JP2002190005A - Multifunctional ic card - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a multifunctional IC card that can prevent card crime by ensuring high security. SOLUTION: An electronic account settlement type ecological card 1 is a point card used in common by a plurality of enterprises, and a cryptographic key 11 and a signature key 12 for ensuring security, and holder biological information 14 for confirming the person in question by a fingerprint after PIN input are written in a secondary issue region in the ecological card 1. Ecological points 16, a store signature 17, a store certificate 18, a billfold 27, a signature 28 and a certificate 29 are written in an application region 4 to allow the verification of data alteration by a holder or a store employee.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to an IC card commonly used by a plurality of business entities, and more particularly to a multifunctional IC card capable of performing electronic settlement as a point service card or a money card.

[0002]

2. Description of the Related Art Heretofore, a point card system in which service points are given to a customer who has purchased a product or service at a card member store, which is the business entity, and an amount or a service ticket corresponding to the accumulated number of points is returned to the customer. It has been known.
In this case, a loyalty card is issued to the customer at the time of joining the member, and thereafter, each time a merchandise is purchased at each card member store, the service points are cumulatively recorded on the card. An advanced payment function is added to this card, and the card itself functions as a cashing means at each member store. Therefore, as the number of accumulated points increases, the amount of money that can be exchanged for a card increases, and the monetary value of the card itself tends to increase.

[0003]

A point card of this type is used by inputting a password, but there is a possibility that the password of the card is known to others. Therefore, when the card is lost or stolen, the card may be misused by another person. In addition, service points are recorded by each merchant and customer confirming the product purchase price, but from the viewpoint of ensuring security in the future, it is necessary to leave evidence of point acquisition between each merchant and customer. It is.
If there is no evidence of point acquisition, data leakage, falsification, and unauthorized use such as cash withdrawal may occur by employees of the merchant or customers themselves. An important issue is how to prevent card loss, theft and data theft, that is, how to prevent card crime, which is increasing rapidly in the card society. SUMMARY OF THE INVENTION The present invention has been made in view of the above circumstances, and provides a multi-function IC card capable of ensuring high security and preventing unauthorized use of the card, data tampering, and the like.

[0004]

According to the present invention, there is provided a multi-function IC card commonly used as a point service card or an electronic money card by a plurality of business entities. In the secondary publishing area,
A signature area to be written by each business entity is provided. According to a second aspect of the present invention, a holder biometric information area for confirming a card holder with biometric information such as a fingerprint after inputting a personal identification number is provided in the secondary issuing area.

[0005] The IC card of the present invention is a type of card mainly equipped with a chip with a CPU, and when the memory capacity of the IC card is abundant, the configuration of the storage information area is as shown in FIG.
As shown in FIG. 1, the data area includes many data areas such as a primary issue area, a secondary issue area, and an application area.
The primary issuance area is an area for storing necessary information when a card issuer issues a card to a business entity temporarily, and the secondary issuance area is for the business entity to issue a card to a consumer (user member). This area is used to store required information when it is issued.

Specifically, the information stored in the primary issuing area includes a card serial number and a password.
The information stored in the secondary issuing area includes an issuer code, a region code, a holder identifier, a holder attribute, an encryption key, a signing key, a certificate, and holder biometric information (identification unit). The information stored in the area includes eco points (areas of point services commonly set for a plurality of entities), store signatures, store certificates, entity A areas, other entity areas, entity A codes,
Purchase points, parking points, prepaid area, certificate area,
Includes bills, signatures, certificates, coins, certificates of mutual aid, loss guarantees, etc.

When there is a restriction on the memory capacity of the IC card, the number of business areas belonging to the application area can be limited or reduced, or the certificate area (several hundred bytes to 1 kilobyte) can be omitted. In the case of an IC card equipped with a memory chip separately from a chip with a CPU, a signature of a store can be added. In this case, the security or reliability of the card is further improved, and there is a danger of data leakage and tampering. Disappears.

[0008] There are two types of information in the IC card, a part that can be accessed under the condition of inputting a password and a part that can be accessed without inputting a password. The part that needs to be implanted is an access area where data information is required to be hidden, such as a holder attribute, an encryption key,
Like signing keys and holder biometric information, this is an area where information cannot be stolen from the viewpoint of protecting a large amount of money and privacy. On the other hand, the portion that does not need to be driven is an access area that does not cause much problem even if read by another person, and is an area that can be tolerated even if information is stolen, for example, small lot settlement. However, it is preferable to attach a signature as necessary even for a portion that does not need to be implanted so as to prepare for falsification of information.

Next, the method of using the holder biometric information will be described. The holder biometric information cannot be confirmed unless a password is input to the card writer.
The reason is that if the holder biometric information is easily read, there is a problem in security. For this reason, in order to read out important card storage information, a procedure is first used in which a personal identification number is entered, and then the individual is identified by the holder biometric information.

[0010] The holder biometric information is an identity authentication section for securely identifying the individual by the biometric information. In the area of the holder biometric information, biometric information data such as a fingerprint of the card holder itself and the iris of the pupil are recorded, and the recorded data is collated to identify a person (biometrics). Therefore, even if the IC card is dropped, even if the locator attempts to misuse the IC card, it is possible to strictly check whether or not the card holder is a genuine card holder. it can.

A supplementary explanation of the business area is as follows.
After comprehensively considering the amount of memory of the C card or the amount of memory of the memory chip, etc., it is determined whether or not some business entities are to be placed on the same card. Although the embodiment describes the case of an ecological product point system provider as the business content, the business content depends on the type of business, business scope, purpose of establishment, and the like. For example, the business content can be different for private companies and local governments. In any case, it is necessary to separately define and allocate a certain memory area for each business entity such as a company and a local government.

[0012]

Next, an embodiment of the present invention will be described with reference to the drawings. The multi-function IC card according to the present embodiment is a service point type eco card commonly used by a plurality of eco enterprises implementing the green purchasing system (can acquire cash, save operation, purchase privilege, etc. according to the number of points). Card). A service point recording area is set in a card information area common to a plurality of business entities as a whole, and signatures of a plurality of eco-enterprise entities can be written and attached to a storage information area in an eco card. . FIG. 1 is an explanatory diagram showing a storage information area of an eco card according to an embodiment of the present invention, FIG. 2 is a processing conceptual diagram illustrating a case where a store using the eco card carries a signature of points,
FIG. 3 is a processing conceptual diagram for explaining a case where an encryption process is performed using an encryption key in an eco card, and FIG. 4 is a processing conceptual diagram for explaining a case where a large payment is made using an eco card.

[0013]

FIG. 1 shows a storage information area of an eco card (IC card) 1. In this storage information area, a primary issue area 2, a secondary issue area 3, and an application (AP) area 4 are arranged from the upper side. Are sequentially provided. Primary issue area 2
Is an information area in which the issuing company of the eco card 1 fills in predetermined items at the time of issuing the card, in which a card serial number 5 and a personal identification number (PIN) 6 are entered. Card serial number 5
Are assigned a series of consecutive numbers in the order of card issuance. The password 6 is a password individually given to a holder as a customer user (consumer), and the default value at the time of issuing a card can be changed by the holder himself / herself operating a terminal or the like.

The secondary issuing area 3 is an information area in which predetermined items are entered when the card holder becomes a member of the ecology system. That is, when the holder joins the ecology system, the ecology system entity fills out the card when giving the holder. Specifically, the issuer code 7, the area code 8, the holder identifier 9, the holder attribute 10, the encryption key 11, the signature key 12, the certificate 13, and the holder biometric information (biological personal authentication unit) 14 are written. The issuer code 7 is a code for identifying the ecosystem business entity, and the area code 13 is a code for identifying the area to which the card holder belongs. The holder identifier 9 is identification information for identifying an individual holder in the ecology system, and the holder attribute 10 is personal information about the holder such as a name, an address, and a telephone number.

The encryption key 11 is a key of the secret key cryptosystem in the eco card 1, and is used when encrypting or decrypting stored important information. That is, the information is used when reading or writing information in the eco card 1 to the outside. The signature key 12 is a key used when the card holder makes an electronic signature, and is used for enhancing card security in the future. The point information written in the eco card 1 is signed by the store in order to detect data tampering of the card holder, but the point information written in the store may be signed by the holder. . This is to prevent the store from falsifying the point information.

The certificate 13 is a document that certifies the public key by a third-party certificate authority CA, and is used when verifying the signature of the card holder. Generally, the certificate 13 is used at the time of processing such as adding points without receiving a certificate every time from the certification authority CA. However, since the memory size of the certificate 13 is large, it is assumed that it takes time to read / write the certificate 13. In such a current situation, it is desirable to provide the certificate 13 at each store. Therefore, the certificate 13 is read /
Depending on the length of the writing time, it is possible to freely select whether or not to put it in the eco card 1. The certificate 13 and the signing key 12 hold the high security of the eco card 1 in the future when a signature by the holder itself is requested, for example, when the ecology point is recorded as evidence. .

The holder biometric information 14 functions as a so-called holder biometric authentication unit that biometrically authenticates the card holder itself. In this case, the biometric identification is performed based on the fingerprint of the card holder. The holder biometric information 14 and the corresponding contents of the holder attribute 10, the encryption key 11, the signature key 12, and the bill 27 described later are read / written outside the eco card 1 on condition that the password 6 is matched. It is possible.

The application area 4 is a data area where information is processed in various applications, and includes an eco point (EP) 16, a store signature 17, a store certificate 18, a business entity A area 19, and another business entity X. Area 20 is filled. The value of Eco Point 16 is the cumulative number of Eco Points that the card holder has acquired in the past. The Eco Point 16 is acquired when the Card Holder purchases green products from stores, such as recyclable home appliances and daily necessities. Is done. Here, the ecology point selling method is a point service selling method generally adopted in a business business. For this reason, a point service area is commonly set as a whole through a plurality of sales stores or business entities.

The store signature 17 and the store certificate 18 are the signature and certificate of the store in which the eco points 16 were last accumulated. The store signature 17 is signed by the store every time the eco points 16 are accumulated in each store at the time of product purchase. In the eco card 1, the store signature 17 is always attached in order to prevent tampering of the number of points by the card holder itself. The store certificate 18 is used when verifying a signature at each store. In some cases, it is difficult to store the store certificate 18 in the eco card 1 in terms of capacity. In this case, a form of storing the store certificate 18 as data on the store side is adopted.

The business entity A area 19 is a data area for information processing in the business entity A, and includes a business entity A code 22, a purchase point 23, and a parking point 24.
It has a prepaid area 25 and a certificate area 26. The business entity A code 22 is a code for identifying the business entity A, and the purchase points 23 and the parking points 24 are point information at which predetermined points are provided when the business entity A purchases or parks a product or service.

The prepaid area 25 includes bills (large money) 27,
An information area including a signature 28, a certificate 29, and coins 30. Bill 27 is a money information area that handles large amounts of money.
At the time of settlement with large money, a signature 28 and a certificate 29 of a charging device or a device settled with large money are required. Whether or not the certificate 29 is set depends on the processing time for reading / writing the certificate 29 and (the certificate 29 is not stored).
The decision is made in consideration of the communication time when the store acquires the certificate 29 from the certification organization CA. The contents of the bill 27 can be read / written to the outside of the eco card 1 after confirming the identity of the user by collation with the password 6 and collation with the holder biometric information 14. On the other hand, the coin 30 is a money information area for handling a small amount of money, and the amount of money can be transferred from the bill 27 to the amount of money. in this case,
In order to perform quick money processing at coin 30,
Unlike the cash processing in 7, no signature or certificate is required.

The certificate area 26 is an area for storing related certificates of various businesses (operational business, insurance business, etc.) to which the card holder can arbitrarily subscribe, and the business contents executed by each business entity are different. In the present embodiment, the information contents of various insurances carried out in the area to which the card holder belongs, for example, the life insurance certificate 31 and the loss guarantee 32 are stored.
The other business entity X area 20 is a region for storing the business entity X code 40 and the unique information 41 of the business entity X. The type and configuration of the unique information 41 are generally different for each business entity.

In the above-mentioned eco card 1, a customer can purchase a product or service, and the service points issued by a plurality of franchisees can be securitized, and securities such as stocks, bonds, life insurance policies, non-life insurance policies, etc. Can be Service points are awarded to recycled products, ecology products and other various products. The accumulated points are registered in the system management server, the registered points are cashed and operated, and the obtained profit is distributed to the card holder. This operation method can integrate and operate service points from different issuers. This loyalty card system can be used by customer members, member companies (including different types of businesses) or stores,
A securities company can be networked through a public line or a dedicated line, and members can receive ecology points by presenting the eco card 1 when conducting business at a member store. The member store sends the transaction data to the system operation secretariat using the card data transmission terminal. As a result, service points corresponding to the transaction amount are issued based on the point issuance rate (number of points issued with respect to the selling price) determined at the member store, and are cumulatively added to the points recorded on the eco card 1 and updated. . The point issuance rate can be determined for each type of merchandise / service or for each member store, but is preferably unified for general purposes.

Next, a case where the store certificate 18 is stored in the store will be described. As shown in FIG. 2, each store A, B
Is provided with point writing machines 35 and 36, and each of the stores A and B is provided with a store information terminal 34, which is used to transmit customer data, store data, and transaction data to a system server. It can issue cards, update card data, and print and display on cards. In the information terminal 34, a database storing information of all store certificates and CA public keys can be used. here,
Each store needs the all store certificate 18 because each store carries around point signatures and verifications. In some cases, the database is not stored in the information terminal 34, but in a store that does not have the database, the database 37 of the third-party certification authority CA is accessed, and all store certificates and CA disclosure are online. It is assumed that key information is used.

Assuming that the card holder has purchased a product at the store A, the ecology point P1
Occurs. Card holder is Ecology Point P1
In order to obtain the ecology point P1, the holder makes a point signature using the signature key 12 as confirmation evidence and stores the ecology point P1 in the eco card 1. Thereafter, when the holder purchases another product at the store B, a new ecology point P2 is generated. Here, as above, the card holder signs the points and the ecology points P2
Is added to the ecology point P1 and stored.

This point addition is performed before the holder signs the ecology point P2, after reading the data and verifying the signature on the eco card 1 in which the eco point P1 has been stored and signed. Especially in signature verification,
The store certificate and the CA public key are fetched from the information terminal 34 or the database 37 of the certification authority CA, and the authenticity of the store A is strictly verified. As described above, when the store certificate 18 is stored, various functions required for the information terminal 34, that is, point signature, signature verification, point addition, and store certificate / CA public key entry are sequentially executed.

Next, the encryption / decryption processing of data information in the eco card 1 will be described. Each store A, B
As shown in FIG. 3, point writers 35 and 36 are installed as terminals for encrypting and decrypting information in the eco card 1. When the information is encrypted at the store A and stored in the eco card 1, the password 6 of the eco card 1 is input to the point writer 35 and collated. After collation of the personal identification number 6, the encryption key 11 of the eco card 1 is read and card information is read. Then, the read stored information is encrypted, and the processed information is written to the eco card 1.

After that, the encryption information of the eco card 1 is stored in the store B
When the decryption process is performed, the personal identification number 6 of the eco card 1 is input to the point writer 36 and collated. When the password 6 is collated, the encryption key 11 of the eco card 1 is read, and the storage information of the eco card 1 is read. Next, the read information is decrypted and taken out of the card. As described above, when the information in the eco card 1 is encrypted and decrypted, various functions required for the point writer 35 and 36, that is, input of a password, key reading, information reading, and encryption / decryption are performed. Conversion processing is sequentially performed.

Next, a case where a large payment is made using the eco card 1 will be described. In the store, as shown in FIG. 4, a point writing device 38 and a fingerprint input device 39 are installed. Now, when processing the information in the eco card 1 using the fingerprint of the card holder, the password 6 of the eco card 1 is required.
Is input to the point writer 38, and the fingerprint of the eco card 1 is read. After the fingerprint of the eco card 1 is read, the fingerprint of the holder is input to the fingerprint input device 39 and collated with the registered fingerprint in the holder biometric information 14 of the eco card 1. If the verifications match, then the large money information recorded on the eco card 1 is read out, and electronic payment is made for depositing and withdrawing money in the bill receiving unit 27. The monetary information after the large-money settlement is written in the eco card 1 to update the data. As described above, when making a large payment using the holder biometric information 14, various functions required for the point writer 38, that is, a password input, a fingerprint input, and a fingerprint collation are sequentially executed.

In the settlement processing of the embodiment, since the identification of the holder is strictly double-checked by collation of the fingerprint following collation of the personal identification number 6, safe and reliable large-money settlement processing can be performed. In particular, fingerprints serving as collation data are extremely effective for personal recognition because they are unvarying for everyone and never change. Therefore, even if the eco card 1 is lost or stolen, even if it passes to a Service-to-Self who knows the password 6, the identity of the Eco-Card 1 cannot be practically verified. Crime is prevented beforehand.

The present invention is not limited to the above embodiment.
For example, when checking the card holder, the person can be identified by a signature (habit of handwriting), a voiceprint, and a seal. In addition, it is also possible to identify the individual based on the insurance card, student ID, and ID card ID recorded in advance in the database. Personal authentication can be performed.

[0032]

As described above, according to the present invention, the signature area of the business entity is provided in the secondary issuing area of the IC card, and the signature of each business entity that uses the card in common is written. Advanced security in the future, such as proof of point acquisition, is maintained, and data tampering and leakage by card holders and employees can be reliably prevented.
In addition, by providing a personal authentication area on the IC card and confirming the card holder based on biometric information such as fingerprints, the identity of the card holder is more strictly identified, and unauthorized use of the card by others can be prevented. Can be prevented.
Even if the card is lost or stolen, there is an excellent effect that misuse of the card by another person can be reliably prevented.

[Brief description of the drawings]

FIG. 1 is an explanatory diagram showing a storage information area of an eco card (IC card) according to one embodiment of the present invention.

FIG. 2 is a process conceptual diagram illustrating a case where a store using an eco card carries a signature of a point.

FIG. 3 is a process conceptual diagram illustrating a case where an encryption process is performed using an encryption key in an eco card.

FIG. 4 is a process conceptual diagram illustrating a case where a large payment is made using an eco card.

[Explanation of symbols]

1 Eco-card (IC card) 2 Primary issue area 3 Secondary issue area 4 Application (AP) area 5 Card serial number 6 Personal identification number (PIN) 7 Issuer code 8 Region code 9 Holder identifier 10 Holder attribute 11 Encryption key 12 Signature Key 13 Certificate 14 Holder biometric information (personal fingerprint authentication unit in holder biometric information area) 16 Eco point (EP) 17 Store signature (signature area) 18 Store certificate 19 Business area A 20 Other business area 22 Business area A Code 23 Purchase Point 24 Parking Point 25 Prepaid Area 26 Certificate Area 27 Billing (Large Money) 28 Signature (Signature Area) 29 Certificate 30 Coin 31 Life Insurance Certificate 32 Loss Warranty Certificate 34 Store Information Terminal 35 Point Writer 36 Point Writing machine 37 Database 38 Point writing machine 39 Fingerprint input device 4 Specific information CA third-party certification authority of the entity X code 41 entities X

 ────────────────────────────────────────────────── ─── Continued on the front page (72) Inventor Sadaharu Emori 1-19-18 Nakamachi, Musashino-shi, Tokyo Musashino Center Building 5F NTT Advanced Technology Co., Ltd. F-term (reference) 2C005 MA01 MA33 MB10 5B035 AA13 BB09 BC01 CA39

Claims (2)

[Claims] 1. A multifunctional IC card commonly used as a point service card or an electronic money card by a plurality of business entities, wherein a signature area written by each of the business entities in a secondary issue area in the IC card. A multifunctional IC card comprising: 2. The multifunctional IC card according to claim 1, wherein a holder biometric information area for confirming the card holder with biometric information such as a fingerprint after inputting a personal identification number is provided in the secondary issuing area.