JPH1127259A - Card information processing transfer method and card utilization terminal - Google Patents

Abstract

PROBLEM TO BE SOLVED: To reduce time and the cost of transfer by compressing and ciphering card information when the card information is transferred. SOLUTION: All pieces of information required for an authentication processing from a card inserted and set in a card utilization terminal 10 is read from a card information input/output part 11. One of plural compression means is selected and compressed by a control part 21 of a compression and ciphering device 20. In this case, a process to execute compression is held in a compression means storage part 23 by providing plural generally used reversal compression means, or the card utilization terminal 10 and an authentication center with the same code list. When data length of the data after compression is equal to 128 byte or more, another compression means is selected and the data is compressed again by the control part 21 and after the data is compressed to the data length of 128 byte or less, the card information is ciphered with a ciphering key described in a ciphering key storage part 25 by a card information ciphering part 24. The compressed/ciphered card information is transmitted from a communication input/output part 13 to a communication route by a communication control part 12.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a card information transfer processing method for transferring card information such as a magnetic stripe card or an IC card to an authentication center via a network for authentication processing and the like, and to its implementation. The present invention relates to a card use terminal device used directly.

[0002]

2. Description of the Related Art In recent years, practical use of a settlement system using a magnetic stripe card or an IC card has been studied.
In particular, in authentication processing for confirming the validity of the card user and the card itself, online processing using a network is performed.

At this time, a method of setting the card α in the card use terminal device 1 as shown in FIG. 4 and transferring all the information A necessary for the authentication process to the authentication center 3 through the dedicated line 2, as shown in FIG. In step 4, a method of transferring all or a part of the information A necessary for the authentication processing to the authentication center 3 (in this case, of course, the authentication center 3 can execute only a part of the authentication processing) is adopted.

[0004]

[Problems to be solved by the invention]

(1) When transferring all the information A and B necessary for authentication to the authentication center 3, the dedicated line 2 is expensive regardless of the amount of information to be transferred, and the public line 3 stores all the information A and B required for authentication. Transferring is time-consuming and expensive. (2) If a part B of the information A necessary for authentication is transferred to the authentication center 3 and simple authentication processing is performed, unauthorized use of the card α cannot be prevented. (3) Data between the card use terminal device 1 and the authentication center 3 has a risk of wiretapping and falsification. There are the above problems (1) to (3).

The main objects to be solved by the present invention are as follows. That is, a first object of the present invention is to provide a card information processing transfer method and a card use terminal device which can reduce transfer time and cost by compressing card information.

A second object of the present invention is to provide a card information processing transfer method and a card use terminal device which can secure the transfer security by encrypting.

[0007] A third object of the present invention is to compress information necessary for evidential authentication to a minimum packet size or less and encrypt the information.
It is an object of the present invention to provide a card information processing transfer method and a card use terminal device capable of completing information transfer to an authentication center in a single transfer.

Another object of the present invention is to provide a specification, drawings,
In particular, it will be obvious from the description of each claim in the claims.

[0009]

In order to solve the above-mentioned problem, the present invention, as shown in FIG. 1, uses a dedicated line 2 or a public line 4 in an authentication process for confirming the validity of a card user and a card itself. The card information A required for the authentication processing for online processing using the network used has a data length of 12.
It compresses to 8 bytes or less (less than the minimum packet size), encrypts and processes information A 'transfer to the authentication center 3 in a single transfer, completes and processes it easily, reduces transfer time and cost, and secures security. .

[0010] More specifically, in solving the above-mentioned problems, the present invention achieves the above object by adopting each of the novel characteristic configuration techniques or means described below.

That is, the first feature of the method of the present invention resides in adopting a configuration of a card information processing transfer method in which the card information is compressed and encrypted when transferring the card information.

A second feature of the method of the present invention is that the transfer in the first feature of the method of the present invention adopts a configuration of a card information processing transfer method in which the transfer is directed to a card information authentication process or an inter-user information notification service. It is in

A third feature of the method of the present invention is that the compression in the first or second feature of the present invention employs a configuration of a card information processing transfer method in which the read information of the card information is reduced to a certain block length or less. is there.

A fourth feature of the method of the present invention resides in adoption of a configuration of a card information processing transfer method in which the compression in the third feature of the present method is selective from a plurality of formats.

A fifth feature of the method of the present invention is that the compression in the third or fourth feature of the method of the present invention adopts a configuration of a card information processing transfer method in which the data length after the compression is 128 bytes or less. is there.

According to a sixth feature of the method of the present invention, the card information in the third, fourth or fifth feature of the method of the present invention is as follows.
The present invention resides in adoption of a configuration of a card information processing transfer method which is encrypted and transferred by a common key cryptosystem or a public key cryptosystem after compression.

According to a seventh aspect of the method of the present invention, there is provided a card information processing apparatus in which the encryption in the sixth aspect of the present invention is performed by compressing the compressed card information in an environment where physical security is protected. This is in the configuration of the transfer method.

An eighth feature of the method of the present invention is that the transfer in the first, second, third, fourth, fifth, sixth or seventh feature of the method of the present invention is such that the transfer of the leased line and the public line is performed. The present invention resides in adopting a configuration of a card information processing transfer method performed via one or a combination of both.

A ninth feature of the method of the present invention is that the transfer in the first, second, third, fourth, fifth, sixth, seventh or eighth feature of the method of the present invention is performed by packet communication. The present invention resides in adopting a configuration of a card information processing transfer method to be performed.

A tenth feature of the method of the present invention is that the card information in the first, second, third, fourth, fifth, sixth, seventh, eighth or ninth feature of the method of the present invention is not limited to the above. , A magnetic stripe card, and an IC card.

An eleventh feature of the method of the present invention is as follows. In transferring card information, first, a step of reading card information (ST1), and then a desired or optional card information compressing means from a plurality of card information compressing means stored in advance. A step of selecting (ST2), a step of continuously compressing the read card information by the selected card information compressing means (ST3), and a data length after the compression processing is 128 bytes or less. If the determination is NO, a step (ST4) of re-selecting the card compression means (ST2) is performed again, and further, the determination step (ST4)
And a step (ST5) of encrypting the data after the compression processing only in the case of YES of 128 bytes or less.

A first feature of the device of the present invention is that a card information input / output unit for writing or reading information to or from a set card, a compression / encryption device for compressing and encrypting the read card information, The present invention resides in a configuration of a card using terminal device including a communication control unit for controlling transfer of the compressed and encrypted card information and a communication input / output unit for transmitting the encrypted card information to a connected transmission path.

A second feature of the present invention is that the compression / encryption device according to the first feature of the present invention is provided with a compression means storage unit for storing a plurality of compression means for card information, A card information compression unit for compressing the card information by a compression unit selected from the compression unit storage unit; an encryption key storage unit for storing an encryption key for encrypting the compressed card information; A card information encryption unit for encrypting the compressed card information compressed by the compression unit with the encryption key stored in the encryption key storage unit, and a control unit for controlling and executing a series of these processes. In the configuration of a card-using terminal device.

A third feature of the present invention is that the compression / encryption device according to the first or second feature of the present invention has a configuration of a card using terminal device in which a security section is formed.

A fourth feature of the device of the present invention resides in a function that the card information compression section in the second feature of the device of the present invention compresses the read information of the card information to a data length of 128 bytes or less which is a block length or less. The present invention resides in a configuration adoption of a card using terminal device having

A fifth feature of the present invention device is that the card information encryption section in the second or fourth feature of the present invention device is as follows.
The present invention resides in adopting a configuration of a card-using terminal device that implements a common key cryptosystem or a public key cryptosystem.

A sixth feature of the device of the present invention resides in the adoption of a card-using terminal device in which the transmission line in the first feature of the device of the present invention is a dedicated line or a public line or a combination of both. .

A seventh feature of the device of the present invention resides in the adoption of a configuration of a card-using terminal device in which the transmission path in the first feature of the device of the present invention is a packet communication network.

An eighth feature of the device of the present invention resides in the adoption of a configuration of a card using terminal device in which the transmission path in the first feature of the device of the present invention is connected to an authentication center.

[0030]

DESCRIPTION OF THE PREFERRED EMBODIMENTS Embodiments of the present invention will be described below based on an example of an apparatus and an example of a method with reference to the accompanying drawings. (Example of Apparatus) FIG. 2 is a configuration diagram of the card use terminal apparatus 10 in this example of the apparatus.

In the figure, 11 is a card information input / output unit for reading / writing card information, 22 is a card information compression unit for compressing the card information A A ', and 23 is a plurality of card information compressing units for compressing the card information A. A compression means storage unit for storing means, a card information encryption unit 24 for encrypting the compressed card information A ', and an encryption key storage unit 25 for storing a key required for encryption.

A control unit 21 controls the three functions.
Reference numeral 20 denotes a compression / encryption device that forms the security unit by hiding the four functions in a physically protected device, 12 denotes a communication control unit that controls the transfer of the encrypted card information A ′,
Reference numeral 13 denotes a communication input / output unit for actually transmitting the encrypted card information A 'to the transmission path of the packet communication network.

(Example of Method) FIG. 3 shows a procedure for compressing and encrypting card information in this example of method. First, all the information necessary for the authentication process is read from the card inserted in the slot of the card use terminal device 10 from the card information input / output unit 11 (ST1).

The control unit 21 of the compression encryption device 20 selects one of the plurality of compression means (ST2) and compresses it (ST2).
3). At this time, a plurality of reversible compression means or card information generally used is coded based on a certain code table, and compression is performed by providing the same card table to the card use terminal device 10 and the authentication center 3. Are stored in the compression means storage unit 23.

The control section 21 determines the data length of the compressed data (ST4), and if it is 128 bytes or more, selects another compression means and performs compression again. After compression to 128 bytes or less, the card information encryption unit 24 encrypts the card information with the encryption key described in the encryption key storage unit 25 (ST
5). At this time, the card use terminal device 10 and the authentication center 3
For example, the same encryption key may be shared in advance, or the secret key of the public key cryptosystem may be stored in the authentication center 3 and the public key may be stored in the card use terminal device 10. In the latter case, the public key of the authentication center 3 is stored in the encryption key storage unit 25.

The communication control section 12 sends the compressed / encrypted card information A 'from the communication input / output section 13 to the transit route (ST6). At this time, if the packet switching service is used, the processing can be completed only by transmitting one packet,
It is also possible to use an inter-user information notification service which is a basic function of ISDN.

[0037]

As described above, according to the present invention, by compressing and encrypting card information to a certain amount or less, processing at the time of data transfer can be simplified, cost can be reduced, and card information can be reduced. Can be safely transferred.

[Brief description of the drawings]

FIG. 1 is a diagram showing a card authentication processing system according to the present invention.

FIG. 2 is a block diagram of an example of the present apparatus showing an embodiment of the present invention.

FIG. 3 is a flowchart of the example of the method.

FIG. 4 is a diagram of a conventional card authentication processing system using a dedicated line.

FIG. 5 is a diagram of a conventional card authentication processing system using a public line.

[Explanation of symbols]

 α card 1, 10 card use terminal device 2 dedicated line 3 authentication center 4 public line 11 card information input / output unit 12 communication control unit 13 communication input / output unit 20 compression / encryption device 21 control Unit 22 Card information compression unit 23 Compression unit storage unit 24 Card information encryption unit 25 Encryption key storage unit

Claims (19)

[Claims] 1. A card information processing transfer method comprising compressing and encrypting card information when transferring the card information. 2. The card information processing transfer method according to claim 1, wherein the transfer is directed to a card information authentication process or an inter-user information notification service. 3. The card information processing transfer method according to claim 1, wherein the compression is performed to reduce the read information of the card information to a certain block length or less. 4. The method according to claim 3, wherein the compression is selected from a plurality of formats. 5. The card information processing transfer method according to claim 3, wherein the data length after compression is 128 bytes or less. 6. The card information processing method according to claim 3, wherein the card information is encrypted and transferred by a common key encryption method or a public key encryption method after being compressed. . 7. The card information processing method according to claim 6, wherein the encryption is performed in an environment where the compressed card information is physically protected. 8. The transfer according to claim 1, wherein the transfer is performed via one or both of a dedicated line and a public line.
The card information processing transfer method described in 1. 9. The card information processing transfer method according to claim 1, wherein the transfer is performed by packet communication. 10. The method according to claim 1, wherein the card information includes a magnetic stripe card and an IC card.
10. The card information processing transfer method according to 8 or 9. 11. When transferring card information, first, a step of reading card information (ST1), and then, a step of selecting desired or arbitrarily selected from a plurality of card information compressing means stored in advance (ST2); Subsequently, the selected card information compressing means compresses the read card information (ST3).
Further, if it is determined whether the data length after the compression processing is 128 bytes or less and the determination is NO, a step (ST4) of selecting the card compression means again (ST2), and furthermore, the determination step ( A step (ST5) of encrypting the data after the compression processing only in the case of YES of 128 bytes or less in ST4), and sequentially executing the steps by sequentially executing the steps. 12. A card information input / output unit for writing or reading information to or from a set card, a compression / encryption device for compressing and encrypting the read card information, and the compressed and encrypted card information And a communication input / output unit for sending encrypted card information to a connected transmission path. 13. A compression / encryption device, comprising: a compression means storage unit for storing a plurality of card information compression means; and a card information actually read by the compression means selected from the compression means storage unit. A card information compression unit for performing a compression process, an encryption key storage unit for storing an encryption key for encrypting the compressed card information, and compression card information compressed by the card information compression unit stored in the encryption key storage unit 13. The card use terminal device according to claim 12, comprising: a card information encryption unit that performs an encryption process using an encryption key; and a control unit that controls and executes a series of these processes. 14. The card use terminal device according to claim 12, wherein the compression / encryption device forms a security protection unit. 15. The card information compressing section converts the read information of the card information into 12 or less block lengths.
14. The card use terminal device according to claim 13, having a function of compressing a data length to 8 bytes or less. 16. The card use terminal device according to claim 13, wherein the card information encryption unit implements a common key encryption method or a public key encryption method. 17. The card use terminal device according to claim 12, wherein the transmission path is one or a combination of a dedicated line and a public line. 18. The card use terminal device according to claim 12, wherein the transmission path is a packet communication network. 19. The card use terminal device according to claim 12, wherein the transmission path connects to an authentication center.