JPH10274927A - Instruction issuing method accompanying authentication and module used for the same - Google Patents

Abstract

PROBLEM TO BE SOLVED: To prevent the re-issuance, duplication and impersonation of an electronic cash issuing instruction. SOLUTION: A random number generation request is generated from a user terminal 11 and sent to an IC card 14 and the IC card 14 generates (24) a random number as the one-time guarantee information of an instruction, preserves (25) it and sends it through the user terminal 11 to a bank 12. The bank generates (28 and 29) a money amount Wi and the electronic cash issuing instruction, signs (31) it by a secret key and sends a signed instruction through the user terminal to the IC card 14. In the IC card 14, a signature is verified (33) by a public key and the preserved random number, and when it passes, the electronic cash issuing instruction is executed (34) and the electronic cash of the money amount Wi is obtained.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a method for issuing a command accompanied by authentication using a telecommunication system and a device having a restricted access to internal processing and internal information such as an IC card, a method for verifying the same, and Regarding the device.

[0002]

2. Description of the Related Art Devices which are restricted in access to internal processing and internal information are, for example, incapable of reading / writing to / from the inside unless passwords match.
It is a device that guarantees read / write restrictions on instructions other than those prepared internally. The authentication processing in the conventional instruction execution processing is independent of the instruction execution processing such as a personal identification number. These processes have a problem in terms of safety when operated on a telecommunications system. Here, authentication processing in a financial system using a general IC card as an instruction execution module is taken up as a conventional technique, and particularly, payment processing will be described.

[0003] Payment processing in a financial system using a general IC card is performed between a financial institution and a user. The outline of the processing is as follows. -The user sends the personal identification number to the terminal device. -The terminal device transmits the personal identification number to the IC card.

[0004] The IC card verifies the received password and, if correct, performs payment processing.

[0005]

A problem with the above-mentioned prior art is that information such as a password can be reused and copied. In operation in a telecommunications system, impropriety due to modification of a terminal device, improper use of a user, intervention of a third party, and the like are predicted, and security cannot be guaranteed by the conventional method.

An object of the present invention is to provide an instruction issuance method in which an instruction issuance module can safely and reliably issue an instruction to an instruction execution module. It is another object of the present invention to provide a method for issuing instructions which is guaranteed to be one-time without risk of reissue, duplication, counterfeiting, and spoofing. Still another object of the present invention is to provide a method in which an instruction execution module authenticates an instruction issuing module.

Still another object of the present invention is to realize the issuance of a secure command on a telecommunications system, so that a command can be issued via an unreliable telecommunications system in which tampering or impersonation by a third party is assumed. The purpose is to provide one-time guaranteed instruction issuance for an execution module.

[0008]

SUMMARY OF THE INVENTION The present invention provides an internal processing
Use public key cryptography and assurance information that guarantees one-time instruction, and issue and process instructions that guarantee safe and secure one-time use for devices with limited access to internal information. It is characterized by. The system of the present invention comprises an instruction execution module, an instruction issuing module and a means for transmitting data between them, and the instruction execution module is a module of the present invention, and a data transmitting / receiving means for transmitting / receiving data to / from an external module; Access to internal processing / internal information is restricted, assurance information generating means for generating assurance information (random number / time stamp, etc.) for guaranteeing one-time instruction, and access to internal processing / internal information are restricted;
Assurance information storage means for storing assurance information for guaranteeing one-time execution of instructions, instruction analysis means with electronic signature for determining that received data is an instruction with electronic signature, and electronic signature for verifying instructions with electronic signature And a command execution unit for executing the verified command.

The instruction issuing module includes data transmitting / receiving means for transmitting / receiving data to / from an external module, means for generating an instruction and information necessary for the instruction, and means for digitally signing the instruction. Further, the user terminal is used as necessary, and generates a data transmission / reception unit for transmitting / receiving data to / from an external module and a guarantee information generation request for requesting generation of guarantee information for guaranteeing one-time operation of an instruction.

[0010]

DESCRIPTION OF THE PREFERRED EMBODIMENTS Embodiment 1 Embodiment 1 is an application of the present invention to electronic cash withdrawal. For example, as shown in FIG. 1, a user terminal 11 and a bank 12 as an instruction issuing module
3 are connected. A user attaches an IC card 14 as an instruction execution module to the user terminal 11 and operates the user terminal 11 to withdraw an amount Wi from an account of the bank 12 and issue an electronic cash of the amount Wi, for example. Upon receipt of the command, the command is received by the IC card 14 via the network 13 and the user terminal 11, the command is executed in the IC card 14, and the electronic cash of the amount Wi can be used by using the IC card 14. Becomes

As described above, the electronic cash withdrawal is performed via the unreliable user terminal 11 which is assumed to be falsified or spoofed by a third party, and the unreliable communication network 13 which is assumed to be falsified or spoofed by the third party. Done. According to the system and method to which the present invention is applied, such a problem can be solved. Hereinafter, the present invention will be described. (Issuing random numbers for issuing electronic cash) (See FIG. 2) The user attaches the IC card 14 to the user terminal 11,
When the operation of electronic cash withdrawal is performed on the user terminal 11,
As shown in FIG. 2, the user terminal 11 generates a random number generation request from the random number generation requesting unit 21 (FIG. 3) (1). The user terminal 11 transmits the random number generation request to the command execution module, that is, the IC card 14 through the data transmission / reception means 22 (2). The IC card 14 is a data transmission / reception unit 23
A random number generation request is received in (FIG. 3B) (3). The IC card 14 generates a random number from the random number generating means 24 (4). The IC card 14 stores the random number in a random number storage unit 25.
(5). At the same time, a random number is transmitted to the user terminal 11 (6). (Issuance of a command with an electronic signature for issuing electronic cash) (see FIG. 4) The user terminal 11 transmits the received random number to the data
To the command issuing module, that is, the bank 12 (1). The bank 12 receives the random number by the data transmitting / receiving means 27 (FIG. 3C) (2). The bank 12 generates the information necessary for the electronic cash issuance command, in this example, the issue amount Wi by the money amount generation means 28 and generates the electronic cash issuance instruction by the issuance instruction generation means 29 (3). The bank 12 creates an electronic signature by applying an electronic signature to the electronic cash issuing command, the issued amount Wi, and the received random number by using the electronic signature means 31 using the private key SkB of the bank 12 (4). The bank 12 generates an electronic cash issuance command with an electronic signature composed of {electronic cash issuance instruction, issuance amount Wi, electronic signature} (5), and issues the electronic cash issuance instruction with the electronic signature via the data transmitting / receiving means 27. The message is transmitted to the user terminal 11 (6). User terminal 1
1 receives the electronic cash issuance command with the electronic signature by the data transmitting / receiving means 26 (7). The secret key SkB is the latter of the public key and the secret key of the public cryptography. (Execution of Instruction with Electronic Signature for Electronic Cash Issuance) (Refer to FIG. 5) The user terminal 11 transmits the received electronic cash issuance instruction with electronic signature to the IC card 14 via the data transmitting / receiving means 22 (1). The IC card 14 receives the electronic cash issuing command by the data transmitting / receiving means 23 (2). IC card 14
Analyzes the electronic cash issuance command portion of the received electronic cash issuance command with an electronic signature by the command analysis means 32 and determines whether the command is an electronic cash issuance command, that is, whether the command is a command officially issued by the bank 12. Identify (3). IC card 14
Verifies the electronic cash issuance instruction with the electronic signature by the instruction verification unit 33 using the random number stored in the storage unit 25 and the public key PkB of the bank 12 (4). If the verification result is correct, the IC card 14 executes the electronic cash issuing instruction by the instruction executing means 34 (5). With this execution, the IC card 14
, The use of the electronic cash of the amount Wi becomes possible. After this execution, the random number stored in the random number storage unit 25 is deleted or updated.
Alternatively, in order to be able to execute an instruction, random number generation is premised, and a program is created so that an instruction can be executed only once for one random number generation.

The execution of an instruction with an electronic signature for issuing electronic cash in the first embodiment may be modified as follows. As shown in FIG. 6, the user terminal 11 transmits the electronic cash issuance command with the electronic signature received from the bank 12 to the IC card 14 (1). The IC card 14 receives the electronic cash issuing command (2). The user terminal 11 generates an execution request for an electronic cash issuance command with an electronic signature (3). The user terminal 11 issues an execution request for the electronic cash issuance command with an electronic signature to the IC card 14.
(4). The IC card 14 receives the execution request of the electronic cash issuing command (5). The IC card 14 transmits the electronic cash issuance command with the electronic signature to the stored random number and the bank 12.
(6). IC card 1
4 executes the electronic cash issuing command if the verification result is correct (7). It also deletes or updates random numbers.

With the above configuration, even if a third party steals an electronic cash issuance instruction with an electronic signature from the bank (instruction issuance module) 12, the third party stores the electronic cash issuance instruction in the IC card 14. Random number (guarantee information to guarantee onceness)
, The signature cannot be verified and the electronic cash issuance instruction cannot be executed. Further, since the random number stored in the IC card 14 can be used only once, the same issue command cannot be executed in the IC card 14 a plurality of times.

In the above description, the electronic cash issuance command is attached with an electronic signature to prevent fraud. However, the instruction may be disturbed by a hash function and used instead of the electronic signature. This example will be briefly described with reference to FIG. The instruction execution module 14 generates a random number, saves the random number, encrypts the random number using PkB after the disclosure of the instruction issuing module 12, and transmits the encrypted random number to the instruction issuing module 12 (1). The instruction issuing module 12 converts the encrypted random number into its own secret key Sk.
B (2), an instruction (for example, an electronic cash issuance instruction) and data used for the instruction (for example, the electronic cash amount W).
i) is generated (3), and the decrypted random number, instruction, and data used for the instruction are disturbed by a hash function. 14 (4).

The instruction execution module 14 that has received the hashed instruction verifies the hashed instruction by disturbing the received data and the stored random number with the same hash function (5). And execute the received instruction. In the above example, electronic cash of the amount Wi is issued (6). After the execution, the stored random number is deleted or updated, or the instruction can be executed only once for one random number generation.

In this case, the hash function is used in both the instruction execution module 14 and the instruction issuing module 12 and is not kept secret, but a random number as assurance information for guaranteeing the singleness of the instruction is stored in the instruction issuing module 12. Since it is encrypted with the public key PkB and transmitted to the instruction issuing module 12, there is no possibility that the random number is stolen from a third party.

FIG. 8 shows the functional configuration of the instruction execution module 14 used in the embodiment of FIG. 7 with the same reference numerals assigned to parts corresponding to FIG. 3B. In this case, a random number encryption unit 41 for encrypting and transmitting a random number with a public key is provided, and a hashed instruction verification unit 42 is provided instead of the digital signature instruction verification unit 33. Even when the hashed instruction shown in FIG. 7 is used, the use terminal 11 can be used in the same manner as described with reference to FIGS. Not only random numbers but also time stamps and the like may be used as guarantee information for guaranteeing one-time operation of an instruction.

[0018]

As described above, according to the present invention, an instruction with a digital signature using a public encryption key is issued by using assurance information for guaranteeing the one-timeness of the instruction, whereby the instruction is stolen. There is no risk of spoofing, spoofing, or the use of instructions multiple times. Further, according to the present invention, since the assurance information for guaranteeing the one-time operation of the instruction is encrypted by using the public encryption method and transmitted to the instruction issuing module, the assurance information is not abused. Since the hash operation is performed by combining the information and the instruction and the hash operation is verified by the instruction execution module, there is no risk of theft, multiple use, and impersonation of the instruction.

[Brief description of the drawings]

FIG. 1 is a block diagram showing a configuration example of a system to which the present invention is applied.

FIG. 2 is a diagram showing a procedure for generating a random number (guarantee information) in the embodiment of the present invention.

3A is a block diagram showing a functional configuration example of a user terminal 11, FIG. 3B is a block diagram showing a functional configuration example of an instruction execution module according to the present invention, and C is a block diagram showing a functional configuration example of an instruction issuing module. is there.

FIG. 4 is a diagram showing a processing procedure for issuing a signed instruction in the embodiment of the present invention.

FIG. 5 is a diagram showing a procedure for executing a signed instruction in the embodiment of the present invention.

FIG. 6 is a diagram showing a procedure for executing a signed instruction in another embodiment of the present invention.

FIG. 7 is a diagram showing a processing procedure according to still another embodiment of the present invention.

FIG. 8 is a block diagram showing a functional configuration of another embodiment of the execution instruction module of the present invention.

Claims (9)

[Claims] An instruction execution module in which access to internal processing / internal information is restricted generates guarantee information for guaranteeing one-time execution of an instruction, saves the guarantee information, and transmits the guarantee information to an instruction issuing module. The instruction issuing module receives the guarantee information, generates an instruction, and generates necessary information for the instruction. The instruction, the information necessary for the instruction, and the secret key ( Generating an electronic signature signed in public key cryptography), and transmitting the instruction, information necessary for the instruction, received guarantee information, and an instruction with an electronic signature including the electronic signature to the instruction execution module; The execution module converts the received instruction with the electronic signature into a public key (in public key cryptography) of the instruction issuing module.
And issuing the instruction if the verification is correct. 2. The data transmission / reception between the command execution module and the command issuing module is performed via a user terminal to which the command execution module is detachably mounted. 2. The assurance information generation request is generated and transmitted to the instruction execution module, and the instruction execution module receives the assurance information generation request and generates the assurance information. Instruction issuing method with authentication. 3. The command execution module according to claim 1, wherein the command execution module analyzes the received command with a digital signature, confirms that the command is a desired command, and then performs the verification.
Or the instruction issuance method with authentication described in 2. 4. The user terminal transmits the command with the electronic signature to the command execution module, transmits a command execution request to the command execution module, and the command execution module receives the command execution request after receiving the command execution request. 3. The method according to claim 2, wherein the verification is performed. 5. An instruction execution module in which access to internal processing and internal information is restricted generates assurance information for guaranteeing the one-timeness of an instruction, saves the assurance information, and stores a public key of the instruction issuing module. Encrypts the assurance information with public key cryptography) and sends the encrypted assurance information to the instruction issuing module. The instruction issuing module decrypts the received encryption assurance information with its own secret key, An instruction and information necessary for the instruction are generated. The instruction, the information necessary for the instruction, and the decrypted assurance information are disturbed by a hash function. The disturbed hash and the hash of the instruction and the information necessary for the instruction are generated. The instruction execution module transmits the hashed instruction to the instruction execution module using the received hashed instruction and the received instruction and the storage assurance information. Verification Te and, if they pass the verification, instruction issue method involving authentication and executes the received instruction. 6. Sending and receiving data between the instruction execution module and the instruction issue module via a user terminal to which the instruction execution module is detachably mounted, and generates a guarantee information generation request at the user terminal. And transmitting the guarantee information generation request to the instruction execution module. The instruction execution module receives the guarantee information generation request and generates the guarantee information. Instruction issue method. 7. The command execution module according to claim 1, wherein the command execution module is an IC card, the command is an electronic cash issuing command, and information necessary for the command is money amount information. Instruction issuance method with authentication described in 1. 8. An instruction execution module for restricting access to internal processing and internal information, comprising: a data transmission / reception means for transmitting / receiving data to / from the outside; and guarantee information for generating guarantee information for guaranteeing the singleness of an instruction. Generating means, assurance information storing means for storing the generated assurance information, means for transmitting the generated assurance information to the outside by the data transmitting / receiving means, and an electronic signature received from the outside by the data transmitting / receiving means A verification unit for verifying the instruction with the stored assurance information and a public key (by public key cryptography); and an instruction execution unit for executing the instruction with the electronic signature if the verification is passed. Instruction execution module to execute. 9. An instruction execution module for restricting access to internal processing and internal information, comprising: a data transmitting / receiving means for transmitting / receiving data to / from the outside; and guarantee information for generating guarantee information for guaranteeing one-time instruction. Generating means; assurance information storage means for storing the generated assurance information; encryption means for encrypting the generated assurance information with a public key; and the data assurance means Means for transmitting to the outside, the hashed instruction received from the outside by the data transmitting / receiving means, a hash operation using the stored assurance information, and a verification means for verifying the hashed instruction; An execution unit for executing the instruction with the hashed instruction.