting unit 34 (described later) transmitting a credit card identifier and a communication device identifier to the server device 5. Reception from the server device 5 is normally performed via wide area communication without going through the communication device 4.

The card processing unit 33 enables the credit card 3 to be used when the authentication result received by the card receiving unit 32 indicates authentication permission. Specifically, the card processing unit 33 holds a flag, for example, as in the previous embodiment, and when the received authentication result indicates authentication permission, sets "usable" in the flag, and When indicating that authentication is not permitted, "unusable" may be set in the flag. The card processing unit 33 executes the payment process only when the flag indicates "usable", and does not execute the payment process when the flag indicates "unusable".

The card transmitting unit 34 transmits the credit card identifier in the card storage unit 31 and the communication device identifier received by the card receiving unit 32 to the server device 5. Transmission to the server device 5 is also normally performed via wide area communication without going through the communication device 4.

A storage unit 41 that constitutes the communication device 4 stores a communication device identifier. It is preferable that the storage unit 41 stores a communication device identifier and a credit card identifier.

The receiving unit 42 may receive a request for a communication device identifier from the credit card 3, for example.

The processing unit 43 may, for example, determine whether the receiving unit 42 has received a request for a communication device identifier.

The transmitting unit 44 transmits the communication device identifier of the storage unit 41. The transmitting unit 44 normally transmits the communication device identifier in the storage unit 41 to the credit card 3 identified by the credit card identifier in the storage unit 41, but it may transmit or broadcast it to an unspecified credit card, for example. do not have.

The transmitting unit 44 may transmit the communication device identifier in the storage unit 41 two or more times. The transmitting unit 44 holds timing information as in the previous embodiment, and may transmit the communication device identifier in the storage unit 41 periodically or irregularly according to this timing information. Alternatively, the transmitter 44 may transmit the communication device identifier in response to a request for the communication device identifier.

The server storage unit 51 that constitutes the server device 5 can store various types of information. The various types of information include, for example, pair conditions and peripheral conditions.

It is preferable that the server storage unit 51 stores one or more condition information including, for example, pair conditions and peripheral conditions.

The server receiving unit 52 receives various types of information. The various types of information include, for example, a credit card identifier and a communication device identifier.

The server reception unit 52 receives a credit card identifier and a communication device identifier from the credit card 3.

The server processing unit 53 executes various processes. The various types of processing include, for example, processing by the server determination unit 531, which will be described later.

Further, the server processing unit 53 may, for example, modify the condition information of one or more pieces of condition information in the server storage unit 51. That is, the server processing unit 53 receives new condition information via an input device such as a keyboard, or receives new condition information from the credit card 3 via the server reception unit 52, and stores the new condition information. Existing condition information may be changed to the new condition information. Note that the server processing unit 53 may modify any one of the pair conditions and peripheral conditions that constitute the condition information. Note that the method of correcting the pair condition or peripheral condition is the same as in the previous embodiment.

The server judgment unit 531 makes various judgments. The various judgments include, for example, judgments regarding pair conditions, judgments regarding peripheral conditions, and the like.

For example, the server determination unit 531 uses one or more pieces of condition information in the server storage unit 51 to determine one or more of pair conditions or peripheral conditions for the credit card identifier and communication device identifier received by the server reception unit 52. It is preferable to make a judgment regarding the conditions of.

For example, the server determination unit 531 selects one condition information from among the one or more condition information in the server storage unit 51 in response to the server reception unit 52 receiving the credit card identifier and the communication device identifier, and It may be determined whether the received credit card identifier satisfies a predetermined relationship with the credit card identifier of the selected condition information. Note that, as in the previous embodiment, the predetermined relationship is, for example, coincidence.

Further, when the above-mentioned judgment result regarding the credit card identifier is positive, the server judgment unit 531 determines whether the received communication device identifier is predetermined as the communication device identifier of the selected condition information. It may be further determined whether or not the above relationship is satisfied.

Furthermore, when the determination result regarding the communication device identifier as described above is positive, the server determination unit 531 may further determine whether the peripheral conditions of the selected one condition information are satisfied.

Further, the server determining unit 531 repeats the above-described determination regarding the credit card identifier, the determination regarding the communication device identifier, and the determination regarding the peripheral conditions until all the one or more condition information in the server storage unit 51 is selected. Good too. Note that the execution order among these three determinations can also be changed as appropriate, as in the previous embodiment.

The server transmitter 54 transmits various types of information. The various types of information include, for example, authentication results.

When the server determining unit 531 makes a positive determination regarding the credit card identifier and communication device identifier received by the server receiving unit 52, the server transmitting unit 54 sends a determination result indicating authorization for authentication to the relevant credit card identifier and communication device identifier. It is transmitted to the credit card 3 identified by the credit card identifier. Note that, if the result of the determination by the server determination unit 531 is negative, the server transmission unit 54 normally transmits a determination result indicating that authentication is not permitted, but it is not necessary to transmit anything. .

For example, the server transmitting unit 54 determines when all three determinations made by the server determining unit 531, including the determination regarding the credit card identifier, the determination regarding the communication device identifier, and the determination regarding the peripheral conditions, are positive determination results. If there is at least one negative determination result, a determination result indicating that authentication is not permitted may be transmitted.

More specifically, for example, if the results of the above three judgments regarding one piece of condition information selected by the server judgment unit 531 are all positive judgment results, the server transmission unit 54 sends the credit for the one piece of condition information. A judgment result indicating authentication permission is sent to the credit card 3 identified by the card identifier, and if there is even one negative judgment result, the credit card 3 identified by the credit card identifier of the condition information concerned is sent. 3, it is preferable to send the determination result indicating that the authentication is not permitted.

However, if the two judgment results regarding the credit card identifier and the communication device identifier (that is, the pair condition) are both positive judgment results among the above three judgment results by the server judgment section 531, the server transmission section 54 , or, even if one or more of the two judgment results regarding the pair condition is a negative judgment result and the judgment result regarding the surrounding condition is positive, the judgment result indicating authentication permission is sent, and the pair condition is Only when one or more of the two determination results regarding the above is a negative determination result and the determination result regarding the surrounding conditions is also negative, the determination result indicating that the authentication is not permitted may be transmitted.

In this way, the pair condition and the peripheral condition usually have an AND relationship, but they may also have an OR relationship. Or, for example, the pair condition may be the main condition, and the peripheral conditions may be additional conditions that are considered if the pair condition is not met.

Next, the operation of the information system 200 will be explained using the flowcharts of FIGS. 5 and 6.

Although the flowchart is omitted, the communication device 4 performs, for example, the same processing as the two steps S301 and S302 of the previous embodiment. However, in this embodiment, if NO in step S301, the process returns to step S301.

FIG. 5 is a flowchart illustrating the operation of the credit card 3.

(Step S500) The card processing unit 33 sets "unusable" to the held flag.

(Step S501) The card processing unit 33 determines whether the card receiving unit 32 has received the communication device identifier. If the card receiving unit 32 has received the communication device identifier, the process advances to step S502, and if it has not received the communication device identifier, the process advances to step S503.

(Step S502) The card transmitting unit 34 transmits the credit card identifier in the card storage unit 31 and the communication device identifier received in step S501 to the server device 5. After that, the process returns to step S501.

(Step S503) The card processing unit 33 determines whether the card receiving unit 32 has received the authentication result from the server device 5. If the card receiving unit 32 has received the authentication result from the server device 5, the process advances to step S505, and if not, the process advances to step S506.

(Step S504) The card processing unit 33 determines whether the authentication result received in step S503 indicates authentication permission. If the received authentication result indicates authentication permission, the process advances to step S505; if the received authentication result does not indicate authentication permission, the process returns to step S500.

(Step S505) The card processing unit 33 sets "usable" to the held flag. After that, the process returns to step S501.

(Step S506) The card processing unit 33 determines whether the card receiving unit 32 does not receive the communication device identifier even after a predetermined time has elapsed since the previous reception. If the communication device identifier is not received even after a predetermined period of time has elapsed, it is determined that communication is not possible, and the process returns to step S500; otherwise, the process returns to step S501.

In the flowchart of FIG. 5, the process starts when the credit card 3 is powered on or a program is started, and ends when the power is turned off or an interrupt to end the process occurs. However, the trigger for starting or ending the process does not matter.

FIG. 6 is a flowchart illustrating the operation of the server device 5.

(Step S601) The server processing unit 53 determines whether the server receiving unit 52 has received the credit card identifier and the communication device identifier. If the server receiving unit 52 has received the credit card identifier and the communication device identifier, the process proceeds to step S602, and if not, the process proceeds to step S610.

(Step S602) The server determination unit 531 sets the initial value 1 to the variable i. The variable i is a variable for sequentially selecting unselected condition information among one or more pieces of condition information stored in the server storage unit 51.

(Step S603) The server determination unit 531 determines whether there is the i-th condition information. If there is the i-th condition information, the process advances to step S604, and if there is no i-th condition information, the process advances to step S609.

(Step S604) The server determining unit 531 determines whether the credit card identifier received by the server receiving unit 52 satisfies a predetermined relationship with the credit card identifier of the i-th condition information. If the received credit card identifier does not satisfy the predetermined relationship with the credit card identifier of the i-th condition information, the process advances to step S605, and if it does, the process advances to step S606.

(Step S605) The server determination unit 531 increments the variable i. After that, the process returns to step S603.

(Step S606) The server determining unit 531 determines whether the communication device identifier received by the server receiving unit 52 satisfies a predetermined relationship with the communication device identifier of the i-th condition information. If the received communication device identifier satisfies the predetermined relationship with the communication device identifier of the i-th condition information, the process advances to step S607; otherwise, the process advances to step S609.

(Step S607) The server determination unit 531 determines whether the peripheral conditions of the i-th condition information are satisfied. If the peripheral condition of the i-th condition information is satisfied, the process advances to step S608; otherwise, the process advances to step S609.

(Step S608) The server transmission unit 54 transmits the authentication result indicating authentication permission to the credit card 3 identified by the credit card identifier of the i-th condition information. After that, the process returns to step S601.

(Step S609) The server transmission unit 54 transmits the authentication result indicating that authentication is not permitted to the credit card 3 identified by the credit card identifier of the i-th condition information. After that, the process returns to step S601.

(Step S610) The server processing unit 53 determines whether or not to modify the condition information. The server processing unit 53 corrects the condition information, for example, when receiving new condition information via an input device or when receiving new condition information from the credit card 3 via the server receiving unit 52. You may judge that. If the condition information is to be modified, the process advances to step S611; otherwise, the process returns to step S601.

(Step S611) The server processing unit 53 modifies the condition information. Specifically, the server processing unit 53 may change the existing condition information stored in the server storage unit 51 to new condition information that has been accepted or received. After that, the process returns to step S601.

In the flowchart of FIG. 6, the process starts when the server device 5 is powered on or a program is started, and ends when the power is turned off or an interrupt to end the process occurs. However, the trigger for starting or ending the process does not matter.

A specific example of the operation of the information system 200 in this embodiment will be described below. The information system 200 in this example includes two or more credit cards 3, two or more communication devices 4, and a server device 5. One of the two or more credit cards 3 (hereinafter sometimes referred to as credit card XX) is a virtual card in the smartphone owned by the user aa. Another credit card 3 (hereinafter referred to as credit card YY) among the two or more credit cards 3 is an IC card owned by user bb. This IC card has a module capable of short-range wireless communication and wide-area communication.

Further, one of the two or more communication devices 4 (hereinafter referred to as communication device AA) is a communication device owned by user aa, and is a necklace with an IC chip that has a module capable of short-range wireless communication. be. Another one of the two or more communication devices 4 (hereinafter referred to as communication device BB) is a communication device owned by user bb, and is a wristwatch with a similar IC chip.

A credit card identifier "XX" is stored in the card storage section 31 of the credit card XX, and a credit card identifier "YY" is stored in the card storage section 31 of the credit card YY. Furthermore, the communication device identifier “AA” is stored in the storage unit 41 of the communication device AA, and the communication device identifier “BB” is stored in the storage unit 41 of the communication device BB. Further, the server storage unit 51 of the server device 5 stores, for example, two or more pieces of condition information as shown in FIG.

FIG. 7 is a data structure diagram of condition information. Condition information is composed of pair conditions and surrounding conditions. The pair condition includes a credit card identifier and a communication device identifier.

Two or more pieces of condition information in the server storage unit 51 are associated with IDs (eg, "1", "2", etc.). For example, condition information associated with ID "1" (hereinafter sometimes referred to as condition information 1) includes a credit card identifier "XX", a communication device identifier "AA", and a peripheral condition "Null". Furthermore, the condition information (condition information 2) associated with ID “2” includes the credit card identifier “YY”, the communication device identifier “BB”, and the peripheral condition “the current time is between 9:00 and 20:00”. & “Current location is within XXX ward, Osaka City”.

Note that the card storage unit 31 also stores condition information 3 regarding pairs of credit cards 3 and communication devices 4 held by other users. Condition information 3 includes a credit card identifier "ZZ", a communication device identifier "CC", and peripheral conditions "the current time is not between 0:00 and 6:00" & "the current day of the week is a weekday".

Further, the two or more pieces of condition information in the card storage section 31 may be inputted via an input device of the server device 5, or may be received from a smartphone or the like that implements the credit card 3, for example.

As in the previous embodiment, it is assumed that user aa carries a smartphone that implements credit card XX and goes out wearing a necklace-type communication device AA. As long as the distance between the smartphone and the necklace does not become large due to the smartphone being left behind, etc., the credit card XX and the communication device AA remain in a communicable state. Therefore, the credit card XX can receive the communication device identifier "AA" periodically transmitted from the communication device AA.

In the communication device AA, the transmitting unit 44 holds timing information “every minute” and transmits the communication device identifier “AA” in the storage unit 41 at a timing according to this timing information.

In the credit card XX, when the card receiving unit 32 receives the communication device identifier “AA”, the card transmitting unit 34 transmits the credit card identifier “XX” in the card storage unit 31 and the received communication device identifier “AA”. It is transmitted to the server device 5.

In the server device 5, when the server receiving unit 52 receives the credit card identifier “XX” and the communication device identifier “AA”, the server determining unit 531 receives the first condition information (that is, condition information 1) from the server storage unit 51. is selected, and it is determined whether the received credit card identifier satisfies a predetermined relationship with the credit card identifier of condition information 1. Here, since the received credit card identifier "XX" and the credit card identifier "XX" of condition information 1 match, the server determination unit 531 determines that the predetermined relationship regarding the credit card identifiers is satisfied. .

Therefore, the server determining unit 531 further determines whether the communication device identifier “AA” received by the server receiving unit 52 satisfies a predetermined relationship with the communication device identifier “AA” of condition information 1. Here, since the received communication device identifier "AA" and the communication device identifier "AA" of condition information 1 match, the server determination unit 531 determines that the transmitting device identifier also satisfies the predetermined relationship. do.

Therefore, the server determination unit 531 further determines whether the peripheral conditions of condition information 1 are satisfied. Since the peripheral condition of condition information 1 is “Null”, the server determination unit 531 determines that the peripheral condition is also satisfied.

Since the above three determination results are positive, the server transmission unit 54 transmits the authentication result indicating authorization for authentication to the credit card XX identified by the credit card identifier "XX" of the condition information 1.

In the credit card XX, when the card receiving unit 32 receives the authentication result from the server device 5, the card processing unit 33 determines whether the received authentication result indicates authentication permission. Here, since the received authentication result indicates authentication permission, the card processing unit 33 sets "usable" to the held flag.

The card processing unit 33 also measures the time that has passed since the card receiving unit 32 received the communication device identifier, and if the communication device identifier is not received even after a predetermined period of time has passed since the previous reception. If so, it is determined that communication is no longer possible, and the held flag is set to "unusable."

By repeating the above processing, the credit card XX becomes usable only when it is in a situation where it can communicate with the communication device AA to be paired (that is, the pair conditions are satisfied).

Furthermore, when user bb goes out carrying an IC card-type credit card YY that can also perform wide-area communication and wears a wristwatch-type communication device BB that can perform short-range wireless communication, the operation is as follows. Become. In this case as well, unless the distance between the credit card YY and the communication device BB becomes too large due to misplacement or the like, the credit card YY and the communication device BB are in a state where they can communicate with each other. In this state, credit card YY can receive the communication device identifier "BB" periodically transmitted from communication device BB.

In the communication device BB, the transmitting unit 44 transmits the communication device identifier “BB” in the storage unit 41 at a timing according to the held timing information.

When the card receiving unit 32 receives the communication device identifier “BB” in the credit card YY, the card transmitting unit 34 transmits the credit card identifier “YY” in the card storage unit 31 and the received communication device identifier “BB”. It is transmitted to the server device 5.

In the server device 5, when the server receiving unit 52 receives the credit card identifier “YY” and the communication device identifier “BB”, the server determining unit 531 selects the first condition information 1 from the server storage unit 51 and receives It is determined whether the credit card identifier obtained satisfies a predetermined relationship with the credit card identifier of condition information 1. Here, since the received credit card identifier “YY” and the credit card identifier “XX” of condition information 1 do not match, the server determination unit 531 selects the second condition information 2 from the server storage unit 51. , make a similar judgment. Here, since the received credit card identifier "YY" and the credit card identifier "YY" of condition information 2 match, the server determination unit 531 determines that the predetermined relationship regarding the credit card identifiers is satisfied. .

Therefore, the server determining unit 531 further determines whether the communication device identifier “BB” received by the server receiving unit 52 satisfies a predetermined relationship with the communication device identifier “BB” of condition information 2. Here, since the received communication device identifier "BB" and the communication device identifier "BB" of condition information 2 match, the server determination unit 531 determines that the transmitting device identifier also satisfies the predetermined relationship. do.

Therefore, the server determination unit 531 further determines whether or not the peripheral conditions of condition information 2 "The current time is between 9:00 and 20:00" & "The current location is within XXX Ward of Osaka City" are satisfied. do. Here, it is assumed that the current time indicated by a built-in clock or the like is 10:30, and the current position obtained using a GPS receiver or the like is within the range corresponding to 〇〇 ward in Osaka city. The server determination unit 531 determines that the peripheral conditions are also satisfied.

Since the above three determination results are positive, the server transmitter 54 transmits the authentication result indicating authorization for authentication to the credit card YY identified by the credit card identifier "YY" of the condition information 2.

In credit card YY, when the card receiving unit 32 receives the authentication result from the server device 5, the card processing unit 33 sets the flag to “usable” because the received authentication result indicates authentication permission.

Note that if the current time is not between 9:00 and 20:00, or if the current location is not within the range corresponding to 〇〇 Ward in Osaka City, the server determination unit 531 determines that the surrounding conditions are not satisfied, and the server does not send The unit 54 transmits the authentication result indicating that the authentication is not permitted to the credit card YY.

In credit card YY, when the card receiving section 32 receives the above authentication result, the card processing section 33 sets "unusable" in the flag. Furthermore, if the communication device identifier is not received even after a predetermined time has elapsed since the previous reception, the card processing unit 33 sets “unusable” in the flag.

By repeating the above process, credit card YY is in a situation where it can communicate with communication device BB to be paired (that is, it satisfies the pairing condition), and it also satisfies the surrounding conditions (that is, the current time is 9 :00 to 20:00, and the current location is within the range corresponding to 〇〇 Ward, Osaka City).

Note that the operation when the credit card identifier "ZZ" and the communication device identifier "CC" are transmitted from the credit card ZZ is also the same as described above. However, the peripheral conditions of condition information 3 corresponding to the pair condition having the credit card identifier "ZZ" and the communication device identifier "CC" are "The current time is not between 0:00 and 6:00" & "The current day of the week is a weekday." Therefore, credit card ZZ can be used only when it is able to communicate with the paired communication device CC, the current time is not between 0:00 and 6:00, and it is a weekday. .

As described above, according to the present embodiment, the credit card identifier for identifying the credit card 3 and the communication device identifier for identifying the one communication device 4 are managed as a pair, and the one communication device 4 and the communication device identifier are managed as a pair. Since the credit card 3 can be used only when communication is possible, the credit card 3 cannot be used when communication with the paired communication device 4 is impossible, so the risk of the credit card 3 being used by an unauthorized user can be reduced.

The credit card 3 also includes a card storage section 31 in which a credit card identifier is stored, receives a communication device identifier from the communication device 4, and stores the credit card identifier in the card storage section 31 and the received communication device identifier. It is transmitted to the server device 5, receives an authentication result in the server device 5 in response to the transmission of the credit card identifier and the communication device identifier, and becomes usable only when the authentication result is authentication permission. In this way, the credit card 3 receives the communication device identifier from the communication device 4 in a situation where it can communicate with the paired communication device 4, transmits the communication device identifier and the credit card identifier to the server device 5, and sends the communication device identifier and the credit card identifier to the server device 5. Since the result of the authentication performed by the user is received, the risk of use by an unauthorized user can be further reduced.

Furthermore, since the pair of credit card identifier and communication device identifier stored in the server device 5 can be modified, it is possible to customize the pair condition, which is a condition for use and a condition for the communication device 4 to be paired. .

In addition, the server device 5 manages peripheral conditions that are conditions other than the pair of credit card identifier and communication device identifier, and the peripheral conditions can also be modified. The surrounding conditions, which are conditions, can also be customized. Furthermore, with the addition of the peripheral conditions, it is possible to further reduce the risk of use of the credit card 3 by an unauthorized user.

In addition, in the server device 5, the peripheral conditions include one or more conditions among time, place, and date and time, so they are conditions for enabling use, and one or more conditions among time, place, and date and time can be customized. In addition, in addition to the pair condition, the device cannot be used unless one or more of the conditions of time, location, and date and time are also met. The risk of using the credit card 3 can be reduced.

Further, since the communication device 4 has the form of an accessory worn by the user, the user can simply wear the paired communication device 4 as an accessory, and the credit card 3 can be stolen by an unauthorized user. The risks of use can be easily reduced.

Note that the software that implements the information processing apparatus in this embodiment is, for example, the following program. In other words, this program is in a situation where a credit card identifier for identifying the credit card 3 and a communication device identifier for identifying one communication device 4 are managed as a pair, and the situation is such that the credit card identifier for identifying the credit card 3 and the communication device identifier for identifying one communication device 4 are managed as a pair, and the communication device is capable of communicating with the one communication device 4. This is a program that allows the credit card 3 to be used only under certain circumstances.

Further, the computer-accessible recording medium of the credit card 3 includes a card storage section 31 in which a credit card identifier is stored, and the program causes the computer to receive a communication device identifier from the communication device 4. The card receiving unit 32 further functions as a card transmitting unit 34 that transmits the credit card identifier of the card storage unit 31 and the communication device identifier received by the card receiving unit 32 to the server device 5. , a program that receives an authentication result in the server device 5 in response to transmission of the credit card identifier and the communication device identifier, and makes the credit card 3 usable only when the authentication result is authentication permission. It is good that there is.

(Embodiment 3)
In this embodiment, a credit card 6 that uses the authentication result at the server device 5a will be described. Specifically, a pair condition that is a pair of the identifier of the credit card 6 and the identifier of one communication device 7 is stored in the server device 5a, and authentication is performed from the server device 5a via the one communication device 7. A description will be given of the credit card 6 that can be used when the authentication result is obtained and the authentication result indicates authentication permission.

Also, similar to the previous embodiment, a credit card 6 whose pairing conditions can be customized will be described. Further, a credit card 6 whose peripheral conditions can also be customized will be described. Further, a credit card 6 whose peripheral conditions include one or more of time, place, and date and time will be described. Furthermore, the credit card 6, in which the paired communication device 7 is an accessory worn by the user, will be described.

FIG. 8 is a block diagram of an information system 300 including a credit card 6 and the like in this embodiment. The information system 300 includes one or more credit cards 6, one or more communication devices 7, and a server device 5a. Communication between the credit card 6 and the communication device 7 is normally short-range wireless communication as in the previous embodiment, but wide-area communication may also be used. The communication device 7 can perform wide area communication with the server device 5a.

The server device 5a may be realized by, for example, the same hardware as the server device 5 of the previous embodiment. The credit card 6 is, for example, an IC card having an IC chip capable of short-range wireless communication, but a magnetic card attached to a reader having a similar IC chip may also be used. The communication device 7 is, for example, an IC chip capable of wide-area communication, and is particularly preferably in the form of an accessory such as a necklace or wristwatch worn by the user, but may also be a mobile terminal such as a smartphone.

The credit card 6 includes a card storage section 61, a card reception section 62, a card processing section 63, and a card transmission section 64.

The communication device 7 includes a storage section 71, a reception section 72, a processing section 73, and a transmission section 74.

The server device 5a includes a server storage section 51, a server reception section 52a, a server processing section 53, and a server transmission section 54a. The only difference between the server receiving section 52a and the server transmitting section 54a from the server receiving section 52 and the server transmitting section 54 of the previous embodiment is that the other party of transmission and reception is the communication device 7.

The card storage unit 61 constituting the credit card 6 stores a credit card identifier, and usually also stores credit card information other than the credit card identifier.

The card receiving unit 62 receives the authentication result at the server device 5a from the communication device 7.

The card processing unit 63 enables the credit card 6 to be used when the authentication result received by the card receiving unit 62 indicates authentication permission. For example, the card processing unit 63 holds a flag, and when the authentication result indicates authentication permission, sets the flag to "usable", and when the authentication result indicates authentication disapproval, sets the flag to "unusable". may be set. Further, the card processing unit 63 executes the payment process only when the flag indicates "usable", and does not execute the payment process when the flag indicates "unusable".

The card transmitting unit 64 transmits the credit card identifier in the card storage unit 61 to the communication device 7 identified by the communication device identifier in the card storage unit 61. The card transmitter 64 may transmit the credit card identifier two or more times. The card transmitter 64 holds timing information, for example, and may transmit the credit card identifier regularly or irregularly according to this timing information.

A credit card identifier and a communication device identifier are stored in pairs in the storage unit 71 that constitutes the communication device 7 .

The receiving unit 72 receives the credit card identifier from the credit card 6. Further, the receiving unit 72 receives the authentication result from the server device 5a.

The processing unit 73 determines, for example, whether the receiving unit 72 has received a credit card identifier, and whether the receiving unit 72 has received an authentication result.

The transmitting unit 74 transmits the communication device identifier in the storage unit 71 and the credit card identifier received by the receiving unit 72 to the server device 5a. Further, the transmitting unit 74 transmits the authentication result received by the receiving unit 72 to the credit card 6 identified by the credit card identifier in the storage unit 71.

The server storage unit 51, server processing unit 53, and server determination unit 531 that constitute the server device 5a perform operations similar to those described in the previous embodiment. However, the credit card 3, communication device 4, etc. in the description will be read as credit card 6, communication device 7, etc. Note that other omitted parts may also require the same type of replacement.

The server reception unit 52a receives a credit card identifier and a communication device identifier from the credit card 6.

The server transmitting unit 54a transmits the authentication result of the server determining unit 531 to the communication device 7.

Next, the operation of the information system 300 will be explained using flowcharts shown in FIGS. 9 to 12.

FIG. 9 is a flowchart illustrating the operation of the credit card 6.

(Step S900) The card processing unit 63 sets "unusable" to the held flag.

(Step S901) The card processing unit 63 uses, for example, held timing information and the like to determine whether to transmit the credit card identifier. If the credit card identifier is to be transmitted, the process advances to step S902; otherwise, the process advances to step S903.

(Step S902) The card transmitting unit 64 transmits the credit card identifier of the card storage unit 61. After that, the process returns to step S901.

(Step S903) The card processing unit 63 determines whether the card receiving unit 62 has received the authentication result. If the card receiving unit 62 has received the authentication result, the process advances to step S905, and if it has not received the authentication result, the process advances to step S906.

(Step S904) The card processing unit 63 determines whether the authentication result received in step S903 indicates authentication permission. If the authentication result indicates authentication permission, the process advances to step S905; if the authentication result does not indicate authentication permission, the process returns to step S900.

(Step S905) The card processing unit 63 sets "usable" to the held flag. After that, the process returns to step S901.

(Step S906) The card processing unit 63 determines whether the card receiving unit 62 does not receive the authentication result even after a predetermined time has elapsed since the transmission of the credit card identifier in step S901. If the authentication result is not received even after a predetermined period of time has elapsed, it is determined that communication is not possible, and the process returns to step S900; otherwise, the process returns to step S901.

Note that in the flowchart of FIG. 9, the process starts when the credit card 6 is powered on or the program is started, and ends when the power is turned off or an interrupt to end the process occurs. However, the trigger for starting or ending the process does not matter.

FIG. 10 is a flowchart illustrating the operation of the communication device 7.

(Step S1001) The processing unit 73 determines whether the receiving unit 72 has received the credit card identifier. If the receiving unit 72 has received the credit card identifier, the process advances to step S1002; otherwise, the process advances to step S1003.

(Step S1002) The transmitting unit 74 transmits the communication device identifier in the storage unit 71 and the credit card identifier received in step S1001 to the server device 5a. After that, the process returns to step S1001.

(Step S1003) The processing unit 73 determines whether the receiving unit 72 has received the authentication result. If the receiving unit 72 has received the authentication result, the process advances to step S1004; otherwise, the process returns to step S1001.

(Step S1004) The transmitting unit 74 transmits the authentication result received in step S1003 to the credit card 6 identified by the credit card identifier in the storage unit 71. After that, the process returns to step S1001.

FIG. 11 is a flowchart illustrating the operation of the server device 5a. In this flowchart, step S608 is replaced with step S608a, and step S609 is replaced with step S609a in the flowchart of FIG.

(Step S608a) The server transmission unit 54a transmits the authentication result indicating authentication permission to the communication device 7 identified by the communication device identifier of the i-th condition information. After that, the process returns to step S601.

(Step S609a) The server transmitter 54 transmits the authentication result indicating that authentication is not permitted to the communication device 7 identified by the communication device identifier of the i-th condition information. After that, the process returns to step S601.

Note that the specific example of the operation of the information system 300 in this embodiment differs from the example of the operation of the information system 200 in the previous embodiment in that the upload route for the credit card identifier, etc., and the authentication result are This includes changes related to the download path of , and will be omitted here.

As described above, according to the present embodiment, the credit card identifier for identifying the credit card 6 and the communication device identifier for identifying the one communication device 7 are managed as a pair, and the one communication device 7 and the communication device identifier are managed as a pair. Since the credit card 6 can be used only when communication is possible, the credit card 6 cannot be used when communication with the paired communication device 7 is impossible, so the risk of the credit card 6 being used by an unauthorized user can be reduced.

Further, the credit card 6 includes a card storage section 61 in which a credit card identifier is stored, and transmits the credit card identifier stored in the card storage section 61 to the communication device 7 and combines it with the communication device identifier stored in the communication device 7. It becomes usable only when the credit card identifier is transmitted to the server device 5a and the authentication result in the server device 5a storing the pair of the communication device identifier and the credit card identifier is authentication permission. In this way, the credit card identifier is transmitted to the communication device 7 in a situation where communication with the paired communication device 7 is possible, and the communication device identifier and credit card identifier are transmitted from the communication device 7 to the server device 5a. Since the result of the performed authentication is received via the communication device 7, the risk of use of the credit card 6 by an unauthorized user can be further reduced.

Furthermore, in the server device 5a, since the stored pair of credit card identifier and communication device identifier can be modified, it is possible to customize the pair condition, which is the condition for use and the condition for the communication device 7 to be paired. .

In addition, in the server device 5a, peripheral conditions that are conditions other than the pair of credit card identifier and communication device identifier are managed, and the peripheral conditions can also be modified. The surrounding conditions, which are conditions, can also be customized. Furthermore, with the addition of the peripheral conditions, it is possible to further reduce the risk of use of the credit card 6 by an unauthorized user.

In addition, in the server device 5a, the peripheral conditions include one or more conditions among time, place, and date and time, so they are conditions for enabling use, and one or more conditions among time, place, and date and time can be customized. In addition, in addition to the pair condition, it cannot be used unless one or more of the conditions of time, place, and date and time are also satisfied, so even if the communication with the communication device 7 is wide area communication, even if the communication with the communication device 7 is wide-area communication, The risk of using the credit card 6 can be reduced.

Furthermore, since the communication device 7 has the form of an accessory worn by the user, the user can simply wear the paired communication device 7 as an accessory, and the credit card 6 can be stolen by an unauthorized user. The risks of use can be easily reduced.

Note that the software that implements the information processing apparatus in this embodiment is, for example, the following program. In other words, this program is in a situation where a credit card identifier for identifying the credit card 6 and a communication device identifier for identifying one communication device 7 are managed as a pair, and a situation in which communication with one communication device 7 is possible. This is a program for making the credit card 6 usable only when the credit card 6 is the same.

Further, the computer-accessible recording medium of the credit card 6 includes a card storage section 61 in which a credit card identifier is stored, and transmits the credit card identifier stored in the card storage section 61 to the communication device 7, and transmits the credit card identifier stored in the card storage section 61 to the communication device 7. The communication device identifier and credit card identifier stored in the device 7 are transmitted to the server device 5a, and the authentication result in the server device 5a storing the pair of the communication device identifier and credit card identifier is authentication permission. It is preferable that the program allows the credit card 6 to be used only when the credit card 6 is used.

The program also includes a card transmitting section 64 that transmits the credit card identifier in the card storage section 61 to the communication device 7, and a card receiving section that receives the authentication result in the server device 5a from the communication device 7. It is more preferable that the program is a program that functions as 62.

(Embodiment 4)
In this embodiment, a credit card 6a that uses the authentication result at the communication device 8 will be described. Specifically, the identifier of the credit card 6a and the identifier of the communication device 8 are stored in the communication device 8, and by transmitting the credit card identifier to the communication device 8 and receiving the authentication result from the communication device 8. , the credit card 6a that can be used will be explained.

Also, similar to the previous embodiment, a credit card 6a whose pairing conditions can be customized will be described. Further, a credit card 6a whose peripheral conditions can also be customized will be explained. Further, a credit card 6a whose peripheral conditions include one or more of time, place, and date and time will be described. Furthermore, the credit card 6a, in which the paired communication device 8 is an accessory worn by the user, will be described.

FIG. 12 is a block diagram of an information system 400 including a credit card 6a and the like in this embodiment. Information system 400 includes a credit card 6a and one or more communication devices 8.

The credit card 6a may be realized by, for example, the same hardware as the credit card 6 of the previous embodiment. The communication device 8 is, for example, an IC chip capable of short-range wireless communication, and is particularly preferably in the form of an accessory such as a necklace or wristwatch worn by the user, but may also be a mobile terminal such as a smartphone. .

The credit card 6a includes a card storage section 61, a card reception section 62a, a card processing section 63, and a card transmission section 64a. The card receiving section 62a and the card transmitting section 64a differ from the card receiving section 62 and the card transmitting section 64 in the previous embodiment only in that the other party of transmission and reception is the communication device 8 having a judgment function. .

The communication device 8 includes a storage section 81, a receiving section 82, a processing section 23a, and a transmitting section 84. The processing section 23a includes a determining section 231a. Note that the differences between the processing section 23a and the judgment section 231a from the processing section 23 and the judgment section 231 in the first embodiment will be described later.

The card transmitting section 64a constituting the credit card 6a transmits the credit card identifier in the card storage section 61 to the communication device 8 identified by the communication device identifier in the card storage section 61. The card receiving unit 62a receives the authentication result from the communication device 8 that received the credit card identifier.

A credit card identifier and a communication device identifier are stored in pairs in the storage unit 81 that constitutes the communication device 8 .

The receiving unit 82 receives the credit card identifier from the credit card 6a.

The processing unit 23a determines, for example, whether the receiving unit 82 has received the credit card identifier, determines whether to modify the pair conditions, and determines whether to modify the peripheral conditions. .

The determining unit 231a determines whether the credit card identifier received by the receiving unit 82 and the credit card identifier in the storage unit 81 satisfy a predetermined relationship. The predetermined relationship is, for example, coincidence.

When the determining unit 231a determines that the received credit card identifier satisfies a predetermined relationship with the credit card identifier in the storage unit 81, the transmitting unit 84 transmits an authentication result indicating that authentication is possible to the credit card 6a. If it is determined that the predetermined relationship is not satisfied, an authentication result indicating that authentication is not possible is transmitted to the credit card 6a.

Next, the operation of the information system 400 will be explained using the flowchart of FIG. 13. Note that the operation of the credit card 6a is shown in FIG.

FIG. 13 is a flowchart illustrating the operation of the communication device 8. This flowchart is configured by combining steps S303 to S306 in FIG. 3 and steps S209 to S212 in FIG.

However, if NO in step S303, the process advances to step S209. Further, after step S305, the process returns to step S303. Further, after step S306, the process returns to step S303. Further, after step S210, the process returns to step S303. Moreover, in the case of NO in step S211, the process returns to step S303. Furthermore, after step S212, the process returns to step S303.

Note that the specific operation example of the information system 400 in this embodiment differs from the operation example of the information system 100 in the first embodiment in that, on the credit card side, as shown in the flowchart of FIG. The modification is made so that the authentication result at the communication device is used without any modification, and the modification is made so that the communication device side performs authentication and condition modification as shown in the flowchart of FIG.

As described above, according to the present embodiment, the credit card identifier that identifies the credit card 6a and the communication device identifier that identifies the one communication device 8 are managed as a pair, and the one communication device 8 and Since the credit card 6a can be used only when communication is possible, the credit card 6a cannot be used when communication with the paired communication device 8 is impossible, so it is possible to reduce the risk of use of the credit card 6a by an unauthorized user.

The credit card 6a also includes a card storage section 61 in which a credit card identifier is stored, and transmits the credit card identifier in the card storage section 61 to the communication device 8 in which the credit card identifier is stored. The credit card identifier can be used only when the communication device 8 that has received the credit card identifier determines that authentication is permitted in response to the transmission of the credit card identifier. In this way, the credit card 6a transmits the credit card identifier to the communication device 8 and receives the result of the authentication performed by the communication device 8 while being able to communicate with the paired communication device 8. The risk of using the credit card 6a can be further reduced.

In addition, since the pair of credit card identifier and communication device identifier stored in the communication device 8 can be modified, it is possible to customize the pair condition, which is the condition for use and the condition for the communication device 8 to be paired. .

In addition, in the communication device 8, peripheral conditions that are conditions other than the pair of credit card identifier and communication device identifier are managed, and the peripheral conditions can also be modified. The surrounding conditions, which are conditions, can also be customized. Furthermore, with the addition of the peripheral conditions, it is possible to further reduce the risk of use of the credit card 6a by an unauthorized user.

Further, in the communication device 8, the peripheral conditions include one or more conditions among time, place, and date and time, and are therefore conditions for enabling use, and one or more conditions among time, place, and date and time can be customized. In addition, in addition to the pair condition, it cannot be used unless one or more of the conditions of time, place, and date and time are also satisfied, so even if the communication with the communication device 8 is wide-area communication, the The risk of using the credit card 6a can be reduced.

Further, since the communication device 8 has the form of an accessory worn by the user, the user can simply wear the paired communication device 8 as an accessory, and the credit card 6a can be stolen by an unauthorized user. The risks of use can be easily reduced.

Note that the software that implements the information processing apparatus in this embodiment is, for example, the following program. In other words, this program shows a situation in which a credit card identifier for identifying the credit card 6a and a communication device identifier for identifying one communication device 8 are managed as a pair, and a situation in which communication with one communication device 8 is possible. This is a program for making the credit card 6a usable only when the credit card 6a is the same.

Further, the computer-accessible recording medium of the credit card 6a includes a card storage section 61 in which a credit card identifier is stored, and the credit card stored in the card storage section 61 is transmitted to the communication device 8 in which the credit card identifier is stored. It is preferable that the program transmits an identifier and enables the use of the credit card 6a only when the communication device 8 that has received the credit card identifier determines to permit authentication in response to the transmission of the credit card identifier. .

The program also connects the computer to the card transmitting section 64a that transmits the credit card identifier of the card storage section 61 to the communication device 8, and the communication device that receives the credit card identifier in response to the transmission of the credit card identifier. More preferably, the program functions as a card receiving unit 62a that receives the authentication result from the device 8, and allows the credit card 6a to be used only when the authentication result is approval.

Further, FIG. 14 is a diagram showing an example of the internal configuration of a computer system 900 that implements the credit card 1, the communication device 2, etc. by executing the programs in each of the above embodiments. In FIG. 14, a computer system 900 includes an MPU 911 that is a computer that executes programs, a ROM 912 for storing programs such as a boot-up program, and a ROM 912 that is connected to the MPU 911 and temporarily stores instructions of an application program. A RAM 913 that provides temporary storage space, a storage 914 that stores application programs, system programs, and data, a bus 915 that interconnects the MPU 911, ROM 912, etc., and provides connections to networks such as external networks and internal networks. A network card 916, a memory card slot 917, a display 918, and a touch panel 919 provided on the display surface of the display 918 are provided. The storage 914 is, for example, a flash memory. Note that the entire computer system 900 may be referred to as a computer.

A program that causes the computer system 900 to execute functions such as the credit card 1 may be stored in the memory card 920, inserted into the memory card slot 917, and transferred to the storage 914, for example. Alternatively, the program may be sent to computer system 900 via a network and stored in storage 914. The program is loaded into RAM 913 during execution. Note that the program may be loaded directly from the memory card 920 or the network.

The program does not necessarily include an operating system (OS) that causes the computer system 900 to execute the functions of the credit card 1, or a third party program. A program may include only those portions of instructions that call appropriate functions or modules in a controlled manner to achieve desired results. How computer system 900 operates is well known and will not be described in detail.

Note that although the computer system 900 described above is a mobile terminal such as a smartphone, the server device 5 and the like may be realized by, for example, a server or a stationary PC. In this case, for example, the touch panel 919 may be replaced with a keyboard and mouse, the memory card slot 917 may be replaced with a disk drive, the storage 194 may be replaced with a hard disk or SSD, and the memory card 920 may be replaced with a disk such as a CD or DVD. Further, the credit card 1 and the like may be realized by an IC card or an IC chip, and in that case, the storage 914, memory card slot 917, display 918, and touch panel 919 may be omitted from the above configuration. However, the above is just an example, and the hardware configuration of the computer that implements the credit card 1 etc. does not matter.

Note that in the above program, in the transmission step for transmitting information and the reception step for receiving information, processing is performed by hardware, such as processing performed by the modem or interface card in the transmission step (processing that can only be performed by hardware). Processing that is not carried out) is not included.

Further, the number of computers that execute the above program may be one or more. That is, centralized processing or distributed processing may be performed.

Furthermore, in each of the above embodiments, it goes without saying that two or more communication means (card receiving section 12, card transmitting section 14, etc.) existing in one device may be physically realized by one medium. .

Furthermore, in each of the above embodiments, each process (each function) may be realized by being centrally processed by a single device (system), or by being distributed by multiple devices. may be done.

It goes without saying that the present invention is not limited to the above-described embodiments, and that various modifications can be made, and these are also included within the scope of the present invention.

As described above, the credit card according to the present invention has the effect of reducing the risk of use by an unauthorized user, and is useful as a credit card or the like.

1, 3, 6, 6a Credit card 2, 4, 7, 8 Communication device 5, 5a Server device 11, 31, 61 Card storage section 12, 32, 62, 62a Card receiving section 13, 33, 63 Card processing section 14 , 34, 64, 64a Card transmitting section 21, 41, 71, 81 Storage section 22, 42, 72, 82 Receiving section 23, 23a, 43, 73 Processing section 24, 44, 74, 84 Transmitting section 51 Server storage section 52 , 52a server reception section 53 server processing section 54, 54a server transmission section 531 server judgment section 100, 200, 300, 400 information system 131 card judgment section 231, 231a judgment section

Claims (8)

An information system having a credit card and a communication device that is portable by a user, the information system comprising:
The credit card is
a card storage section in which a credit card identifier and a communication device identifier for identifying the communication device are stored;
a card receiving unit that receives a communication device identifier from the communication device;
a card determining unit that determines whether the communication device identifier received by the card receiving unit has a predetermined relationship with the communication device identifier in the card storage unit;
The communication device in which the credit card identifier is stored includes a card transmitting unit that transmits the credit card identifier of the card storage unit,
The card receiving section includes:
receiving an authentication result in the communication device in response to the transmission of the credit card identifier;
It is possible to use the card only when the card determining unit determines that the predetermined relationship exists, and the authentication result is authentication permission;
The communication device includes:
a storage unit in which a credit card identifier and a communication device identifier are stored as a pair;
a receiving unit that receives the credit card identifier from the credit card;
a determining unit that determines whether the credit card identifier received by the receiving unit has a predetermined relationship with the credit card identifier in the storage unit and obtains a determination result;
a transmitting unit that transmits the communication device identifier stored in the storage unit, and transmits an authentication result indicating authentication permission to the credit card when the determination result obtained by the determination unit is positive; Equipped with
The information system being usable means being able to perform payment processing using the credit card . The enabling of use means that the encryption of credit card information related to the credit card stored in the credit card is decrypted, and that the transmission of the credit card information stored in the credit card is permitted. 2. The information system according to claim 1, wherein: or the credit card information stored in the credit card can be read by a terminal. 3. The information system according to claim 1, wherein the pair of the credit card identifier and the communication device identifier stored in the storage unit is modifiable. peripheral conditions that are conditions other than the pair of the credit card identifier and the communication device identifier are managed;
The card determining section is
The information system according to any one of claims 1 to 3, wherein the information system also determines whether or not the peripheral conditions are satisfied, and if it is determined that the peripheral conditions are not satisfied, the credit card is not usable. . 5. The information system according to claim 4, wherein the surrounding conditions are modifiable. 6. The information system according to claim 4, wherein the surrounding conditions include one or more of time, location, date and time. A communication device constituting the information system according to any one of claims 1 to 6. A credit card comprising a card storage section in which a credit card identifier and a communication device identifier for identifying the communication device are stored; and a communication device that can be carried by a user, and the credit card identifier and the communication device identifier are stored in pairs. An enabling method for enabling the use of the credit card in an information system having a communication device having a storage unit configured to store the credit card, the method comprising:
The credit card is realized by using a card receiving unit, a card determining unit, and a card transmitting unit included in the credit card, and a receiving unit, a determining unit, and a transmitting unit included in the communication device. A method of
a first transmitting step in which the transmitting unit transmits the communication device identifier stored in the storage unit;
a card receiving step in which the card receiving unit receives the communication device identifier from the communication device;
a card determining step in which the card determining section determines whether or not the communication device identifier received in the card receiving step has a predetermined relationship with the communication device identifier in the card storage section;
a card sending step in which the card sending unit sends a credit card identifier in the card storage unit to the communication device in which the credit card identifier is stored;
a receiving step in which the receiving unit receives the credit card identifier from the credit card;
a determining step in which the determining unit determines whether or not the credit card identifier received in the receiving step has a predetermined relationship with the credit card identifier in the storage unit, and obtains a determination result;
a second sending step in which the sending unit sends an authentication result indicating authentication permission to the credit card when the judgment result obtained in the judgment step is positive;
the card receiving unit receiving the authentication result in the communication device in response to the transmission of the credit card identifier;
In the card determination step, the credit card can be used only when it is determined that the predetermined relationship exists and the authentication result is authentication permission, and the credit card can be used. There it is,
A method for enabling use, wherein the enabling of use means that payment processing using the credit card becomes executable .

Images