JP2003196565A - Settlement system by card with authentication function - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a system capable of conducting settlement safely by applying finger print authentication for personal authentication, since a risk is involved in purchase of an article on the Internet because there is the possibility that another person poses as a subjective person, when a user name and a password are stolen, in a conventional method for authenticating the subjective person by the user name and the password as one of the personal authentication using the Internet in the prior art. <P>SOLUTION: A card with an authentication function capable of registering and authenticating a personal finger print is used in the present invention. An IP address, the unified number of the card, and finger print information are stored in the card to conduct the authentication by bringing the card into contact with a finger print reader. The card is a card prohibited from being used by the person other than the subjective person. The settlement by the person other than the subjective person is made incapable by confirming the propriety of the settlement using the card, so as to be able to prevent the possibility that the another person poses as the subjective person, in the Internet settlement. <P>COPYRIGHT: (C)2003,JPO

Description

Detailed Description of the Invention

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a system configuration and operating method for settlement on the Internet.

[0002]

2. Description of the Related Art As a conventional method of authenticating an individual when making a payment on the Internet, there is a method of authenticating with a combination of a user name and a password. When performing authentication, the user name and password flow on the Internet, so there is a risk of being stolen by others. In addition, there is a possibility that others will be seen when entering the user name and password during authentication.

If the user name and password are stolen, the person who authenticates using the user name and password is
The person is authenticated, and as a result, the person can impersonate. Moreover, it is almost impossible to identify who the spoofing person is.

If the user name and password are stolen, the user is spoofed, and the credit card number is stolen, it becomes possible to make a payment, and there is a risk that another person will make a payment without permission.

[0005]

SUMMARY OF THE INVENTION In the present invention, fingerprint authentication is used to prevent spoofing, while the conventional user name and password that can be stolen are used for personal authentication during payment. It is intended to provide a system that can only be settled by the person himself.

[0006]

The system of the present invention performs authentication using a card with an authentication function. This card with authentication function is the size of a bank card and has a fingerprint reader, an authentication function to authenticate the read fingerprint, a communication function to connect to the Internet, and a global necessary for communication.
It has an input device that can input IP addresses, alphabets, and numbers, and an output device that outputs input characters and information.

When an Internet user having a device connected to the Internet represented by a personal computer or a mobile phone purchases a product at a site where the product can be purchased on the Internet and makes a payment, an authentication function is provided. Use a card. Register your fingerprint on the card with authentication function in advance. When making a payment at a site where you can purchase products on the Internet, enter the IP address of the card with authentication function as part of the information at the time of payment on that site, and the payment information will become the card with authentication function. Will be transferred. When making payment for the sent product information, the user can touch the fingerprint reading device of the card with an authentication function with his / her finger and only if the owner of the card is authenticated.

[0008]

BEST MODE FOR CARRYING OUT THE INVENTION Hereinafter, the configuration of an authentication / settlement method and a settlement system using a card with an authentication function of the present invention will be described in detail with reference to the drawings.

FIG. 1 is an explanatory diagram for explaining an outline of a settlement method using a card with an authentication function of the present invention.

The authentication / settlement method using the card with the authentication function of the present invention is a personal computer 100 capable of connecting to the Internet 120 or a mobile phone 11 capable of connecting to the Internet.
Based on the request from 0, the homepage providing server 200 that transmits information gives the product information to the personal computer / mobile phone.

At the time of purchase / payment, the personal computer / mobile phone user selects the item he / she wants from the information provided by the homepage providing server 200 and sends the product information and the authentication card number to the homepage providing server 200. To do. Homepage providing server 2 that received the purchase information
00 transmits purchase information to the sales information management system 300. The sales information management system 300 searches the sales information management file 400 in order to confirm whether the product information is in stock. The sales information management system 300 transmits the authentication card number to the card unified number management system 500. The unified card number management system 500 returns the IP address of the received authentication card number to the sales information management file 400. The sales information management file 400 is for the homepage providing server 2 which indicates whether or not there is stock and the IP address of the authentication card.
To 00. The homepage providing server 200 returns information such as delivery date according to the stock status to the personal computer 100 and the mobile phone 110, and also transmits confirmation of whether or not to make payment to the card 10 with an authentication function. When a confirmation message asking whether to make a payment is sent to the card 10 with an authentication function, the owner of the card touches the fingerprint reading device with his / her finger and authenticates whether or not it matches the fingerprint registered in advance. As a result, it is possible to input to the card 10 with the authentication function whether or not to make the payment only when the user is authenticated. When the user is authenticated and the payment is made, the information indicating that the payment is made is sent to the sales information management system 300 via the Internet 120 and the homepage providing server 200.
The sales information management system 300 is connected to the credit card company 600 via the private line 140, and the money is withdrawn from the personal account.

FIG. 2 is a block configuration diagram showing an example of the configuration of the settlement system using the card with the authentication function of the present invention. The personal computer 100, the homepage providing server 200, the sales information management system 300, the card unified number management system 50.
It is a figure explaining the composition and operation of 0.

The personal computer 100 has an input operation section 101 operated by a user, a communication section 103 for transmitting / receiving control signals and information to / from the communication network through an interface with the communication network 120, a storage section 105 for storing information, a processing result, etc. The display unit 104 for notifying the user of the above, and the processor 102 for controlling the entire personal computer 100.

Homepage providing server 200 of the present invention
Is a server that returns a processing result as a homepage based on a request from the personal computer 100 received via the communication network 120, and provides a homepage and a communication unit 201 that sends and receives control signals and information to and from the communication network through an interface with the communication network 120. A storage unit 202 for accumulating data necessary for data acquisition, a processor 2 for controlling the entire homepage providing server 200
And 03.

The sales information management system 300 of the present invention is
A server that returns processing results as sales information based on a request from the home page providing server 200 received via the communication network 140. The communication unit 301 transmits / receives control signals and information to / from the communication network through an interface with the communication network 140, and sales information. A sales information management file 400 that stores information necessary for search / accumulation as a file, a storage unit 302 that accumulates information necessary for search / accumulation, and a processor 303 that controls the entire sales information management system 300 Is.

The unified card number management system 50 of the present invention
Reference numeral 0 is a server that returns processing results as unified number information based on a request from the sales information management system 300 received via the communication network 130, and is a communication unit that transmits / receives control signals and information to / from the communication network through an interface with the communication network 130. 501, a unified number management file 510 for accumulating information required for search / accumulation of a card unified number as a file, a storage unit 502 for accumulating information required for retrieval / accumulation, and a processor 503 for controlling the entire card unified number management system 500. It is composed of and.

The card 10 with the authentication function of the present invention is a card which processes the payment information received via the communication network 120 as necessary and returns it as the confirmation information of the payment.
A communication unit 13 for transmitting and receiving control signals and information to and from a communication network through an interface with, a fingerprint reading unit 11 with a panel for reading a fingerprint, an input operation unit 15 operated by a user, a storage unit 16 for storing information, processing The display unit 14 notifies the user of the result and the like, and the processor 12 that controls the entire card 10 with the authentication function.

The personal computer, homepage providing server, sales information management system, card unified number management system, and card with authentication function shown in FIG. 2 are operated and operated as follows.

The user of the personal computer 100 is required to display the display unit 104.
While confirming the guidance screen displayed on the screen, the input operation unit 101
When the information necessary for purchasing the product is input from the processor 102, the processor unit 102 generates request information, and the communication unit 103
The product purchase request data is transmitted to the homepage providing server 200 via the communication network 120.

The homepage providing server 200 is a communication unit 2
In addition to temporarily storing the data received from 01 in the storage unit 202, the processor 203 uses the storage unit 202 to extract the sales information request data, and the communication unit 201 sets the communication network 1
The sales information request data is transmitted to the sales information management system 300 via 40.

The sales information management system 300 includes a communication unit 30.
In addition to temporarily storing the data received from 1 in the storage unit 302, the processor 303 uses the storage unit 302 and the sales information management file 400 to retrieve the sales information data,
The communication unit 301 transmits the sales information data to the homepage providing server 200 via the communication network 140. Further, the sales information management system 300 extracts the card unified number data, and the communication unit 301 transmits it to the card unified number management system 500 via the communication network 130.

The unified card number management system 500 takes out the unified card number data received from the communication section 501, and the processor 503 searches the unified number management file 510 for an IP address from the unified number by using the storage section 502 and the unified number management file 510. Is transmitted to the sales information management system 300 via the communication network 130.

The sales information management system 300 includes a communication unit 30.
The IP address received from 1 is temporarily stored in the storage unit 302, and the communication unit 301 transmits it to the homepage providing server 200 via the communication network 140.

The homepage providing server 200 is the communication unit 2
The processor 203 processes the sales information data received from 01 using the storage unit 202, and the communication unit 201 transmits it to the personal computer 100 via the communication network 120.

The homepage providing server 200 is the communication unit 2
01 is a sales information management system 300 via the communication network 140.
The processor 203 stores the sales information data received from the storage unit 202, and the communication unit 201 transmits the inventory / delivery date information to the personal computer 100 via the communication network 120.

The home page providing server 200 is the communication unit 2
01 is received from the communication unit 201 via the communication network 120.
The payment confirmation data is transmitted to the card 10 with the authentication function corresponding to the IP address.

The card 10 with the authentication function causes the processor 12 to store the payment confirmation data received via the communication unit 13 in the storage unit 16 and to display on the display unit 14 whether or not to settle the payment. Card 10 with authentication function
Operate 5 to confirm payment. Authentication function card 10
The user touches the fingerprint reading unit 11 with his / her finger and the fingerprint reading unit 1
1 reads the fingerprint, the processor 12 compares it with the fingerprint registered in advance in the storage unit 16, and if they match, the payment executor regards the card 10 with the authentication function as the owner and the processor 12 executes the payment. The communication unit 13 is the communication network 1.
Homepage providing server 2 for payment confirmation data via 20
To 00.

The homepage providing server 200 is a communication unit 2
The communication unit 201 transmits the settlement confirmation data received via 01 to the sales information management system 300 via the communication network 140.

The sales information management system 300 includes a communication unit 30.
The payment confirmation data received via 1 is reflected in the sales information management file 400. Furthermore, the result of the payment is sent to the communication unit
1 is a homepage providing server 200 via the communication network 140
Send to.

The homepage providing server 200 is the communication unit 2
The communication unit 201 transmits the settlement result received via 01 to the personal computer 100 via the communication network 120.

FIG. 3 is a sequence diagram showing an operation example of the settlement system using the card with the authentication function of the present invention. The operation of the system of the present invention will be described in detail below with reference to FIG.

The homepage providing server 200 receives the start request (S1) from the personal computer 100 and transmits the homepage of the product information to the personal computer 100 (S2). The user of the received personal computer 100 inputs the necessary information (S3)
And sends it to the home page providing server 200. Upon receiving the request data from the personal computer, the home page providing server 200 verifies the request data by verifying the request data (S4). If the request data is correct, a product settlement request is sent to the sales information management system 300 (S
Five). Sales information management system 3 that received the product settlement request
00 stores information, confirms product inventory, and inquires about credit card numbers by credit card company 600.
(S6). Credit card company 600
The validity of the credit card number is verified and the expiration date of the card number is confirmed, and the result is transmitted to the sales information management system 300 (S7). The sales information management system 300 confirms the stock, and if the credit card number is valid, requests the home page providing server 200 to generate an answer screen,
A card unified number search request is issued to the card unified number management system 500 (S8).

The homepage providing server 200, which has received the request for creating the answer screen, creates the answer screen and sends it to the personal computer 1.
To 00 (S9). The personal computer 100 receives the answer screen (S10).

Card Unified card number management system 500
Validates the card unified number (S11). The card unified card number management system 500 searches for an IP address from the unified card number and sends the searched IP address to the sales information management system 300 (S12). The sales information management system 300 transmits the settlement inquiry request and the IP address to the homepage providing server 200 (S13). The homepage providing server 200 uses the card 10 with the authentication function of the designated IP address for the received request for payment inquiry.
To (S14). Upon receipt of the payment inquiry request, the card with authentication function 10 outputs a payment inquiry confirmation message to the output device. The payment is executed when the fingerprint input from the fingerprint reading device of the authentication function card 10 and the fingerprint registered in advance in the authentication function card 10 match (S15). The payment completion data is transmitted to the homepage providing server. The home page providing server 200 receives the payment completion data and transmits the data to the sales information management system 300 (S1
6). Upon receiving the payment completion data, the sales information management system 300 updates the sales information management file and makes a payment request to the credit card company 600 (S17). The credit card company 600 debits the designated bank account (S18). The sales information management system 300 sends a confirmation email to the homepage providing server 200 (S19). The home page providing server 200 transfers the confirmation email to the personal computer 100 (S20). The personal computer 100 can know that the settlement has been completed by receiving the confirmation email (S21).

In the above embodiment, the card 1 with the authentication function is used.
Although fingerprint authentication is mentioned as the authentication method of 0, it is also possible to implement it by retina authentication, DNA authentication, and voiceprint authentication.

[0036]

EFFECT OF THE INVENTION In the payment system using the card with the authentication function, it is possible to configure a reliable and reliable payment system because it becomes impossible to authenticate anyone other than the person himself / herself by performing fingerprint authentication.

[Brief description of drawings]

FIG. 1 is an explanatory diagram illustrating an entire structure of a payment system using a card with an authentication function of the present invention.

FIG. 2 is a block diagram showing a configuration of a payment system using a card with an authentication function of the present invention.

FIG. 3 is a sequence diagram showing an operation of the payment system using the card with the authentication function of the present invention.

[Explanation of symbols]

10 ... Card with authentication function, 100 ... PC, 110
... mobile phone, 120 ... internet network, 130 ... dedicated line, 140 ... LAN (Local Area Network), 200 ... homepage providing server, 300 ... sales information management system, 400 ... sales information management file, 500 ... card unified number management system 510 ... Unified number management file,
600 ... Credit card company.

─────────────────────────────────────────────────── ─── Continuation of front page (51) Int.Cl. ⁷ Identification code FI theme code (reference) G06F 15/00 G06F 15/00 330G G06K 17/00 G06K 17/00 V 19/10 G06T 1/00 400G G06T 1/00 400 H04L 9/00 673E H04L 9/32 673D G06K 19/00 SF term (reference) 5B035 AA14 BB09 BC01 CA05 CA06 CA11 CA22 5B047 AA25 BA03 BC23 CA23 CB22 5B058 CA01 KA02 KA31 AE85BA06 AE0 AA07 KA01 KA17 NA38 PA10 PA11 PA13

Claims (6)

[Claims] 1. A card with an authentication function, an Internet network for transmitting information, a device for providing information through the Internet, and product information, so that the person can make a payment reliably.
A payment system with a card with an authentication function that combines a device that manages payment information with a device that stores product information and payment information. 2. A card with an authentication function has a size of a credit card type, and this device includes an input device capable of reading a fingerprint, an input device capable of inputting character information, and input characters and processed results. The output device for outputting, a storage device for storing the read fingerprint or character information, a processor for performing processing calculation or authentication, and a communication device for communicating with the Internet. A payment system using a card with an authentication function. 3. A payment system using a card with an authentication function according to claim 2, wherein the communication device can assign a global IP address and can communicate with other communication devices on the Internet. 4. A card with an authentication function can be registered with the fingerprint of the person in advance, and the person who can operate the card is the person who matches the registered fingerprint. That is, the payment system using the card with the authentication function according to claim 2, wherein only the cardholder is provided. 5. A payment system using a card with an authentication function, characterized in that when a payment is made on the Internet, whether or not to make the payment is confirmed with a card with an authentication function, so that only the person himself / herself can make the payment. 6. A payment system using a card with an authentication function according to claim 2, wherein each card with an authentication function is always assigned with a unique number, not two.